This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft File: cVYaucXzkpItp8rhgMMwc2XwI4Y.mft (raw, json) Hash identifier: Jnz2NLLehasG1UuS+BTd9bDfPW5DeZ5H/3J4Ezg958w= Subject key identifier: 8D:24:92:CC:AF:34:09:4E:00:50:40:CE:0E:F9:8F:CC:96:8C:82:B2 Authority key identifier: 71:56:1A:B9:C5:F3:92:92:2D:A7:CA:E1:80:C3:30:73:65:F0:23:86 Certificate issuer: /CN=71561ab9c5f392922da7cae180c3307365f02386 Certificate serial: 019AF12D2681E75F460E487CDC58B26AF8B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft Manifest number: 1092 Signing time: Sat 06 Dec 2025 01:00:59 +0000 Manifest this update: Sat 06 Dec 2025 01:00:59 +0000 Manifest next update: Sun 07 Dec 2025 01:00:59 +0000 Files and hashes: 1: cVYaucXzkpItp8rhgMMwc2XwI4Y.crl (hash: mZz04DF7u5NCZqD387BbOoS/V+4QHdBcxjaMcv2rOSM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:26:81:e7:5f:46:0e:48:7c:dc:58:b2:6a:f8:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71561ab9c5f392922da7cae180c3307365f02386 Validity Not Before: Dec 6 01:00:59 2025 GMT Not After : Dec 7 01:00:59 2025 GMT Subject: CN=8d2492ccaf34094e005040ce0ef98fcc968c82b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b1:7b:b6:ce:31:37:3d:7e:df:15:ec:b8:6d: e8:82:c3:33:63:7a:11:4c:5f:de:2a:78:a0:c4:24: 44:34:45:17:c6:c7:ce:3c:56:e3:35:d0:fa:95:dd: 96:27:78:f8:3f:4d:db:c3:2e:50:bc:b9:33:01:f4: b5:c9:12:ae:c5:3c:63:d1:88:54:10:fa:86:f5:d1: a0:97:f4:83:a0:ac:b8:04:02:29:f3:84:ca:e2:56: d8:c1:a0:4f:26:92:8e:4f:11:69:63:7f:01:64:ce: bb:6d:34:33:af:dc:dd:af:bd:78:1d:f0:21:91:fc: 87:bf:ab:f5:72:c0:15:86:9b:a6:88:1c:4d:f2:56: 90:3c:6f:b3:b1:12:e8:39:9e:f5:80:53:78:76:6f: b9:55:43:a5:0f:ca:74:18:55:ca:0a:46:bf:c2:3d: 1a:45:fa:47:14:70:b4:4b:7e:db:d0:fa:ec:48:ef: 6f:03:42:90:f8:e0:a0:3d:b5:9f:0e:9f:28:d7:a1: 9d:fe:fe:16:3f:ec:24:31:99:41:f0:ed:a2:0c:20: 3c:70:88:e1:61:87:c1:d3:7c:9f:60:cf:e3:8f:82: 86:e2:1b:32:ae:53:c4:60:50:47:e9:17:80:9c:69: 7c:1c:c0:2d:9e:45:4d:ae:3a:82:c6:c7:30:1f:47: 32:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:24:92:CC:AF:34:09:4E:00:50:40:CE:0E:F9:8F:CC:96:8C:82:B2 X509v3 Authority Key Identifier: keyid:71:56:1A:B9:C5:F3:92:92:2D:A7:CA:E1:80:C3:30:73:65:F0:23:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:a4:15:64:9d:1e:eb:8f:63:a3:c4:cb:bd:a1:22:86:06:bc: a8:13:2c:da:93:34:ca:9c:eb:3b:c5:70:9d:a0:da:be:6b:f1: 0d:fa:5f:68:ec:c7:d7:b6:78:61:a0:f2:7d:a9:b3:02:1a:ed: df:57:c4:57:b7:77:c9:b1:e6:a6:72:bd:34:61:83:55:7b:1e: 02:d6:a7:2f:ca:e8:df:09:1e:ba:32:2e:31:ab:59:f5:f7:bc: 01:19:e0:db:d6:6d:2d:2f:90:a1:43:ea:27:06:e6:bb:36:c3: 19:d6:20:80:bf:46:1c:f4:d5:27:57:0f:6d:66:77:09:a7:6b: e9:99:5e:c4:68:d3:85:ed:a5:54:4e:01:d6:3a:47:b8:7e:7c: 6f:10:6c:b1:55:74:a3:c8:8f:36:02:45:f8:c2:51:03:0d:34: 2b:da:15:9a:54:01:dc:7d:a6:6a:9e:40:cc:16:be:e7:21:5a: 45:53:2c:d9:5f:37:8b:c7:6d:c5:41:2b:dd:0b:73:31:bd:bc: 28:08:2c:3c:29:25:1c:e1:e4:d2:53:71:e1:ab:f6:b5:51:ba: 27:1d:06:0c:b6:1c:93:d1:fd:91:d8:a6:f3:18:26:4c:24:4d: f4:1c:e2:96:fa:16:b5:73:d7:9d:d2:37:55:73:34:27:16:7a: 99:6a:b1:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLSaB519GDkh83Fiyavi1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxNTYxYWI5YzVmMzkyOTIyZGE3Y2FlMTgwYzMzMDczNjVm MDIzODYwHhcNMjUxMjA2MDEwMDU5WhcNMjUxMjA3MDEwMDU5WjAzMTEwLwYDVQQD Eyg4ZDI0OTJjY2FmMzQwOTRlMDA1MDQwY2UwZWY5OGZjYzk2OGM4MmIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7F7ts4xNz1+3xXsuG3ogsMzY3oR TF/eKnigxCRENEUXxsfOPFbjNdD6ld2WJ3j4P03bwy5QvLkzAfS1yRKuxTxj0YhU EPqG9dGgl/SDoKy4BAIp84TK4lbYwaBPJpKOTxFpY38BZM67bTQzr9zdr714HfAh kfyHv6v1csAVhpumiBxN8laQPG+zsRLoOZ71gFN4dm+5VUOlD8p0GFXKCka/wj0a RfpHFHC0S37b0PrsSO9vA0KQ+OCgPbWfDp8o16Gd/v4WP+wkMZlB8O2iDCA8cIjh YYfB03yfYM/jj4KG4hsyrlPEYFBH6ReAnGl8HMAtnkVNrjqCxscwH0cyqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI0kksyvNAlOAFBAzg75j8yWjIKyMB8GA1UdIwQY MBaAFHFWGrnF85KSLafK4YDDMHNl8COGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1ZZYXVjWHprcEl0cDhyaGdNTXdjMlh3STRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8yMTM1ZTMtNTkzZi00Y2RiLWFmNTUt YzZmNGVlODcyMzY0LzEvY1ZZYXVjWHprcEl0cDhyaGdNTXdjMlh3STRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC8yMTM1ZTMtNTkzZi00Y2RiLWFmNTUtYzZmNGVlODcyMzY0 LzEvY1ZZYXVjWHprcEl0cDhyaGdNTXdjMlh3STRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ6QVZJ0e 649jo8TLvaEihga8qBMs2pM0ypzrO8VwnaDavmvxDfpfaOzH17Z4YaDyfamzAhrt 31fEV7d3ybHmpnK9NGGDVXseAtanL8ro3wkeujIuMatZ9fe8ARng29ZtLS+QoUPq JwbmuzbDGdYggL9GHPTVJ1cPbWZ3Cadr6ZlexGjThe2lVE4B1jpHuH58bxBssVV0 o8iPNgJF+MJRAw00K9oVmlQB3H2map5AzBa+5yFaRVMs2V83i8dtxUEr3QtzMb28 KAgsPCklHOHk0lNx4av2tVG6Jx0GDLYck9H9kdim8xgmTCRN9BzilvoWtXPXndI3 VXM0JxZ6mWqxVA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:23 2025 by rpki-client