This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft File: 1-_zUUVtJMDkhZ1jec45PGujjIkw.mft (raw, json) Hash identifier: fE6gsEnY/piiybs5ze9WYD8BtNkBNKWaDQCgQD0dxSg= Subject key identifier: 0F:1C:8D:A8:E9:AF:EA:FB:74:09:70:51:44:7D:AA:8E:FE:66:CC:4E Authority key identifier: FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C Certificate issuer: /CN=fbfcd4515b493039216758de738e4f1ae8e3224c Certificate serial: 019AF0F5E58C58D10AAA0C0AA1ADF010DAF1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft Manifest number: 1184 Signing time: Sat 06 Dec 2025 00:00:38 +0000 Manifest this update: Sat 06 Dec 2025 00:00:38 +0000 Manifest next update: Sun 07 Dec 2025 00:00:38 +0000 Files and hashes: 1: 1-_zUUVtJMDkhZ1jec45PGujjIkw.crl (hash: G5M7NChAnlcRGO3+r8dLPzpo5XdLU20+P8wECEzWl/U=) 2: DiLoOspEZ-miVIlFnPiykV7JGvU.roa (hash: 2IDQXBT0pmiOkj8NyXZhIUPtoHmvSFqSMYQziKEr2Pg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:e5:8c:58:d1:0a:aa:0c:0a:a1:ad:f0:10:da:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fbfcd4515b493039216758de738e4f1ae8e3224c Validity Not Before: Dec 6 00:00:38 2025 GMT Not After : Dec 7 00:00:38 2025 GMT Subject: CN=0f1c8da8e9afeafb74097051447daa8efe66cc4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cc:6b:c7:cc:8c:55:cb:ee:7c:aa:80:e9:56: e9:d3:11:df:2c:1e:48:6b:9f:09:dc:6f:d3:34:15: 07:64:de:d2:10:75:16:98:52:39:ca:22:78:e4:4b: 20:13:5f:b6:6b:01:99:4f:11:65:e1:4c:ca:51:bc: e9:7c:ba:8b:26:3e:23:7a:28:e9:ae:03:f8:03:e8: f7:df:14:ea:91:55:94:94:79:99:55:0f:8d:61:10: b6:0d:eb:9d:e3:ba:d1:b1:f8:34:c8:f1:1f:98:5c: 3b:7d:b2:10:f8:eb:7d:35:45:18:f1:14:dd:fc:be: 14:7a:ce:aa:c5:1f:96:c5:5f:a9:f4:b9:bb:02:89: 31:f5:2f:50:6b:1f:92:9e:2e:ae:8e:6c:31:9a:f7: eb:cb:a8:11:d5:d4:97:89:71:1c:97:f7:3d:10:be: 78:a7:50:8f:04:3d:49:bc:1f:a7:a5:ce:8b:16:3d: a6:08:e4:7e:2e:54:c7:10:3d:7b:4f:66:41:f4:e6: 05:fe:a3:5a:e7:e4:8d:5b:07:bd:67:3b:98:8b:b8: 07:fc:57:28:e9:17:1d:62:57:73:ae:fe:75:49:33: 73:7b:a3:6c:fc:d3:4e:1c:7c:05:7e:af:3e:9a:2d: 75:a3:89:2f:0d:51:e7:3f:85:4d:2c:fb:80:43:82: 12:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1C:8D:A8:E9:AF:EA:FB:74:09:70:51:44:7D:AA:8E:FE:66:CC:4E X509v3 Authority Key Identifier: keyid:FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:6b:27:be:72:82:c3:31:44:10:16:fb:66:6a:b2:40:eb:da: 40:b5:68:c3:1e:20:e8:fd:42:42:f3:65:29:f4:d1:79:eb:49: 33:77:f5:03:83:bd:5a:e1:25:44:79:cc:e5:f3:38:a8:1d:9e: 11:d6:6c:6c:21:3d:04:a4:e3:a0:15:52:05:3c:6e:1f:89:a0: c0:cd:61:a0:a6:9f:93:03:49:98:5f:b5:b7:ec:f6:9d:0b:26: 2f:1d:78:ef:a2:26:79:9e:20:fe:7b:d1:a1:d9:3f:c9:5f:14: 4e:48:d4:b6:37:a3:bb:b0:7c:e6:0c:a4:3a:41:3b:d9:d3:4c: e6:ee:14:15:e7:b4:c8:36:55:1f:5f:f8:0b:1c:4d:95:aa:9f: 59:42:4d:6a:57:7f:11:6b:53:f8:ba:e3:61:2f:2f:27:bb:8b: 2d:ad:31:17:ad:cc:f4:96:f7:41:27:fc:e1:ca:90:be:e0:fb: e0:d4:47:8d:ff:ad:11:58:50:79:90:9a:09:69:6e:24:09:9f: 45:36:8d:2e:d1:97:c8:a7:b5:f6:08:b5:b2:0b:34:c6:0f:4c: 99:77:b7:b2:9a:27:ad:b1:f8:09:f6:e7:0a:a3:a0:6e:cc:96: 78:0b:d3:b9:57:31:12:88:1b:87:03:c3:b0:8f:9c:20:e0:8d: 40:5d:56:d6 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZrw9eWMWNEKqgwKoa3wENrxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiZmNkNDUxNWI0OTMwMzkyMTY3NThkZTczOGU0ZjFhZThl MzIyNGMwHhcNMjUxMjA2MDAwMDM4WhcNMjUxMjA3MDAwMDM4WjAzMTEwLwYDVQQD EygwZjFjOGRhOGU5YWZlYWZiNzQwOTcwNTE0NDdkYWE4ZWZlNjZjYzRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8xrx8yMVcvufKqA6Vbp0xHfLB5I a58J3G/TNBUHZN7SEHUWmFI5yiJ45EsgE1+2awGZTxFl4UzKUbzpfLqLJj4jeijp rgP4A+j33xTqkVWUlHmZVQ+NYRC2Deud47rRsfg0yPEfmFw7fbIQ+Ot9NUUY8RTd /L4Ues6qxR+WxV+p9Lm7Aokx9S9Qax+Sni6ujmwxmvfry6gR1dSXiXEcl/c9EL54 p1CPBD1JvB+npc6LFj2mCOR+LlTHED17T2ZB9OYF/qNa5+SNWwe9ZzuYi7gH/Fco 6RcdYldzrv51STNze6Ns/NNOHHwFfq8+mi11o4kvDVHnP4VNLPuAQ4IS7QIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFA8cjajpr+r7dAlwUUR9qo7+ZsxOMB8GA1UdIwQY MBaAFPv81FFbSTA5IWdY3nOOTxro4yJMMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1felVVVnRKTURraFoxamVjNDVQR3Vqaklrdy5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjgvZDY0ODZhLThmZjctNDI2Zi04ZDg2 LTA5OGQwNGNlNTFiMi8xLzEtX3pVVVZ0Sk1Ea2haMWplYzQ1UEd1ampJa3cubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxULzY4L2Q2NDg2YS04ZmY3LTQyNmYtOGQ4Ni0wOThkMDRjZTUx YjIvMS8xLV96VVVWdEpNRGtoWjFqZWM0NVBHdWpqSWt3LmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAGsn vnKCwzFEEBb7ZmqyQOvaQLVowx4g6P1CQvNlKfTReetJM3f1A4O9WuElRHnM5fM4 qB2eEdZsbCE9BKTjoBVSBTxuH4mgwM1hoKafkwNJmF+1t+z2nQsmLx1476ImeZ4g /nvRodk/yV8UTkjUtjeju7B85gykOkE72dNM5u4UFee0yDZVH1/4CxxNlaqfWUJN ald/EWtT+LrjYS8vJ7uLLa0xF63M9Jb3QSf84cqQvuD74NRHjf+tEVhQeZCaCWlu JAmfRTaNLtGXyKe19gi1sgs0xg9MmXe3sponrbH4CfbnCqOgbsyWeAvTuVcxEogb hwPDsI+cIOCNQF1W1g== -----END CERTIFICATE-----Generated at Sat Dec 6 09:14:51 2025 by rpki-client