This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft File: lowsVdyOuZe_WRIdTC_9VESiLi0.mft (raw, json) Hash identifier: v/6nfW8A3lAOQiTtapXAWlPWRjxPGoZnifxfY95OJ4Y= Subject key identifier: D3:D0:DC:D3:F9:74:41:08:D6:16:F1:65:97:18:3A:78:F8:4A:CA:55 Authority key identifier: 96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D Certificate issuer: /CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d Certificate serial: 019AF19B6FE4911138D391624F28A7BDA025 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 03:01:27 +0000 Manifest this update: Sat 06 Dec 2025 03:01:27 +0000 Manifest next update: Sun 07 Dec 2025 03:01:27 +0000 Files and hashes: 1: lowsVdyOuZe_WRIdTC_9VESiLi0.crl (hash: Ktrrr8gwyVlx1CREpVWK2XlBVFRHdLZT/sGsZG5/K3s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:6f:e4:91:11:38:d3:91:62:4f:28:a7:bd:a0:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d Validity Not Before: Dec 6 03:01:27 2025 GMT Not After : Dec 7 03:01:27 2025 GMT Subject: CN=d3d0dcd3f9744108d616f16597183a78f84aca55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6a:b3:5f:40:6b:36:79:0a:d9:7c:77:92:d8: 1e:d6:7c:e2:a4:8d:01:f8:7d:60:24:41:c2:d1:d1: ee:3b:c9:17:a0:4a:46:0a:7e:74:30:a0:de:ee:5f: 6d:f1:fb:fa:d7:c2:50:cb:e8:ff:5a:db:60:61:99: 58:f9:07:4e:38:c2:e4:20:1d:31:a2:a5:52:18:dd: 10:38:82:52:ff:57:a8:d3:d5:b9:9e:f9:8f:16:43: ef:83:36:17:c8:cb:ef:58:78:3b:ee:64:bb:66:b4: 52:c8:a1:11:be:52:1b:30:07:44:4c:7a:6a:2f:8d: f4:4a:6a:b9:6e:7b:db:80:8a:b1:dc:de:2e:fd:7d: 5b:22:ee:49:f1:54:b2:b7:a8:51:41:00:29:4f:c6: 3f:2e:e0:66:26:4e:9c:3e:21:0f:3d:d3:c5:e3:d9: 08:1d:f7:91:a2:c6:b4:75:af:0b:0f:b6:bf:72:c6: 8d:fe:c9:10:d7:02:73:73:50:63:06:d0:af:59:aa: 2f:fe:ec:be:04:ac:33:e9:ab:62:ef:2a:83:72:ed: 0b:02:ab:05:78:01:e0:72:bf:88:83:1d:a4:e0:46: 4b:22:c4:03:18:17:c3:ab:65:e4:b4:9d:5e:d0:a9: 19:d6:27:4d:dc:7e:25:f0:51:33:6c:5a:f6:c9:41: 96:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D0:DC:D3:F9:74:41:08:D6:16:F1:65:97:18:3A:78:F8:4A:CA:55 X509v3 Authority Key Identifier: keyid:96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:82:df:a8:ef:79:47:82:3e:7b:b4:f2:e0:fb:6a:a4:63:c2: cc:12:71:16:05:69:20:69:3d:50:ab:a0:ac:0e:34:a6:22:e9: 36:0a:6f:14:56:4a:52:91:0b:a6:81:95:54:b7:92:b7:f6:d8: df:03:e9:91:d2:1f:84:c2:70:e6:10:dd:14:23:6e:98:23:2b: f3:37:e5:02:75:79:df:44:26:e2:6d:e4:cd:32:51:12:74:b7: ac:34:bc:0d:ac:b5:6a:6e:14:7f:4f:72:ab:94:9e:b9:6f:58: a3:2b:5a:70:82:47:c3:19:08:b6:85:39:d5:bf:ed:c1:75:23: f9:86:7d:da:d4:f3:c6:39:03:45:ec:f8:5e:fa:42:dd:21:e6: 07:24:e8:f2:51:58:98:ac:de:8a:58:38:a9:00:56:19:98:ca: 2e:dc:fd:ba:09:3c:ba:b3:9b:29:d4:ee:57:f3:21:32:f9:19: 7c:89:41:61:dd:8d:a1:de:52:1a:61:c6:b3:7c:95:41:e8:09: f5:db:fc:94:6f:90:8e:39:50:69:6b:1b:eb:49:bb:72:27:21: b4:df:f9:e8:f8:b0:34:8b:e1:38:aa:e8:f1:c9:28:c6:fc:b6: 4f:14:01:1b:62:2a:bd:92:43:c0:d3:10:7b:f0:88:00:11:1b: 70:be:a9:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm2/kkRE405FiTyinvaAlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2OGMyYzU1ZGM4ZWI5OTdiZjU5MTIxZDRjMmZmZDU0NDRh MjJlMmQwHhcNMjUxMjA2MDMwMTI3WhcNMjUxMjA3MDMwMTI3WjAzMTEwLwYDVQQD EyhkM2QwZGNkM2Y5NzQ0MTA4ZDYxNmYxNjU5NzE4M2E3OGY4NGFjYTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGqzX0BrNnkK2Xx3ktge1nzipI0B +H1gJEHC0dHuO8kXoEpGCn50MKDe7l9t8fv618JQy+j/WttgYZlY+QdOOMLkIB0x oqVSGN0QOIJS/1eo09W5nvmPFkPvgzYXyMvvWHg77mS7ZrRSyKERvlIbMAdETHpq L430Smq5bnvbgIqx3N4u/X1bIu5J8VSyt6hRQQApT8Y/LuBmJk6cPiEPPdPF49kI HfeRosa0da8LD7a/csaN/skQ1wJzc1BjBtCvWaov/uy+BKwz6ati7yqDcu0LAqsF eAHgcr+Igx2k4EZLIsQDGBfDq2XktJ1e0KkZ1idN3H4l8FEzbFr2yUGWpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNPQ3NP5dEEI1hbxZZcYOnj4SspVMB8GA1UdIwQY MBaAFJaMLFXcjrmXv1kSHUwv/VREoi4tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbG93c1ZkeU91WmVfV1JJZFRDXzlWRVNpTGkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9lNDc0MWItZjViNS00MThmLThlOTYt MTU0ZTU5OWZkMzVmLzEvbG93c1ZkeU91WmVfV1JJZFRDXzlWRVNpTGkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC9lNDc0MWItZjViNS00MThmLThlOTYtMTU0ZTU5OWZkMzVm LzEvbG93c1ZkeU91WmVfV1JJZFRDXzlWRVNpTGkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm4LfqO95 R4I+e7Ty4PtqpGPCzBJxFgVpIGk9UKugrA40piLpNgpvFFZKUpELpoGVVLeSt/bY 3wPpkdIfhMJw5hDdFCNumCMr8zflAnV530Qm4m3kzTJREnS3rDS8Day1am4Uf09y q5SeuW9YoytacIJHwxkItoU51b/twXUj+YZ92tTzxjkDRez4XvpC3SHmByTo8lFY mKzeilg4qQBWGZjKLtz9ugk8urObKdTuV/MhMvkZfIlBYd2Nod5SGmHGs3yVQegJ 9dv8lG+QjjlQaWsb60m7cichtN/56PiwNIvhOKro8ckoxvy2TxQBG2IqvZJDwNMQ e/CIABEbcL6pLA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:17 2025 by rpki-client