This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft File: n34J7YuBilTMw-tCb2elWhOKuH0.mft (raw, json) Hash identifier: iKkwichEOJE/4ijXDHZXU3WbtIvl52zaPeXi8VMjn4k= Subject key identifier: 22:77:1F:81:C7:A6:B1:5F:0D:77:6D:25:6E:0A:D1:18:80:00:33:0B Authority key identifier: 9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D Certificate issuer: /CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d Certificate serial: 019B2EFA84B7225635A78DD79A6C7C67E05F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft Manifest number: 0B8D Signing time: Thu 18 Dec 2025 01:02:08 +0000 Manifest this update: Thu 18 Dec 2025 01:02:08 +0000 Manifest next update: Fri 19 Dec 2025 01:02:08 +0000 Files and hashes: 1: n34J7YuBilTMw-tCb2elWhOKuH0.crl (hash: ngldRk9JEhp7bv2uzMhYgvqJ6x1GEYZVsdMIy3vsHhw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:fa:84:b7:22:56:35:a7:8d:d7:9a:6c:7c:67:e0:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d Validity Not Before: Dec 18 01:02:08 2025 GMT Not After : Dec 19 01:02:08 2025 GMT Subject: CN=22771f81c7a6b15f0d776d256e0ad1188000330b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:1d:1f:d3:e5:8b:a9:db:70:f0:e4:77:da:8b: f7:06:92:85:2f:92:ff:46:00:ad:98:34:e9:b6:c4: 94:3f:c3:e3:2c:58:90:ee:01:39:eb:ed:83:a7:b7: b2:00:b4:1c:56:2a:c4:62:bb:14:88:96:46:80:cc: 99:45:50:95:78:60:78:e0:8c:74:f3:2f:fc:6e:b2: 4a:fb:15:79:af:fa:11:02:69:16:2c:be:68:49:ad: 5b:9e:f6:ff:0c:be:c3:15:3f:b8:e6:0f:a6:82:64: 83:fe:fe:79:f7:9a:73:20:1b:cc:74:16:ea:b0:27: fb:9c:48:26:58:31:0d:4f:d6:c7:54:de:37:62:13: 57:eb:cd:9f:4b:d6:a1:a2:46:9b:d7:2b:f2:18:66: 9a:41:70:17:31:a4:fc:75:9a:c7:1c:84:91:68:cf: c3:c3:28:ae:c5:2f:ed:2e:4a:c7:42:1f:b7:50:46: 72:d9:85:76:c7:19:c1:8a:bd:af:c1:5d:82:a6:7a: 3f:0c:7f:79:3f:92:8a:54:e2:39:80:09:c0:61:bb: af:ef:24:af:0e:4f:bd:fb:38:f0:1e:aa:6f:e2:2f: 73:d7:57:b2:f4:fb:2d:2c:04:ab:1b:fc:04:5f:4a: 47:09:1d:95:c8:e7:63:36:80:d2:06:8a:86:30:ef: 61:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:77:1F:81:C7:A6:B1:5F:0D:77:6D:25:6E:0A:D1:18:80:00:33:0B X509v3 Authority Key Identifier: keyid:9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:a6:c3:dc:34:76:f1:96:6d:cc:86:ab:8a:0c:de:55:78:21: 9b:d0:26:11:be:8e:93:c4:de:51:4b:9d:fa:d8:a1:cc:87:b2: 33:b4:47:71:c3:c9:12:79:cd:14:6d:e8:7c:c6:d7:2e:55:31: d1:02:77:31:91:61:5c:77:5d:7d:78:50:2b:92:fa:2c:a7:3b: 01:99:12:1c:f8:09:ba:8e:ce:41:0b:24:01:60:d4:fd:be:ba: d2:bc:21:33:f5:27:4d:49:f2:b0:ba:4f:52:4c:1c:bb:86:82: 43:5a:3b:fa:2a:5c:52:f4:b7:a3:7c:73:91:f7:02:6b:54:e6: cf:c7:a6:6e:5a:e8:68:d4:32:1f:d9:3a:33:7c:fe:cc:a7:c2: fb:03:85:7a:74:99:27:c6:1e:8b:a0:ab:8a:90:27:ba:c0:98: 25:a9:68:08:2d:1b:68:3f:0d:51:6a:5b:ff:a0:5e:6b:6a:bd: 04:6b:06:44:18:64:50:c4:27:b9:e7:98:9d:52:ff:38:5a:ab: b1:28:c4:6c:28:3f:e1:95:73:aa:dd:ef:42:df:c4:32:57:7a: 8a:5f:6d:48:e4:17:1b:23:f4:90:b3:99:f6:01:1f:a9:82:a5: aa:6e:b1:bf:30:d0:a4:d2:cd:63:c1:33:f4:8f:bd:ad:e0:3b: f8:21:ef:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+oS3IlY1p43Xmmx8Z+BfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmN2UwOWVkOGI4MThhNTRjY2MzZWI0MjZmNjdhNTVhMTM4 YWI4N2QwHhcNMjUxMjE4MDEwMjA4WhcNMjUxMjE5MDEwMjA4WjAzMTEwLwYDVQQD EygyMjc3MWY4MWM3YTZiMTVmMGQ3NzZkMjU2ZTBhZDExODgwMDAzMzBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7B0f0+WLqdtw8OR32ov3BpKFL5L/ RgCtmDTptsSUP8PjLFiQ7gE56+2Dp7eyALQcVirEYrsUiJZGgMyZRVCVeGB44Ix0 8y/8brJK+xV5r/oRAmkWLL5oSa1bnvb/DL7DFT+45g+mgmSD/v5595pzIBvMdBbq sCf7nEgmWDENT9bHVN43YhNX682fS9ahokab1yvyGGaaQXAXMaT8dZrHHISRaM/D wyiuxS/tLkrHQh+3UEZy2YV2xxnBir2vwV2Cpno/DH95P5KKVOI5gAnAYbuv7ySv Dk+9+zjwHqpv4i9z11ey9PstLASrG/wEX0pHCR2VyOdjNoDSBoqGMO9hsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCJ3H4HHprFfDXdtJW4K0RiAADMLMB8GA1UdIwQY MBaAFJ9+Ce2LgYpUzMPrQm9npVoTirh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZjhjYzEtOTRjYy00ZjdlLTgxYTMt ZjE5YWQyYmFkN2I5LzEvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS83ZjhjYzEtOTRjYy00ZjdlLTgxYTMtZjE5YWQyYmFkN2I5 LzEvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGKbD3DR2 8ZZtzIarigzeVXghm9AmEb6Ok8TeUUud+tihzIeyM7RHccPJEnnNFG3ofMbXLlUx 0QJ3MZFhXHddfXhQK5L6LKc7AZkSHPgJuo7OQQskAWDU/b660rwhM/UnTUnysLpP Ukwcu4aCQ1o7+ipcUvS3o3xzkfcCa1Tmz8emblroaNQyH9k6M3z+zKfC+wOFenSZ J8Yei6CripAnusCYJaloCC0baD8NUWpb/6Bea2q9BGsGRBhkUMQnueeYnVL/OFqr sSjEbCg/4ZVzqt3vQt/EMld6il9tSOQXGyP0kLOZ9gEfqYKlqm6xvzDQpNLNY8Ez 9I+9reA7+CHvtA== -----END CERTIFICATE-----Generated at Thu Dec 18 07:45:44 2025 by rpki-client