This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft File: FYi9izG5XpysnzgSjZW4UvA9V4Q.mft (raw, json) Hash identifier: QPxqTLHXjffr7thjTbnDwMhBD9+tU3vekOilek2wrkA= Subject key identifier: 87:00:4F:B3:EE:74:66:34:A9:20:A9:E4:40:94:D6:DC:8A:50:88:A9 Authority key identifier: 15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84 Certificate issuer: /CN=1588bd8b31b95e9cac9f38128d95b852f03d5784 Certificate serial: 019AF12E601E72A25C68A5B4DB13AABEC3A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:02:19 +0000 Manifest this update: Sat 06 Dec 2025 01:02:19 +0000 Manifest next update: Sun 07 Dec 2025 01:02:19 +0000 Files and hashes: 1: FYi9izG5XpysnzgSjZW4UvA9V4Q.crl (hash: F2jj3375KfZCehBd0UCrCpPFAv+jqjPxySGWeeRb6SA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:60:1e:72:a2:5c:68:a5:b4:db:13:aa:be:c3:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1588bd8b31b95e9cac9f38128d95b852f03d5784 Validity Not Before: Dec 6 01:02:19 2025 GMT Not After : Dec 7 01:02:19 2025 GMT Subject: CN=87004fb3ee746634a920a9e44094d6dc8a5088a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:40:4f:2d:35:8e:a6:ca:cc:24:be:86:33:b0: c9:a6:da:83:7d:f3:4b:75:d6:4b:5d:42:b6:e0:4e: 64:af:18:07:07:eb:13:4e:e3:b3:95:e4:08:34:44: 5d:bb:de:d2:b6:3a:39:2e:62:2b:9b:46:11:8c:b4: 89:dd:d2:3e:f2:6a:89:3b:17:e7:b0:b8:94:60:e7: dd:0f:18:ca:4e:0a:31:b0:f6:52:74:b8:1e:ba:78: 5a:4a:6c:40:96:f0:d0:c7:7a:f4:f9:be:bb:fb:36: 72:3b:9d:7c:6e:d9:cf:fc:4a:8f:2b:66:e8:32:08: 4f:c2:55:a0:c9:70:44:0b:b6:37:d5:c5:2c:00:0d: 32:6f:8a:0b:f7:6c:05:e7:a5:e8:e1:40:7b:67:c7: 26:7d:e8:c4:5a:f6:de:81:9e:f9:8f:94:68:b1:f9: 32:08:d0:4e:9a:1a:53:05:fd:42:1e:e7:78:15:94: 0c:38:bf:88:77:e5:93:f6:ee:b4:97:38:e0:78:b4: 67:6f:0f:93:c5:aa:9e:6c:ba:2c:a5:ab:0d:eb:76: 62:72:a5:d7:56:52:d6:f1:43:c2:98:38:b1:e7:ce: dc:a6:a3:f3:4e:6c:16:f7:4b:69:62:e3:49:4b:c3: 2f:5a:93:e9:e6:a4:cc:14:f7:00:23:0a:b4:13:1c: 6a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:00:4F:B3:EE:74:66:34:A9:20:A9:E4:40:94:D6:DC:8A:50:88:A9 X509v3 Authority Key Identifier: keyid:15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:40:29:43:75:88:ae:8a:03:41:4f:45:a7:72:f9:fd:af:5b: 5a:b1:29:1b:00:48:e8:40:7a:a6:f9:31:a8:43:cc:7f:19:a7: 4d:a7:ea:45:25:a9:40:bb:9c:ef:23:33:e8:5b:65:67:a4:ba: b4:30:c5:1b:6b:cc:92:2a:e6:57:1b:49:d5:e6:98:0e:0d:9d: 2a:84:32:a9:b3:fd:39:5a:8d:15:52:f9:da:ed:39:81:a6:83: 9a:da:bd:e1:e4:63:c6:58:fb:41:51:4c:7b:29:44:c3:f5:1d: a6:cd:6e:c4:5b:38:3b:28:a9:26:a2:a5:17:8d:df:3d:44:3d: 82:0e:54:fd:02:77:43:da:de:86:3e:7e:e3:b9:03:e3:4c:11: cb:49:cf:a2:14:be:6b:84:c8:ca:29:58:e3:04:5d:84:98:ba: 65:88:8c:ab:9c:9d:29:77:2b:7e:75:20:38:bf:21:8d:fc:19: 30:46:19:2a:dd:32:60:8c:45:8e:cc:31:8a:84:73:aa:79:5e: fe:a6:5f:eb:60:8f:76:81:f0:18:0f:ec:34:c7:fb:d1:4c:62: c4:85:b2:a4:c5:3d:9f:c5:32:da:f0:9d:9d:43:92:e8:e5:d1: f2:f5:8f:da:be:cd:28:77:6b:03:a8:ce:c2:87:d4:42:e3:75: 6c:32:fb:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLmAecqJcaKW02xOqvsOjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1ODhiZDhiMzFiOTVlOWNhYzlmMzgxMjhkOTViODUyZjAz ZDU3ODQwHhcNMjUxMjA2MDEwMjE5WhcNMjUxMjA3MDEwMjE5WjAzMTEwLwYDVQQD Eyg4NzAwNGZiM2VlNzQ2NjM0YTkyMGE5ZTQ0MDk0ZDZkYzhhNTA4OGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkBPLTWOpsrMJL6GM7DJptqDffNL ddZLXUK24E5krxgHB+sTTuOzleQINERdu97Stjo5LmIrm0YRjLSJ3dI+8mqJOxfn sLiUYOfdDxjKTgoxsPZSdLgeunhaSmxAlvDQx3r0+b67+zZyO518btnP/EqPK2bo MghPwlWgyXBEC7Y31cUsAA0yb4oL92wF56Xo4UB7Z8cmfejEWvbegZ75j5Rosfky CNBOmhpTBf1CHud4FZQMOL+Id+WT9u60lzjgeLRnbw+TxaqebLospasN63ZicqXX VlLW8UPCmDix587cpqPzTmwW90tpYuNJS8MvWpPp5qTMFPcAIwq0ExxqlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIcAT7PudGY0qSCp5ECU1tyKUIipMB8GA1UdIwQY MBaAFBWIvYsxuV6crJ84Eo2VuFLwPVeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRllpOWl6RzVYcHlzbnpnU2paVzRVdkE5VjRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kMWFhMmUtYjgxOS00MjFjLTg0NTYt YjVhZTgzOWYzMGUyLzEvRllpOWl6RzVYcHlzbnpnU2paVzRVdkE5VjRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9kMWFhMmUtYjgxOS00MjFjLTg0NTYtYjVhZTgzOWYzMGUy LzEvRllpOWl6RzVYcHlzbnpnU2paVzRVdkE5VjRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMEApQ3WI rooDQU9Fp3L5/a9bWrEpGwBI6EB6pvkxqEPMfxmnTafqRSWpQLuc7yMz6FtlZ6S6 tDDFG2vMkirmVxtJ1eaYDg2dKoQyqbP9OVqNFVL52u05gaaDmtq94eRjxlj7QVFM eylEw/Udps1uxFs4OyipJqKlF43fPUQ9gg5U/QJ3Q9rehj5+47kD40wRy0nPohS+ a4TIyilY4wRdhJi6ZYiMq5ydKXcrfnUgOL8hjfwZMEYZKt0yYIxFjswxioRzqnle /qZf62CPdoHwGA/sNMf70UxixIWypMU9n8Uy2vCdnUOS6OXR8vWP2r7NKHdrA6jO wofUQuN1bDL79w== -----END CERTIFICATE-----Generated at Sat Dec 6 10:21:17 2025 by rpki-client