This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft File: 1T5Pyhar83QtTaK_nD2abpHpbuU.mft (raw, json) Hash identifier: 2U8TB/n2oOnAsfh8EQ6tAPy/b3B/r5mNS+jxg+opISI= Subject key identifier: 9B:2F:2E:EB:7D:C0:25:22:2E:8A:1A:D1:67:C5:20:34:B0:2D:94:6F Authority key identifier: D5:3E:4F:CA:16:AB:F3:74:2D:4D:A2:BF:9C:3D:9A:6E:91:E9:6E:E5 Certificate issuer: /CN=d53e4fca16abf3742d4da2bf9c3d9a6e91e96ee5 Certificate serial: 019AF2099C3518EEE422AC21C9306804E42B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft Manifest number: 1474 Signing time: Sat 06 Dec 2025 05:01:47 +0000 Manifest this update: Sat 06 Dec 2025 05:01:47 +0000 Manifest next update: Sun 07 Dec 2025 05:01:47 +0000 Files and hashes: 1: 1T5Pyhar83QtTaK_nD2abpHpbuU.crl (hash: Jz+/WJ9na0ltApUsdhRpll4E8tG5pusLvq+++NLsqWA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:9c:35:18:ee:e4:22:ac:21:c9:30:68:04:e4:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d53e4fca16abf3742d4da2bf9c3d9a6e91e96ee5 Validity Not Before: Dec 6 05:01:47 2025 GMT Not After : Dec 7 05:01:47 2025 GMT Subject: CN=9b2f2eeb7dc025222e8a1ad167c52034b02d946f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a3:74:f0:52:41:ff:ec:c7:cf:f2:f3:ce:9b: 45:a9:cf:72:d8:a9:13:24:89:cc:15:e3:8c:10:e5: 7a:78:98:c2:88:e9:87:ef:8f:cf:54:7d:e8:43:63: 00:b4:aa:05:f2:f0:9c:95:6d:3d:77:b2:88:e9:97: d8:95:52:83:4d:b1:32:7a:f1:5b:2b:0f:98:42:48: 7d:ff:49:56:a0:4c:d2:3b:8c:7f:b3:da:e5:b3:0a: 03:e2:33:94:79:cd:d9:b8:f3:19:4c:c7:60:fa:1e: a3:26:82:5c:78:57:71:e3:2c:6b:fe:71:08:cf:b5: a1:1c:33:68:b6:6c:2c:c2:be:60:90:d4:76:f7:99: 4c:6e:fb:dc:16:0f:03:85:28:87:c2:e0:b4:0d:62: d7:40:e1:77:60:6b:3b:5a:4f:a3:7f:bb:a1:de:37: 77:82:18:55:d6:2d:1c:e4:d0:ca:b6:9b:fc:98:3e: aa:5b:80:7a:95:7e:41:05:20:c9:5d:16:84:56:7e: fd:07:33:83:36:b7:7d:27:d8:8c:81:29:15:72:8e: f9:20:c2:f9:7f:8a:e1:ee:1c:df:b1:0b:ca:ee:9c: 64:9e:7f:b3:64:45:92:f8:c7:6b:f5:82:25:59:3e: 81:01:7e:a3:d8:56:10:22:ff:1b:b2:24:62:54:a3: 2e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2F:2E:EB:7D:C0:25:22:2E:8A:1A:D1:67:C5:20:34:B0:2D:94:6F X509v3 Authority Key Identifier: keyid:D5:3E:4F:CA:16:AB:F3:74:2D:4D:A2:BF:9C:3D:9A:6E:91:E9:6E:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:eb:eb:f8:54:32:b1:ba:7a:d3:45:9b:9f:52:bc:21:ce:a4: da:58:e6:37:69:d4:22:02:4e:f0:e0:b5:58:6a:09:46:49:43: 77:25:7b:11:7f:e2:b9:a9:c4:0e:a6:e9:ca:0f:f8:14:8a:96: 03:62:83:aa:57:fd:20:4e:bf:be:fd:bc:c3:f6:bc:55:82:9d: 08:80:45:29:e4:aa:6f:19:b7:3c:85:05:eb:fa:53:8f:cc:a4: 88:07:dd:51:ff:df:46:e9:7b:8f:ff:62:a1:1d:50:5d:87:0d: ea:88:ab:0e:72:73:b9:f5:d8:ba:02:23:9e:8e:87:a9:f6:a9: b6:a5:36:17:10:16:c2:ac:a5:bf:19:e7:7c:bd:28:10:cf:17: f9:d5:d1:9e:e3:bc:d8:41:db:c3:a0:2e:f9:dc:b3:2e:0d:af: 9f:53:81:a0:15:cf:2d:89:cf:df:bd:3f:73:32:c1:b7:08:9c: da:e2:5d:19:10:e0:54:97:ec:0d:b2:be:50:f2:5b:6e:88:04: 22:84:0a:ef:77:1e:c1:b5:3b:13:87:dc:b5:5f:56:62:cc:a6: 25:e1:cb:92:ec:b7:40:db:8e:79:7d:76:89:09:ce:e2:23:05: 09:25:de:db:83:0a:25:5d:ab:3b:b0:79:87:33:2b:d0:ff:fc: eb:5c:1c:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCZw1GO7kIqwhyTBoBOQrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1M2U0ZmNhMTZhYmYzNzQyZDRkYTJiZjljM2Q5YTZlOTFl OTZlZTUwHhcNMjUxMjA2MDUwMTQ3WhcNMjUxMjA3MDUwMTQ3WjAzMTEwLwYDVQQD Eyg5YjJmMmVlYjdkYzAyNTIyMmU4YTFhZDE2N2M1MjAzNGIwMmQ5NDZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKN08FJB/+zHz/LzzptFqc9y2KkT JInMFeOMEOV6eJjCiOmH74/PVH3oQ2MAtKoF8vCclW09d7KI6ZfYlVKDTbEyevFb Kw+YQkh9/0lWoEzSO4x/s9rlswoD4jOUec3ZuPMZTMdg+h6jJoJceFdx4yxr/nEI z7WhHDNotmwswr5gkNR295lMbvvcFg8DhSiHwuC0DWLXQOF3YGs7Wk+jf7uh3jd3 ghhV1i0c5NDKtpv8mD6qW4B6lX5BBSDJXRaEVn79BzODNrd9J9iMgSkVco75IML5 f4rh7hzfsQvK7pxknn+zZEWS+Mdr9YIlWT6BAX6j2FYQIv8bsiRiVKMu2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJsvLut9wCUiLooa0WfFIDSwLZRvMB8GA1UdIwQY MBaAFNU+T8oWq/N0LU2iv5w9mm6R6W7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVQ1UHloYXI4M1F0VGFLX25EMmFicEhwYnVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8zZGYwOWItNjFlZC00MDgzLTk3OGIt MjYzMzUwZGVjMTk0LzEvMVQ1UHloYXI4M1F0VGFLX25EMmFicEhwYnVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8zZGYwOWItNjFlZC00MDgzLTk3OGItMjYzMzUwZGVjMTk0 LzEvMVQ1UHloYXI4M1F0VGFLX25EMmFicEhwYnVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkOvr+FQy sbp600Wbn1K8Ic6k2ljmN2nUIgJO8OC1WGoJRklDdyV7EX/iuanEDqbpyg/4FIqW A2KDqlf9IE6/vv28w/a8VYKdCIBFKeSqbxm3PIUF6/pTj8ykiAfdUf/fRul7j/9i oR1QXYcN6oirDnJzufXYugIjno6HqfaptqU2FxAWwqylvxnnfL0oEM8X+dXRnuO8 2EHbw6Au+dyzLg2vn1OBoBXPLYnP370/czLBtwic2uJdGRDgVJfsDbK+UPJbbogE IoQK73cewbU7E4fctV9WYsymJeHLkuy3QNuOeX12iQnO4iMFCSXe24MKJV2rO7B5 hzMr0P/861wcYQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:40 2025 by rpki-client