This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json) Hash identifier: O7DkBJCwCBMwM7yobWOQrz2zSrUjJ1QdhRbXBa8fzPI= Subject key identifier: 66:E7:91:6A:6A:33:4D:ED:F5:8D:48:11:59:EA:C2:30:74:25:DD:11 Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f Certificate serial: 019AF352C2E61A51922830A9AAA01F4DC2C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft Manifest number: 06E5 Signing time: Sat 06 Dec 2025 11:01:18 +0000 Manifest this update: Sat 06 Dec 2025 11:01:18 +0000 Manifest next update: Sun 07 Dec 2025 11:01:18 +0000 Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: DrtX8X756wrodcZEQe29k9tKPrzmkVbQJGBBbYXWkfE=) 2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:c2:e6:1a:51:92:28:30:a9:aa:a0:1f:4d:c2:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f Validity Not Before: Dec 6 11:01:18 2025 GMT Not After : Dec 7 11:01:18 2025 GMT Subject: CN=66e7916a6a334dedf58d481159eac2307425dd11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b6:9a:fa:7e:cb:17:3d:d9:a7:d2:fb:57:31: fb:b6:be:33:10:4a:d3:00:4f:a8:b4:49:58:6c:42: 82:8e:48:4a:49:1e:1c:ef:a8:11:c1:5d:25:e0:ff: ec:a4:ca:ed:47:87:66:aa:7c:c7:b5:c3:9d:86:c0: 38:f6:f2:96:c1:61:f5:db:86:60:b3:db:af:8a:ac: 28:01:a1:c2:38:eb:bc:b2:05:bf:0b:3a:2f:ea:63: 55:2b:b6:34:e2:b4:f2:0a:f9:18:3e:be:71:f0:de: 67:9b:7f:ce:78:c3:97:06:bf:4b:c9:dc:c8:ad:69: 90:ca:91:24:06:84:c3:d3:96:ce:a9:11:d7:86:8f: dc:8c:5c:16:9f:e5:33:d6:be:b2:79:9a:39:e2:0c: ad:a9:88:b8:c8:c3:93:7e:a0:63:71:a1:20:ae:6a: 47:33:bb:5d:3d:9b:06:32:5f:a9:87:f2:f9:73:02: 4f:65:55:9b:8e:f3:7e:d8:3e:57:18:3b:f4:35:3f: 83:2b:eb:98:62:fc:07:ea:57:f1:1c:83:53:41:09: 19:06:e7:18:00:28:af:fb:67:89:64:71:f4:ae:e4: aa:71:d5:7c:2f:50:64:6c:9e:f7:0b:2e:7b:30:1d: ec:b4:b6:f9:45:bc:69:92:97:cd:6d:a7:61:8c:c2: 85:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E7:91:6A:6A:33:4D:ED:F5:8D:48:11:59:EA:C2:30:74:25:DD:11 X509v3 Authority Key Identifier: keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:f7:8b:48:d6:2c:d7:cd:d9:f6:37:85:58:3e:3e:9f:24:ee: 7e:73:b8:e3:18:6b:b0:d1:40:c2:ee:fb:de:78:61:5b:ad:c6: 96:3a:72:3b:72:7d:21:53:5c:17:b2:9e:2b:38:85:f0:88:68: 81:34:9f:f1:69:3a:de:ad:cc:65:58:ac:b6:66:b6:66:d5:0b: 33:2a:29:4f:66:c9:81:cd:2b:4f:39:76:c2:bb:d5:05:e0:f5: 6f:24:a1:4f:80:a5:6a:d7:59:43:3f:8f:2b:27:8f:21:c8:8f: ab:56:62:53:f2:75:3c:9f:38:cc:9d:2e:0c:08:80:56:1f:95: 66:86:c9:60:9b:e5:94:f0:dc:bf:90:f3:a3:0c:25:af:4a:04: 73:02:bb:bf:08:af:af:06:79:2d:80:a4:b0:ef:84:94:0a:99: aa:e4:f7:c4:5d:98:4c:43:b0:81:54:d3:93:66:b8:bc:cd:ea: 37:7f:e1:2b:f2:29:fb:8b:b9:f3:7e:c8:5c:e8:61:b1:30:6f: da:a2:16:d3:d0:88:85:12:54:da:22:c6:41:51:a3:a3:07:e4: 8d:f1:1b:a2:16:c2:dc:e6:2a:d7:52:a4:cc:5a:4b:63:7e:c4: c1:1e:25:31:80:a7:bf:2d:65:54:3a:a5:92:1c:88:02:c8:3f: 1c:b2:15:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUsLmGlGSKDCpqqAfTcLDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMmI3YmE5MWRjMzBlYmI0MTNjZDA1NWJkNDMyOTJlMmQx NDAxOGYwHhcNMjUxMjA2MTEwMTE4WhcNMjUxMjA3MTEwMTE4WjAzMTEwLwYDVQQD Eyg2NmU3OTE2YTZhMzM0ZGVkZjU4ZDQ4MTE1OWVhYzIzMDc0MjVkZDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLaa+n7LFz3Zp9L7VzH7tr4zEErT AE+otElYbEKCjkhKSR4c76gRwV0l4P/spMrtR4dmqnzHtcOdhsA49vKWwWH124Zg s9uviqwoAaHCOOu8sgW/Czov6mNVK7Y04rTyCvkYPr5x8N5nm3/OeMOXBr9LydzI rWmQypEkBoTD05bOqRHXho/cjFwWn+Uz1r6yeZo54gytqYi4yMOTfqBjcaEgrmpH M7tdPZsGMl+ph/L5cwJPZVWbjvN+2D5XGDv0NT+DK+uYYvwH6lfxHINTQQkZBucY ACiv+2eJZHH0ruSqcdV8L1BkbJ73Cy57MB3stLb5RbxpkpfNbadhjMKFlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGbnkWpqM03t9Y1IEVnqwjB0Jd0RMB8GA1UdIwQY MBaAFFEre6kdww67QTzQVb1DKS4tFAGPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVN0N3FSM0REcnRCUE5CVnZVTXBMaTBVQVk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi82M2ZlOWUtNjBhMC00ZjgwLThjMDEt MTY3Mzc0OWJjZWVjLzEvVVN0N3FSM0REcnRCUE5CVnZVTXBMaTBVQVk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi82M2ZlOWUtNjBhMC00ZjgwLThjMDEtMTY3Mzc0OWJjZWVj LzEvVVN0N3FSM0REcnRCUE5CVnZVTXBMaTBVQVk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa/eLSNYs 183Z9jeFWD4+nyTufnO44xhrsNFAwu773nhhW63GljpyO3J9IVNcF7KeKziF8Iho gTSf8Wk63q3MZVistma2ZtULMyopT2bJgc0rTzl2wrvVBeD1byShT4ClatdZQz+P KyePIciPq1ZiU/J1PJ84zJ0uDAiAVh+VZobJYJvllPDcv5Dzowwlr0oEcwK7vwiv rwZ5LYCksO+ElAqZquT3xF2YTEOwgVTTk2a4vM3qN3/hK/Ip+4u5837IXOhhsTBv 2qIW09CIhRJU2iLGQVGjowfkjfEbohbC3OYq11KkzFpLY37EwR4lMYCnvy1lVDql khyIAsg/HLIV2A== -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:49 2025 by rpki-client