This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft File: rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft (raw, json) Hash identifier: crMelIP396+tQCTVs5zj86B7Re9FVH2u07NomGobO+I= Subject key identifier: F1:31:37:3D:DC:98:5C:C7:CF:DC:2C:E2:9B:D1:28:76:A3:CD:C8:8D Authority key identifier: AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78 Certificate issuer: /CN=ad30fb4388ee67144ae04ddc86812d63e028f478 Certificate serial: 019AF31D6B8B6DB2CFA34E884671DB45A243 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 10:03:02 +0000 Manifest this update: Sat 06 Dec 2025 10:03:02 +0000 Manifest next update: Sun 07 Dec 2025 10:03:02 +0000 Files and hashes: 1: rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl (hash: RDb7Vm4m2SxwvYuCxUdCW5nthxkkd4aUgpZwt3NETnA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:6b:8b:6d:b2:cf:a3:4e:88:46:71:db:45:a2:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad30fb4388ee67144ae04ddc86812d63e028f478 Validity Not Before: Dec 6 10:03:02 2025 GMT Not After : Dec 7 10:03:02 2025 GMT Subject: CN=f131373ddc985cc7cfdc2ce29bd12876a3cdc88d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6d:6d:c5:da:76:a2:de:e6:1f:d4:b3:48:3c: f8:24:26:a7:6f:49:df:d4:67:00:66:db:21:f7:46: 52:44:aa:2b:ee:47:d5:20:ea:b5:6b:8b:02:01:02: 33:47:3e:ee:a9:6c:8e:78:e4:90:99:a5:2d:63:9d: 96:08:1e:ff:fb:6c:c9:2a:48:bb:c0:df:fd:16:1a: 41:83:55:3c:2d:03:32:5a:04:6a:80:e2:62:2c:81: 20:81:cd:1f:5e:5b:2e:31:cf:64:e4:56:4f:2b:5e: 61:80:ac:29:94:d1:a9:22:3d:b8:fd:46:07:7a:8e: aa:45:27:54:7f:1d:e7:e3:f5:05:aa:09:64:86:1c: d4:5f:d8:56:48:a5:2e:a7:fe:8a:4e:da:e8:85:34: 51:96:d8:a1:68:29:85:0d:b4:f4:c2:18:00:51:db: 00:19:72:8a:8e:89:8c:84:30:48:44:05:66:04:0f: ac:6e:3f:1d:71:5f:6c:a2:27:44:7a:e2:d2:68:41: 03:da:a8:4c:c4:05:e6:a1:57:f1:06:26:73:2b:c9: b0:39:38:99:e3:82:48:8d:65:19:a0:e5:fc:61:86: 3d:b7:86:5b:1e:f8:ce:fa:e6:bf:b9:7e:ea:77:c2: e3:9f:3b:3d:11:d4:80:bc:bc:ff:6f:0d:23:37:c2: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:31:37:3D:DC:98:5C:C7:CF:DC:2C:E2:9B:D1:28:76:A3:CD:C8:8D X509v3 Authority Key Identifier: keyid:AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:5c:db:0b:d6:dc:a9:6e:0f:36:61:8b:5c:37:25:b0:2c:a0: 5c:fc:98:59:d8:4a:75:27:38:f0:01:34:06:c7:df:8b:d6:12: da:79:12:75:97:fb:4c:8c:ed:36:9b:1c:4e:7a:20:92:d5:23: 57:42:39:00:8d:42:c3:dd:f4:f3:1a:5c:89:02:c1:41:8f:23: c1:ca:70:49:57:8d:01:f1:da:f9:fd:c4:c1:83:a9:00:fc:5a: a7:a5:91:21:75:b6:97:10:cf:38:13:b1:f9:80:06:39:e0:d1: 80:49:a8:2f:c7:c7:85:6f:ef:ac:06:10:35:59:33:fd:fc:0d: 1c:51:80:ec:95:b5:ba:f1:4e:64:55:e9:09:ea:2e:01:37:63: 50:34:59:bd:54:e3:27:27:35:f2:65:ca:8e:9e:b4:ce:fa:58: 13:99:96:13:03:d3:28:df:2c:42:b8:c7:4a:da:6d:1f:cb:9f: de:ce:4e:9a:33:26:64:29:3d:b9:83:2c:1a:80:16:b6:29:7a: 73:c5:0f:59:a2:3b:67:4c:9f:4a:0e:83:3e:f1:39:f3:2f:6e: bf:e9:8b:78:a6:0d:9f:69:44:c3:59:78:18:ac:dd:d2:75:0c: 9a:09:6e:14:f1:18:65:32:af:82:63:08:ce:19:f5:3f:93:36: 7b:70:01:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHWuLbbLPo06IRnHbRaJDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMzBmYjQzODhlZTY3MTQ0YWUwNGRkYzg2ODEyZDYzZTAy OGY0NzgwHhcNMjUxMjA2MTAwMzAyWhcNMjUxMjA3MTAwMzAyWjAzMTEwLwYDVQQD EyhmMTMxMzczZGRjOTg1Y2M3Y2ZkYzJjZTI5YmQxMjg3NmEzY2RjODhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv21txdp2ot7mH9SzSDz4JCanb0nf 1GcAZtsh90ZSRKor7kfVIOq1a4sCAQIzRz7uqWyOeOSQmaUtY52WCB7/+2zJKki7 wN/9FhpBg1U8LQMyWgRqgOJiLIEggc0fXlsuMc9k5FZPK15hgKwplNGpIj24/UYH eo6qRSdUfx3n4/UFqglkhhzUX9hWSKUup/6KTtrohTRRltihaCmFDbT0whgAUdsA GXKKjomMhDBIRAVmBA+sbj8dcV9soidEeuLSaEED2qhMxAXmoVfxBiZzK8mwOTiZ 44JIjWUZoOX8YYY9t4ZbHvjO+ua/uX7qd8Ljnzs9EdSAvLz/bw0jN8JsAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPExNz3cmFzHz9ws4pvRKHajzciNMB8GA1UdIwQY MBaAFK0w+0OI7mcUSuBN3IaBLWPgKPR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclREN1E0anVaeFJLNEUzY2hvRXRZLUFvOUhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9kMzQxYTYtOThhMi00YjFlLTliYTQt YjY2MDQ0YWRiY2IxLzEvclREN1E0anVaeFJLNEUzY2hvRXRZLUFvOUhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9kMzQxYTYtOThhMi00YjFlLTliYTQtYjY2MDQ0YWRiY2Ix LzEvclREN1E0anVaeFJLNEUzY2hvRXRZLUFvOUhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZFzbC9bc qW4PNmGLXDclsCygXPyYWdhKdSc48AE0Bsffi9YS2nkSdZf7TIztNpscTnogktUj V0I5AI1Cw9308xpciQLBQY8jwcpwSVeNAfHa+f3EwYOpAPxap6WRIXW2lxDPOBOx +YAGOeDRgEmoL8fHhW/vrAYQNVkz/fwNHFGA7JW1uvFOZFXpCeouATdjUDRZvVTj Jyc18mXKjp60zvpYE5mWEwPTKN8sQrjHStptH8uf3s5OmjMmZCk9uYMsGoAWtil6 c8UPWaI7Z0yfSg6DPvE58y9uv+mLeKYNn2lEw1l4GKzd0nUMmgluFPEYZTKvgmMI zhn1P5M2e3AB0w== -----END CERTIFICATE-----Generated at Sat Dec 6 14:47:44 2025 by rpki-client