This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.mft File: 9Lf2q209ljfV1-rM4943lLnPPg8.mft (raw, json) Hash identifier: A8WPaZqgn1tm0m4U+SLnG4MaYsYaJ9Gqzj+k/8mQIxo= Subject key identifier: 28:39:FC:FA:0F:7F:18:9D:23:AC:63:AB:B0:C8:FC:BF:39:8C:92:E7 Authority key identifier: F4:B7:F6:AB:6D:3D:96:37:D5:D7:EA:CC:E3:DE:37:94:B9:CF:3E:0F Certificate issuer: /CN=f4b7f6ab6d3d9637d5d7eacce3de3794b9cf3e0f Certificate serial: 019AF19B9A06938965802F3229C6D4E549AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Lf2q209ljfV1-rM4943lLnPPg8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.mft Manifest number: 030B Signing time: Sat 06 Dec 2025 03:01:37 +0000 Manifest this update: Sat 06 Dec 2025 03:01:37 +0000 Manifest next update: Sun 07 Dec 2025 03:01:37 +0000 Files and hashes: 1: 9Lf2q209ljfV1-rM4943lLnPPg8.crl (hash: xxgbck1uL4ZK3e8wENx4s3JxN7hMBFFgcn/NLuMpDlI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.mft rsync://rpki.ripe.net/repository/DEFAULT/9Lf2q209ljfV1-rM4943lLnPPg8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:9a:06:93:89:65:80:2f:32:29:c6:d4:e5:49:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4b7f6ab6d3d9637d5d7eacce3de3794b9cf3e0f Validity Not Before: Dec 6 03:01:37 2025 GMT Not After : Dec 7 03:01:37 2025 GMT Subject: CN=2839fcfa0f7f189d23ac63abb0c8fcbf398c92e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2b:a0:d1:ae:c7:d0:24:25:56:fe:3f:c0:0d: 04:0b:8e:8b:59:92:8c:23:3f:40:ed:06:24:94:bf: 59:ef:8a:5f:2c:46:fa:c0:82:f9:3c:c6:9d:5f:de: b4:d3:47:10:a4:09:32:60:eb:8e:14:2a:42:56:8b: 5e:be:fc:68:8a:3e:e3:46:7f:80:f0:91:4e:04:9a: 1d:e1:ca:52:0e:64:89:49:83:e3:a4:d6:51:f5:f4: 0a:4e:3e:f9:cb:69:3d:a3:65:c8:dd:ab:03:3f:72: 59:06:9d:6e:c6:a6:d4:c7:74:59:41:a3:c0:6b:eb: fa:c9:29:1d:b9:b3:27:0b:90:03:44:b3:bb:40:56: 4c:b4:d4:45:41:b5:4b:fd:6e:b2:ac:98:e0:e9:ce: d8:7b:93:e6:c1:fa:38:6a:d1:52:52:c3:99:e3:99: cb:62:98:e0:b1:34:84:7a:ba:27:de:ad:31:0c:ff: bf:d6:d2:48:d0:bd:48:e9:73:3d:d9:d5:44:6b:d5: c6:12:2e:fc:3b:42:80:6d:cf:10:30:8c:7c:7b:ec: 65:8c:14:cd:24:17:26:8d:e8:c3:8d:4b:35:ee:c1: eb:da:19:bc:0a:2b:ad:7f:8b:6c:d6:80:c6:19:35: c8:6e:b7:d6:00:6f:bd:04:f8:1c:35:c0:d7:39:ea: 0e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:39:FC:FA:0F:7F:18:9D:23:AC:63:AB:B0:C8:FC:BF:39:8C:92:E7 X509v3 Authority Key Identifier: keyid:F4:B7:F6:AB:6D:3D:96:37:D5:D7:EA:CC:E3:DE:37:94:B9:CF:3E:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Lf2q209ljfV1-rM4943lLnPPg8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:b2:a5:c9:e5:07:83:1a:88:88:e9:80:b0:17:e5:ff:93:bf: b5:61:13:93:29:46:ec:8e:73:3b:41:bb:2f:75:50:5c:ca:96: 9c:d5:94:c9:1e:98:57:20:e3:b5:7e:3a:be:0c:c8:48:29:1a: 11:40:e1:29:2e:b3:38:1f:a5:be:8b:54:ce:57:0d:76:54:15: 5f:ed:4f:44:56:3d:2a:b7:78:37:e0:05:49:b9:fb:e9:1f:86: c7:d6:1e:40:64:1d:71:39:34:be:fc:40:c6:04:6e:f0:85:68: 17:f3:dc:b6:28:21:85:5e:1b:81:46:24:76:8e:5a:35:7b:b4: 77:7b:ae:1a:f4:a4:e1:2a:ee:8a:45:08:1b:66:61:06:06:4c: 9a:41:08:62:b1:6c:18:6e:b3:ad:c6:f2:6f:17:a5:e3:13:9f: ae:46:79:9b:af:03:a4:01:34:58:01:9f:16:f2:ab:8e:fb:57: 3e:be:6d:ac:8a:a5:80:9c:d9:1e:b8:33:bc:99:d7:18:54:24: 65:c2:17:41:05:0b:4e:dd:83:6a:e2:4f:d1:e2:60:9f:60:fc: ba:bb:e8:4d:8b:78:7a:4c:0e:bb:68:8e:78:c3:5f:fa:28:61: 70:aa:6b:b6:e2:99:c5:38:a6:69:72:d0:d6:07:08:a5:80:50: 0f:58:4c:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm5oGk4llgC8yKcbU5UmtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0YjdmNmFiNmQzZDk2MzdkNWQ3ZWFjY2UzZGUzNzk0Yjlj ZjNlMGYwHhcNMjUxMjA2MDMwMTM3WhcNMjUxMjA3MDMwMTM3WjAzMTEwLwYDVQQD EygyODM5ZmNmYTBmN2YxODlkMjNhYzYzYWJiMGM4ZmNiZjM5OGM5MmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSug0a7H0CQlVv4/wA0EC46LWZKM Iz9A7QYklL9Z74pfLEb6wIL5PMadX96000cQpAkyYOuOFCpCVotevvxoij7jRn+A 8JFOBJod4cpSDmSJSYPjpNZR9fQKTj75y2k9o2XI3asDP3JZBp1uxqbUx3RZQaPA a+v6ySkdubMnC5ADRLO7QFZMtNRFQbVL/W6yrJjg6c7Ye5Pmwfo4atFSUsOZ45nL YpjgsTSEeron3q0xDP+/1tJI0L1I6XM92dVEa9XGEi78O0KAbc8QMIx8e+xljBTN JBcmjejDjUs17sHr2hm8Ciutf4ts1oDGGTXIbrfWAG+9BPgcNcDXOeoO6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCg5/PoPfxidI6xjq7DI/L85jJLnMB8GA1UdIwQY MBaAFPS39qttPZY31dfqzOPeN5S5zz4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUxmMnEyMDlsamZWMS1yTTQ5NDNsTG5QUGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8yYWE5ZjktYmRiNC00YWI5LThmOWIt NmI4YWEwYTJjOTYwLzEvOUxmMnEyMDlsamZWMS1yTTQ5NDNsTG5QUGc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8yYWE5ZjktYmRiNC00YWI5LThmOWItNmI4YWEwYTJjOTYw LzEvOUxmMnEyMDlsamZWMS1yTTQ5NDNsTG5QUGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAErKlyeUH gxqIiOmAsBfl/5O/tWETkylG7I5zO0G7L3VQXMqWnNWUyR6YVyDjtX46vgzISCka EUDhKS6zOB+lvotUzlcNdlQVX+1PRFY9Krd4N+AFSbn76R+Gx9YeQGQdcTk0vvxA xgRu8IVoF/PctighhV4bgUYkdo5aNXu0d3uuGvSk4SruikUIG2ZhBgZMmkEIYrFs GG6zrcbybxel4xOfrkZ5m68DpAE0WAGfFvKrjvtXPr5trIqlgJzZHrgzvJnXGFQk ZcIXQQULTt2DauJP0eJgn2D8urvoTYt4ekwOu2iOeMNf+ihhcKprtuKZxTimaXLQ 1gcIpYBQD1hM0A== -----END CERTIFICATE-----Generated at Sat Dec 6 13:50:41 2025 by rpki-client