This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft File: 4UYAGfiAaeNhThUQkhzH5E0cq-I.mft (raw, json) Hash identifier: ivbVoysq3W3SBDoSe37R/aTYuhcQqVTW1q65qHyPNzY= Subject key identifier: 0D:E5:D9:C7:B2:32:33:54:06:8D:48:EC:B3:69:3C:08:95:F6:14:04 Authority key identifier: E1:46:00:19:F8:80:69:E3:61:4E:15:10:92:1C:C7:E4:4D:1C:AB:E2 Certificate issuer: /CN=e1460019f88069e3614e1510921cc7e44d1cabe2 Certificate serial: 019AF3C02AF852C843519C03FF6586B4C669 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UYAGfiAaeNhThUQkhzH5E0cq-I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 13:00:48 +0000 Manifest this update: Sat 06 Dec 2025 13:00:48 +0000 Manifest next update: Sun 07 Dec 2025 13:00:48 +0000 Files and hashes: 1: 4UYAGfiAaeNhThUQkhzH5E0cq-I.crl (hash: E3hg3OqdaKxpvnKIPOs3xinfpsv4EMaEJrOKnvP44uQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft rsync://rpki.ripe.net/repository/DEFAULT/4UYAGfiAaeNhThUQkhzH5E0cq-I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:2a:f8:52:c8:43:51:9c:03:ff:65:86:b4:c6:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1460019f88069e3614e1510921cc7e44d1cabe2 Validity Not Before: Dec 6 13:00:48 2025 GMT Not After : Dec 7 13:00:48 2025 GMT Subject: CN=0de5d9c7b2323354068d48ecb3693c0895f61404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2a:f2:80:63:60:ac:09:50:1e:f4:b7:4c:c9: d4:1c:54:6b:f4:1e:a9:a4:02:c7:24:1e:e3:a8:ee: 80:eb:64:8c:fe:49:27:25:34:80:71:2b:38:bd:bc: 2f:d0:36:07:ec:a1:49:66:fe:d7:37:cd:67:70:36: a8:cf:e2:1c:bf:75:e1:70:3f:96:cd:8b:f7:8d:93: 85:bf:0d:e4:5b:dc:6f:6d:52:54:d4:5a:9d:a4:88: e6:df:6e:0c:8a:ac:fe:c4:25:0d:6e:72:b2:e1:5e: 94:b7:f1:89:1c:d7:18:17:26:fe:aa:c5:a8:61:3f: 40:d7:2a:de:a1:69:b1:13:2e:47:0c:09:5e:7c:9b: 22:b4:9b:56:f2:1d:33:38:7c:e9:e2:01:c9:7b:40: d2:9f:b6:94:b6:fb:cf:21:70:48:d0:34:28:25:30: 80:9f:f2:6f:a3:0c:c2:60:b2:df:79:29:00:e3:f4: 33:00:69:9b:99:4e:c1:1c:62:9f:f0:ff:d2:9f:0c: 7d:a6:d3:69:ce:23:7e:09:aa:95:08:b9:33:a2:87: ca:f6:4f:7b:a8:0a:0c:f0:9f:0b:c0:80:bc:cf:85: eb:c7:e9:a8:ac:bd:00:e1:82:e9:f0:ed:b0:c9:e0: ac:bb:b2:cb:24:1f:e8:2f:90:af:5e:de:7f:12:f4: bd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E5:D9:C7:B2:32:33:54:06:8D:48:EC:B3:69:3C:08:95:F6:14:04 X509v3 Authority Key Identifier: keyid:E1:46:00:19:F8:80:69:E3:61:4E:15:10:92:1C:C7:E4:4D:1C:AB:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UYAGfiAaeNhThUQkhzH5E0cq-I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:69:f3:4f:29:c4:7d:18:ab:d3:85:18:c1:5d:0c:b0:4f:1b: 49:16:c2:84:12:21:ab:c2:11:ca:cb:e8:1c:dc:e3:b2:60:81: 17:ee:d0:64:d3:82:52:b7:40:9b:9f:8a:89:de:c6:39:92:22: 0a:94:db:70:e0:9d:2d:02:7d:0d:f3:88:1b:35:d7:4e:bc:bc: 75:74:00:21:4e:17:82:95:d0:88:16:1c:19:e1:c3:65:ae:57: 4d:4c:5d:fd:40:03:6d:c3:0e:bd:c3:60:61:5b:20:13:6a:6c: d6:db:c9:69:e6:16:dd:15:a1:7d:89:f4:c7:a2:6d:97:80:0c: f2:08:2a:de:e2:69:f0:87:49:08:22:00:55:1b:ed:cd:cd:1e: 68:f7:7d:4e:7d:13:a3:b1:e5:11:69:00:c5:fc:57:fd:c2:ed: 6b:4e:c1:17:2e:94:54:04:ac:9a:b0:00:d2:bf:51:75:3d:3c: 4f:58:9e:24:06:76:f5:9a:44:c2:bd:8c:1b:1c:f1:f5:56:37: 38:1b:92:67:23:03:47:e3:92:9a:d5:60:22:20:66:65:e1:8d: 76:a7:21:be:76:a4:87:c9:85:88:8f:6d:97:87:03:e9:53:9e: 1c:c3:f8:19:11:ab:26:82:2b:9f:43:09:e4:08:01:e6:92:1d: 0f:ac:23:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwCr4UshDUZwD/2WGtMZpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxNDYwMDE5Zjg4MDY5ZTM2MTRlMTUxMDkyMWNjN2U0NGQx Y2FiZTIwHhcNMjUxMjA2MTMwMDQ4WhcNMjUxMjA3MTMwMDQ4WjAzMTEwLwYDVQQD EygwZGU1ZDljN2IyMzIzMzU0MDY4ZDQ4ZWNiMzY5M2MwODk1ZjYxNDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSrygGNgrAlQHvS3TMnUHFRr9B6p pALHJB7jqO6A62SM/kknJTSAcSs4vbwv0DYH7KFJZv7XN81ncDaoz+Icv3XhcD+W zYv3jZOFvw3kW9xvbVJU1FqdpIjm324Miqz+xCUNbnKy4V6Ut/GJHNcYFyb+qsWo YT9A1yreoWmxEy5HDAlefJsitJtW8h0zOHzp4gHJe0DSn7aUtvvPIXBI0DQoJTCA n/JvowzCYLLfeSkA4/QzAGmbmU7BHGKf8P/Snwx9ptNpziN+CaqVCLkzoofK9k97 qAoM8J8LwIC8z4Xrx+morL0A4YLp8O2wyeCsu7LLJB/oL5CvXt5/EvS9hQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA3l2ceyMjNUBo1I7LNpPAiV9hQEMB8GA1UdIwQY MBaAFOFGABn4gGnjYU4VEJIcx+RNHKviMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFVZQUdmaUFhZU5oVGhVUWtoekg1RTBjcS1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy8zZTQ0NGQtNjcyMC00NDRhLWFlNTQt ZmNkMWE2M2M1YzQ1LzEvNFVZQUdmaUFhZU5oVGhVUWtoekg1RTBjcS1JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy8zZTQ0NGQtNjcyMC00NDRhLWFlNTQtZmNkMWE2M2M1YzQ1 LzEvNFVZQUdmaUFhZU5oVGhVUWtoekg1RTBjcS1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT2nzTynE fRir04UYwV0MsE8bSRbChBIhq8IRysvoHNzjsmCBF+7QZNOCUrdAm5+Kid7GOZIi CpTbcOCdLQJ9DfOIGzXXTry8dXQAIU4XgpXQiBYcGeHDZa5XTUxd/UADbcMOvcNg YVsgE2ps1tvJaeYW3RWhfYn0x6Jtl4AM8ggq3uJp8IdJCCIAVRvtzc0eaPd9Tn0T o7HlEWkAxfxX/cLta07BFy6UVASsmrAA0r9RdT08T1ieJAZ29ZpEwr2MGxzx9VY3 OBuSZyMDR+OSmtVgIiBmZeGNdqchvnakh8mFiI9tl4cD6VOeHMP4GRGrJoIrn0MJ 5AgB5pIdD6wjTg== -----END CERTIFICATE-----Generated at Sat Dec 6 20:00:24 2025 by rpki-client