This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/029fc6-77d3-44d1-b8c8-e07f0ac78530/1/RDNmA3i76zplxtyp7Qp3b70gRhA.mft File: RDNmA3i76zplxtyp7Qp3b70gRhA.mft (raw, json) Hash identifier: TMtqDLEhxdsezNVtMn0vwYDzqBj39gXSY2yPrGPpR8U= Subject key identifier: CE:81:9A:89:1C:25:62:32:B7:A8:78:46:91:6D:A4:2F:E7:99:E7:37 Authority key identifier: 44:33:66:03:78:BB:EB:3A:65:C6:DC:A9:ED:0A:77:6F:BD:20:46:10 Certificate issuer: /CN=4433660378bbeb3a65c6dca9ed0a776fbd204610 Certificate serial: 019AF3F771C2899D119230B3F932968E824E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDNmA3i76zplxtyp7Qp3b70gRhA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/029fc6-77d3-44d1-b8c8-e07f0ac78530/1/RDNmA3i76zplxtyp7Qp3b70gRhA.mft Manifest number: 049F Signing time: Sat 06 Dec 2025 14:01:11 +0000 Manifest this update: Sat 06 Dec 2025 14:01:11 +0000 Manifest next update: Sun 07 Dec 2025 14:01:11 +0000 Files and hashes: 1: RDNmA3i76zplxtyp7Qp3b70gRhA.crl (hash: I0e4UMLdQ9XsyFKCsYgTB9IspmmCyURrTkWnZgs2Lxk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/029fc6-77d3-44d1-b8c8-e07f0ac78530/1/RDNmA3i76zplxtyp7Qp3b70gRhA.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/029fc6-77d3-44d1-b8c8-e07f0ac78530/1/RDNmA3i76zplxtyp7Qp3b70gRhA.mft rsync://rpki.ripe.net/repository/DEFAULT/RDNmA3i76zplxtyp7Qp3b70gRhA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:71:c2:89:9d:11:92:30:b3:f9:32:96:8e:82:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4433660378bbeb3a65c6dca9ed0a776fbd204610 Validity Not Before: Dec 6 14:01:11 2025 GMT Not After : Dec 7 14:01:11 2025 GMT Subject: CN=ce819a891c256232b7a87846916da42fe799e737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:26:5e:9b:9a:53:ee:f0:22:fc:33:d8:f9:35: b9:ee:32:13:4a:c2:ba:6c:c8:59:69:7b:af:41:d6: f8:08:9e:05:ce:d3:86:48:56:9a:4b:e5:30:fc:92: 7b:c0:1b:f8:75:fc:10:5c:fb:dc:9d:5a:dd:b6:64: b2:35:cd:a4:41:c2:47:6c:fa:ff:6e:7b:27:d8:9a: 4d:e0:dd:01:24:a6:33:cc:c1:fb:43:95:02:39:17: aa:a7:e3:29:44:2c:b7:50:89:cc:e7:f5:0e:e7:5b: 78:f9:6d:dc:ca:e9:1d:4d:f1:b9:49:4d:9c:f0:86: ae:e6:82:39:d5:92:6c:da:b5:5f:86:c5:bd:ab:46: 8b:89:f5:97:a3:df:d6:f7:11:c9:6d:e3:c7:a4:6e: 85:7b:50:1a:3b:07:d3:bf:fe:1f:05:05:40:cf:69: 68:de:7c:6c:cd:dd:32:f5:10:ad:6f:e0:ec:23:6f: 05:30:53:a6:f5:e4:3a:b8:27:b7:07:64:89:2e:dc: 43:17:86:35:76:ef:40:33:80:02:09:db:62:98:4f: a1:d2:cf:1d:ca:48:a7:d2:dc:b7:c2:a5:59:2c:87: e3:b3:e0:69:e0:c1:de:1e:09:57:80:56:56:c2:76: f7:e6:37:02:2a:bb:69:9c:25:df:bf:f1:6b:db:b3: 54:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:81:9A:89:1C:25:62:32:B7:A8:78:46:91:6D:A4:2F:E7:99:E7:37 X509v3 Authority Key Identifier: keyid:44:33:66:03:78:BB:EB:3A:65:C6:DC:A9:ED:0A:77:6F:BD:20:46:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDNmA3i76zplxtyp7Qp3b70gRhA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/029fc6-77d3-44d1-b8c8-e07f0ac78530/1/RDNmA3i76zplxtyp7Qp3b70gRhA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/029fc6-77d3-44d1-b8c8-e07f0ac78530/1/RDNmA3i76zplxtyp7Qp3b70gRhA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:67:12:81:36:36:29:38:e3:24:da:73:76:08:15:a0:00:12: 3f:de:fb:61:96:e1:00:bb:82:68:8c:61:c2:3a:8e:3b:40:93: 7b:eb:bb:01:07:82:02:41:a5:7c:52:a4:d7:38:cc:b6:d9:e0: 87:b6:f5:3d:17:8a:85:48:c3:9f:03:5f:14:1d:e5:0a:c3:75: 62:07:09:a6:5d:a8:eb:52:ff:e7:a9:92:95:2c:14:8e:af:9c: f5:9c:53:b5:55:50:02:5b:d7:e1:50:9d:e8:5c:62:19:50:89: 74:42:60:a3:d7:34:7b:15:f2:3c:3f:f7:4c:a0:05:e9:3e:1c: d6:e2:98:05:f6:07:52:88:00:f4:e1:53:40:32:8b:30:69:5a: 28:55:d8:2b:3e:cb:58:42:e1:fb:52:28:56:06:54:12:b0:fb: 4b:d2:82:9a:51:3d:ec:46:93:52:0f:56:1e:73:a4:79:e5:b9: 82:0d:31:e2:ee:00:26:67:50:e1:9d:f2:00:3b:18:13:58:fb: 99:3d:03:74:10:89:e0:8d:54:2e:cd:bc:a0:59:4c:a8:5a:a3: 81:ba:f1:c4:58:73:03:f9:c0:65:15:c9:df:1c:a0:09:ad:17: 92:71:81:6e:4c:3a:d2:0d:d8:81:6e:09:a7:13:0e:c0:02:f6: 30:f8:9d:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz93HCiZ0RkjCz+TKWjoJOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0MzM2NjAzNzhiYmViM2E2NWM2ZGNhOWVkMGE3NzZmYmQy MDQ2MTAwHhcNMjUxMjA2MTQwMTExWhcNMjUxMjA3MTQwMTExWjAzMTEwLwYDVQQD EyhjZTgxOWE4OTFjMjU2MjMyYjdhODc4NDY5MTZkYTQyZmU3OTllNzM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4iZem5pT7vAi/DPY+TW57jITSsK6 bMhZaXuvQdb4CJ4FztOGSFaaS+Uw/JJ7wBv4dfwQXPvcnVrdtmSyNc2kQcJHbPr/ bnsn2JpN4N0BJKYzzMH7Q5UCOReqp+MpRCy3UInM5/UO51t4+W3cyukdTfG5SU2c 8Iau5oI51ZJs2rVfhsW9q0aLifWXo9/W9xHJbePHpG6Fe1AaOwfTv/4fBQVAz2lo 3nxszd0y9RCtb+DsI28FMFOm9eQ6uCe3B2SJLtxDF4Y1du9AM4ACCdtimE+h0s8d ykin0ty3wqVZLIfjs+Bp4MHeHglXgFZWwnb35jcCKrtpnCXfv/Fr27NUhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM6BmokcJWIyt6h4RpFtpC/nmec3MB8GA1UdIwQY MBaAFEQzZgN4u+s6Zcbcqe0Kd2+9IEYQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkRObUEzaTc2enBseHR5cDdRcDNiNzBnUmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wMjlmYzYtNzdkMy00NGQxLWI4Yzgt ZTA3ZjBhYzc4NTMwLzEvUkRObUEzaTc2enBseHR5cDdRcDNiNzBnUmhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8wMjlmYzYtNzdkMy00NGQxLWI4YzgtZTA3ZjBhYzc4NTMw LzEvUkRObUEzaTc2enBseHR5cDdRcDNiNzBnUmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALGcSgTY2 KTjjJNpzdggVoAASP977YZbhALuCaIxhwjqOO0CTe+u7AQeCAkGlfFKk1zjMttng h7b1PReKhUjDnwNfFB3lCsN1YgcJpl2o61L/56mSlSwUjq+c9ZxTtVVQAlvX4VCd 6FxiGVCJdEJgo9c0exXyPD/3TKAF6T4c1uKYBfYHUogA9OFTQDKLMGlaKFXYKz7L WELh+1IoVgZUErD7S9KCmlE97EaTUg9WHnOkeeW5gg0x4u4AJmdQ4Z3yADsYE1j7 mT0DdBCJ4I1ULs28oFlMqFqjgbrxxFhzA/nAZRXJ3xygCa0XknGBbkw60g3YgW4J pxMOwAL2MPidkA== -----END CERTIFICATE-----Generated at Sat Dec 6 20:59:07 2025 by rpki-client