This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft File: 9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft (raw, json) Hash identifier: YqNF+W28kPdiJm/SWwD54hG61qBu+ZkOWeoEKMyIn7g= Subject key identifier: 73:07:9C:EB:87:2F:60:04:0B:E3:22:B8:58:87:0B:61:9B:70:55:E6 Authority key identifier: F7:05:92:C9:0B:4C:B2:45:E5:47:18:D7:C5:79:9B:47:D4:19:A6:84 Certificate issuer: /CN=f70592c90b4cb245e54718d7c5799b47d419a684 Certificate serial: 019AF4650B3F3E5EBB7A58BA4A3F0419C3A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 16:00:53 +0000 Manifest this update: Sat 06 Dec 2025 16:00:53 +0000 Manifest next update: Sun 07 Dec 2025 16:00:53 +0000 Files and hashes: 1: 9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl (hash: 5RRSh80A9HQb84SRRjoB7kzjMJFFyNZdw+y2Bx0lnHM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 16:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:0b:3f:3e:5e:bb:7a:58:ba:4a:3f:04:19:c3:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f70592c90b4cb245e54718d7c5799b47d419a684 Validity Not Before: Dec 6 16:00:53 2025 GMT Not After : Dec 7 16:00:53 2025 GMT Subject: CN=73079ceb872f60040be322b858870b619b7055e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d1:1d:61:b7:af:54:db:c5:ae:0d:5f:3b:04: ae:b3:33:58:e0:92:13:fd:fd:20:76:9d:aa:cf:18: 6f:11:f8:8a:10:67:f7:fe:54:38:1c:65:ec:16:58: 96:c0:d1:a0:07:1d:68:c3:11:83:4a:8f:dc:c7:0d: 4a:72:a1:8a:0a:d6:46:88:ac:7a:5b:b8:6c:51:12: 89:02:21:f5:7c:8f:25:54:22:e3:42:59:76:b9:88: d3:a8:c9:b0:c1:b8:24:74:9b:22:a3:33:74:f6:d5: 20:f0:b5:a6:05:04:9e:34:e0:8a:ec:b8:f5:f9:b9: 84:f4:b2:da:07:e6:e0:c3:7b:a3:58:c4:58:16:52: fa:f7:43:27:05:31:59:d2:f5:ea:1c:61:87:d6:d0: be:30:ed:ba:31:46:4b:71:63:be:dd:8a:b3:1d:5e: fe:86:f3:5e:e0:d3:6f:5a:67:34:ef:18:de:1f:d9: a6:8c:04:61:b3:a7:5c:d6:e1:ba:6e:4e:92:a0:c6: 98:5d:36:84:e6:e5:bc:8c:a1:fe:44:65:33:8e:c7: 5e:c2:e9:a7:ed:ea:31:49:e5:01:de:55:15:df:6c: 76:2e:7a:44:e6:40:97:09:97:18:97:87:c0:ad:e0: fd:a5:d7:c2:07:bb:8c:b1:21:e7:b7:d9:fc:c2:ce: 11:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:07:9C:EB:87:2F:60:04:0B:E3:22:B8:58:87:0B:61:9B:70:55:E6 X509v3 Authority Key Identifier: keyid:F7:05:92:C9:0B:4C:B2:45:E5:47:18:D7:C5:79:9B:47:D4:19:A6:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:1a:c1:d9:34:58:f2:dc:5c:92:86:fb:ef:87:4d:f5:a2:26: f8:77:e4:ee:b9:d2:b9:6b:67:e2:cb:68:d5:7c:a7:98:08:e4: a3:17:28:25:37:84:49:f5:cb:72:f6:8a:c4:a2:c4:ad:2f:2b: 47:fa:e1:d3:a5:12:c6:cb:66:e6:3e:84:cd:46:d5:3c:67:31: 91:e0:54:ee:71:69:4c:3b:92:ec:60:04:a6:8c:11:10:56:d0: bf:68:45:c7:2a:f6:ce:fc:3d:cc:b5:57:ce:7b:3c:33:f6:cd: bb:26:51:da:7a:a3:43:1e:5c:12:13:61:62:4f:2d:7d:18:b6: 95:af:41:b7:b6:ed:25:6d:31:3d:50:b4:57:3c:3c:93:93:2c: f8:20:db:77:1f:e3:db:f3:41:f7:e6:62:ce:29:f9:99:03:cc: e2:bb:54:9d:66:2c:db:74:ea:02:bd:3d:ef:6d:c4:3d:1d:a3: e4:45:42:9c:cb:75:1b:82:f6:4e:59:87:70:17:a9:d3:79:db: bb:17:7a:2a:86:3a:32:fe:9a:e8:a3:cc:60:e5:0d:f6:86:08: f6:70:3c:22:3d:d0:25:08:e9:65:1d:ce:d2:80:a5:3c:b0:53: 31:b0:9b:9b:cf:88:85:19:ba:71:80:3e:88:49:71:e3:9b:36: cc:c2:b3:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZQs/Pl67eli6Sj8EGcOnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3MDU5MmM5MGI0Y2IyNDVlNTQ3MThkN2M1Nzk5YjQ3ZDQx OWE2ODQwHhcNMjUxMjA2MTYwMDUzWhcNMjUxMjA3MTYwMDUzWjAzMTEwLwYDVQQD Eyg3MzA3OWNlYjg3MmY2MDA0MGJlMzIyYjg1ODg3MGI2MTliNzA1NWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodEdYbevVNvFrg1fOwSuszNY4JIT /f0gdp2qzxhvEfiKEGf3/lQ4HGXsFliWwNGgBx1owxGDSo/cxw1KcqGKCtZGiKx6 W7hsURKJAiH1fI8lVCLjQll2uYjTqMmwwbgkdJsiozN09tUg8LWmBQSeNOCK7Lj1 +bmE9LLaB+bgw3ujWMRYFlL690MnBTFZ0vXqHGGH1tC+MO26MUZLcWO+3YqzHV7+ hvNe4NNvWmc07xjeH9mmjARhs6dc1uG6bk6SoMaYXTaE5uW8jKH+RGUzjsdewumn 7eoxSeUB3lUV32x2LnpE5kCXCZcYl4fAreD9pdfCB7uMsSHnt9n8ws4RnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHMHnOuHL2AEC+MiuFiHC2GbcFXmMB8GA1UdIwQY MBaAFPcFkskLTLJF5UcY18V5m0fUGaaEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXdXU3lRdE1za1hsUnhqWHhYbWJSOVFacG9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9kYzBiZTEtYWRiOC00MjIwLWI0YmQt MTA3NjI0MmIzMDcyLzEvOXdXU3lRdE1za1hsUnhqWHhYbWJSOVFacG9RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9kYzBiZTEtYWRiOC00MjIwLWI0YmQtMTA3NjI0MmIzMDcy LzEvOXdXU3lRdE1za1hsUnhqWHhYbWJSOVFacG9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKBrB2TRY 8txckob774dN9aIm+Hfk7rnSuWtn4sto1XynmAjkoxcoJTeESfXLcvaKxKLErS8r R/rh06USxstm5j6EzUbVPGcxkeBU7nFpTDuS7GAEpowREFbQv2hFxyr2zvw9zLVX zns8M/bNuyZR2nqjQx5cEhNhYk8tfRi2la9Bt7btJW0xPVC0Vzw8k5Ms+CDbdx/j 2/NB9+Zizin5mQPM4rtUnWYs23TqAr09723EPR2j5EVCnMt1G4L2TlmHcBep03nb uxd6KoY6Mv6a6KPMYOUN9oYI9nA8Ij3QJQjpZR3O0oClPLBTMbCbm8+IhRm6cYA+ iElx45s2zMKzkA== -----END CERTIFICATE-----Generated at Sun Dec 7 01:31:25 2025 by rpki-client