This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.mft File: T7murXluvL6SUPqiksQOioWIx50.mft (raw, json) Hash identifier: pUiunFPuEFwWyXeLoAX4MMmZrucDSZ6jZ9InUueOX+I= Subject key identifier: EA:C9:2D:AC:CF:5F:7A:CF:87:36:7F:85:A1:05:59:9D:BF:C9:54:29 Authority key identifier: 4F:B9:AE:AD:79:6E:BC:BE:92:50:FA:A2:92:C4:0E:8A:85:88:C7:9D Certificate issuer: /CN=4fb9aead796ebcbe9250faa292c40e8a8588c79d Certificate serial: 019AF12EC4226E9F4B7B1D06A082116C1790 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7murXluvL6SUPqiksQOioWIx50.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.mft Manifest number: 1245 Signing time: Sat 06 Dec 2025 01:02:45 +0000 Manifest this update: Sat 06 Dec 2025 01:02:45 +0000 Manifest next update: Sun 07 Dec 2025 01:02:45 +0000 Files and hashes: 1: T7murXluvL6SUPqiksQOioWIx50.crl (hash: V/UApLcQS5Dx0FYqeCiD01vFFLBgNXKMSDT0v/Yinx4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.mft rsync://rpki.ripe.net/repository/DEFAULT/T7murXluvL6SUPqiksQOioWIx50.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c4:22:6e:9f:4b:7b:1d:06:a0:82:11:6c:17:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fb9aead796ebcbe9250faa292c40e8a8588c79d Validity Not Before: Dec 6 01:02:45 2025 GMT Not After : Dec 7 01:02:45 2025 GMT Subject: CN=eac92daccf5f7acf87367f85a105599dbfc95429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d9:ad:e9:ca:74:f8:f1:93:23:08:5e:89:70: 49:7d:61:7d:b3:77:29:a2:d8:7d:bf:fd:c9:99:f0: 28:13:c9:35:82:74:38:88:30:f0:e3:33:84:12:a1: ad:49:36:65:c1:47:2b:19:2b:e8:d5:9d:1b:e7:8c: 58:ac:a7:8f:29:3d:7e:0c:91:c3:c0:68:4c:de:bd: d5:d1:9a:4a:46:04:82:72:97:7b:39:cd:cf:c6:99: 15:55:89:b2:52:4c:ef:fa:8c:b2:5d:2a:9b:3f:e0: 27:d6:04:53:86:68:ef:d2:e3:67:db:9b:59:48:f9: 1a:2b:2f:67:76:84:a7:ef:ef:08:81:54:07:3c:b3: 8e:54:aa:87:c3:3b:a9:8d:72:18:0d:64:53:15:a1: b5:c7:dd:e0:19:fa:7b:73:28:09:2d:aa:72:0b:0e: 64:24:3d:ef:07:c7:fa:a7:bd:d3:46:b6:e0:28:06: 45:19:fe:55:38:f2:96:bd:fb:74:6b:38:9f:f4:88: 3f:3d:41:ae:1a:ac:38:1a:ba:83:0a:0c:55:ef:b0: e0:d6:2f:34:c0:fe:e2:a8:9b:37:2d:70:78:c6:77: 37:57:fb:31:e4:ef:d5:d9:f9:2c:70:22:83:46:cd: 20:20:98:52:38:d3:e3:ce:0b:ca:70:20:15:7a:e1: da:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C9:2D:AC:CF:5F:7A:CF:87:36:7F:85:A1:05:59:9D:BF:C9:54:29 X509v3 Authority Key Identifier: keyid:4F:B9:AE:AD:79:6E:BC:BE:92:50:FA:A2:92:C4:0E:8A:85:88:C7:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7murXluvL6SUPqiksQOioWIx50.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/11f004-441f-470d-8927-76a9109a62e7/1/T7murXluvL6SUPqiksQOioWIx50.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:82:da:68:f2:cf:b1:a5:fc:52:2d:64:3e:9a:1b:37:bc:1d: e2:ac:77:5e:e9:c7:1f:5a:51:89:86:4d:fa:8d:c3:06:ec:9a: f8:af:5f:4d:38:fd:b0:f6:e0:bc:8b:be:af:b1:b6:9d:66:44: 73:43:71:9d:83:9d:33:64:e6:81:3f:36:17:0d:c4:ae:7b:a3: c6:3b:1a:6f:0d:9a:b4:c3:19:92:fc:90:05:76:db:51:50:3b: 3b:e8:e7:63:12:b5:0e:02:bd:ba:09:92:7c:77:4a:60:95:aa: 70:96:de:01:1c:61:35:76:fc:88:59:de:e8:bf:c2:d0:77:2c: c9:0e:59:01:7b:ab:52:8a:da:ac:7a:79:18:2d:5a:d6:da:09: 46:b7:43:77:11:35:e3:87:75:d9:9d:bb:6b:57:54:af:87:b3: d9:3c:f5:9f:c9:75:19:7a:d3:db:51:19:31:1d:a5:ba:a7:30: 51:a4:88:9b:08:c4:e8:1a:ed:e7:25:6a:97:ad:af:22:21:bb: cc:c8:a6:28:43:ab:8f:d0:5b:5e:13:ca:0e:42:b8:18:e5:4d: e7:b9:bb:6c:d5:2f:a1:83:b4:1a:81:82:a4:3c:87:5c:74:02: ae:f4:50:26:c0:07:6f:65:7c:ad:ab:4a:10:ff:14:e1:98:12: ef:3a:4f:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsQibp9Lex0GoIIRbBeQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmYjlhZWFkNzk2ZWJjYmU5MjUwZmFhMjkyYzQwZThhODU4 OGM3OWQwHhcNMjUxMjA2MDEwMjQ1WhcNMjUxMjA3MDEwMjQ1WjAzMTEwLwYDVQQD EyhlYWM5MmRhY2NmNWY3YWNmODczNjdmODVhMTA1NTk5ZGJmYzk1NDI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9mt6cp0+PGTIwheiXBJfWF9s3cp oth9v/3JmfAoE8k1gnQ4iDDw4zOEEqGtSTZlwUcrGSvo1Z0b54xYrKePKT1+DJHD wGhM3r3V0ZpKRgSCcpd7Oc3PxpkVVYmyUkzv+oyyXSqbP+An1gRThmjv0uNn25tZ SPkaKy9ndoSn7+8IgVQHPLOOVKqHwzupjXIYDWRTFaG1x93gGfp7cygJLapyCw5k JD3vB8f6p73TRrbgKAZFGf5VOPKWvft0azif9Ig/PUGuGqw4GrqDCgxV77Dg1i80 wP7iqJs3LXB4xnc3V/sx5O/V2fkscCKDRs0gIJhSONPjzgvKcCAVeuHagwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOrJLazPX3rPhzZ/haEFWZ2/yVQpMB8GA1UdIwQY MBaAFE+5rq15bry+klD6opLEDoqFiMedMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDdtdXJYbHV2TDZTVVBxaWtzUU9pb1dJeDUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8xMWYwMDQtNDQxZi00NzBkLTg5Mjct NzZhOTEwOWE2MmU3LzEvVDdtdXJYbHV2TDZTVVBxaWtzUU9pb1dJeDUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy8xMWYwMDQtNDQxZi00NzBkLTg5MjctNzZhOTEwOWE2MmU3 LzEvVDdtdXJYbHV2TDZTVVBxaWtzUU9pb1dJeDUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg4LaaPLP saX8Ui1kPpobN7wd4qx3XunHH1pRiYZN+o3DBuya+K9fTTj9sPbgvIu+r7G2nWZE c0NxnYOdM2TmgT82Fw3Ernujxjsabw2atMMZkvyQBXbbUVA7O+jnYxK1DgK9ugmS fHdKYJWqcJbeARxhNXb8iFne6L/C0HcsyQ5ZAXurUorarHp5GC1a1toJRrdDdxE1 44d12Z27a1dUr4ez2Tz1n8l1GXrT21EZMR2luqcwUaSImwjE6Brt5yVql62vIiG7 zMimKEOrj9BbXhPKDkK4GOVN57m7bNUvoYO0GoGCpDyHXHQCrvRQJsAHb2V8ratK EP8U4ZgS7zpPBQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:06:35 2025 by rpki-client