This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft File: 71j4Vyvdd9mBQRGA4u-aioAsdqw.mft (raw, json) Hash identifier: aAbVrWZzGa9GuXgkQWEI+2qUC7nWcm8dBYtydPmfSPY= Subject key identifier: 38:3C:A7:DC:51:DB:31:E5:A8:A9:5D:5B:CE:64:E3:77:53:FE:D9:2E Authority key identifier: EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC Certificate issuer: /CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac Certificate serial: 019AF276797036E5DED7D7764F6B6DF5D9B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft Manifest number: 02DD Signing time: Sat 06 Dec 2025 07:00:41 +0000 Manifest this update: Sat 06 Dec 2025 07:00:41 +0000 Manifest next update: Sun 07 Dec 2025 07:00:41 +0000 Files and hashes: 1: 71j4Vyvdd9mBQRGA4u-aioAsdqw.crl (hash: i4w1XGkwyKlnt4y8rH4wKpDV//AocSGiJCBixa+trt0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 07:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:79:70:36:e5:de:d7:d7:76:4f:6b:6d:f5:d9:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac Validity Not Before: Dec 6 07:00:41 2025 GMT Not After : Dec 7 07:00:41 2025 GMT Subject: CN=383ca7dc51db31e5a8a95d5bce64e37753fed92e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:66:d9:39:b6:1e:a2:5a:46:35:49:90:71:c9: 06:e5:85:05:89:f0:83:1c:b5:f0:f1:b6:4e:88:cf: ba:01:1a:fc:b4:46:16:97:a3:da:1e:3f:69:4f:2f: fe:72:49:b2:9e:e7:48:73:52:18:d4:f2:d6:ac:90: 87:49:37:c7:6d:6b:d3:06:e3:93:88:63:10:6f:d9: 5b:c0:61:e8:2d:d2:98:ea:68:eb:08:2e:f6:5e:c5: 5a:55:1c:14:b5:a0:f4:47:0e:ff:c4:5e:2c:7d:db: 48:d9:07:93:b4:dd:e1:ae:82:02:07:b6:6c:f6:55: 9e:e9:32:eb:7d:ae:4f:45:30:b2:2d:00:a4:5e:6b: 37:a5:7d:73:79:b5:83:33:a7:af:bf:12:84:8b:22: 23:4d:2c:cc:50:25:01:84:08:71:fb:94:7c:f9:02: 02:36:5d:25:c4:9e:b0:02:39:51:54:da:ac:15:69: 48:35:5d:ee:05:da:17:df:74:33:a8:be:ee:d8:f8: 85:30:d6:f9:7c:cd:06:f6:bc:1c:0c:ba:f1:4e:12: 9f:22:df:ab:3b:c8:e9:49:14:27:b4:ee:af:51:d5: 3f:ac:2d:25:f7:46:fa:3e:34:b5:c5:18:14:54:32: dd:8b:a1:9f:a7:9b:4e:e1:95:e2:25:8a:f9:98:92: 1a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3C:A7:DC:51:DB:31:E5:A8:A9:5D:5B:CE:64:E3:77:53:FE:D9:2E X509v3 Authority Key Identifier: keyid:EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:6f:41:42:77:d7:d9:8a:d6:43:f5:67:17:5a:5b:17:2a:51: c9:33:62:b8:43:fb:65:49:ce:ed:ef:d7:33:81:96:9b:e0:80: 32:49:67:89:86:ea:8c:5e:45:e6:2d:c6:2c:f4:9b:bb:ad:64: c3:12:6c:46:72:02:07:89:90:21:bc:5b:d3:68:62:26:03:49: 2b:3a:a7:4e:33:f5:dd:1f:b2:45:1d:6c:51:f4:63:45:3c:a1: 2a:68:ae:c0:f0:35:9f:ca:f1:40:75:f9:35:3a:a3:17:f8:b7: f5:1a:74:e9:43:d8:60:3d:3a:3b:63:47:aa:6f:cf:d0:8f:27: b0:bc:8e:29:9e:08:12:a7:29:cb:e1:c0:5d:62:13:12:a9:0c: bf:6c:63:a4:5c:24:c6:e6:3c:dd:02:1a:fa:4e:3a:e4:4c:47: 9c:7e:77:68:af:33:fe:3d:34:ff:fa:fd:10:69:16:81:86:f0: 4b:38:a2:54:19:96:42:9f:9d:3f:ef:c8:db:53:57:88:75:c9: 10:ec:ea:25:8f:9b:bd:9f:ee:a1:17:b6:3b:0d:11:5d:8c:db: 5d:78:1d:d1:52:03:18:ed:16:0d:b4:bf:c5:d3:45:20:83:2b: da:ca:bc:4b:b5:5e:bb:fa:16:a8:61:c5:14:3c:16:93:0d:2c: 62:69:cf:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydnlwNuXe19d2T2tt9dm5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNThmODU3MmJkZDc3ZDk4MTQxMTE4MGUyZWY5YThhODAy Yzc2YWMwHhcNMjUxMjA2MDcwMDQxWhcNMjUxMjA3MDcwMDQxWjAzMTEwLwYDVQQD EygzODNjYTdkYzUxZGIzMWU1YThhOTVkNWJjZTY0ZTM3NzUzZmVkOTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlWbZObYeolpGNUmQcckG5YUFifCD HLXw8bZOiM+6ARr8tEYWl6PaHj9pTy/+ckmynudIc1IY1PLWrJCHSTfHbWvTBuOT iGMQb9lbwGHoLdKY6mjrCC72XsVaVRwUtaD0Rw7/xF4sfdtI2QeTtN3hroICB7Zs 9lWe6TLrfa5PRTCyLQCkXms3pX1zebWDM6evvxKEiyIjTSzMUCUBhAhx+5R8+QIC Nl0lxJ6wAjlRVNqsFWlINV3uBdoX33QzqL7u2PiFMNb5fM0G9rwcDLrxThKfIt+r O8jpSRQntO6vUdU/rC0l90b6PjS1xRgUVDLdi6Gfp5tO4ZXiJYr5mJIaTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDg8p9xR2zHlqKldW85k43dT/tkuMB8GA1UdIwQY MBaAFO9Y+Fcr3XfZgUERgOLvmoqALHasMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzFqNFZ5dmRkOW1CUVJHQTR1LWFpb0FzZHF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni85YjcxMDgtZTEyZi00ZjhhLWE1ZTAt MzhlODA1ZmY0YzczLzEvNzFqNFZ5dmRkOW1CUVJHQTR1LWFpb0FzZHF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni85YjcxMDgtZTEyZi00ZjhhLWE1ZTAtMzhlODA1ZmY0Yzcz LzEvNzFqNFZ5dmRkOW1CUVJHQTR1LWFpb0FzZHF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKW9BQnfX 2YrWQ/VnF1pbFypRyTNiuEP7ZUnO7e/XM4GWm+CAMklniYbqjF5F5i3GLPSbu61k wxJsRnICB4mQIbxb02hiJgNJKzqnTjP13R+yRR1sUfRjRTyhKmiuwPA1n8rxQHX5 NTqjF/i39Rp06UPYYD06O2NHqm/P0I8nsLyOKZ4IEqcpy+HAXWITEqkMv2xjpFwk xuY83QIa+k465ExHnH53aK8z/j00//r9EGkWgYbwSziiVBmWQp+dP+/I21NXiHXJ EOzqJY+bvZ/uoRe2Ow0RXYzbXXgd0VIDGO0WDbS/xdNFIIMr2sq8S7Veu/oWqGHF FDwWkw0sYmnP5A== -----END CERTIFICATE-----Generated at Sat Dec 6 16:08:41 2025 by rpki-client