This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft File: FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft (raw, json) Hash identifier: 6OoRsYW9jkXoZU20WdX8QvvWQ8iA/10NeLg/FZMGgV0= Subject key identifier: 61:16:7C:5C:5A:39:5D:FD:87:E8:89:C6:49:BE:8C:59:D0:BB:A2:06 Authority key identifier: 14:BB:6F:AC:69:19:D9:00:A2:FE:BB:78:1D:19:7F:4D:81:34:E0:5B Certificate issuer: /CN=14bb6fac6919d900a2febb781d197f4d8134e05b Certificate serial: 019AF276600B08E539FEA4ABD2E86E762D88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft Manifest number: 1378 Signing time: Sat 06 Dec 2025 07:00:35 +0000 Manifest this update: Sat 06 Dec 2025 07:00:35 +0000 Manifest next update: Sun 07 Dec 2025 07:00:35 +0000 Files and hashes: 1: FLtvrGkZ2QCi_rt4HRl_TYE04Fs.crl (hash: rCMGvVaGcIil3nkqkAXAr5PHFSvMApwKHlVuM2F/few=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.crl rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft rsync://rpki.ripe.net/repository/DEFAULT/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:60:0b:08:e5:39:fe:a4:ab:d2:e8:6e:76:2d:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14bb6fac6919d900a2febb781d197f4d8134e05b Validity Not Before: Dec 6 07:00:35 2025 GMT Not After : Dec 7 07:00:35 2025 GMT Subject: CN=61167c5c5a395dfd87e889c649be8c59d0bba206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:71:f7:34:69:a1:f0:14:08:98:dc:b7:81:a4: 94:4a:65:1b:9b:b0:14:48:26:59:b8:d5:e8:94:ac: 89:cc:18:31:40:6d:c1:02:fa:b3:57:90:43:39:40: 33:39:b8:84:1b:22:bc:51:5a:73:78:55:7b:31:1a: 21:fc:f0:e8:77:f7:12:63:2f:4e:ad:4c:9f:e6:3a: 65:2b:7a:ce:2d:f1:5f:ec:9c:f6:a4:9a:17:a6:57: 2d:92:75:cf:d8:ba:ce:7e:be:50:87:11:e7:4d:86: cb:fe:b2:b1:2d:3a:52:bc:19:61:f9:e5:a9:52:b9: c6:2f:d6:ae:85:eb:e9:25:76:fd:c7:da:1c:33:85: f6:fa:a6:c7:4e:f1:77:0b:51:cf:ee:96:bb:34:3f: b4:2f:4b:27:32:4e:e5:44:c0:ae:05:9e:57:7f:44: 65:08:fb:1d:b3:16:0b:09:39:f5:69:89:e0:32:e5: 82:01:a5:37:e1:9b:4b:d9:94:8e:f2:12:05:bb:44: d6:9a:16:46:3a:02:1e:e8:94:dc:c8:d1:22:c7:13: eb:28:f0:6b:df:4c:7e:88:80:71:76:33:21:11:7a: 14:c7:f9:82:06:f6:7f:40:c4:3d:b2:73:c4:4f:9d: cf:5a:3e:c3:58:86:54:c3:ba:cd:27:ee:17:33:c1: 73:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:16:7C:5C:5A:39:5D:FD:87:E8:89:C6:49:BE:8C:59:D0:BB:A2:06 X509v3 Authority Key Identifier: keyid:14:BB:6F:AC:69:19:D9:00:A2:FE:BB:78:1D:19:7F:4D:81:34:E0:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:69:62:23:89:5a:21:43:12:2f:9c:05:89:2d:ad:30:38:05: 51:d7:97:e5:e1:43:68:2e:f5:92:51:35:9b:85:ad:e0:b2:03: 10:82:13:a0:82:80:28:32:17:21:b4:e0:b9:a9:ea:45:2e:fb: 41:f4:7b:6d:4f:20:64:c0:54:ae:28:e3:4b:18:42:29:b2:dc: 13:48:f2:88:cc:99:ad:45:e1:30:ed:68:f6:b8:ea:d0:0b:58: 50:c1:56:f6:c5:2f:d8:26:30:90:18:ad:6b:2d:d7:c9:3c:2f: 0d:01:ae:ab:86:c6:29:d6:72:f3:e5:8f:bf:fc:e2:5d:40:e7: 2b:43:99:ae:f2:3b:ab:54:ba:1d:0c:6c:62:e2:17:d5:83:dc: 01:92:74:11:ae:cb:f9:90:73:b7:c6:14:54:05:d3:bb:74:1f: a5:1e:bc:5d:c0:60:f7:ab:f3:73:ad:6b:66:08:6a:5d:d1:55: 0a:cb:e0:c4:c4:8f:f9:1a:1c:83:f5:6e:c7:ec:e2:b4:6d:d0: 85:a5:16:8e:c1:89:14:33:12:fe:b8:2d:73:ab:55:99:39:e5: 59:be:b2:13:56:35:f1:60:07:67:a3:07:fe:8f:b3:ed:0b:ec: 72:dc:ce:2f:60:a8:c2:c8:dc:62:42:02:b5:59:6f:bd:af:27: ad:3f:62:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydmALCOU5/qSr0uhudi2IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0YmI2ZmFjNjkxOWQ5MDBhMmZlYmI3ODFkMTk3ZjRkODEz NGUwNWIwHhcNMjUxMjA2MDcwMDM1WhcNMjUxMjA3MDcwMDM1WjAzMTEwLwYDVQQD Eyg2MTE2N2M1YzVhMzk1ZGZkODdlODg5YzY0OWJlOGM1OWQwYmJhMjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHH3NGmh8BQImNy3gaSUSmUbm7AU SCZZuNXolKyJzBgxQG3BAvqzV5BDOUAzObiEGyK8UVpzeFV7MRoh/PDod/cSYy9O rUyf5jplK3rOLfFf7Jz2pJoXplctknXP2LrOfr5QhxHnTYbL/rKxLTpSvBlh+eWp UrnGL9auhevpJXb9x9ocM4X2+qbHTvF3C1HP7pa7ND+0L0snMk7lRMCuBZ5Xf0Rl CPsdsxYLCTn1aYngMuWCAaU34ZtL2ZSO8hIFu0TWmhZGOgIe6JTcyNEixxPrKPBr 30x+iIBxdjMhEXoUx/mCBvZ/QMQ9snPET53PWj7DWIZUw7rNJ+4XM8FziwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGEWfFxaOV39h+iJxkm+jFnQu6IGMB8GA1UdIwQY MBaAFBS7b6xpGdkAov67eB0Zf02BNOBbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkx0dnJHa1oyUUNpX3J0NEhSbF9UWUUwNEZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC80ZjRlNWYtMjU0OS00ZmY4LWIzZjct MmU4NTk1NzVlMWVhLzEvRkx0dnJHa1oyUUNpX3J0NEhSbF9UWUUwNEZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC80ZjRlNWYtMjU0OS00ZmY4LWIzZjctMmU4NTk1NzVlMWVh LzEvRkx0dnJHa1oyUUNpX3J0NEhSbF9UWUUwNEZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsGliI4la IUMSL5wFiS2tMDgFUdeX5eFDaC71klE1m4Wt4LIDEIIToIKAKDIXIbTguanqRS77 QfR7bU8gZMBUrijjSxhCKbLcE0jyiMyZrUXhMO1o9rjq0AtYUMFW9sUv2CYwkBit ay3XyTwvDQGuq4bGKdZy8+WPv/ziXUDnK0OZrvI7q1S6HQxsYuIX1YPcAZJ0Ea7L +ZBzt8YUVAXTu3QfpR68XcBg96vzc61rZghqXdFVCsvgxMSP+Rocg/Vux+zitG3Q haUWjsGJFDMS/rgtc6tVmTnlWb6yE1Y18WAHZ6MH/o+z7QvsctzOL2CowsjcYkIC tVlvva8nrT9i9w== -----END CERTIFICATE-----Generated at Sat Dec 6 11:51:50 2025 by rpki-client