This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft File: 4xubYpkE1DhFESeFW1L4guvhYqo.mft (raw, json) Hash identifier: 1EMIb2r3JnOeL+FVkBznWMQIb27do0BvRP+sZ56lvvU= Subject key identifier: 0F:69:7E:28:E1:2F:B3:45:CD:AC:EC:E5:1A:85:A6:81:36:B2:16:9B Authority key identifier: E3:1B:9B:62:99:04:D4:38:45:11:27:85:5B:52:F8:82:EB:E1:62:AA Certificate issuer: /CN=e31b9b629904d438451127855b52f882ebe162aa Certificate serial: 019AF276DD7BE44CFD0623906138372339AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xubYpkE1DhFESeFW1L4guvhYqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft Manifest number: 1093 Signing time: Sat 06 Dec 2025 07:01:07 +0000 Manifest this update: Sat 06 Dec 2025 07:01:07 +0000 Manifest next update: Sun 07 Dec 2025 07:01:07 +0000 Files and hashes: 1: 4xubYpkE1DhFESeFW1L4guvhYqo.crl (hash: KduxODl4ekQkFn/YGSxFyvrSntex5nxD8r0w2eh71No=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.crl rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft rsync://rpki.ripe.net/repository/DEFAULT/4xubYpkE1DhFESeFW1L4guvhYqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:dd:7b:e4:4c:fd:06:23:90:61:38:37:23:39:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e31b9b629904d438451127855b52f882ebe162aa Validity Not Before: Dec 6 07:01:07 2025 GMT Not After : Dec 7 07:01:07 2025 GMT Subject: CN=0f697e28e12fb345cdacece51a85a68136b2169b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:96:28:37:96:a9:e7:09:27:17:23:7c:e6:23: dd:0a:26:41:a9:84:7f:20:22:56:02:4a:f5:02:7d: 6b:1e:21:05:b4:3c:b1:d1:41:8c:b5:07:dd:97:bb: 77:d8:73:78:f0:55:f0:b7:bc:ef:55:e8:8a:02:45: 6a:02:fb:8e:f7:38:0f:1f:07:7e:bc:8d:a8:6f:8e: ef:57:51:4a:e2:e1:8b:2e:85:45:45:90:33:8a:55: 39:4e:86:eb:7d:c1:a7:2e:22:43:96:0f:20:86:60: 58:ff:1e:b1:84:5b:05:3d:dd:cf:8e:19:f6:7d:aa: fe:95:55:26:da:8d:f2:9b:50:0d:71:e6:b7:b2:ff: 0a:04:f6:8b:b2:c1:03:6f:ac:1d:08:14:fc:a0:9a: ee:31:8d:32:6a:28:50:e0:5d:84:7a:55:41:ea:e2: 51:a6:d6:87:4a:8d:54:fb:36:1c:42:57:67:db:c5: 78:b0:ef:d3:1f:6e:e6:ee:e7:0f:34:5b:87:76:d3: ee:e3:b6:43:4a:4e:f0:67:7f:db:50:4c:c7:85:aa: a9:95:41:c8:c1:68:c3:70:09:6c:c7:f2:78:96:9f: 9e:d0:68:e3:f0:24:e9:bd:a8:73:0c:a0:53:66:d2: 99:a4:25:c6:e6:ac:a4:38:79:96:82:aa:63:0c:46: 5e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:69:7E:28:E1:2F:B3:45:CD:AC:EC:E5:1A:85:A6:81:36:B2:16:9B X509v3 Authority Key Identifier: keyid:E3:1B:9B:62:99:04:D4:38:45:11:27:85:5B:52:F8:82:EB:E1:62:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xubYpkE1DhFESeFW1L4guvhYqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:29:8e:2c:7a:78:c1:f0:81:20:f7:9a:7e:db:f7:81:0f:40: d4:d3:60:46:d5:a1:34:ac:a0:aa:b1:95:57:4a:08:f1:70:f1: 34:bc:ba:3c:fa:89:4e:13:0f:e9:00:c0:7a:cc:c6:9b:12:ff: a8:4e:9e:ec:21:a5:c3:71:10:9e:65:5d:b5:b3:e4:8c:20:f5: 18:9f:60:64:7b:a1:f3:45:17:a0:58:34:e4:a8:6a:5e:b7:62: 10:52:7e:25:5e:5e:3a:98:f3:09:c8:ad:59:1d:a0:d9:5c:ba: 84:40:8e:7e:8e:53:30:9f:7f:fc:4b:01:db:12:b7:d0:47:ed: 50:aa:55:72:ef:65:d5:09:14:0d:3b:c0:61:a9:33:27:c6:92: 3d:58:fd:bb:08:82:9d:73:0d:1a:b3:a1:a3:e5:2a:d2:4c:58: ee:f6:fe:d0:e0:d5:ff:c1:78:e3:0f:17:f7:3f:cb:22:ab:8b: 48:43:b4:76:8a:2e:9a:73:dd:35:2e:b3:80:3e:96:59:c4:83: da:b2:be:97:47:b0:2d:3d:ec:79:b4:37:41:7e:1b:79:45:53: 88:7a:86:b7:75:52:07:c7:23:bc:80:61:dc:f9:1b:2e:e1:d4: a2:f0:4f:40:fe:bb:ea:e3:d0:9e:c2:8d:32:25:6a:49:e0:79: 48:10:f1:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydt175Ez9BiOQYTg3IzmvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzMWI5YjYyOTkwNGQ0Mzg0NTExMjc4NTViNTJmODgyZWJl MTYyYWEwHhcNMjUxMjA2MDcwMTA3WhcNMjUxMjA3MDcwMTA3WjAzMTEwLwYDVQQD EygwZjY5N2UyOGUxMmZiMzQ1Y2RhY2VjZTUxYTg1YTY4MTM2YjIxNjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5YoN5ap5wknFyN85iPdCiZBqYR/ ICJWAkr1An1rHiEFtDyx0UGMtQfdl7t32HN48FXwt7zvVeiKAkVqAvuO9zgPHwd+ vI2ob47vV1FK4uGLLoVFRZAzilU5TobrfcGnLiJDlg8ghmBY/x6xhFsFPd3Pjhn2 far+lVUm2o3ym1ANcea3sv8KBPaLssEDb6wdCBT8oJruMY0yaihQ4F2EelVB6uJR ptaHSo1U+zYcQldn28V4sO/TH27m7ucPNFuHdtPu47ZDSk7wZ3/bUEzHhaqplUHI wWjDcAlsx/J4lp+e0Gjj8CTpvahzDKBTZtKZpCXG5qykOHmWgqpjDEZe+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA9pfijhL7NFzazs5RqFpoE2shabMB8GA1UdIwQY MBaAFOMbm2KZBNQ4RREnhVtS+ILr4WKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHh1Yllwa0UxRGhGRVNlRlcxTDRndXZoWXFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kZmVjYWEtMDUwZC00MDliLTg4N2Ut ZGVkN2FkNWE4ODcwLzEvNHh1Yllwa0UxRGhGRVNlRlcxTDRndXZoWXFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9kZmVjYWEtMDUwZC00MDliLTg4N2UtZGVkN2FkNWE4ODcw LzEvNHh1Yllwa0UxRGhGRVNlRlcxTDRndXZoWXFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdCmOLHp4 wfCBIPeaftv3gQ9A1NNgRtWhNKygqrGVV0oI8XDxNLy6PPqJThMP6QDAeszGmxL/ qE6e7CGlw3EQnmVdtbPkjCD1GJ9gZHuh80UXoFg05KhqXrdiEFJ+JV5eOpjzCcit WR2g2Vy6hECOfo5TMJ9//EsB2xK30EftUKpVcu9l1QkUDTvAYakzJ8aSPVj9uwiC nXMNGrOho+Uq0kxY7vb+0ODV/8F44w8X9z/LIquLSEO0dooumnPdNS6zgD6WWcSD 2rK+l0ewLT3sebQ3QX4beUVTiHqGt3VSB8cjvIBh3PkbLuHUovBPQP676uPQnsKN MiVqSeB5SBDx3g== -----END CERTIFICATE-----Generated at Sat Dec 6 14:47:01 2025 by rpki-client