This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft File: cUt8OIAz4WI_xti-t69cOUJRkds.mft (raw, json) Hash identifier: gd8Z517U8zfhUkuvlyc23A3yzdm9+oIpnave7a4GGyE= Subject key identifier: 47:B4:24:B3:15:91:79:55:97:57:8F:C7:9E:04:1A:B6:42:0A:22:80 Authority key identifier: 71:4B:7C:38:80:33:E1:62:3F:C6:D8:BE:B7:AF:5C:39:42:51:91:DB Certificate issuer: /CN=714b7c388033e1623fc6d8beb7af5c39425191db Certificate serial: 019AF12DA3E7A348B81E661AEDAB3FA6438B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft Manifest number: 0918 Signing time: Sat 06 Dec 2025 01:01:31 +0000 Manifest this update: Sat 06 Dec 2025 01:01:31 +0000 Manifest next update: Sun 07 Dec 2025 01:01:31 +0000 Files and hashes: 1: cUt8OIAz4WI_xti-t69cOUJRkds.crl (hash: X98Z8oG87+kciZTnfkxiEHFHEq/Ex9DDtkR7e4VKIN0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:a3:e7:a3:48:b8:1e:66:1a:ed:ab:3f:a6:43:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=714b7c388033e1623fc6d8beb7af5c39425191db Validity Not Before: Dec 6 01:01:31 2025 GMT Not After : Dec 7 01:01:31 2025 GMT Subject: CN=47b424b31591795597578fc79e041ab6420a2280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8b:3b:32:a0:c2:33:f6:65:94:0a:4c:e4:35: d5:11:b3:5f:4b:6b:51:a7:ac:bf:b3:0a:db:74:4f: bb:66:09:fc:c3:c1:18:13:8f:65:d3:f7:56:1d:c9: 37:06:57:5c:04:d8:8c:3b:ee:13:b9:ff:6d:0f:bc: 98:75:bd:81:2e:3c:0d:57:20:40:d7:e1:e5:4e:3f: 46:be:fe:fa:9e:09:52:23:c7:bf:33:6f:63:15:ab: a5:86:7f:25:46:b1:81:e3:0d:86:37:ca:74:7b:76: 66:2b:4b:26:2f:0b:18:6f:09:2e:5e:ab:98:6e:fc: e8:df:99:80:ec:7f:a8:ac:d5:c8:cd:17:e7:e5:7e: 88:93:93:23:33:0b:64:48:36:1e:8e:97:02:12:66: 72:a2:47:0d:93:16:80:6f:9b:2f:01:75:3b:e4:58: 16:59:2e:de:5f:5c:bc:74:68:c4:b3:75:77:75:d7: ac:a6:29:b4:0f:c5:38:9f:80:3d:e5:44:0a:90:21: 9e:3f:88:c3:47:e3:cb:c7:7e:08:ce:93:ef:df:38: bc:ad:b3:1f:07:33:f5:a5:1b:fa:24:75:c7:8e:1a: 12:c9:99:b9:cd:00:f0:de:ae:5e:70:30:d0:31:96: e4:e7:22:43:54:0e:81:02:a1:2d:dc:10:4a:95:4d: 71:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B4:24:B3:15:91:79:55:97:57:8F:C7:9E:04:1A:B6:42:0A:22:80 X509v3 Authority Key Identifier: keyid:71:4B:7C:38:80:33:E1:62:3F:C6:D8:BE:B7:AF:5C:39:42:51:91:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:2f:8c:d8:d6:6b:86:20:ef:78:06:6a:a0:42:28:d2:97:0a: 2f:ed:51:8a:af:00:87:eb:99:fe:a3:8e:40:45:f2:c9:41:6a: 7e:8c:c7:df:9c:d6:48:26:0b:e8:39:18:67:79:59:02:c0:e9: c7:0b:24:50:5c:dc:33:d7:c1:74:2a:0a:6d:31:1a:09:b4:03: 2b:c4:a8:b7:1e:3a:9c:83:88:ab:45:8b:9d:58:a5:a8:ec:0f: 54:b2:24:f6:10:97:d1:1d:d4:42:b3:64:08:1b:b2:23:5e:cd: c0:b2:b4:40:32:6e:99:4a:95:dd:b9:21:bd:cd:5d:0b:c9:e1: 67:81:a0:f4:4b:6a:14:fc:8d:dc:e7:89:9b:21:a4:5b:c6:29: 18:26:3a:b7:28:87:d6:bb:7c:3f:95:1a:6e:ed:a2:d2:e0:e9: 40:0a:d5:1d:35:b3:fe:42:be:15:a9:cb:92:bf:ef:99:d8:41: cb:c1:04:3f:1c:c8:8e:63:1e:83:5e:27:13:26:37:a3:51:fe: ae:41:cb:44:aa:af:ec:2b:b5:82:df:ee:ed:60:37:70:7d:fc: dd:af:b0:d1:05:bd:92:52:2c:b6:e9:6b:51:c8:fb:3f:e4:77: ba:4f:da:2d:e0:29:8b:21:9d:8d:1f:7c:fe:a2:f8:e0:76:38: b1:b1:75:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLaPno0i4HmYa7as/pkOLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxNGI3YzM4ODAzM2UxNjIzZmM2ZDhiZWI3YWY1YzM5NDI1 MTkxZGIwHhcNMjUxMjA2MDEwMTMxWhcNMjUxMjA3MDEwMTMxWjAzMTEwLwYDVQQD Eyg0N2I0MjRiMzE1OTE3OTU1OTc1NzhmYzc5ZTA0MWFiNjQyMGEyMjgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIs7MqDCM/ZllApM5DXVEbNfS2tR p6y/swrbdE+7Zgn8w8EYE49l0/dWHck3BldcBNiMO+4Tuf9tD7yYdb2BLjwNVyBA 1+HlTj9Gvv76nglSI8e/M29jFaulhn8lRrGB4w2GN8p0e3ZmK0smLwsYbwkuXquY bvzo35mA7H+orNXIzRfn5X6Ik5MjMwtkSDYejpcCEmZyokcNkxaAb5svAXU75FgW WS7eX1y8dGjEs3V3ddespim0D8U4n4A95UQKkCGeP4jDR+PLx34IzpPv3zi8rbMf BzP1pRv6JHXHjhoSyZm5zQDw3q5ecDDQMZbk5yJDVA6BAqEt3BBKlU1xowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEe0JLMVkXlVl1ePx54EGrZCCiKAMB8GA1UdIwQY MBaAFHFLfDiAM+FiP8bYvrevXDlCUZHbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1V0OE9JQXo0V0lfeHRpLXQ2OWNPVUpSa2RzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9lMDU2NGQtOTQ1My00ZGMyLWFjYTIt YTAzOGJlMTViOTdiLzEvY1V0OE9JQXo0V0lfeHRpLXQ2OWNPVUpSa2RzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9lMDU2NGQtOTQ1My00ZGMyLWFjYTItYTAzOGJlMTViOTdi LzEvY1V0OE9JQXo0V0lfeHRpLXQ2OWNPVUpSa2RzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFS+M2NZr hiDveAZqoEIo0pcKL+1Riq8Ah+uZ/qOOQEXyyUFqfozH35zWSCYL6DkYZ3lZAsDp xwskUFzcM9fBdCoKbTEaCbQDK8Sotx46nIOIq0WLnVilqOwPVLIk9hCX0R3UQrNk CBuyI17NwLK0QDJumUqV3bkhvc1dC8nhZ4Gg9EtqFPyN3OeJmyGkW8YpGCY6tyiH 1rt8P5Uabu2i0uDpQArVHTWz/kK+FanLkr/vmdhBy8EEPxzIjmMeg14nEyY3o1H+ rkHLRKqv7Cu1gt/u7WA3cH383a+w0QW9klIstulrUcj7P+R3uk/aLeApiyGdjR98 /qL44HY4sbF1eg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:00:31 2025 by rpki-client