This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json) Hash identifier: gcrxOQhGmcpxW2j2zRB8yl4uMRjOtej/lB4oWkEY5jo= Subject key identifier: 71:BD:D3:26:F0:73:E5:CF:06:68:39:E3:47:B6:5D:A6:A2:3D:90:1C Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee Certificate serial: 019AF12E5D7CC0735CEFD3016F65E988B417 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 01:02:18 +0000 Manifest this update: Sat 06 Dec 2025 01:02:18 +0000 Manifest next update: Sun 07 Dec 2025 01:02:18 +0000 Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: LaORipzN94kplTsTQ0PRmgu7x2b4vieHWZjLFRqd4MA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:5d:7c:c0:73:5c:ef:d3:01:6f:65:e9:88:b4:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee Validity Not Before: Dec 6 01:02:18 2025 GMT Not After : Dec 7 01:02:18 2025 GMT Subject: CN=71bdd326f073e5cf066839e347b65da6a23d901c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:15:72:a1:21:13:09:77:be:03:a8:a8:05:ae: c4:61:49:65:56:53:42:82:c9:97:c0:45:89:65:de: 09:60:d5:86:77:68:e2:1a:54:a7:00:c8:86:6c:39: b9:38:57:b4:c0:42:9a:0b:f4:e8:5e:1b:7d:d9:1c: ac:42:cd:d6:ef:0b:4a:61:3b:5d:f3:fe:07:6b:aa: 1d:d0:d3:fc:c1:fd:3f:82:a7:0a:f3:f4:df:5a:86: 4a:0c:7f:ea:32:1b:86:70:fa:91:62:45:31:37:4a: 57:78:8f:3c:4e:6b:ba:12:28:9c:69:ab:ce:0f:a7: c5:b1:bf:0c:6f:71:f1:e7:a7:3c:21:5e:29:67:d5: d5:46:84:af:6b:d4:e1:59:8c:08:7e:01:16:bf:50: 37:46:74:51:ec:cf:1e:37:cf:eb:f7:1b:4e:3e:f8: b8:b0:7b:f4:b7:ec:1a:54:df:11:3a:d3:cd:eb:bc: 81:1f:31:8e:a2:bc:d8:e8:60:b0:32:f3:96:d7:18: 28:c7:85:77:99:13:0c:86:d7:35:ff:6f:04:d6:6d: df:f4:89:78:1d:b7:7e:06:95:91:a4:3a:94:eb:a9: d3:75:20:09:69:0f:b6:f6:0d:26:81:2b:e8:8a:85: 6a:11:94:0e:bd:1a:9b:23:c1:e0:63:6e:23:7f:b4: b4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BD:D3:26:F0:73:E5:CF:06:68:39:E3:47:B6:5D:A6:A2:3D:90:1C X509v3 Authority Key Identifier: keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:4c:12:d4:88:d6:c4:0a:d6:af:bd:74:d9:95:ed:e2:00:5f: 37:ee:1d:3e:63:04:f6:0d:98:be:6b:83:f4:21:09:9f:d7:2e: c0:c2:88:e4:7e:ca:2a:76:a7:ba:55:e8:9e:46:c0:2f:12:5e: 85:30:90:5b:c0:bc:44:de:bc:5b:29:0b:e8:83:ee:c4:83:be: 33:56:86:12:c0:68:1c:c4:6f:00:0e:18:f6:79:f4:a3:f0:49: cf:ca:53:1f:35:30:3a:68:7e:91:bc:70:8f:3c:4b:a4:eb:80: ee:fc:04:78:3f:d8:d9:b0:e7:96:58:eb:fa:c6:c3:6b:0a:a9: 88:e4:74:56:29:9d:45:fc:68:fe:53:10:e2:10:4f:5b:8a:32: e2:9f:5a:ba:bb:37:3c:5e:ca:ad:5b:5e:80:8b:9c:36:3a:f2: 6d:63:6a:c6:d2:c6:19:0d:a6:3b:63:e5:46:61:23:26:3d:29: 73:31:30:47:d0:00:30:c1:75:70:ec:df:3a:51:a6:d1:ae:b7: f7:16:f9:13:f5:13:52:82:46:68:37:6f:f3:f4:15:3b:d5:97: 09:79:5c:7e:b4:94:fb:9d:30:02:5a:fe:d7:c9:41:fe:14:7c: ad:e7:2d:e3:74:9b:19:62:c4:ca:04:f6:61:e7:5d:98:81:ef: ec:7d:73:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLl18wHNc79MBb2XpiLQXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1OTVlMjE3MTc2OGJjOWIyOTQyNDlmMGUzYTUzNTkwMTc5 YzUyZWUwHhcNMjUxMjA2MDEwMjE4WhcNMjUxMjA3MDEwMjE4WjAzMTEwLwYDVQQD Eyg3MWJkZDMyNmYwNzNlNWNmMDY2ODM5ZTM0N2I2NWRhNmEyM2Q5MDFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2hVyoSETCXe+A6ioBa7EYUllVlNC gsmXwEWJZd4JYNWGd2jiGlSnAMiGbDm5OFe0wEKaC/ToXht92RysQs3W7wtKYTtd 8/4Ha6od0NP8wf0/gqcK8/TfWoZKDH/qMhuGcPqRYkUxN0pXeI88Tmu6EiicaavO D6fFsb8Mb3Hx56c8IV4pZ9XVRoSva9ThWYwIfgEWv1A3RnRR7M8eN8/r9xtOPvi4 sHv0t+waVN8ROtPN67yBHzGOorzY6GCwMvOW1xgox4V3mRMMhtc1/28E1m3f9Il4 Hbd+BpWRpDqU66nTdSAJaQ+29g0mgSvoioVqEZQOvRqbI8HgY24jf7S0cwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHG90ybwc+XPBmg540e2XaaiPZAcMB8GA1UdIwQY MBaAFLWV4hcXaLybKUJJ8OOlNZAXnFLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFpYaUZ4ZG92SnNwUWtudzQ2VTFrQmVjVXU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9hMzRmYjktZjY0ZS00MjkxLTkyOTEt NjBiNGFjZTAwNGI1LzEvdFpYaUZ4ZG92SnNwUWtudzQ2VTFrQmVjVXU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC9hMzRmYjktZjY0ZS00MjkxLTkyOTEtNjBiNGFjZTAwNGI1 LzEvdFpYaUZ4ZG92SnNwUWtudzQ2VTFrQmVjVXU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnkwS1IjW xArWr7102ZXt4gBfN+4dPmME9g2YvmuD9CEJn9cuwMKI5H7KKnanulXonkbALxJe hTCQW8C8RN68WykL6IPuxIO+M1aGEsBoHMRvAA4Y9nn0o/BJz8pTHzUwOmh+kbxw jzxLpOuA7vwEeD/Y2bDnlljr+sbDawqpiOR0VimdRfxo/lMQ4hBPW4oy4p9aurs3 PF7KrVtegIucNjrybWNqxtLGGQ2mO2PlRmEjJj0pczEwR9AAMMF1cOzfOlGm0a63 9xb5E/UTUoJGaDdv8/QVO9WXCXlcfrSU+50wAlr+18lB/hR8rect43SbGWLEygT2 YeddmIHv7H1zCg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:37:32 2025 by rpki-client