This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft File: aU0ylbrOkvvFQHllxly2WWm60Cg.mft (raw, json) Hash identifier: jOX4ZW1W9sVUd4IwEZKOt6zkRwr828UJCJhLgl4VDGE= Subject key identifier: A1:10:42:0D:D5:3C:3F:03:98:B6:36:4F:4F:39:8B:37:6B:CD:B7:48 Authority key identifier: 69:4D:32:95:BA:CE:92:FB:C5:40:79:65:C6:5C:B6:59:69:BA:D0:28 Certificate issuer: /CN=694d3295bace92fbc5407965c65cb65969bad028 Certificate serial: 019AF164ADEB4395A16A7BA79273D8AECB00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU0ylbrOkvvFQHllxly2WWm60Cg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft Manifest number: 025F Signing time: Sat 06 Dec 2025 02:01:38 +0000 Manifest this update: Sat 06 Dec 2025 02:01:38 +0000 Manifest next update: Sun 07 Dec 2025 02:01:38 +0000 Files and hashes: 1: aU0ylbrOkvvFQHllxly2WWm60Cg.crl (hash: udJBGzpU75JlWSuZa/NOHs3gh9P5Oj6BmgJncJ+cfQE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft rsync://rpki.ripe.net/repository/DEFAULT/aU0ylbrOkvvFQHllxly2WWm60Cg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:ad:eb:43:95:a1:6a:7b:a7:92:73:d8:ae:cb:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=694d3295bace92fbc5407965c65cb65969bad028 Validity Not Before: Dec 6 02:01:38 2025 GMT Not After : Dec 7 02:01:38 2025 GMT Subject: CN=a110420dd53c3f0398b6364f4f398b376bcdb748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:52:1b:3c:f3:d5:31:2b:c6:d1:c4:83:88:be: 54:fe:2e:e5:e5:01:92:32:b7:57:a7:8a:f1:da:c2: 43:b4:23:3d:20:c7:c7:83:61:dd:62:39:21:e8:b2: 55:bc:e0:5b:c5:01:5b:28:ef:02:da:20:28:44:f0: 18:41:7b:36:e8:59:a6:f8:c9:2c:e1:b2:4a:86:de: 64:a5:1b:96:b5:bb:f3:88:68:f2:99:c8:a8:b0:b7: da:52:74:83:76:59:63:f5:0b:e5:9a:ab:06:aa:7e: 16:aa:64:2c:14:9c:a6:fe:b5:87:5c:5b:d6:4e:6c: 8a:cf:a7:0b:d3:b0:58:6e:1d:e9:c1:d0:32:68:ec: 90:14:a1:e8:e1:a8:e0:cc:78:0a:1f:68:8c:08:7b: 3b:d7:6d:47:53:40:69:d5:c6:18:a7:f4:45:cd:7b: 02:cf:7d:fb:ac:9a:26:39:d6:37:a8:fc:ee:77:bf: fa:f8:f4:26:b4:2b:93:b0:d9:49:d9:4a:41:91:2b: f6:35:74:c5:14:27:35:9e:fe:d3:24:fd:c6:d3:ee: 6f:f2:f0:09:b4:3d:ef:05:ae:37:5d:38:ec:aa:e8: 11:c4:c7:87:39:30:3a:49:61:1e:6c:1f:b2:03:bb: 86:fe:0f:04:80:5a:82:bd:f8:3b:ab:25:db:04:c8: b0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:10:42:0D:D5:3C:3F:03:98:B6:36:4F:4F:39:8B:37:6B:CD:B7:48 X509v3 Authority Key Identifier: keyid:69:4D:32:95:BA:CE:92:FB:C5:40:79:65:C6:5C:B6:59:69:BA:D0:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU0ylbrOkvvFQHllxly2WWm60Cg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:76:c6:1d:ac:ae:d2:af:16:09:79:52:11:bf:e3:38:8e:ec: d6:a9:bb:1a:a7:2c:48:5b:03:1c:49:5e:bb:c1:0f:d2:03:cb: d9:6b:4f:dc:c6:2f:22:e2:5b:fe:73:96:f2:7a:e4:ed:0c:0c: 00:30:95:2d:a9:58:46:0e:76:5f:eb:df:53:a6:4e:52:65:12: 6b:df:c7:4f:da:51:cf:7d:47:ec:56:83:6e:74:b5:aa:4b:f8: ba:c1:47:6f:34:1b:87:78:85:66:0d:c4:e6:59:74:a3:a0:0b: 0c:dd:8c:05:5c:1c:43:db:1b:fa:76:00:58:0c:3b:c0:50:13: 9f:ad:d5:69:fb:96:f5:2d:23:d3:04:95:f2:ec:5c:56:c4:f7: cd:58:1c:5f:9a:bc:af:92:4a:f9:81:79:bd:f3:04:48:90:50: 0a:60:f0:5d:99:47:5b:fd:d9:fd:75:d5:bd:e3:1d:fb:cf:75: c2:be:3e:bc:a4:2a:7f:18:9a:5d:24:14:64:c6:5a:6c:c9:57: 21:c6:6f:5d:d3:0c:f0:9b:b0:76:70:f4:0b:23:7d:72:c2:65: eb:21:37:37:e9:72:0a:f2:3c:18:09:02:b4:0b:ec:45:63:a0: 46:2e:52:fe:fc:9c:44:ae:67:92:df:88:1c:a0:21:a9:17:fe: 85:ae:ef:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZK3rQ5WhanunknPYrssAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NGQzMjk1YmFjZTkyZmJjNTQwNzk2NWM2NWNiNjU5Njli YWQwMjgwHhcNMjUxMjA2MDIwMTM4WhcNMjUxMjA3MDIwMTM4WjAzMTEwLwYDVQQD EyhhMTEwNDIwZGQ1M2MzZjAzOThiNjM2NGY0ZjM5OGIzNzZiY2RiNzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2FIbPPPVMSvG0cSDiL5U/i7l5QGS MrdXp4rx2sJDtCM9IMfHg2HdYjkh6LJVvOBbxQFbKO8C2iAoRPAYQXs26Fmm+Mks 4bJKht5kpRuWtbvziGjymciosLfaUnSDdllj9QvlmqsGqn4WqmQsFJym/rWHXFvW TmyKz6cL07BYbh3pwdAyaOyQFKHo4ajgzHgKH2iMCHs7121HU0Bp1cYYp/RFzXsC z337rJomOdY3qPzud7/6+PQmtCuTsNlJ2UpBkSv2NXTFFCc1nv7TJP3G0+5v8vAJ tD3vBa43XTjsqugRxMeHOTA6SWEebB+yA7uG/g8EgFqCvfg7qyXbBMiwAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKEQQg3VPD8DmLY2T085izdrzbdIMB8GA1UdIwQY MBaAFGlNMpW6zpL7xUB5ZcZctllputAoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVUweWxick9rdnZGUUhsbHhseTJXV202MENnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wYWQ0NjgtZGFlYS00YjA0LWE0MDgt MjdlOTZiOTA0N2E4LzEvYVUweWxick9rdnZGUUhsbHhseTJXV202MENnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8wYWQ0NjgtZGFlYS00YjA0LWE0MDgtMjdlOTZiOTA0N2E4 LzEvYVUweWxick9rdnZGUUhsbHhseTJXV202MENnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARnbGHayu 0q8WCXlSEb/jOI7s1qm7GqcsSFsDHEleu8EP0gPL2WtP3MYvIuJb/nOW8nrk7QwM ADCVLalYRg52X+vfU6ZOUmUSa9/HT9pRz31H7FaDbnS1qkv4usFHbzQbh3iFZg3E 5ll0o6ALDN2MBVwcQ9sb+nYAWAw7wFATn63VafuW9S0j0wSV8uxcVsT3zVgcX5q8 r5JK+YF5vfMESJBQCmDwXZlHW/3Z/XXVveMd+891wr4+vKQqfxiaXSQUZMZabMlX IcZvXdMM8JuwdnD0CyN9csJl6yE3N+lyCvI8GAkCtAvsRWOgRi5S/vycRK5nkt+I HKAhqRf+ha7vHA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:14:48 2025 by rpki-client