This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json) Hash identifier: iiYReFM8WdHsXDF9fmT3e4bl4HeyQX+H7XIwME/ZkZQ= Subject key identifier: E2:CD:CD:59:50:8A:C8:74:48:7F:64:C2:94:27:30:DD:D9:66:36:CC Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80 Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380 Certificate serial: 019AF577890A32C7CD532FECC9AA4D8219AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft Manifest number: 09EA Signing time: Sat 06 Dec 2025 21:00:43 +0000 Manifest this update: Sat 06 Dec 2025 21:00:43 +0000 Manifest next update: Sun 07 Dec 2025 21:00:43 +0000 Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=) 2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: jB8aJz6H8ADkiI0MIihK9FXSH+x//9+KxVBWMz7fPCw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:77:89:0a:32:c7:cd:53:2f:ec:c9:aa:4d:82:19:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380 Validity Not Before: Dec 6 21:00:43 2025 GMT Not After : Dec 7 21:00:43 2025 GMT Subject: CN=e2cdcd59508ac874487f64c2942730ddd96636cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5c:af:8c:70:f0:f4:c6:f0:4c:7a:12:d7:bb: 95:0a:7d:b0:d7:d9:fe:0f:13:aa:b3:67:40:18:94: 66:3c:65:ea:e8:2d:eb:0b:e2:dd:76:ba:ce:c1:1b: f4:47:11:e4:94:2b:60:26:b6:ac:9c:29:09:d9:72: 95:24:f9:f3:a3:f2:42:f7:78:6d:2d:69:60:68:c0: c9:c5:7c:80:83:09:e3:a8:04:47:c3:99:ab:e6:32: 90:f9:68:c7:34:42:89:f3:1d:c3:cb:bd:8f:0d:00: 84:0f:45:b6:38:3a:75:7f:52:d2:a2:e5:c4:be:d2: 74:04:17:c5:0d:aa:4e:6b:12:c3:64:87:aa:bf:17: 98:4b:3e:6c:4f:6a:a1:66:b4:35:eb:c7:e7:df:82: 88:c2:2f:1b:f0:ef:5f:b3:97:d8:66:c8:43:18:b6: 48:62:ab:55:84:d2:8e:03:bc:e9:00:1a:33:00:3b: 1d:b6:8b:ac:c9:56:df:6b:86:92:15:06:28:68:41: 74:26:5a:5d:a4:91:57:42:a4:1f:22:14:f6:80:47: 37:73:75:a7:4b:99:00:fe:05:30:0b:16:a2:18:63: 1d:15:53:8a:b2:b3:c7:0b:4a:d3:03:e3:f0:28:9d: ee:ec:3e:74:b3:3f:73:96:0d:07:91:45:b4:39:85: a9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CD:CD:59:50:8A:C8:74:48:7F:64:C2:94:27:30:DD:D9:66:36:CC X509v3 Authority Key Identifier: keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:7e:12:80:a7:69:a0:a8:39:93:6c:b1:3e:02:34:e4:92:69: 57:28:0d:a3:40:12:18:07:54:fe:40:9a:21:4d:16:52:8c:10: 19:2f:7a:2a:89:a7:94:61:c7:66:f1:40:05:85:3f:eb:cb:72: 3e:8d:00:50:1b:55:61:fc:cd:4b:97:29:36:e7:05:5e:98:a4: 2e:a0:d2:4c:a4:a0:38:4c:14:7f:19:47:b6:fe:a7:75:2e:0e: 30:ed:a9:ef:59:8f:58:74:7c:50:9a:8c:33:5e:83:6b:2b:8a: dd:5b:7b:52:e1:e7:2f:ba:0f:e7:e3:9c:39:41:9b:1b:bd:fe: b3:45:cd:3d:f4:bc:f5:4a:14:50:d4:b5:f8:e4:b2:0d:43:4c: 84:1b:35:f4:dc:cd:a2:d4:29:e1:c6:8f:cb:9b:35:80:83:0c: 07:b9:6f:fe:99:0c:19:07:af:89:6b:46:b9:da:2d:a4:26:5e: 36:12:55:f0:6d:42:e9:c1:b6:df:76:4e:6b:a4:ee:2e:d9:4c: 3b:66:19:84:28:2f:5f:2b:18:d4:34:d2:a3:ef:09:d3:4d:88: 51:4e:73:4e:ae:bc:8a:06:26:a5:72:04:e4:d2:27:cc:94:e1: 31:0a:d9:3c:dc:99:72:21:a1:be:b2:49:68:af:8b:e5:fd:fb: 0c:58:78:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1d4kKMsfNUy/syapNghmvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxNzA2N2U4MWE2MWEyMWZkYzE0ODU5OGVmNmJhNTk3NTdm YTAzODAwHhcNMjUxMjA2MjEwMDQzWhcNMjUxMjA3MjEwMDQzWjAzMTEwLwYDVQQD EyhlMmNkY2Q1OTUwOGFjODc0NDg3ZjY0YzI5NDI3MzBkZGQ5NjYzNmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslyvjHDw9MbwTHoS17uVCn2w19n+ DxOqs2dAGJRmPGXq6C3rC+LddrrOwRv0RxHklCtgJrasnCkJ2XKVJPnzo/JC93ht LWlgaMDJxXyAgwnjqARHw5mr5jKQ+WjHNEKJ8x3Dy72PDQCED0W2ODp1f1LSouXE vtJ0BBfFDapOaxLDZIeqvxeYSz5sT2qhZrQ168fn34KIwi8b8O9fs5fYZshDGLZI YqtVhNKOA7zpABozADsdtousyVbfa4aSFQYoaEF0JlpdpJFXQqQfIhT2gEc3c3Wn S5kA/gUwCxaiGGMdFVOKsrPHC0rTA+PwKJ3u7D50sz9zlg0HkUW0OYWpCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOLNzVlQish0SH9kwpQnMN3ZZjbMMB8GA1UdIwQY MBaAFDFwZ+gaYaIf3BSFmO9rpZdX+gOAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVhCbjZCcGhvaF9jRklXWTcydWxsMWY2QTRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi81OGE0ZTEtZGZjMS00ZDgxLWIyYzYt MjE2NTk3ZTAzZjExLzEvTVhCbjZCcGhvaF9jRklXWTcydWxsMWY2QTRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi81OGE0ZTEtZGZjMS00ZDgxLWIyYzYtMjE2NTk3ZTAzZjEx LzEvTVhCbjZCcGhvaF9jRklXWTcydWxsMWY2QTRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEX4SgKdp oKg5k2yxPgI05JJpVygNo0ASGAdU/kCaIU0WUowQGS96KomnlGHHZvFABYU/68ty Po0AUBtVYfzNS5cpNucFXpikLqDSTKSgOEwUfxlHtv6ndS4OMO2p71mPWHR8UJqM M16DayuK3Vt7UuHnL7oP5+OcOUGbG73+s0XNPfS89UoUUNS1+OSyDUNMhBs19NzN otQp4caPy5s1gIMMB7lv/pkMGQeviWtGudotpCZeNhJV8G1C6cG233ZOa6TuLtlM O2YZhCgvXysY1DTSo+8J002IUU5zTq68igYmpXIE5NInzJThMQrZPNyZciGhvrJJ aK+L5f37DFh4Kg== -----END CERTIFICATE-----Generated at Sun Dec 7 03:56:04 2025 by rpki-client