This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft File: 68Xg5EXZRzFUru10Rpss-6NmTjU.mft (raw, json) Hash identifier: nhmv/xrMszuMZWGYwGIZsbeUNuph3Frb9Fl5wtGZBiI= Subject key identifier: F0:AE:F8:70:19:56:51:55:B2:E3:1A:56:89:F5:2E:76:D2:C6:6B:F4 Authority key identifier: EB:C5:E0:E4:45:D9:47:31:54:AE:ED:74:46:9B:2C:FB:A3:66:4E:35 Certificate issuer: /CN=ebc5e0e445d9473154aeed74469b2cfba3664e35 Certificate serial: 019AF12D3FB929FF9A36043E4E00D3C4D233 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68Xg5EXZRzFUru10Rpss-6NmTjU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft Manifest number: 0AA5 Signing time: Sat 06 Dec 2025 01:01:05 +0000 Manifest this update: Sat 06 Dec 2025 01:01:05 +0000 Manifest next update: Sun 07 Dec 2025 01:01:05 +0000 Files and hashes: 1: 68Xg5EXZRzFUru10Rpss-6NmTjU.crl (hash: 3aYV488bdfly77b8xwqw2nsz8A3HN9gaktjW7aobLPQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.crl rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft rsync://rpki.ripe.net/repository/DEFAULT/68Xg5EXZRzFUru10Rpss-6NmTjU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:3f:b9:29:ff:9a:36:04:3e:4e:00:d3:c4:d2:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ebc5e0e445d9473154aeed74469b2cfba3664e35 Validity Not Before: Dec 6 01:01:05 2025 GMT Not After : Dec 7 01:01:05 2025 GMT Subject: CN=f0aef87019565155b2e31a5689f52e76d2c66bf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4a:5d:fc:90:40:c2:85:de:2f:17:17:96:bf: 3f:5f:37:ae:50:8f:19:a1:79:f1:72:f7:8f:69:f9: 99:62:eb:eb:cc:fb:e2:aa:e4:9c:f6:cf:69:0d:3d: ee:97:62:8a:11:cf:2f:bf:88:03:bc:70:76:3b:e8: b5:32:66:e3:44:8c:df:4c:78:44:ca:63:fc:06:99: 04:20:c0:bf:bd:f5:0c:8e:11:0a:c9:e2:68:f9:fb: 7e:42:b3:4d:26:cf:dc:a5:f0:5d:09:97:4d:0b:68: 62:72:31:1d:71:a3:37:39:54:64:a4:ce:e5:54:11: bd:85:33:76:90:75:67:12:61:76:93:9c:63:21:b9: 79:ac:d4:8c:7d:f6:8d:b1:fe:8c:85:84:96:fe:83: f7:89:84:92:08:a4:2a:e1:9d:0b:43:fc:85:d9:a2: ac:d9:ee:75:73:a7:c1:e5:f2:87:f0:85:e4:7d:14: 98:33:22:9c:0f:05:d8:f8:a8:9d:01:3a:4f:a3:c5: c6:d4:5e:2f:68:76:ef:77:17:94:39:5c:6d:fe:f1: 71:7b:5e:3d:fe:64:bd:31:dd:e6:af:06:57:64:8a: 84:94:e6:0e:82:b5:0d:44:35:8e:8b:62:27:21:49: 75:97:ab:b6:7e:1e:02:39:f7:7d:bb:7f:a2:3a:0d: 53:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:AE:F8:70:19:56:51:55:B2:E3:1A:56:89:F5:2E:76:D2:C6:6B:F4 X509v3 Authority Key Identifier: keyid:EB:C5:E0:E4:45:D9:47:31:54:AE:ED:74:46:9B:2C:FB:A3:66:4E:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68Xg5EXZRzFUru10Rpss-6NmTjU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:ab:4b:b5:c3:19:fa:03:24:8f:45:e3:05:e7:b4:df:d4:34: 6e:87:10:0a:69:94:57:59:fc:99:8f:16:42:1c:05:01:c0:9c: d3:1f:de:23:ed:c9:3b:79:a4:28:13:96:bf:c1:f2:47:a2:3b: e2:d5:98:b9:9d:d3:26:10:09:2c:5e:61:a4:78:1d:03:7f:08: 53:4d:2c:00:85:6b:49:d8:2b:ef:c6:63:07:72:d9:ff:28:d1: 19:1a:f6:04:26:b7:ab:54:ca:a2:57:c9:fd:2c:90:be:37:08: 2e:be:ea:37:44:b6:5e:02:50:96:cb:75:19:45:b6:2f:f4:b8: c5:ef:23:6b:a5:7f:46:35:ce:98:51:b7:0a:1c:8d:de:a1:32: 93:8d:fa:10:76:24:f6:6d:94:a8:2a:e3:4d:f0:16:98:30:42: 9b:64:43:75:22:f5:d6:25:8f:13:c1:d3:c7:ab:f2:d7:86:76: 03:89:f2:4c:69:30:d2:97:99:8d:44:df:3c:59:e2:36:bf:a9: eb:c2:e4:4c:a6:17:4c:74:00:e6:3f:70:c0:a8:1d:62:2d:38: f2:e4:c3:fb:fe:a8:70:32:42:41:df:82:4e:b6:33:88:ab:b3: 6c:6c:39:d2:e7:8d:81:34:01:54:5d:90:6b:bd:ac:dc:9a:59: 0d:b1:45:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLT+5Kf+aNgQ+TgDTxNIzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGViYzVlMGU0NDVkOTQ3MzE1NGFlZWQ3NDQ2OWIyY2ZiYTM2 NjRlMzUwHhcNMjUxMjA2MDEwMTA1WhcNMjUxMjA3MDEwMTA1WjAzMTEwLwYDVQQD EyhmMGFlZjg3MDE5NTY1MTU1YjJlMzFhNTY4OWY1MmU3NmQyYzY2YmY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuUpd/JBAwoXeLxcXlr8/XzeuUI8Z oXnxcvePafmZYuvrzPviquSc9s9pDT3ul2KKEc8vv4gDvHB2O+i1MmbjRIzfTHhE ymP8BpkEIMC/vfUMjhEKyeJo+ft+QrNNJs/cpfBdCZdNC2hicjEdcaM3OVRkpM7l VBG9hTN2kHVnEmF2k5xjIbl5rNSMffaNsf6MhYSW/oP3iYSSCKQq4Z0LQ/yF2aKs 2e51c6fB5fKH8IXkfRSYMyKcDwXY+KidATpPo8XG1F4vaHbvdxeUOVxt/vFxe149 /mS9Md3mrwZXZIqElOYOgrUNRDWOi2InIUl1l6u2fh4COfd9u3+iOg1TawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPCu+HAZVlFVsuMaVon1LnbSxmv0MB8GA1UdIwQY MBaAFOvF4ORF2UcxVK7tdEabLPujZk41MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNjhYZzVFWFpSekZVcnUxMFJwc3MtNk5tVGpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8zMmFiZWUtY2Y3YS00NGY5LTg3NjUt OGRlYzJlMTYzYTg2LzEvNjhYZzVFWFpSekZVcnUxMFJwc3MtNk5tVGpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8zMmFiZWUtY2Y3YS00NGY5LTg3NjUtOGRlYzJlMTYzYTg2 LzEvNjhYZzVFWFpSekZVcnUxMFJwc3MtNk5tVGpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhKtLtcMZ +gMkj0XjBee039Q0bocQCmmUV1n8mY8WQhwFAcCc0x/eI+3JO3mkKBOWv8HyR6I7 4tWYuZ3TJhAJLF5hpHgdA38IU00sAIVrSdgr78ZjB3LZ/yjRGRr2BCa3q1TKolfJ /SyQvjcILr7qN0S2XgJQlst1GUW2L/S4xe8ja6V/RjXOmFG3ChyN3qEyk436EHYk 9m2UqCrjTfAWmDBCm2RDdSL11iWPE8HTx6vy14Z2A4nyTGkw0peZjUTfPFniNr+p 68LkTKYXTHQA5j9wwKgdYi048uTD+/6ocDJCQd+CTrYziKuzbGw50ueNgTQBVF2Q a72s3JpZDbFFtQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:12:12 2025 by rpki-client