This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json) Hash identifier: 8AqG17ehKfw8oZpuewGdsJJGUX7i262+qp9O+aJdtys= Subject key identifier: 01:13:E9:DB:C2:B1:FB:09:2F:14:30:D6:ED:A9:F0:20:B6:CA:B9:CE Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde Certificate serial: 019AF208F7DFB159926CD22690787C916420 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft Manifest number: 09E9 Signing time: Sat 06 Dec 2025 05:01:05 +0000 Manifest this update: Sat 06 Dec 2025 05:01:05 +0000 Manifest next update: Sun 07 Dec 2025 05:01:05 +0000 Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: VZlpTPzccfN12G+I513pWqZUUcS5agbKSQXKc4b5FXY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:f7:df:b1:59:92:6c:d2:26:90:78:7c:91:64:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde Validity Not Before: Dec 6 05:01:05 2025 GMT Not After : Dec 7 05:01:05 2025 GMT Subject: CN=0113e9dbc2b1fb092f1430d6eda9f020b6cab9ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:73:bc:14:c0:9f:be:74:a7:44:a4:ad:06:7c: 58:9a:46:74:60:07:2e:0d:c5:7c:ad:b6:7a:52:c6: 0f:53:40:fc:86:ae:31:48:52:18:ac:c0:bc:c1:a3: b2:dd:a9:41:dd:a1:2e:a7:12:b6:fc:c9:a4:a1:de: f0:f4:73:21:f7:7b:b7:0e:72:5d:41:d0:1d:d1:3a: a2:34:a5:b5:e4:48:86:ef:36:ed:68:2d:33:ab:9a: e0:d2:39:aa:d5:e5:df:88:f2:06:9a:87:58:03:65: a2:8c:09:cb:6f:83:cf:ce:a1:6b:a5:fb:2c:a7:ee: eb:8c:74:d9:84:b5:4b:4d:89:4d:aa:ae:50:79:c0: 1d:95:2e:fa:27:f3:4b:5b:28:b2:2d:7e:3d:8f:5f: cd:a4:cc:1b:68:5b:ee:0c:bf:0a:3c:ba:87:63:1e: 77:a1:95:b8:7e:ee:9b:69:31:d7:02:2c:a5:b5:73: 97:64:a0:61:8b:8f:04:f9:d4:fe:51:aa:9a:f4:b9: 67:24:7e:a9:01:da:49:be:8c:4e:f3:8b:0e:08:fa: 1b:60:8c:90:72:6a:b6:26:65:02:10:03:7c:fd:89: e3:af:27:41:ad:24:03:3b:3b:ae:09:49:12:23:f2: 01:ed:6a:68:90:16:11:23:c5:63:52:11:f6:26:e2: f0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:13:E9:DB:C2:B1:FB:09:2F:14:30:D6:ED:A9:F0:20:B6:CA:B9:CE X509v3 Authority Key Identifier: keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:25:a7:a7:07:42:f6:02:9f:df:ab:6b:b9:af:64:d3:6e:96: 42:51:be:89:12:38:b1:34:80:e9:46:3e:ea:8e:16:6e:c9:4f: 77:54:b5:5d:43:e4:80:0a:75:8c:44:0d:0a:a2:ea:7f:de:f5: 13:3c:ce:25:34:3b:d5:e4:d9:df:b0:e1:26:18:db:a5:c0:b2: 84:fc:98:48:1a:9b:00:aa:27:74:82:33:2c:94:52:af:6d:5d: e8:08:4c:3b:db:8d:a2:64:14:56:01:e3:08:67:3f:3e:9f:bf: 0c:55:92:27:fc:36:c6:52:3f:b5:d9:ad:c5:d6:29:32:2a:94: c4:38:ee:2a:65:e2:e8:56:a1:d8:ae:77:0e:fa:a0:e0:ec:9b: 23:70:47:d5:c4:bd:33:b9:9d:71:01:1f:ed:f1:19:3d:32:ce: 86:39:29:27:41:23:b8:d5:c0:fc:5d:4c:09:c8:f3:26:76:05: 0f:62:a3:a8:23:e8:55:c8:64:c8:52:99:ae:a7:8f:ed:9c:a7: e5:67:d7:f0:75:2a:c5:e6:62:3c:61:b4:00:a6:fd:be:ee:94: 30:aa:14:b0:3f:e7:06:2b:e6:ea:8b:1b:13:54:35:16:42:d0: 74:b4:f1:0d:07:19:5c:4f:02:ee:a4:79:ad:8b:58:51:2a:19: 17:c5:3d:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCPffsVmSbNImkHh8kWQgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0Zjg2YTlhM2M0MjljMWJjMjZlYzA2YTNhZTRlNDE3Y2E3 NGRmZGUwHhcNMjUxMjA2MDUwMTA1WhcNMjUxMjA3MDUwMTA1WjAzMTEwLwYDVQQD EygwMTEzZTlkYmMyYjFmYjA5MmYxNDMwZDZlZGE5ZjAyMGI2Y2FiOWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3XO8FMCfvnSnRKStBnxYmkZ0YAcu DcV8rbZ6UsYPU0D8hq4xSFIYrMC8waOy3alB3aEupxK2/Mmkod7w9HMh93u3DnJd QdAd0TqiNKW15EiG7zbtaC0zq5rg0jmq1eXfiPIGmodYA2WijAnLb4PPzqFrpfss p+7rjHTZhLVLTYlNqq5QecAdlS76J/NLWyiyLX49j1/NpMwbaFvuDL8KPLqHYx53 oZW4fu6baTHXAiyltXOXZKBhi48E+dT+Uaqa9LlnJH6pAdpJvoxO84sOCPobYIyQ cmq2JmUCEAN8/YnjrydBrSQDOzuuCUkSI/IB7WpokBYRI8VjUhH2JuLwqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAET6dvCsfsJLxQw1u2p8CC2yrnOMB8GA1UdIwQY MBaAFNT4apo8Qpwbwm7Aajrk5BfKdN/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVBocW1qeENuQnZDYnNCcU91VGtGOHAwMzk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9hNWU1MzEtMWEwOC00MzM2LWIwZDgt NDgzMjY1OTk5NGNiLzEvMVBocW1qeENuQnZDYnNCcU91VGtGOHAwMzk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9hNWU1MzEtMWEwOC00MzM2LWIwZDgtNDgzMjY1OTk5NGNi LzEvMVBocW1qeENuQnZDYnNCcU91VGtGOHAwMzk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmCWnpwdC 9gKf36trua9k026WQlG+iRI4sTSA6UY+6o4WbslPd1S1XUPkgAp1jEQNCqLqf971 EzzOJTQ71eTZ37DhJhjbpcCyhPyYSBqbAKondIIzLJRSr21d6AhMO9uNomQUVgHj CGc/Pp+/DFWSJ/w2xlI/tdmtxdYpMiqUxDjuKmXi6Fah2K53Dvqg4OybI3BH1cS9 M7mdcQEf7fEZPTLOhjkpJ0EjuNXA/F1MCcjzJnYFD2KjqCPoVchkyFKZrqeP7Zyn 5WfX8HUqxeZiPGG0AKb9vu6UMKoUsD/nBivm6osbE1Q1FkLQdLTxDQcZXE8C7qR5 rYtYUSoZF8U9iw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:41:08 2025 by rpki-client