This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft File: CUsU8URwOb33-d7l-ik4XB3OlZ0.mft (raw, json) Hash identifier: h9JfetkBrDwluLyTOilJdgYKhw51THVx6UVEtOqY2Uc= Subject key identifier: E2:E6:77:CA:41:6F:26:A7:76:F7:44:40:1E:55:0D:08:B7:C2:76:20 Authority key identifier: 09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D Certificate issuer: /CN=094b14f1447039bdf7f9dee5fa29385c1dce959d Certificate serial: 019AF12E5B94527DA918C828907737F4CF6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft Manifest number: 16F0 Signing time: Sat 06 Dec 2025 01:02:18 +0000 Manifest this update: Sat 06 Dec 2025 01:02:18 +0000 Manifest next update: Sun 07 Dec 2025 01:02:18 +0000 Files and hashes: 1: CUsU8URwOb33-d7l-ik4XB3OlZ0.crl (hash: +pOy/FC4zASat/j64y5Q6h887zJrGwhnWQwbEPECM+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:5b:94:52:7d:a9:18:c8:28:90:77:37:f4:cf:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=094b14f1447039bdf7f9dee5fa29385c1dce959d Validity Not Before: Dec 6 01:02:18 2025 GMT Not After : Dec 7 01:02:18 2025 GMT Subject: CN=e2e677ca416f26a776f744401e550d08b7c27620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:13:22:a0:b9:fa:17:8a:56:88:f9:58:60:2d: 7e:b6:e1:c6:56:ce:94:34:d9:c0:7e:70:de:2c:91: 86:24:60:ea:08:c9:40:18:ec:0f:fd:21:bd:96:86: fc:64:2f:11:f7:a9:a1:7b:68:a0:cd:bd:18:be:46: 38:f3:41:be:12:4a:bb:2b:fb:95:b7:e7:4b:43:8f: 17:bd:d8:2f:b3:14:e9:e0:ba:c2:4f:64:d3:e0:64: 9f:5e:c9:1c:a3:c2:7a:7e:a7:4a:a7:69:9d:ae:56: c5:ad:a7:79:3b:da:2f:ca:51:a3:ae:e2:a2:e2:13: 1f:6b:77:c9:75:a1:ba:75:29:8d:26:07:05:97:b5: dc:9a:3a:8b:76:73:a1:9a:24:0e:51:7a:74:e9:c7: b4:a5:f6:6e:0d:30:66:ce:b6:e7:44:c6:a2:3b:68: cb:4d:37:c0:c0:fe:1a:35:2f:1f:8a:4a:37:76:59: cb:f2:a4:0f:86:99:56:b9:00:a2:87:29:d7:43:88: 00:9c:6b:c1:0b:c7:7f:e0:83:93:21:44:7b:52:3a: 09:3b:d5:b4:e6:8a:13:1f:c4:05:03:af:27:20:ce: 55:6f:4b:cc:64:01:b2:86:02:9d:3e:5d:25:34:79: de:17:e7:3e:d9:41:ee:ed:3a:fe:41:0a:9c:3d:57: c9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E6:77:CA:41:6F:26:A7:76:F7:44:40:1E:55:0D:08:B7:C2:76:20 X509v3 Authority Key Identifier: keyid:09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:b8:31:58:cc:b7:d2:e0:17:2d:ee:14:c0:f5:c7:76:2a:aa: f2:b2:e8:cc:82:1a:f2:17:4f:7d:d8:4e:21:2e:1f:f1:8a:a1: 82:ee:4c:4d:e5:0a:d5:d0:4b:bd:e2:1e:42:d9:a2:91:e9:76: 4c:72:0c:74:63:a1:7e:df:02:70:9b:06:d6:4b:68:ab:cd:48: 5a:f6:f7:32:6d:8f:7a:52:f7:32:e4:34:45:3b:d0:9d:31:48: a7:c1:15:c1:04:e1:4d:54:3a:70:d5:0a:f8:23:15:a9:7c:a5: fa:b9:5b:8e:03:31:5f:be:11:75:e2:8a:30:07:49:5e:17:60: fd:1e:e7:ec:c6:7e:d6:d0:7d:ba:10:54:47:ec:96:59:cb:59: 89:60:ed:1b:7e:90:74:c9:5d:d6:4e:e1:3e:68:e2:70:bd:79: 06:69:48:4a:a1:d1:71:bd:54:aa:1f:d3:ac:11:e6:73:68:7f: ff:a6:66:88:c2:60:82:39:7b:b3:7c:73:8d:c2:57:b9:a1:b3: 27:e5:ce:90:11:03:d9:2b:f3:64:b1:a8:39:04:6e:3b:3d:d5: 17:e8:f4:29:9b:cf:ae:e7:fd:86:00:21:6f:7a:e2:c0:bb:e1: 2b:5d:f6:df:e0:29:72:a4:dc:54:cf:27:70:36:49:94:f9:9d: 4e:ce:5e:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLluUUn2pGMgokHc39M9tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NGIxNGYxNDQ3MDM5YmRmN2Y5ZGVlNWZhMjkzODVjMWRj ZTk1OWQwHhcNMjUxMjA2MDEwMjE4WhcNMjUxMjA3MDEwMjE4WjAzMTEwLwYDVQQD EyhlMmU2NzdjYTQxNmYyNmE3NzZmNzQ0NDAxZTU1MGQwOGI3YzI3NjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBMioLn6F4pWiPlYYC1+tuHGVs6U NNnAfnDeLJGGJGDqCMlAGOwP/SG9lob8ZC8R96mhe2igzb0YvkY480G+Ekq7K/uV t+dLQ48XvdgvsxTp4LrCT2TT4GSfXskco8J6fqdKp2mdrlbFrad5O9ovylGjruKi 4hMfa3fJdaG6dSmNJgcFl7XcmjqLdnOhmiQOUXp06ce0pfZuDTBmzrbnRMaiO2jL TTfAwP4aNS8fiko3dlnL8qQPhplWuQCihynXQ4gAnGvBC8d/4IOTIUR7UjoJO9W0 5ooTH8QFA68nIM5Vb0vMZAGyhgKdPl0lNHneF+c+2UHu7Tr+QQqcPVfJwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOLmd8pBbyandvdEQB5VDQi3wnYgMB8GA1UdIwQY MBaAFAlLFPFEcDm99/ne5fopOFwdzpWdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1VzVThVUndPYjMzLWQ3bC1pazRYQjNPbFowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi82MDY5MzktY2M2OS00Y2ZhLTg0M2Ut NTBiNjRjYmQwZmUxLzEvQ1VzVThVUndPYjMzLWQ3bC1pazRYQjNPbFowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi82MDY5MzktY2M2OS00Y2ZhLTg0M2UtNTBiNjRjYmQwZmUx LzEvQ1VzVThVUndPYjMzLWQ3bC1pazRYQjNPbFowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsLgxWMy3 0uAXLe4UwPXHdiqq8rLozIIa8hdPfdhOIS4f8Yqhgu5MTeUK1dBLveIeQtmikel2 THIMdGOhft8CcJsG1ktoq81IWvb3Mm2PelL3MuQ0RTvQnTFIp8EVwQThTVQ6cNUK +CMVqXyl+rlbjgMxX74RdeKKMAdJXhdg/R7n7MZ+1tB9uhBUR+yWWctZiWDtG36Q dMld1k7hPmjicL15BmlISqHRcb1Uqh/TrBHmc2h//6ZmiMJggjl7s3xzjcJXuaGz J+XOkBED2SvzZLGoOQRuOz3VF+j0KZvPruf9hgAhb3riwLvhK1323+ApcqTcVM8n cDZJlPmdTs5eYw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:00:14 2025 by rpki-client