This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft File: dNUnZVf32kEAET2Fc5VmSBVA5hw.mft (raw, json) Hash identifier: NLVDlF5SFmURkbNkhhD4YJpNHok9m9ROlGOIo7+BLyA= Subject key identifier: 66:34:D6:E7:E0:B6:25:D8:2B:2F:9A:3F:83:19:19:D5:8F:C6:B8:3F Authority key identifier: 74:D5:27:65:57:F7:DA:41:00:11:3D:85:73:95:66:48:15:40:E6:1C Certificate issuer: /CN=74d5276557f7da4100113d85739566481540e61c Certificate serial: 019AF3894E3E2A53ED11F2EA32E759D8DAB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNUnZVf32kEAET2Fc5VmSBVA5hw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft Manifest number: 0A14 Signing time: Sat 06 Dec 2025 12:00:53 +0000 Manifest this update: Sat 06 Dec 2025 12:00:53 +0000 Manifest next update: Sun 07 Dec 2025 12:00:53 +0000 Files and hashes: 1: dNUnZVf32kEAET2Fc5VmSBVA5hw.crl (hash: nvdYYgdpd5P6noaVGoedmrnTo39vmPjdapDhnwamu1c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft rsync://rpki.ripe.net/repository/DEFAULT/dNUnZVf32kEAET2Fc5VmSBVA5hw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:4e:3e:2a:53:ed:11:f2:ea:32:e7:59:d8:da:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74d5276557f7da4100113d85739566481540e61c Validity Not Before: Dec 6 12:00:53 2025 GMT Not After : Dec 7 12:00:53 2025 GMT Subject: CN=6634d6e7e0b625d82b2f9a3f831919d58fc6b83f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:53:2f:c0:94:87:b4:2c:cd:ee:48:c7:c8:3a: 9b:07:72:2f:86:ff:5a:20:9c:ab:a3:69:c1:11:7c: 21:c9:e9:ce:92:dd:65:8f:f2:74:4e:4b:33:06:f1: d9:71:75:68:f3:b5:e8:0d:bf:1a:b6:64:5e:99:d1: d2:92:7a:3b:a3:b2:16:9c:53:24:3b:5d:69:3a:c8: a2:90:f7:8d:ef:7d:6d:b8:38:82:6a:5c:8a:b8:e3: 96:27:30:bc:6c:fb:94:c0:5b:d5:ca:29:08:66:2c: 96:77:c2:8b:d6:56:26:31:9e:b8:e1:52:35:3f:d1: e7:4e:88:82:cb:85:26:f5:d3:de:33:a8:00:8a:07: 0a:1d:79:fc:f7:88:b7:44:5e:68:bb:6c:11:b9:d5: ce:c8:4a:96:79:79:47:11:06:d4:80:d3:97:c6:d2: e1:7f:a5:31:29:15:09:56:26:6c:12:6e:21:e8:f2: 15:a6:0b:3f:8e:10:17:6b:4e:6b:15:c0:7a:ef:fc: 9c:ad:39:78:17:c4:89:c1:49:35:e4:c9:39:e2:76: bb:87:d1:02:ff:be:ba:1e:df:df:ce:45:25:6b:56: 2f:ef:62:be:86:c8:43:1b:03:0e:83:6e:7b:df:81: d9:36:69:47:50:d9:99:62:d5:a8:26:8f:48:5d:ea: 4c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:34:D6:E7:E0:B6:25:D8:2B:2F:9A:3F:83:19:19:D5:8F:C6:B8:3F X509v3 Authority Key Identifier: keyid:74:D5:27:65:57:F7:DA:41:00:11:3D:85:73:95:66:48:15:40:E6:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNUnZVf32kEAET2Fc5VmSBVA5hw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:f7:ad:f1:b4:a7:5e:06:16:bb:01:ce:24:09:b2:2b:13:d8: c0:d8:57:64:8a:db:84:85:61:b0:03:35:1f:d8:e7:c2:c2:d9: 44:36:4c:21:c1:69:49:eb:66:ab:9f:97:23:bc:e0:b3:46:cd: a1:d4:84:24:18:7d:49:d3:6c:a9:2c:96:c7:43:09:80:8b:15: 41:e2:1f:25:c3:ee:0b:ee:18:c1:3b:96:7f:e4:4c:36:42:9e: 4a:9d:96:79:87:72:8a:30:0f:6c:c3:da:99:a2:e1:47:d6:7d: 02:25:c1:38:41:15:b6:c4:c5:ba:76:aa:22:2b:a8:5b:b7:8c: 15:b2:96:8a:c7:b3:e7:8b:26:60:34:77:8d:75:cb:64:bf:bd: e1:3d:24:d2:8e:c0:30:6f:e3:26:a0:58:19:e9:a6:f0:ab:f6: 46:76:61:3c:f4:18:bf:20:e3:59:6c:fc:fc:45:4d:ca:28:a2: 7a:50:8b:ab:2e:60:05:1e:8f:34:a4:f7:40:68:47:23:b4:71: 44:d0:06:cb:d7:43:1d:2b:0e:c6:fd:4a:73:0a:24:bf:39:07: f1:a1:f8:84:c5:9f:98:fe:af:4f:f4:ce:d9:a8:7f:ac:b9:83: b6:61:a8:f8:ec:c5:84:08:55:05:b0:cc:ca:f6:e2:dd:f0:c6: e9:34:0f:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziU4+KlPtEfLqMudZ2NqyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZDUyNzY1NTdmN2RhNDEwMDExM2Q4NTczOTU2NjQ4MTU0 MGU2MWMwHhcNMjUxMjA2MTIwMDUzWhcNMjUxMjA3MTIwMDUzWjAzMTEwLwYDVQQD Eyg2NjM0ZDZlN2UwYjYyNWQ4MmIyZjlhM2Y4MzE5MTlkNThmYzZiODNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FMvwJSHtCzN7kjHyDqbB3Ivhv9a IJyro2nBEXwhyenOkt1lj/J0TkszBvHZcXVo87XoDb8atmRemdHSkno7o7IWnFMk O11pOsiikPeN731tuDiCalyKuOOWJzC8bPuUwFvVyikIZiyWd8KL1lYmMZ644VI1 P9HnToiCy4Um9dPeM6gAigcKHXn894i3RF5ou2wRudXOyEqWeXlHEQbUgNOXxtLh f6UxKRUJViZsEm4h6PIVpgs/jhAXa05rFcB67/ycrTl4F8SJwUk15Mk54na7h9EC /766Ht/fzkUla1Yv72K+hshDGwMOg25734HZNmlHUNmZYtWoJo9IXepMWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGY01ufgtiXYKy+aP4MZGdWPxrg/MB8GA1UdIwQY MBaAFHTVJ2VX99pBABE9hXOVZkgVQOYcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE5VblpWZjMya0VBRVQyRmM1Vm1TQlZBNWh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9lNWFmMTYtZGRmZC00ZjNkLTk2YTYt NWM1YTc4YmIyYjhkLzEvZE5VblpWZjMya0VBRVQyRmM1Vm1TQlZBNWh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9lNWFmMTYtZGRmZC00ZjNkLTk2YTYtNWM1YTc4YmIyYjhk LzEvZE5VblpWZjMya0VBRVQyRmM1Vm1TQlZBNWh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZvet8bSn XgYWuwHOJAmyKxPYwNhXZIrbhIVhsAM1H9jnwsLZRDZMIcFpSetmq5+XI7zgs0bN odSEJBh9SdNsqSyWx0MJgIsVQeIfJcPuC+4YwTuWf+RMNkKeSp2WeYdyijAPbMPa maLhR9Z9AiXBOEEVtsTFunaqIiuoW7eMFbKWisez54smYDR3jXXLZL+94T0k0o7A MG/jJqBYGemm8Kv2RnZhPPQYvyDjWWz8/EVNyiiielCLqy5gBR6PNKT3QGhHI7Rx RNAGy9dDHSsOxv1KcwokvzkH8aH4hMWfmP6vT/TO2ah/rLmDtmGo+OzFhAhVBbDM yvbi3fDG6TQPvg== -----END CERTIFICATE-----Generated at Sat Dec 6 21:41:34 2025 by rpki-client