This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft File: CFr4G5nr9ILzxrU1Hiniii4gs5g.mft (raw, json) Hash identifier: v3m8X8lwwzWBa8I+9/YmZvkdmQebTwJZUnrzFq0fX5w= Subject key identifier: A3:4D:7F:EF:0E:72:80:5B:AF:40:9C:99:BC:8D:85:E9:8A:B3:BD:92 Authority key identifier: 08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98 Certificate issuer: /CN=085af81b99ebf482f3c6b5351e29e28a2e20b398 Certificate serial: 019AF208F99F84B6ADFCEE1F41C5B66916F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft Manifest number: 0510 Signing time: Sat 06 Dec 2025 05:01:05 +0000 Manifest this update: Sat 06 Dec 2025 05:01:05 +0000 Manifest next update: Sun 07 Dec 2025 05:01:05 +0000 Files and hashes: 1: CFr4G5nr9ILzxrU1Hiniii4gs5g.crl (hash: ki59lsRgo0ZZ/6WHY6tQRuI233CofD8JgLfEFR5C5G8=) 2: UmoMMcgLYQ1NME06W-RaoSwOLvs.roa (hash: DXndsPFPDd7x23rCZc6g3GNT4ZixvQ1GmrG9rBzETuc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:f9:9f:84:b6:ad:fc:ee:1f:41:c5:b6:69:16:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=085af81b99ebf482f3c6b5351e29e28a2e20b398 Validity Not Before: Dec 6 05:01:05 2025 GMT Not After : Dec 7 05:01:05 2025 GMT Subject: CN=a34d7fef0e72805baf409c99bc8d85e98ab3bd92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d0:0a:86:2c:b3:35:bb:1f:42:4d:4d:ff:e8: 72:89:51:74:49:cb:3b:4f:3b:0c:3f:6a:0a:f6:cd: 8a:88:23:90:d1:49:f6:6d:8c:2e:4f:90:3c:5b:93: 17:e6:25:84:a6:16:b3:0b:fc:82:69:38:59:af:dd: 8e:ef:5f:a5:e5:dd:23:8e:0d:af:05:65:f0:e0:98: 73:33:8f:c4:eb:49:55:be:10:8c:d2:b0:d3:b2:8e: 2f:c7:aa:58:a8:f8:39:2a:46:4d:e5:ab:3d:39:6d: 37:cd:fe:65:6e:18:23:a8:96:12:49:2f:ff:27:f1: e5:21:7b:4b:db:1c:cd:c2:b4:27:ab:6d:af:76:fd: 48:7f:d4:e3:93:59:2a:98:5c:40:55:85:4b:4a:62: d7:b9:be:83:62:95:a2:3e:46:6d:d2:a7:c9:4e:08: 5d:2e:0c:ef:de:e6:e8:66:af:99:c8:cb:74:0e:8d: 11:b8:46:f4:97:e7:23:45:20:d1:27:eb:a8:f2:b3: 23:b0:82:1a:04:bf:2d:26:16:0d:08:a7:dd:4c:b4: ed:7a:af:37:94:d9:a1:bb:03:dc:7a:d0:ec:fd:64: 22:dd:ae:f1:4e:c2:36:69:04:92:8f:52:07:dc:73: a7:80:a0:10:6f:67:39:a4:78:26:41:b3:2e:c9:21: 96:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:4D:7F:EF:0E:72:80:5B:AF:40:9C:99:BC:8D:85:E9:8A:B3:BD:92 X509v3 Authority Key Identifier: keyid:08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:9a:9f:f4:1b:8d:5a:8d:da:ef:f3:b5:b1:9f:4e:ca:9b:89: 89:68:fc:78:87:9f:65:17:33:44:ff:f8:95:27:34:7a:db:89: 39:bd:dc:bd:f4:9c:f5:1f:34:e7:5e:a6:c0:96:72:73:c5:e7: b2:c4:19:f6:02:4b:e6:ce:a2:73:ed:e2:a1:77:19:b0:fe:fd: 6b:de:e5:89:7a:e7:9e:85:16:4a:90:50:c5:41:92:14:1f:43: c9:50:2e:70:92:14:8b:8b:e0:56:3e:d6:3b:9c:b2:b4:78:16: 97:35:7e:95:d7:40:45:12:c4:d0:b8:01:25:6f:a4:6b:77:f0: 41:cd:0a:b9:7f:0a:ca:da:9f:6c:0d:35:5b:c4:4a:e9:f8:61: 85:1b:01:78:e3:38:23:1a:03:4c:31:5f:e7:3a:aa:04:4c:5a: ad:8f:e0:e9:75:c4:93:2b:5e:87:60:55:09:27:da:3b:69:b2: 55:36:c7:10:90:94:59:0a:b3:0f:68:19:a9:b7:6b:5d:2a:32: 8a:56:91:7e:0e:9b:f7:96:59:d6:4e:da:82:08:fa:6d:39:af: 0a:98:23:42:3d:10:f3:b6:24:68:a3:33:0c:27:4e:99:3f:0f: bf:f4:52:21:48:97:d4:f1:ab:02:55:7b:89:93:3f:b0:7e:a1: 74:a2:bc:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCPmfhLat/O4fQcW2aRbxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4NWFmODFiOTllYmY0ODJmM2M2YjUzNTFlMjllMjhhMmUy MGIzOTgwHhcNMjUxMjA2MDUwMTA1WhcNMjUxMjA3MDUwMTA1WjAzMTEwLwYDVQQD EyhhMzRkN2ZlZjBlNzI4MDViYWY0MDljOTliYzhkODVlOThhYjNiZDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNAKhiyzNbsfQk1N/+hyiVF0Scs7 TzsMP2oK9s2KiCOQ0Un2bYwuT5A8W5MX5iWEphazC/yCaThZr92O71+l5d0jjg2v BWXw4JhzM4/E60lVvhCM0rDTso4vx6pYqPg5KkZN5as9OW03zf5lbhgjqJYSSS// J/HlIXtL2xzNwrQnq22vdv1If9Tjk1kqmFxAVYVLSmLXub6DYpWiPkZt0qfJTghd Lgzv3uboZq+ZyMt0Do0RuEb0l+cjRSDRJ+uo8rMjsIIaBL8tJhYNCKfdTLTteq83 lNmhuwPcetDs/WQi3a7xTsI2aQSSj1IH3HOngKAQb2c5pHgmQbMuySGWXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKNNf+8OcoBbr0CcmbyNhemKs72SMB8GA1UdIwQY MBaAFAha+BuZ6/SC88a1NR4p4oouILOYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0ZyNEc1bnI5SUx6eHJVMUhpbmlpaTRnczVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wODQwZTktNzE5OS00ZTAzLTg0ZmQt YzI4ZDE0YzdiNzMxLzEvQ0ZyNEc1bnI5SUx6eHJVMUhpbmlpaTRnczVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8wODQwZTktNzE5OS00ZTAzLTg0ZmQtYzI4ZDE0YzdiNzMx LzEvQ0ZyNEc1bnI5SUx6eHJVMUhpbmlpaTRnczVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ5qf9BuN Wo3a7/O1sZ9OypuJiWj8eIefZRczRP/4lSc0etuJOb3cvfSc9R80516mwJZyc8Xn ssQZ9gJL5s6ic+3ioXcZsP79a97liXrnnoUWSpBQxUGSFB9DyVAucJIUi4vgVj7W O5yytHgWlzV+lddARRLE0LgBJW+ka3fwQc0KuX8KytqfbA01W8RK6fhhhRsBeOM4 IxoDTDFf5zqqBExarY/g6XXEkyteh2BVCSfaO2myVTbHEJCUWQqzD2gZqbdrXSoy ilaRfg6b95ZZ1k7aggj6bTmvCpgjQj0Q87YkaKMzDCdOmT8Pv/RSIUiX1PGrAlV7 iZM/sH6hdKK8/A== -----END CERTIFICATE-----Generated at Sat Dec 6 08:27:26 2025 by rpki-client