This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft File: 4TcnopRRvk3Zkitg0cWW6Aaplfs.mft (raw, json) Hash identifier: FW3puq9PYOwjTDHPpy4EZFykcZ6sycWUeV+2DlZCD1w= Subject key identifier: 8C:CD:50:15:32:62:47:27:A4:1D:DB:0B:29:CD:DC:CA:17:88:6F:8F Authority key identifier: E1:37:27:A2:94:51:BE:4D:D9:92:2B:60:D1:C5:96:E8:06:A9:95:FB Certificate issuer: /CN=e13727a29451be4dd9922b60d1c596e806a995fb Certificate serial: 019AF31C113241D544876246025EDAD41BFB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 10:01:34 +0000 Manifest this update: Sat 06 Dec 2025 10:01:34 +0000 Manifest next update: Sun 07 Dec 2025 10:01:34 +0000 Files and hashes: 1: 4TcnopRRvk3Zkitg0cWW6Aaplfs.crl (hash: Gg1WSyEdwAgvlCylF3uhhkkgHCQkzhGft/yg2wPqmDg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:11:32:41:d5:44:87:62:46:02:5e:da:d4:1b:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e13727a29451be4dd9922b60d1c596e806a995fb Validity Not Before: Dec 6 10:01:34 2025 GMT Not After : Dec 7 10:01:34 2025 GMT Subject: CN=8ccd501532624727a41ddb0b29cddcca17886f8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:7b:b5:ba:bb:c9:47:4c:35:8a:27:f5:ea:5e: 59:3f:1f:e7:f5:16:a2:bf:41:12:be:70:73:13:85: 69:d3:98:6f:64:1c:36:8a:bf:fb:28:a3:45:c7:28: 6c:6d:ff:cd:8f:08:fc:d8:78:80:83:b1:12:6f:1f: 2b:1a:82:09:3c:9c:38:ab:8e:09:2e:98:2b:87:05: ac:82:a9:6b:05:ff:ca:b5:62:c8:8a:d7:9d:0b:74: ed:75:02:a9:96:f4:f9:65:95:20:55:57:76:82:dd: 80:63:0a:43:e1:61:b1:35:af:3e:f0:ae:23:98:7c: 49:c7:96:0a:35:66:6b:a2:c7:f9:71:be:b3:d1:d1: ed:13:b5:9a:d3:71:cd:ca:88:c6:7b:4b:89:fe:56: 05:5f:94:54:eb:c2:13:66:a6:a9:b7:99:f0:e3:72: ab:11:31:80:41:a1:52:c8:5f:bd:e1:ac:59:34:74: f9:8e:b2:a1:01:b4:65:45:b3:5f:9b:70:3d:d3:56: d0:1c:7b:3e:f5:13:17:a2:4a:f3:52:fd:a7:12:5d: 2f:5e:c1:84:56:6c:02:ec:63:05:4d:5b:f8:5c:87: 69:fb:70:f4:10:1b:ba:2e:1c:89:00:c7:98:ac:cc: 34:fe:55:72:a0:a1:cc:78:9b:c3:a2:46:ae:39:be: 7d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CD:50:15:32:62:47:27:A4:1D:DB:0B:29:CD:DC:CA:17:88:6F:8F X509v3 Authority Key Identifier: keyid:E1:37:27:A2:94:51:BE:4D:D9:92:2B:60:D1:C5:96:E8:06:A9:95:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:3b:b8:49:59:4c:ab:21:fa:b0:e2:fe:3a:4c:c2:b4:6d:ba: 69:e1:13:ba:cb:88:17:d4:9a:1a:48:22:bc:82:c5:a9:fb:c3: e9:37:5a:bf:a1:69:3b:39:06:c4:6c:55:96:49:d9:72:03:58: f5:84:1d:46:78:e5:6c:65:e3:15:bd:c7:ac:a5:3a:d7:a2:4f: 62:ad:51:8a:8a:96:b0:ee:be:87:7c:2b:00:b6:7c:3b:8e:b3: d0:4f:d3:ba:d6:27:a2:10:6e:5e:e2:56:79:f8:f9:a9:5d:b2: 2d:7d:2a:f4:5b:00:9c:b0:95:88:c1:6c:6b:23:85:d5:e8:51: 88:b8:b0:4e:43:b6:b6:91:30:16:ee:38:5c:f3:68:c4:15:ae: 49:ef:2d:1c:72:c2:3b:eb:99:06:84:ba:a3:ae:4b:7e:dc:3c: 25:d9:05:be:93:69:91:83:8a:6b:90:56:9d:b7:c3:f5:c7:0d: 81:e1:e4:1f:26:39:ec:d7:48:74:d5:81:9f:29:d9:56:69:7c: 28:d1:5e:02:99:aa:56:9c:c1:7c:f9:6b:d0:82:c9:9d:59:1f: ac:31:7e:42:c6:5f:84:40:09:68:49:51:8f:d9:16:34:f1:be: 7b:3a:c3:9c:09:b1:27:f0:5e:e0:3b:a3:99:27:83:cd:02:10: 78:79:75:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHBEyQdVEh2JGAl7a1Bv7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxMzcyN2EyOTQ1MWJlNGRkOTkyMmI2MGQxYzU5NmU4MDZh OTk1ZmIwHhcNMjUxMjA2MTAwMTM0WhcNMjUxMjA3MTAwMTM0WjAzMTEwLwYDVQQD Eyg4Y2NkNTAxNTMyNjI0NzI3YTQxZGRiMGIyOWNkZGNjYTE3ODg2ZjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl3u1urvJR0w1iif16l5ZPx/n9Rai v0ESvnBzE4Vp05hvZBw2ir/7KKNFxyhsbf/Njwj82HiAg7ESbx8rGoIJPJw4q44J LpgrhwWsgqlrBf/KtWLIitedC3TtdQKplvT5ZZUgVVd2gt2AYwpD4WGxNa8+8K4j mHxJx5YKNWZrosf5cb6z0dHtE7Wa03HNyojGe0uJ/lYFX5RU68ITZqapt5nw43Kr ETGAQaFSyF+94axZNHT5jrKhAbRlRbNfm3A901bQHHs+9RMXokrzUv2nEl0vXsGE VmwC7GMFTVv4XIdp+3D0EBu6LhyJAMeYrMw0/lVyoKHMeJvDokauOb599wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIzNUBUyYkcnpB3bCynN3MoXiG+PMB8GA1UdIwQY MBaAFOE3J6KUUb5N2ZIrYNHFlugGqZX7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFRjbm9wUlJ2azNaa2l0ZzBjV1c2QWFwbGZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9kZTM3ZmEtMWJkMi00N2Y1LTllMmIt YWM0YzhmMTk4NzZkLzEvNFRjbm9wUlJ2azNaa2l0ZzBjV1c2QWFwbGZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS9kZTM3ZmEtMWJkMi00N2Y1LTllMmItYWM0YzhmMTk4NzZk LzEvNFRjbm9wUlJ2azNaa2l0ZzBjV1c2QWFwbGZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaTu4SVlM qyH6sOL+OkzCtG26aeETusuIF9SaGkgivILFqfvD6Tdav6FpOzkGxGxVlknZcgNY 9YQdRnjlbGXjFb3HrKU616JPYq1RioqWsO6+h3wrALZ8O46z0E/TutYnohBuXuJW efj5qV2yLX0q9FsAnLCViMFsayOF1ehRiLiwTkO2tpEwFu44XPNoxBWuSe8tHHLC O+uZBoS6o65Lftw8JdkFvpNpkYOKa5BWnbfD9ccNgeHkHyY57NdIdNWBnynZVml8 KNFeApmqVpzBfPlr0ILJnVkfrDF+QsZfhEAJaElRj9kWNPG+ezrDnAmxJ/Be4Duj mSeDzQIQeHl19Q== -----END CERTIFICATE-----Generated at Sat Dec 6 17:54:17 2025 by rpki-client