This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft File: a-SeWhSwy_QQTANLVyoPnxVKmXU.mft (raw, json) Hash identifier: giBT4zGfmQRb/lueODwhemlY9+et66bbd7z9Bctlt7s= Subject key identifier: 65:49:37:36:06:CC:A4:D7:2F:62:A1:61:C6:2B:FB:2A:D8:C2:C1:00 Authority key identifier: 6B:E4:9E:5A:14:B0:CB:F4:10:4C:03:4B:57:2A:0F:9F:15:4A:99:75 Certificate issuer: /CN=6be49e5a14b0cbf4104c034b572a0f9f154a9975 Certificate serial: 019AF1D20DC885B880F858BA6C3A7FA7B3B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-SeWhSwy_QQTANLVyoPnxVKmXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft Manifest number: 0606 Signing time: Sat 06 Dec 2025 04:01:06 +0000 Manifest this update: Sat 06 Dec 2025 04:01:06 +0000 Manifest next update: Sun 07 Dec 2025 04:01:06 +0000 Files and hashes: 1: a-SeWhSwy_QQTANLVyoPnxVKmXU.crl (hash: oIGLbZ3z/FdYRCoKKCtYJjNAbQl7nz0/QO0Paa54itQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.crl rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft rsync://rpki.ripe.net/repository/DEFAULT/a-SeWhSwy_QQTANLVyoPnxVKmXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:0d:c8:85:b8:80:f8:58:ba:6c:3a:7f:a7:b3:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6be49e5a14b0cbf4104c034b572a0f9f154a9975 Validity Not Before: Dec 6 04:01:06 2025 GMT Not After : Dec 7 04:01:06 2025 GMT Subject: CN=6549373606cca4d72f62a161c62bfb2ad8c2c100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f9:ed:5e:83:40:38:03:71:eb:d1:7f:37:75: 9b:58:43:e6:b4:df:29:87:3d:9e:b0:98:8f:30:46: 82:88:4b:10:b8:4a:b7:19:f1:b6:fc:bc:ec:6f:79: 83:a9:18:79:d3:9b:ef:ec:85:8c:7a:09:e4:32:27: 26:2e:79:25:d0:dd:f6:72:44:e1:1f:a8:16:b1:a8: 2c:f9:34:f5:d1:5d:0b:a0:6f:df:02:87:16:39:5b: 8f:2c:16:49:10:f7:56:d4:fe:f9:06:4a:ab:9d:96: eb:3f:1e:b2:04:d3:55:e4:fa:ed:90:b6:1c:69:26: 6b:ab:09:af:56:74:f6:6a:54:9d:b3:d1:4d:0b:c3: 41:40:d6:9e:a9:0c:9a:da:73:09:be:65:a1:d0:53: af:31:86:3c:0b:70:95:65:e3:1c:ba:da:d1:64:1b: 0b:c1:ad:1f:2a:c0:d2:b9:fe:1c:79:d8:2a:d0:31: 29:fe:46:60:ba:e8:0b:3d:e4:8d:61:2b:98:84:73: b1:67:0e:ec:55:2f:02:e6:8d:4f:3b:db:fa:a1:b1: b8:aa:32:30:76:6c:18:1d:79:74:97:0c:3d:8d:bf: 06:eb:e9:21:2f:f9:fc:3c:87:e6:ac:19:f4:33:c6: 15:39:45:73:9f:ec:2a:73:1c:08:6f:5b:f0:73:3b: 54:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:49:37:36:06:CC:A4:D7:2F:62:A1:61:C6:2B:FB:2A:D8:C2:C1:00 X509v3 Authority Key Identifier: keyid:6B:E4:9E:5A:14:B0:CB:F4:10:4C:03:4B:57:2A:0F:9F:15:4A:99:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-SeWhSwy_QQTANLVyoPnxVKmXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:2f:f8:f9:64:ae:f7:c2:00:6e:73:6e:be:a3:61:12:eb:f4: cc:d0:fc:a4:8c:9c:86:9d:cf:a1:54:fc:97:eb:3a:24:e2:1c: d3:c2:cc:ff:66:87:da:ce:5e:03:36:34:f0:be:f0:9d:20:dd: e1:ca:fd:fb:b3:66:75:72:04:fe:ea:bf:e9:00:9a:28:16:c1: 58:7c:93:ce:ce:37:52:af:c6:c9:80:6c:bb:e1:78:b2:68:d9: 02:dd:e5:97:c5:00:e6:25:82:44:6f:24:9c:11:a0:0e:f6:66: d9:ce:27:c5:35:9f:21:e1:ef:6a:9b:73:b5:a0:69:dd:d0:39: ea:53:db:42:4a:02:42:ac:1b:9b:00:11:f9:32:b7:55:cf:e9: 97:a0:fd:6b:d8:2d:5c:ed:20:fb:ee:16:a2:45:ef:16:ce:d7: ad:83:1c:d2:7c:5d:1a:0a:ed:9c:e4:b7:1e:4b:e9:f1:ec:97: fc:d2:eb:d6:17:a8:66:a7:74:1a:1c:24:2e:c1:0b:93:ee:26: 08:2b:91:b7:97:dc:17:53:67:07:d8:c6:55:bc:38:1e:ae:c7: f2:e2:85:95:76:2b:1f:28:16:0d:27:aa:ae:6c:ad:80:8d:23: c6:2d:fd:4e:df:bc:e8:a5:6e:a7:00:e1:9d:88:75:1b:d1:d3: 6a:36:2b:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0g3IhbiA+Fi6bDp/p7O0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiZTQ5ZTVhMTRiMGNiZjQxMDRjMDM0YjU3MmEwZjlmMTU0 YTk5NzUwHhcNMjUxMjA2MDQwMTA2WhcNMjUxMjA3MDQwMTA2WjAzMTEwLwYDVQQD Eyg2NTQ5MzczNjA2Y2NhNGQ3MmY2MmExNjFjNjJiZmIyYWQ4YzJjMTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/ntXoNAOANx69F/N3WbWEPmtN8p hz2esJiPMEaCiEsQuEq3GfG2/Lzsb3mDqRh505vv7IWMegnkMicmLnkl0N32ckTh H6gWsags+TT10V0LoG/fAocWOVuPLBZJEPdW1P75BkqrnZbrPx6yBNNV5PrtkLYc aSZrqwmvVnT2alSds9FNC8NBQNaeqQya2nMJvmWh0FOvMYY8C3CVZeMcutrRZBsL wa0fKsDSuf4cedgq0DEp/kZguugLPeSNYSuYhHOxZw7sVS8C5o1PO9v6obG4qjIw dmwYHXl0lww9jb8G6+khL/n8PIfmrBn0M8YVOUVzn+wqcxwIb1vwcztUewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGVJNzYGzKTXL2KhYcYr+yrYwsEAMB8GA1UdIwQY MBaAFGvknloUsMv0EEwDS1cqD58VSpl1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYS1TZVdoU3d5X1FRVEFOTFZ5b1BueFZLbVhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8yOTVjOTUtZTM2Ny00Y2EyLTliZDUt YWI5OTdmYzY1MGU0LzEvYS1TZVdoU3d5X1FRVEFOTFZ5b1BueFZLbVhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny8yOTVjOTUtZTM2Ny00Y2EyLTliZDUtYWI5OTdmYzY1MGU0 LzEvYS1TZVdoU3d5X1FRVEFOTFZ5b1BueFZLbVhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGy/4+WSu 98IAbnNuvqNhEuv0zND8pIychp3PoVT8l+s6JOIc08LM/2aH2s5eAzY08L7wnSDd 4cr9+7NmdXIE/uq/6QCaKBbBWHyTzs43Uq/GyYBsu+F4smjZAt3ll8UA5iWCRG8k nBGgDvZm2c4nxTWfIeHvaptztaBp3dA56lPbQkoCQqwbmwAR+TK3Vc/pl6D9a9gt XO0g++4WokXvFs7XrYMc0nxdGgrtnOS3Hkvp8eyX/NLr1heoZqd0GhwkLsELk+4m CCuRt5fcF1NnB9jGVbw4Hq7H8uKFlXYrHygWDSeqrmytgI0jxi39Tt+86KVupwDh nYh1G9HTajYrbg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:23:14 2025 by rpki-client