This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft File: cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft (raw, json) Hash identifier: 5rv6Rsq/uWtsCWJH9yUyR5IGo21xMeAkoEARPWGNeMg= Subject key identifier: 27:8E:88:8F:F3:C3:BF:27:D3:D9:0B:54:30:40:14:A2:32:60:E6:3F Authority key identifier: 70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5 Certificate issuer: /CN=70e5a061315670b5bf26e277c92c3894d72cd3c5 Certificate serial: 019AF27678D2C6E9BC3BF17346FA4738F814 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft Manifest number: 050B Signing time: Sat 06 Dec 2025 07:00:41 +0000 Manifest this update: Sat 06 Dec 2025 07:00:41 +0000 Manifest next update: Sun 07 Dec 2025 07:00:41 +0000 Files and hashes: 1: cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl (hash: qY5vWmIwmeICa3jTIqDLdLbmExn6gdqljOkrNwcZ8y8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:78:d2:c6:e9:bc:3b:f1:73:46:fa:47:38:f8:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70e5a061315670b5bf26e277c92c3894d72cd3c5 Validity Not Before: Dec 6 07:00:41 2025 GMT Not After : Dec 7 07:00:41 2025 GMT Subject: CN=278e888ff3c3bf27d3d90b54304014a23260e63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a6:94:fd:fe:32:98:b8:8e:49:e9:a9:f2:b3: 47:35:9f:df:98:fc:fe:7c:62:37:75:f6:dc:17:86: 92:d8:4c:df:30:04:df:22:fe:33:ca:d5:31:b5:e5: 69:80:81:a6:f4:37:f9:fe:28:4c:76:b0:4d:29:bb: ea:28:d9:d0:81:aa:bf:12:fe:57:f7:42:65:34:64: 96:b4:0b:48:38:c5:5e:76:a0:fe:6e:1e:02:7b:0e: 20:02:0b:73:e4:89:c5:29:b4:3f:ca:fb:06:3d:0e: 8c:b1:62:c5:9f:7a:ec:3e:76:a9:b4:8f:fa:ed:0a: 65:d4:46:4e:98:d4:ae:77:69:46:d2:6f:df:c7:1d: 39:eb:7e:4c:12:0e:10:41:5b:bb:a7:69:af:7a:e7: b9:8c:c2:70:c7:ff:8b:d0:75:26:64:20:f0:08:91: 48:21:b6:d4:2c:57:28:cb:6b:87:b9:aa:b3:a9:4b: c6:b6:23:fc:fa:b8:ba:47:b2:de:69:c8:99:c1:10: 24:0a:b7:85:e5:e0:c9:a4:60:b4:54:1c:fe:d3:eb: 70:a1:b2:82:d1:58:99:6a:72:9e:97:8c:17:e5:2c: aa:6b:e1:95:9f:ee:a1:7c:58:6e:0d:d3:06:b5:0a: c6:0c:a2:b0:7b:6d:4d:5b:e8:fe:fb:cb:3e:41:4f: 14:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:8E:88:8F:F3:C3:BF:27:D3:D9:0B:54:30:40:14:A2:32:60:E6:3F X509v3 Authority Key Identifier: keyid:70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:d0:f5:ea:db:9e:11:f9:b1:5a:ab:c0:0d:93:43:b3:68:c2: cf:70:74:b2:43:89:ad:cf:5d:e1:3f:e5:f9:4b:b0:fc:dc:fd: cb:19:9a:d5:32:b6:12:fc:3a:96:89:a2:3d:15:99:2b:2e:87: 02:02:fc:40:51:a7:f0:69:8e:4b:63:18:bc:80:cf:2f:01:2e: 0c:e3:77:71:d3:64:d3:8e:91:03:c7:34:6d:87:e1:a9:07:77: 68:99:bb:9e:23:ab:41:83:3c:1b:59:39:02:08:a5:57:e4:96: ba:a2:55:3b:9f:2b:53:72:dc:32:63:8f:9e:ff:2d:65:88:16: e6:34:be:50:46:36:10:cf:dd:a3:25:a3:99:ef:26:6a:8b:4a: 2e:61:58:7c:b7:18:14:ac:a1:06:9b:a7:70:51:0d:4b:9f:c1: 82:a4:9d:91:29:dc:62:ec:f7:68:9b:53:b6:73:44:4e:89:58: 20:97:8b:39:0e:c9:38:fe:0d:b8:21:b6:0b:36:e3:9f:04:ac: 3b:ec:6b:6b:c3:af:66:dc:13:94:46:28:f0:5b:80:10:76:e5: 6b:81:00:d9:34:29:69:01:f4:48:d1:74:1f:0f:84:2d:9d:dc: 0e:8b:9e:15:7d:38:07:35:2c:da:75:03:14:7a:a4:61:f3:ef: 8a:8b:22:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydnjSxum8O/FzRvpHOPgUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZTVhMDYxMzE1NjcwYjViZjI2ZTI3N2M5MmMzODk0ZDcy Y2QzYzUwHhcNMjUxMjA2MDcwMDQxWhcNMjUxMjA3MDcwMDQxWjAzMTEwLwYDVQQD EygyNzhlODg4ZmYzYzNiZjI3ZDNkOTBiNTQzMDQwMTRhMjMyNjBlNjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaaU/f4ymLiOSemp8rNHNZ/fmPz+ fGI3dfbcF4aS2EzfMATfIv4zytUxteVpgIGm9Df5/ihMdrBNKbvqKNnQgaq/Ev5X 90JlNGSWtAtIOMVedqD+bh4Cew4gAgtz5InFKbQ/yvsGPQ6MsWLFn3rsPnaptI/6 7Qpl1EZOmNSud2lG0m/fxx05635MEg4QQVu7p2mveue5jMJwx/+L0HUmZCDwCJFI IbbULFcoy2uHuaqzqUvGtiP8+ri6R7LeaciZwRAkCreF5eDJpGC0VBz+0+twobKC 0ViZanKel4wX5Syqa+GVn+6hfFhuDdMGtQrGDKKwe21NW+j++8s+QU8UzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCeOiI/zw78n09kLVDBAFKIyYOY/MB8GA1UdIwQY MBaAFHDloGExVnC1vybid8ksOJTXLNPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY09XZ1lURldjTFdfSnVKM3lTdzRsTmNzMDhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS83NDZkM2EtMTNiZS00OTJlLThjYjMt NjJhYTA1NGE3ODUxLzEvY09XZ1lURldjTFdfSnVKM3lTdzRsTmNzMDhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS83NDZkM2EtMTNiZS00OTJlLThjYjMtNjJhYTA1NGE3ODUx LzEvY09XZ1lURldjTFdfSnVKM3lTdzRsTmNzMDhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARdD16tue EfmxWqvADZNDs2jCz3B0skOJrc9d4T/l+Uuw/Nz9yxma1TK2Evw6lomiPRWZKy6H AgL8QFGn8GmOS2MYvIDPLwEuDON3cdNk046RA8c0bYfhqQd3aJm7niOrQYM8G1k5 AgilV+SWuqJVO58rU3LcMmOPnv8tZYgW5jS+UEY2EM/doyWjme8maotKLmFYfLcY FKyhBpuncFENS5/BgqSdkSncYuz3aJtTtnNETolYIJeLOQ7JOP4NuCG2CzbjnwSs O+xra8OvZtwTlEYo8FuAEHbla4EA2TQpaQH0SNF0Hw+ELZ3cDoueFX04BzUs2nUD FHqkYfPviosilQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:52 2025 by rpki-client