This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft File: U1wJpqvN8dobR6tK8_-O_KWBRF0.mft (raw, json) Hash identifier: 1yynu4vVZCjM4rlLhD+McOWodyszh/1g4aRD1IoUfls= Subject key identifier: EC:81:5C:D1:21:61:96:DE:AA:9D:78:D6:38:54:D8:D9:1A:86:3F:74 Authority key identifier: 53:5C:09:A6:AB:CD:F1:DA:1B:47:AB:4A:F3:FF:8E:FC:A5:81:44:5D Certificate issuer: /CN=535c09a6abcdf1da1b47ab4af3ff8efca581445d Certificate serial: 019AF12CD82DE92C6D6A6B2557686B55554A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1wJpqvN8dobR6tK8_-O_KWBRF0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft Manifest number: 06C5 Signing time: Sat 06 Dec 2025 01:00:39 +0000 Manifest this update: Sat 06 Dec 2025 01:00:39 +0000 Manifest next update: Sun 07 Dec 2025 01:00:39 +0000 Files and hashes: 1: U1wJpqvN8dobR6tK8_-O_KWBRF0.crl (hash: NZKNrg5ABi+UnerqqPSWRfSXYDHalHXbZpcjXHwAMeU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.crl rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft rsync://rpki.ripe.net/repository/DEFAULT/U1wJpqvN8dobR6tK8_-O_KWBRF0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:d8:2d:e9:2c:6d:6a:6b:25:57:68:6b:55:55:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535c09a6abcdf1da1b47ab4af3ff8efca581445d Validity Not Before: Dec 6 01:00:39 2025 GMT Not After : Dec 7 01:00:39 2025 GMT Subject: CN=ec815cd1216196deaa9d78d63854d8d91a863f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e1:d5:65:53:14:50:b5:af:cd:64:3e:a2:a9: ad:4c:0f:0e:6f:1d:4e:1b:c5:42:9f:35:bf:06:6c: 69:3e:c2:ac:8d:8c:c8:55:4d:9c:17:e0:8e:1c:52: c6:e3:cd:3d:31:fd:e2:b8:19:8c:fe:6a:88:e2:15: 8f:76:69:8d:4d:f4:d9:af:e3:19:ab:cc:34:ae:63: a9:1a:19:30:86:e9:dd:f3:2e:6d:df:a2:bb:d7:92: 3c:f4:21:e9:f3:48:9b:18:49:63:9f:f5:80:30:e7: a2:eb:56:de:b8:91:5f:db:db:e3:a8:0b:a6:67:c6: 4b:a3:2c:7e:a1:0c:d1:c7:55:97:16:8d:04:9d:07: 6e:45:2b:0d:00:09:77:39:ba:19:a2:78:ee:61:79: 1d:e4:4e:e4:e9:ee:9e:46:08:c9:62:13:3f:e0:0b: 4c:ca:16:1a:08:37:06:8b:84:0f:aa:c6:1c:e9:aa: cd:66:51:0f:7d:1c:eb:0c:d2:12:f5:15:4b:ca:d2: d7:31:61:7a:47:c9:99:ed:8d:01:1f:b9:96:58:64: 09:3b:03:01:d2:8d:49:e2:2f:1a:e5:19:0b:f5:01: d8:35:72:a7:a4:e2:39:17:e2:45:bd:af:bd:c1:57: 0d:c6:48:bf:52:88:8f:da:8b:8d:e4:3b:4a:03:70: 29:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:81:5C:D1:21:61:96:DE:AA:9D:78:D6:38:54:D8:D9:1A:86:3F:74 X509v3 Authority Key Identifier: keyid:53:5C:09:A6:AB:CD:F1:DA:1B:47:AB:4A:F3:FF:8E:FC:A5:81:44:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1wJpqvN8dobR6tK8_-O_KWBRF0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:9d:15:e2:ad:8d:be:85:80:4b:4b:6e:de:5e:a5:69:04:45: 2d:b0:32:1b:b9:87:ba:31:52:e8:8c:ca:23:03:33:cd:25:9f: 33:e3:24:ad:65:54:02:bc:31:d7:a3:97:28:09:8a:7b:e9:6d: 74:10:d6:54:62:94:43:6e:ed:a6:5b:45:b8:e4:4e:0b:fe:a8: d9:a8:cb:ec:5f:78:cd:d2:00:0d:7a:6c:8e:66:e3:8d:9f:9b: 19:ac:86:49:da:ab:b9:1e:d5:67:c9:0b:9e:aa:dc:62:57:f7: 84:12:1a:0e:09:2c:f0:0b:4f:d2:eb:3f:95:11:a7:62:b4:81: bd:a4:6e:88:d7:28:cf:48:68:b4:b8:9a:49:45:ea:24:c2:60: c5:d0:76:6c:06:11:12:f6:5b:21:94:2f:cc:86:c7:16:b5:e2: c1:bf:33:44:d2:f8:9e:d6:2d:32:21:14:fd:d1:f2:64:4c:00: 3f:c7:18:60:3d:6c:a2:ac:08:92:50:30:fc:f7:8b:8f:32:8f: f0:e2:bc:12:46:07:22:b8:a1:5b:1b:88:17:4b:c2:94:41:2a: 3d:3d:0a:98:3b:64:b0:0f:37:a7:7e:84:04:29:63:1e:d0:ef: 88:db:b7:fe:03:42:ea:7c:8b:80:c8:58:d7:df:a5:78:30:8e: 93:a5:60:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLNgt6SxtamslV2hrVVVKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNWMwOWE2YWJjZGYxZGExYjQ3YWI0YWYzZmY4ZWZjYTU4 MTQ0NWQwHhcNMjUxMjA2MDEwMDM5WhcNMjUxMjA3MDEwMDM5WjAzMTEwLwYDVQQD EyhlYzgxNWNkMTIxNjE5NmRlYWE5ZDc4ZDYzODU0ZDhkOTFhODYzZjc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+HVZVMUULWvzWQ+oqmtTA8Obx1O G8VCnzW/BmxpPsKsjYzIVU2cF+COHFLG4809Mf3iuBmM/mqI4hWPdmmNTfTZr+MZ q8w0rmOpGhkwhund8y5t36K715I89CHp80ibGEljn/WAMOei61beuJFf29vjqAum Z8ZLoyx+oQzRx1WXFo0EnQduRSsNAAl3OboZonjuYXkd5E7k6e6eRgjJYhM/4AtM yhYaCDcGi4QPqsYc6arNZlEPfRzrDNIS9RVLytLXMWF6R8mZ7Y0BH7mWWGQJOwMB 0o1J4i8a5RkL9QHYNXKnpOI5F+JFva+9wVcNxki/UoiP2ouN5DtKA3ApawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOyBXNEhYZbeqp141jhU2Nkahj90MB8GA1UdIwQY MBaAFFNcCaarzfHaG0erSvP/jvylgURdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTF3SnBxdk44ZG9iUjZ0SzhfLU9fS1dCUkYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC82MzYyMmYtYjQ2NC00MDdkLWJjZmQt Yzk0OTFiNGRmZDc2LzEvVTF3SnBxdk44ZG9iUjZ0SzhfLU9fS1dCUkYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC82MzYyMmYtYjQ2NC00MDdkLWJjZmQtYzk0OTFiNGRmZDc2 LzEvVTF3SnBxdk44ZG9iUjZ0SzhfLU9fS1dCUkYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhp0V4q2N voWAS0tu3l6laQRFLbAyG7mHujFS6IzKIwMzzSWfM+MkrWVUArwx16OXKAmKe+lt dBDWVGKUQ27tpltFuOROC/6o2ajL7F94zdIADXpsjmbjjZ+bGayGSdqruR7VZ8kL nqrcYlf3hBIaDgks8AtP0us/lRGnYrSBvaRuiNcoz0hotLiaSUXqJMJgxdB2bAYR EvZbIZQvzIbHFrXiwb8zRNL4ntYtMiEU/dHyZEwAP8cYYD1soqwIklAw/PeLjzKP 8OK8EkYHIrihWxuIF0vClEEqPT0KmDtksA83p36EBCljHtDviNu3/gNC6nyLgMhY 19+leDCOk6Vg6Q== -----END CERTIFICATE-----Generated at Sat Dec 6 10:32:46 2025 by rpki-client