This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft File: sLQvCUy6l0wfrsa97BVg9mOHiRE.mft (raw, json) Hash identifier: b3j0h9/0NvepKpJhsJLF3dWJXEQmfEXr0jMJkIiPUhg= Subject key identifier: 16:98:9D:76:0C:A6:44:01:EE:6E:02:C0:63:00:79:62:9F:7C:77:29 Authority key identifier: B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11 Certificate issuer: /CN=b0b42f094cba974c1faec6bdec1560f663878911 Certificate serial: 019AF12E21B510F06314496404914E765F0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft Manifest number: 13F2 Signing time: Sat 06 Dec 2025 01:02:03 +0000 Manifest this update: Sat 06 Dec 2025 01:02:03 +0000 Manifest next update: Sun 07 Dec 2025 01:02:03 +0000 Files and hashes: 1: sLQvCUy6l0wfrsa97BVg9mOHiRE.crl (hash: vUazwpSJyhVapBAJNNoT/vD1z7iFsM8Vae5iSAxkCXA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:21:b5:10:f0:63:14:49:64:04:91:4e:76:5f:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0b42f094cba974c1faec6bdec1560f663878911 Validity Not Before: Dec 6 01:02:03 2025 GMT Not After : Dec 7 01:02:03 2025 GMT Subject: CN=16989d760ca64401ee6e02c0630079629f7c7729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:3f:e7:6c:4b:0e:37:30:91:0f:8b:4f:6c:5b: 42:d8:2d:e6:0e:b8:c2:e4:1f:44:28:63:32:80:79: 4d:1f:bb:5f:10:2e:5e:50:0d:87:91:bc:f2:1e:a4: 13:72:ce:7c:d6:22:2b:06:d9:31:6a:f2:01:29:d9: 50:4e:e8:e8:ec:fe:f0:ba:aa:61:46:2d:bf:fd:ec: ad:63:40:bd:a4:91:02:e2:c5:bd:03:26:07:ac:35: 83:e7:d2:0f:b1:ef:b0:68:18:b9:19:f6:ee:89:e5: 06:05:73:51:67:5b:4d:ea:28:dd:75:5e:42:57:ca: 79:6d:e9:41:ae:6a:35:af:f7:64:d5:e4:76:05:47: 01:e3:a1:4c:6a:f6:b2:ba:0a:a3:ee:06:ca:46:b7: 16:a3:85:d1:38:39:b4:85:ef:de:e8:93:9e:47:95: af:15:03:db:b1:93:24:9c:b0:0a:b7:a5:0d:21:b1: f3:00:e3:66:7a:a8:97:95:af:4d:58:d3:ee:cd:7e: 49:db:c7:7e:88:37:47:35:51:d2:33:93:ff:c2:65: b8:4d:51:0b:eb:36:bf:c5:9e:a3:5c:42:3b:40:d1: 57:1d:d1:73:a7:4c:6a:e9:d3:23:7b:0b:59:cc:ed: 80:43:48:96:91:d1:2e:8d:2f:82:e5:18:29:9f:03: fb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:98:9D:76:0C:A6:44:01:EE:6E:02:C0:63:00:79:62:9F:7C:77:29 X509v3 Authority Key Identifier: keyid:B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:90:45:be:b3:a8:a3:ad:d7:5e:fe:83:02:81:62:79:a4:ba: ce:07:93:e6:b7:3a:16:c0:46:5d:c2:e9:1d:d3:37:c7:fb:c2: 2c:76:33:21:ec:f5:2d:79:91:cd:26:13:d4:9f:aa:6e:b5:7f: a4:94:d9:62:c7:60:ad:b8:93:9c:df:63:a6:59:97:e4:43:cc: 82:85:eb:cb:3a:ce:6e:4b:f4:17:83:41:59:b9:82:e6:d3:bb: 0e:8a:ef:8a:92:e7:29:43:6e:20:1a:ae:59:b7:f1:d7:ab:78: f6:83:d0:32:79:04:a8:66:98:d7:ad:5e:4b:1b:15:45:4c:78: 48:be:cb:61:9b:ea:06:cc:f6:2b:f1:63:97:5c:da:05:6b:cf: 70:79:ba:5d:aa:70:2b:30:33:28:47:9a:66:8d:51:9b:68:40: 30:1d:40:4a:0c:1b:2e:18:93:25:0d:ff:63:90:27:1e:10:2b: e7:f7:02:06:22:b6:e9:6e:b1:a6:bf:0e:d6:8d:02:49:7a:1a: c4:c9:6f:0a:7a:56:bc:43:a6:35:b3:7d:8c:80:7d:87:5e:2c: b0:aa:34:d2:d3:1b:9f:18:0a:ff:9c:b7:fb:1f:c8:1f:f7:b2: 8e:d0:a7:eb:2e:d6:2a:3e:65:72:0a:f0:e8:62:e5:56:71:f3: 91:c5:3c:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLiG1EPBjFElkBJFOdl8PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYjQyZjA5NGNiYTk3NGMxZmFlYzZiZGVjMTU2MGY2NjM4 Nzg5MTEwHhcNMjUxMjA2MDEwMjAzWhcNMjUxMjA3MDEwMjAzWjAzMTEwLwYDVQQD EygxNjk4OWQ3NjBjYTY0NDAxZWU2ZTAyYzA2MzAwNzk2MjlmN2M3NzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8z/nbEsONzCRD4tPbFtC2C3mDrjC 5B9EKGMygHlNH7tfEC5eUA2HkbzyHqQTcs581iIrBtkxavIBKdlQTujo7P7wuqph Ri2//eytY0C9pJEC4sW9AyYHrDWD59IPse+waBi5GfbuieUGBXNRZ1tN6ijddV5C V8p5belBrmo1r/dk1eR2BUcB46FMavayugqj7gbKRrcWo4XRODm0he/e6JOeR5Wv FQPbsZMknLAKt6UNIbHzAONmeqiXla9NWNPuzX5J28d+iDdHNVHSM5P/wmW4TVEL 6za/xZ6jXEI7QNFXHdFzp0xq6dMjewtZzO2AQ0iWkdEujS+C5RgpnwP7BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBaYnXYMpkQB7m4CwGMAeWKffHcpMB8GA1UdIwQY MBaAFLC0LwlMupdMH67GvewVYPZjh4kRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0xRdkNVeTZsMHdmcnNhOTdCVmc5bU9IaVJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xYTA3YjAtOTk3Ni00ZDU1LWI3MjIt YTJhMTFhMGE2ZDc0LzEvc0xRdkNVeTZsMHdmcnNhOTdCVmc5bU9IaVJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8xYTA3YjAtOTk3Ni00ZDU1LWI3MjItYTJhMTFhMGE2ZDc0 LzEvc0xRdkNVeTZsMHdmcnNhOTdCVmc5bU9IaVJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPZBFvrOo o63XXv6DAoFieaS6zgeT5rc6FsBGXcLpHdM3x/vCLHYzIez1LXmRzSYT1J+qbrV/ pJTZYsdgrbiTnN9jplmX5EPMgoXryzrObkv0F4NBWbmC5tO7DorvipLnKUNuIBqu Wbfx16t49oPQMnkEqGaY161eSxsVRUx4SL7LYZvqBsz2K/Fjl1zaBWvPcHm6Xapw KzAzKEeaZo1Rm2hAMB1ASgwbLhiTJQ3/Y5AnHhAr5/cCBiK26W6xpr8O1o0CSXoa xMlvCnpWvEOmNbN9jIB9h14ssKo00tMbnxgK/5y3+x/IH/eyjtCn6y7WKj5lcgrw 6GLlVnHzkcU8Og== -----END CERTIFICATE-----Generated at Sat Dec 6 07:01:23 2025 by rpki-client