This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/572b4a-d230-4603-8a42-a51f46bb7464/1/v0JAmh-MHO5ZdNuKQuHrZy7oNDY.mft File: v0JAmh-MHO5ZdNuKQuHrZy7oNDY.mft (raw, json) Hash identifier: 2Bx3JX6nRzmDu6WTZjlZ+Gc+IRmQf14Ye8V+n2wmzhc= Subject key identifier: 73:DB:46:23:C9:7C:62:35:C1:A1:55:0C:AF:6C:20:B9:6A:8E:31:0A Authority key identifier: BF:42:40:9A:1F:8C:1C:EE:59:74:DB:8A:42:E1:EB:67:2E:E8:34:36 Certificate issuer: /CN=bf42409a1f8c1cee5974db8a42e1eb672ee83436 Certificate serial: 019AF12E70671C6E83131B05348E1114022F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v0JAmh-MHO5ZdNuKQuHrZy7oNDY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/572b4a-d230-4603-8a42-a51f46bb7464/1/v0JAmh-MHO5ZdNuKQuHrZy7oNDY.mft Manifest number: 0E00 Signing time: Sat 06 Dec 2025 01:02:23 +0000 Manifest this update: Sat 06 Dec 2025 01:02:23 +0000 Manifest next update: Sun 07 Dec 2025 01:02:23 +0000 Files and hashes: 1: v0JAmh-MHO5ZdNuKQuHrZy7oNDY.crl (hash: BqjkE/s700M4rdUkcXJTx2oe1Xje59irFTtCq7dykDk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/572b4a-d230-4603-8a42-a51f46bb7464/1/v0JAmh-MHO5ZdNuKQuHrZy7oNDY.crl rsync://rpki.ripe.net/repository/DEFAULT/43/572b4a-d230-4603-8a42-a51f46bb7464/1/v0JAmh-MHO5ZdNuKQuHrZy7oNDY.mft rsync://rpki.ripe.net/repository/DEFAULT/v0JAmh-MHO5ZdNuKQuHrZy7oNDY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:70:67:1c:6e:83:13:1b:05:34:8e:11:14:02:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf42409a1f8c1cee5974db8a42e1eb672ee83436 Validity Not Before: Dec 6 01:02:23 2025 GMT Not After : Dec 7 01:02:23 2025 GMT Subject: CN=73db4623c97c6235c1a1550caf6c20b96a8e310a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ce:5d:d0:4f:a1:f9:e7:73:48:cf:fe:a0:e9: 40:09:90:fa:8e:eb:43:a0:50:e5:04:06:f8:71:79: 74:b3:1d:c5:3f:36:ba:f6:bf:72:ec:19:d8:df:f1: 5f:82:27:18:50:e6:00:2d:06:1f:38:e8:8f:6d:ff: c5:29:91:5c:70:e4:a3:36:ca:9d:bc:76:db:ca:70: f5:81:8a:ba:6f:58:b5:b1:d8:fd:03:43:ed:16:65: 97:99:a4:d6:7a:2d:46:ca:81:c1:e0:a4:bb:c5:ea: f4:6a:e6:9d:49:89:05:22:18:2e:e3:77:e7:93:4f: 2e:4d:98:de:a7:29:33:0d:95:10:f8:05:60:d9:af: e0:f8:2b:a6:58:db:7e:21:22:cc:2f:b0:e4:f1:7e: 63:eb:bb:80:67:b3:a3:ed:ae:01:f3:ff:ed:d5:0f: f5:68:d5:99:19:7d:7f:7d:e2:4f:0f:59:ba:ea:ec: 00:55:93:b4:e7:ba:07:d4:17:ee:fe:8c:e9:b8:eb: 5a:5e:cc:7c:ab:27:68:8e:55:f1:8d:07:43:93:01: b9:68:ec:fd:b9:44:72:78:bb:42:b6:27:03:60:d1: 09:15:b4:ba:0d:1c:eb:15:17:a3:84:7c:7b:81:35: 96:09:fa:65:6f:77:93:f6:c1:91:fb:f7:c5:55:7d: 8e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:DB:46:23:C9:7C:62:35:C1:A1:55:0C:AF:6C:20:B9:6A:8E:31:0A X509v3 Authority Key Identifier: keyid:BF:42:40:9A:1F:8C:1C:EE:59:74:DB:8A:42:E1:EB:67:2E:E8:34:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v0JAmh-MHO5ZdNuKQuHrZy7oNDY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/572b4a-d230-4603-8a42-a51f46bb7464/1/v0JAmh-MHO5ZdNuKQuHrZy7oNDY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/572b4a-d230-4603-8a42-a51f46bb7464/1/v0JAmh-MHO5ZdNuKQuHrZy7oNDY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:be:57:a1:ed:16:4d:f1:7f:8e:fe:62:2e:94:64:9a:c8:f8: 1d:47:d3:9f:c1:0d:f0:9b:ac:9b:c6:8b:98:1d:c8:b7:a9:5c: f6:a4:c3:64:96:de:ea:13:b1:54:c1:d2:a4:a4:c5:cd:23:46: fc:cc:9c:07:19:d4:47:13:43:56:01:2b:4a:41:91:42:5b:09: 25:5e:7f:f4:a5:5c:19:fd:a5:f5:a5:c3:ae:25:7d:a1:f6:0a: 15:89:65:b9:5f:91:7d:47:13:64:d7:69:65:9e:67:a6:84:a4: 24:87:f2:68:c3:4d:20:e3:d5:d8:3c:bd:b0:11:3b:c5:ae:5f: 94:1c:d0:a5:b5:81:68:05:de:77:19:3b:dd:d9:3a:e7:d4:56: a2:af:1b:d6:8d:87:c3:2c:55:6c:d4:62:c2:0a:d4:70:a3:f9: ee:6c:eb:7a:78:e7:89:04:3d:ae:58:ea:f0:a1:e6:a6:51:bf: 48:f5:73:37:22:ce:c1:e2:b1:f5:fd:6d:cd:be:20:4d:b4:35: ba:0d:90:4c:00:79:8a:62:5d:36:f4:96:54:c7:f1:df:36:29: d2:64:f6:88:66:ff:fc:47:4b:72:f1:65:a7:8f:eb:de:8e:ae: 5d:a0:03:99:82:48:bc:37:70:ff:49:cc:03:95:ec:7e:08:52: b6:c4:68:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLnBnHG6DExsFNI4RFAIvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmNDI0MDlhMWY4YzFjZWU1OTc0ZGI4YTQyZTFlYjY3MmVl ODM0MzYwHhcNMjUxMjA2MDEwMjIzWhcNMjUxMjA3MDEwMjIzWjAzMTEwLwYDVQQD Eyg3M2RiNDYyM2M5N2M2MjM1YzFhMTU1MGNhZjZjMjBiOTZhOGUzMTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1M5d0E+h+edzSM/+oOlACZD6jutD oFDlBAb4cXl0sx3FPza69r9y7BnY3/FfgicYUOYALQYfOOiPbf/FKZFccOSjNsqd vHbbynD1gYq6b1i1sdj9A0PtFmWXmaTWei1GyoHB4KS7xer0auadSYkFIhgu43fn k08uTZjepykzDZUQ+AVg2a/g+CumWNt+ISLML7Dk8X5j67uAZ7Oj7a4B8//t1Q/1 aNWZGX1/feJPD1m66uwAVZO057oH1Bfu/ozpuOtaXsx8qydojlXxjQdDkwG5aOz9 uURyeLtCticDYNEJFbS6DRzrFRejhHx7gTWWCfplb3eT9sGR+/fFVX2OKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPbRiPJfGI1waFVDK9sILlqjjEKMB8GA1UdIwQY MBaAFL9CQJofjBzuWXTbikLh62cu6DQ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjBKQW1oLU1ITzVaZE51S1F1SHJaeTdvTkRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81NzJiNGEtZDIzMC00NjAzLThhNDIt YTUxZjQ2YmI3NDY0LzEvdjBKQW1oLU1ITzVaZE51S1F1SHJaeTdvTkRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My81NzJiNGEtZDIzMC00NjAzLThhNDItYTUxZjQ2YmI3NDY0 LzEvdjBKQW1oLU1ITzVaZE51S1F1SHJaeTdvTkRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPr5Xoe0W TfF/jv5iLpRkmsj4HUfTn8EN8Jusm8aLmB3It6lc9qTDZJbe6hOxVMHSpKTFzSNG /MycBxnURxNDVgErSkGRQlsJJV5/9KVcGf2l9aXDriV9ofYKFYlluV+RfUcTZNdp ZZ5npoSkJIfyaMNNIOPV2Dy9sBE7xa5flBzQpbWBaAXedxk73dk659RWoq8b1o2H wyxVbNRiwgrUcKP57mzrenjniQQ9rljq8KHmplG/SPVzNyLOweKx9f1tzb4gTbQ1 ug2QTAB5imJdNvSWVMfx3zYp0mT2iGb//EdLcvFlp4/r3o6uXaADmYJIvDdw/0nM A5XsfghStsRo8A== -----END CERTIFICATE-----Generated at Sat Dec 6 09:30:04 2025 by rpki-client