This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft File: rARWSrE5dm8d7mSLNaChi702IQk.mft (raw, json) Hash identifier: AvSDwznbswOafdQBCt68XenlFx/QNjqhZQ75yQdTr3k= Subject key identifier: 9B:17:B2:2E:D2:EC:5E:D4:CC:55:25:FF:0D:59:61:FA:24:5B:6D:09 Authority key identifier: AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09 Certificate issuer: /CN=ac04564ab139766f1dee648b35a0a18bbd362109 Certificate serial: 019AF164855CB25FB3F64A70CA4E961FBB52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 02:01:27 +0000 Manifest this update: Sat 06 Dec 2025 02:01:27 +0000 Manifest next update: Sun 07 Dec 2025 02:01:27 +0000 Files and hashes: 1: rARWSrE5dm8d7mSLNaChi702IQk.crl (hash: PME3hRucTDulvrg9WFoLOeIkbmwxwHVBJ79calEJOys=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:85:5c:b2:5f:b3:f6:4a:70:ca:4e:96:1f:bb:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac04564ab139766f1dee648b35a0a18bbd362109 Validity Not Before: Dec 6 02:01:27 2025 GMT Not After : Dec 7 02:01:27 2025 GMT Subject: CN=9b17b22ed2ec5ed4cc5525ff0d5961fa245b6d09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:63:93:23:d0:2e:f9:00:3d:69:f5:1e:5e:ba: 31:eb:f2:70:32:34:37:60:e1:5a:56:86:ed:38:87: b0:3d:98:2d:cd:0a:91:24:ba:26:2b:7a:ed:e8:d8: 14:f1:9a:88:b8:6c:75:9a:85:77:24:56:4a:3b:17: 89:db:1f:dc:6d:7d:cc:07:a2:74:d1:9b:10:20:23: 09:fa:4e:10:9f:fc:11:3d:68:7c:94:18:38:19:07: d1:5b:b7:ca:d2:e7:2e:79:3e:5a:44:31:40:11:a0: 4b:a3:bd:8d:b3:68:03:b5:7c:f9:a1:0e:22:0c:09: 4e:90:26:39:10:ff:23:fe:ba:52:ae:b5:80:8a:97: 9b:7d:9d:05:94:d9:a7:8a:31:3e:e2:83:37:13:c9: 12:3c:39:fa:18:bc:c5:fb:45:8d:b7:e5:c9:84:a0: 0b:a7:a2:d9:68:29:04:45:2b:b1:39:1d:eb:fc:3e: 70:3c:c1:f2:35:a5:1f:22:92:ca:e0:50:35:8c:ba: 68:b2:d3:5d:6e:97:a3:69:f3:fd:d1:d8:2b:a3:3d: 5e:fe:83:95:00:2e:dd:4d:89:d8:2b:cb:40:2f:9e: a9:b8:c3:01:0b:2d:9f:e5:7b:fc:64:c2:8f:bd:52: 12:3d:3e:6d:62:ad:ef:8f:8b:09:69:74:e6:c8:e9: 5a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:17:B2:2E:D2:EC:5E:D4:CC:55:25:FF:0D:59:61:FA:24:5B:6D:09 X509v3 Authority Key Identifier: keyid:AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:aa:03:f6:21:30:0a:49:0f:1e:d1:5d:db:75:a8:9e:3e:dd: d9:8f:76:97:16:1d:71:9e:62:bc:da:09:45:f9:d4:35:e9:98: 13:e2:c8:69:14:f3:d8:3c:a7:82:93:6e:b6:0e:2d:1b:64:e5: f2:b8:bf:41:78:85:cd:7e:4f:76:d8:9f:de:b2:3a:bd:ea:ac: 92:1b:53:b9:bc:ab:ab:4a:52:02:8f:d6:95:dd:31:a0:af:69: 81:bb:46:e6:ca:74:fa:57:a6:dc:9c:b7:8e:ec:ca:b0:de:24: 3e:bb:69:b7:df:08:65:7d:60:85:6c:e8:cc:38:30:af:2e:b1: d2:bb:4f:80:22:70:7b:5d:6a:43:e7:1d:1f:76:b3:17:65:9d: dc:6f:0f:03:77:f4:7c:79:49:ec:42:0b:19:1d:a2:9b:3d:bc: 6c:b5:66:2a:8c:80:02:68:e7:8e:4a:6d:e9:a0:16:30:dc:75: 5f:cb:8c:70:89:8a:70:5a:21:b7:09:45:93:1a:8a:f3:33:0d: ca:e1:a5:aa:d2:20:a8:3b:78:ed:4d:52:c0:5f:a9:18:51:5a: 84:da:f4:0c:72:9c:10:44:13:c5:73:d8:f5:f8:98:7f:a7:10: ef:1c:f1:b7:05:ed:22:77:c3:03:53:87:52:05:e0:41:4d:f9: f7:56:46:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZIVcsl+z9kpwyk6WH7tSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjMDQ1NjRhYjEzOTc2NmYxZGVlNjQ4YjM1YTBhMThiYmQz NjIxMDkwHhcNMjUxMjA2MDIwMTI3WhcNMjUxMjA3MDIwMTI3WjAzMTEwLwYDVQQD Eyg5YjE3YjIyZWQyZWM1ZWQ0Y2M1NTI1ZmYwZDU5NjFmYTI0NWI2ZDA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmOTI9Au+QA9afUeXrox6/JwMjQ3 YOFaVobtOIewPZgtzQqRJLomK3rt6NgU8ZqIuGx1moV3JFZKOxeJ2x/cbX3MB6J0 0ZsQICMJ+k4Qn/wRPWh8lBg4GQfRW7fK0ucueT5aRDFAEaBLo72Ns2gDtXz5oQ4i DAlOkCY5EP8j/rpSrrWAipebfZ0FlNmnijE+4oM3E8kSPDn6GLzF+0WNt+XJhKAL p6LZaCkERSuxOR3r/D5wPMHyNaUfIpLK4FA1jLpostNdbpejafP90dgroz1e/oOV AC7dTYnYK8tAL56puMMBCy2f5Xv8ZMKPvVISPT5tYq3vj4sJaXTmyOla2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJsXsi7S7F7UzFUl/w1ZYfokW20JMB8GA1UdIwQY MBaAFKwEVkqxOXZvHe5kizWgoYu9NiEJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckFSV1NyRTVkbThkN21TTE5hQ2hpNzAySVFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80NjY4ZDEtMjJhNC00MzJlLTgxZmMt Mjg0ZTliY2Y4MmM1LzEvckFSV1NyRTVkbThkN21TTE5hQ2hpNzAySVFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi80NjY4ZDEtMjJhNC00MzJlLTgxZmMtMjg0ZTliY2Y4MmM1 LzEvckFSV1NyRTVkbThkN21TTE5hQ2hpNzAySVFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADKoD9iEw CkkPHtFd23Wonj7d2Y92lxYdcZ5ivNoJRfnUNemYE+LIaRTz2DyngpNutg4tG2Tl 8ri/QXiFzX5Pdtif3rI6veqskhtTubyrq0pSAo/Wld0xoK9pgbtG5sp0+lem3Jy3 juzKsN4kPrtpt98IZX1ghWzozDgwry6x0rtPgCJwe11qQ+cdH3azF2Wd3G8PA3f0 fHlJ7EILGR2imz28bLVmKoyAAmjnjkpt6aAWMNx1X8uMcImKcFohtwlFkxqK8zMN yuGlqtIgqDt47U1SwF+pGFFahNr0DHKcEEQTxXPY9fiYf6cQ7xzxtwXtInfDA1OH UgXgQU3591ZGTw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:52 2025 by rpki-client