This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft File: k4EH0RRkaaEaY-X10tfbj28717M.mft (raw, json) Hash identifier: Q80uDV3X3AGtUpQSP3kx83wHn8TFJxZ4/TSS3qML0oI= Subject key identifier: E5:E2:1B:61:6F:F4:FA:A5:47:D5:1C:84:E4:59:8B:0A:83:7E:1B:ED Authority key identifier: 93:81:07:D1:14:64:69:A1:1A:63:E5:F5:D2:D7:DB:8F:6F:3B:D7:B3 Certificate issuer: /CN=938107d1146469a11a63e5f5d2d7db8f6f3bd7b3 Certificate serial: 019AF31B9D81EA90AD96F8C0ACD535FC5DE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft Manifest number: 07C6 Signing time: Sat 06 Dec 2025 10:01:04 +0000 Manifest this update: Sat 06 Dec 2025 10:01:04 +0000 Manifest next update: Sun 07 Dec 2025 10:01:04 +0000 Files and hashes: 1: k4EH0RRkaaEaY-X10tfbj28717M.crl (hash: vWrxnVbdOTpbns06P0EAUO147x/7ljYM/nzN4jQ4CVw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.crl rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft rsync://rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:9d:81:ea:90:ad:96:f8:c0:ac:d5:35:fc:5d:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=938107d1146469a11a63e5f5d2d7db8f6f3bd7b3 Validity Not Before: Dec 6 10:01:04 2025 GMT Not After : Dec 7 10:01:04 2025 GMT Subject: CN=e5e21b616ff4faa547d51c84e4598b0a837e1bed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:bf:d8:de:27:66:1c:2f:0b:b9:06:96:46: 05:0b:0e:60:d3:94:1f:a4:15:ed:7d:9d:5b:36:36: c2:5e:f4:4e:80:65:bb:ae:f9:8e:7e:66:d5:44:7e: 57:d9:ef:23:ed:87:9b:25:41:30:85:38:86:8b:11: a4:9e:0e:a5:69:09:48:f3:73:77:c0:9d:21:52:2d: 14:e2:f3:82:72:4b:46:de:ee:b9:13:79:35:c8:fa: 57:68:58:6b:94:53:98:8d:d3:bf:77:5c:76:6d:62: 9e:6a:5d:66:11:7b:5f:d8:4e:67:b1:c4:94:47:c9: 6d:d8:45:81:d5:5e:d0:8a:75:78:5e:0c:a6:50:31: a3:68:6f:63:07:c7:9b:c7:ce:78:f0:6b:c8:b2:2d: ac:a9:87:82:f6:12:6b:87:6c:d0:b2:e9:fb:4c:8b: f5:29:b6:30:ac:5c:5a:1f:19:38:3a:93:8a:09:6c: 49:33:50:5a:08:45:4e:c8:ff:23:51:e6:66:f5:59: e2:f2:05:ac:93:5f:7e:0d:81:9b:a2:51:c1:f6:e7: a1:4b:f7:90:8b:d0:d1:85:b4:11:1c:08:d4:23:51: 47:7d:06:9e:5a:fe:a9:c0:85:07:94:9e:9a:29:8c: 79:ab:0a:2b:31:18:f9:30:4f:b9:e9:86:82:2b:4e: 0b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E2:1B:61:6F:F4:FA:A5:47:D5:1C:84:E4:59:8B:0A:83:7E:1B:ED X509v3 Authority Key Identifier: keyid:93:81:07:D1:14:64:69:A1:1A:63:E5:F5:D2:D7:DB:8F:6F:3B:D7:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:2d:5a:8e:9f:8f:b0:4c:b3:77:5e:aa:1e:74:79:be:d9:41: 99:96:fe:73:ba:da:c3:bd:02:14:aa:18:cc:47:8e:41:95:87: 32:25:b6:1d:35:c3:f6:9b:29:e3:9e:72:af:37:2e:10:32:85: 6a:76:bf:56:7a:86:42:0d:1f:2d:06:72:b4:c5:1f:ca:a2:13: 4f:4f:88:30:bb:e3:07:c7:aa:48:f4:56:d4:ff:cc:b8:ee:2b: 67:a9:46:47:64:88:a6:96:14:a5:56:9f:3a:7d:05:92:40:a9: 1f:1f:8c:2f:7e:2f:da:44:85:77:53:a1:4c:21:47:24:fe:77: be:1f:64:61:10:91:d0:3f:9b:7c:43:4e:35:36:b1:b0:a7:b5: f2:2b:32:da:2e:50:0e:00:e0:e2:44:08:8e:5a:24:c0:e7:67: 9a:4d:78:b7:36:32:1f:fe:d5:c1:8c:05:1f:9f:a9:0e:e3:bb: b0:7c:8f:9a:e4:06:64:82:d1:40:03:68:42:bf:3f:55:b7:cc: b1:d8:a3:29:dc:1e:32:ab:00:e2:c0:09:55:fc:e0:4c:8d:32: c3:65:48:98:d7:c4:d2:f4:d5:cc:b2:b7:13:4d:9b:06:03:b2: 83:88:4a:3b:de:09:45:7c:67:0b:d9:25:fa:d4:43:c3:67:d6: 67:42:bd:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG52B6pCtlvjArNU1/F3oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzODEwN2QxMTQ2NDY5YTExYTYzZTVmNWQyZDdkYjhmNmYz YmQ3YjMwHhcNMjUxMjA2MTAwMTA0WhcNMjUxMjA3MTAwMTA0WjAzMTEwLwYDVQQD EyhlNWUyMWI2MTZmZjRmYWE1NDdkNTFjODRlNDU5OGIwYTgzN2UxYmVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz02/2N4nZhwvC7kGlkYFCw5g05Qf pBXtfZ1bNjbCXvROgGW7rvmOfmbVRH5X2e8j7YebJUEwhTiGixGkng6laQlI83N3 wJ0hUi0U4vOCcktG3u65E3k1yPpXaFhrlFOYjdO/d1x2bWKeal1mEXtf2E5nscSU R8lt2EWB1V7QinV4XgymUDGjaG9jB8ebx8548GvIsi2sqYeC9hJrh2zQsun7TIv1 KbYwrFxaHxk4OpOKCWxJM1BaCEVOyP8jUeZm9Vni8gWsk19+DYGbolHB9uehS/eQ i9DRhbQRHAjUI1FHfQaeWv6pwIUHlJ6aKYx5qworMRj5ME+56YaCK04L+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOXiG2Fv9PqlR9UchORZiwqDfhvtMB8GA1UdIwQY MBaAFJOBB9EUZGmhGmPl9dLX249vO9ezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazRFSDBSUmthYUVhWS1YMTB0ZmJqMjg3MTdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9hZmY0YTktM2M1ZS00YTcxLWI1MjQt Y2JjNmNjYzA4OTMyLzEvazRFSDBSUmthYUVhWS1YMTB0ZmJqMjg3MTdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9hZmY0YTktM2M1ZS00YTcxLWI1MjQtY2JjNmNjYzA4OTMy LzEvazRFSDBSUmthYUVhWS1YMTB0ZmJqMjg3MTdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABy1ajp+P sEyzd16qHnR5vtlBmZb+c7raw70CFKoYzEeOQZWHMiW2HTXD9psp455yrzcuEDKF ana/VnqGQg0fLQZytMUfyqITT0+IMLvjB8eqSPRW1P/MuO4rZ6lGR2SIppYUpVaf On0FkkCpHx+ML34v2kSFd1OhTCFHJP53vh9kYRCR0D+bfENONTaxsKe18isy2i5Q DgDg4kQIjlokwOdnmk14tzYyH/7VwYwFH5+pDuO7sHyPmuQGZILRQANoQr8/VbfM sdijKdweMqsA4sAJVfzgTI0yw2VImNfE0vTVzLK3E02bBgOyg4hKO94JRXxnC9kl +tRDw2fWZ0K9vg== -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:25 2025 by rpki-client