This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft File: dZ27tMoEMpvFCdbdHNULk1atiQY.mft (raw, json) Hash identifier: nusSIN59BcmeDm4fEbbt1GMO3orwFcp5ExPNawtWofA= Subject key identifier: E7:E1:F0:B3:CA:BF:39:8E:D7:2E:7C:F7:A2:00:EA:F1:45:4B:38:D7 Authority key identifier: 75:9D:BB:B4:CA:04:32:9B:C5:09:D6:DD:1C:D5:0B:93:56:AD:89:06 Certificate issuer: /CN=759dbbb4ca04329bc509d6dd1cd50b9356ad8906 Certificate serial: 019AF23FE0E5913A2C1B4802208FCFE17EE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft Manifest number: E9 Signing time: Sat 06 Dec 2025 06:01:03 +0000 Manifest this update: Sat 06 Dec 2025 06:01:03 +0000 Manifest next update: Sun 07 Dec 2025 06:01:03 +0000 Files and hashes: 1: dZ27tMoEMpvFCdbdHNULk1atiQY.crl (hash: 7mSbYU3B4o8nIu/PnPhfX54u5FY0tfEliIZ6R1+DlwE=) 2: rOJqhADJ5rc7U_0FXgnllg311Uw.roa (hash: Cbl9MsCAqt+xAwhZCVrGdH/26tfRlYC7HA90lZevZDY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.crl rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:e0:e5:91:3a:2c:1b:48:02:20:8f:cf:e1:7e:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=759dbbb4ca04329bc509d6dd1cd50b9356ad8906 Validity Not Before: Dec 6 06:01:03 2025 GMT Not After : Dec 7 06:01:03 2025 GMT Subject: CN=e7e1f0b3cabf398ed72e7cf7a200eaf1454b38d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:09:e2:7f:63:ae:21:37:07:ff:5f:b2:c3:33: a5:57:85:f4:50:4c:7a:87:68:16:b1:b7:39:7c:af: ec:90:90:13:a9:ea:45:6f:38:0d:77:e3:8e:74:ef: 51:ad:1e:24:dc:02:e4:b5:a3:b4:54:03:fb:c0:cc: c2:9f:42:f5:ef:dd:4d:ac:d7:96:4b:9e:ae:a7:31: ae:98:da:d2:1b:cb:d9:36:8c:aa:06:15:c2:b7:b4: b0:97:75:0b:fd:23:be:07:1e:d4:ff:ed:c7:93:71: 2f:54:e2:bd:29:f2:64:d7:00:23:48:c1:3b:a1:74: 20:de:5e:65:84:b7:e7:48:84:0b:04:35:8c:a9:4f: 80:7d:09:e1:85:62:4f:d1:57:f9:1b:99:e4:8c:f7: 80:49:02:2e:e1:ca:2a:8b:b7:07:f2:43:2b:aa:0c: 0d:66:40:0c:ef:43:0f:a3:c2:7d:78:5b:e3:84:d4: d2:52:a4:4e:67:37:b0:29:6f:1d:7f:d5:b1:44:ae: d4:47:2b:ac:33:13:80:d7:7f:f0:1d:25:ad:42:84: 15:e1:bb:24:ee:1f:c9:4c:97:1d:44:e9:50:db:1e: ec:7a:ba:24:75:b1:3f:32:bf:30:6e:04:2b:9a:94: d1:6b:d4:2e:69:80:e9:0e:b9:25:bb:3f:6a:c0:f0: b7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E1:F0:B3:CA:BF:39:8E:D7:2E:7C:F7:A2:00:EA:F1:45:4B:38:D7 X509v3 Authority Key Identifier: keyid:75:9D:BB:B4:CA:04:32:9B:C5:09:D6:DD:1C:D5:0B:93:56:AD:89:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:3b:6e:0a:9f:c7:c7:83:76:5e:a5:7f:fa:38:9c:09:53:f5: b6:1d:f6:58:0d:a1:64:fd:38:e6:49:b2:05:3f:e0:ac:d9:2a: 5b:18:46:fd:84:55:9c:87:a7:cc:92:73:e0:26:9c:88:03:ca: fd:82:1a:dc:fd:0d:32:8e:ec:8f:8f:41:ba:38:64:bd:e6:00: 10:4e:4e:83:f1:a8:70:a4:d5:2e:9a:d4:01:67:c0:b7:92:fd: 0a:f6:d1:4c:25:b7:d5:7b:bc:00:c0:cd:3f:c4:e0:02:65:05: 67:f1:e6:61:42:1c:7d:53:f2:af:b6:6b:6a:3c:f5:d9:6b:18: fd:27:50:2f:16:7f:7c:f8:e9:4e:fc:67:bd:bb:5f:79:02:60: d3:d6:b6:26:f2:a2:74:4e:b3:db:62:5d:21:69:3b:30:d0:3d: 58:87:43:64:1f:61:91:09:e7:85:4a:5b:8a:63:75:90:cd:0e: 39:64:28:0b:a3:ff:b1:b0:37:b3:23:46:08:18:8e:50:40:ad: f6:a0:69:d7:6c:2e:e1:a3:37:94:9f:ff:45:f9:ce:c2:0d:eb: 7e:c5:7a:2b:66:38:13:f3:98:c8:ad:70:1d:b5:87:a6:02:9d: 24:c7:fa:f1:55:c7:d4:02:7a:e4:25:01:f0:30:25:8b:2c:33: 60:15:9d:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP+DlkTosG0gCII/P4X7lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1OWRiYmI0Y2EwNDMyOWJjNTA5ZDZkZDFjZDUwYjkzNTZh ZDg5MDYwHhcNMjUxMjA2MDYwMTAzWhcNMjUxMjA3MDYwMTAzWjAzMTEwLwYDVQQD EyhlN2UxZjBiM2NhYmYzOThlZDcyZTdjZjdhMjAwZWFmMTQ1NGIzOGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwnif2OuITcH/1+ywzOlV4X0UEx6 h2gWsbc5fK/skJATqepFbzgNd+OOdO9RrR4k3ALktaO0VAP7wMzCn0L1791NrNeW S56upzGumNrSG8vZNoyqBhXCt7Swl3UL/SO+Bx7U/+3Hk3EvVOK9KfJk1wAjSME7 oXQg3l5lhLfnSIQLBDWMqU+AfQnhhWJP0Vf5G5nkjPeASQIu4coqi7cH8kMrqgwN ZkAM70MPo8J9eFvjhNTSUqROZzewKW8df9WxRK7URyusMxOA13/wHSWtQoQV4bsk 7h/JTJcdROlQ2x7serokdbE/Mr8wbgQrmpTRa9QuaYDpDrkluz9qwPC3/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOfh8LPKvzmO1y5896IA6vFFSzjXMB8GA1UdIwQY MBaAFHWdu7TKBDKbxQnW3RzVC5NWrYkGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFoyN3RNb0VNcHZGQ2RiZEhOVUxrMWF0aVFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8zYTQ0YTItN2YzNy00ZWY1LWIwMzQt YTRmYzY3ZTFjMmZiLzEvZFoyN3RNb0VNcHZGQ2RiZEhOVUxrMWF0aVFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8zYTQ0YTItN2YzNy00ZWY1LWIwMzQtYTRmYzY3ZTFjMmZi LzEvZFoyN3RNb0VNcHZGQ2RiZEhOVUxrMWF0aVFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADjtuCp/H x4N2XqV/+jicCVP1th32WA2hZP045kmyBT/grNkqWxhG/YRVnIenzJJz4CaciAPK /YIa3P0NMo7sj49BujhkveYAEE5Og/GocKTVLprUAWfAt5L9CvbRTCW31Xu8AMDN P8TgAmUFZ/HmYUIcfVPyr7Zrajz12WsY/SdQLxZ/fPjpTvxnvbtfeQJg09a2JvKi dE6z22JdIWk7MNA9WIdDZB9hkQnnhUpbimN1kM0OOWQoC6P/sbA3syNGCBiOUECt 9qBp12wu4aM3lJ//RfnOwg3rfsV6K2Y4E/OYyK1wHbWHpgKdJMf68VXH1AJ65CUB 8DAliywzYBWd1Q== -----END CERTIFICATE-----Generated at Sat Dec 6 11:25:48 2025 by rpki-client