This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft File: cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft (raw, json) Hash identifier: 07oDEJWMAuJvibqfrtQKpLUz2j4yQp7AjxSPyAquOVk= Subject key identifier: 36:03:0C:57:70:E2:C1:79:94:9B:C3:47:DB:1A:8A:72:4B:FC:41:96 Authority key identifier: 70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F Certificate issuer: /CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f Certificate serial: 019AF1643A09F4A95FAF5C65AD6CCEEDBFB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 02:01:08 +0000 Manifest this update: Sat 06 Dec 2025 02:01:08 +0000 Manifest next update: Sun 07 Dec 2025 02:01:08 +0000 Files and hashes: 1: cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl (hash: f9+TW+ecvLUneuABDQImT7q8gtEbbuFQYWWH/RnbQmE=) 2: gEcPKMyXsq8EnU4MPoFeY2Uidb0.roa (hash: 43PR1hTJL7tXyu9/IcMkUlMdJ9SOinPx2dKMQk9nNKw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:3a:09:f4:a9:5f:af:5c:65:ad:6c:ce:ed:bf:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f Validity Not Before: Dec 6 02:01:08 2025 GMT Not After : Dec 7 02:01:08 2025 GMT Subject: CN=36030c5770e2c179949bc347db1a8a724bfc4196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:22:50:ba:a8:b0:10:e9:62:c1:63:f5:99:98: ce:06:4b:32:6e:88:c9:b1:57:18:36:4f:59:d0:82: 15:67:d8:cf:8e:4b:67:d3:9b:0d:0c:6f:59:c5:14: 80:ff:2e:47:b6:d2:3f:8d:02:81:04:31:20:19:06: 18:8b:5c:f3:9b:3a:59:87:6e:c4:62:c4:cc:34:5c: 5a:63:d7:2c:2f:2c:50:9a:0f:5b:d1:19:ac:e8:42: 8c:ab:0e:3a:20:e2:8d:d8:35:9c:80:a9:02:80:7c: 54:51:b5:d2:d5:26:1e:41:0e:3c:fd:e0:94:be:ac: e7:96:fe:96:51:e4:89:72:93:e8:95:19:26:3c:c4: 58:35:55:7a:ea:ee:61:b2:fe:7a:11:fa:67:d3:86: c0:f6:44:77:7f:30:be:df:f3:aa:d8:09:40:cd:5b: f0:f6:a6:33:db:9f:08:3c:70:76:b6:35:99:cc:58: 5f:2d:b6:d3:2a:5c:5a:52:86:1d:58:ce:6e:a8:68: 44:0e:c1:3a:f4:8d:b5:dc:3d:ae:74:d3:0f:88:c3: b9:48:09:3c:8d:c3:6e:20:e6:c6:06:0e:24:95:d9: 29:46:97:84:98:86:a3:9d:dc:65:29:b8:b0:66:96: 1d:f8:6f:2c:77:a6:84:1b:45:15:26:4f:2a:f9:b7: f7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:03:0C:57:70:E2:C1:79:94:9B:C3:47:DB:1A:8A:72:4B:FC:41:96 X509v3 Authority Key Identifier: keyid:70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:80:c2:0f:03:49:66:4b:dc:ac:52:ba:55:c6:4d:23:69:3b: e8:af:04:82:85:ea:58:1d:f4:03:c0:b8:be:cb:8f:19:90:36: 48:cd:82:a1:31:28:9f:03:b0:cb:6e:7e:ce:f5:96:06:0c:d1: 97:bc:d0:d1:fc:b7:1d:28:fd:a4:62:0b:f0:e8:ea:5a:23:cd: bc:8c:2d:36:f5:66:ea:ca:14:98:3f:c1:0f:64:e8:99:1c:ac: ca:a5:7d:be:87:e9:4a:3e:95:17:10:5e:a0:c4:3a:8c:56:0f: 11:2f:97:fb:c6:c6:5a:e3:ea:97:cb:84:13:40:1f:f8:62:5e: 5e:02:f2:57:81:40:1d:29:a0:6c:9d:5f:fc:36:4e:81:16:79: 77:f1:70:06:db:77:63:f0:b2:7c:45:c2:28:d1:33:32:d1:ea: 2c:b1:48:93:ff:10:bc:5c:7f:32:a5:9f:b4:00:45:c0:2c:ac: 26:f8:ee:fb:a4:0d:41:e4:34:ae:29:b9:87:e0:9e:b5:0d:ae: be:61:0a:68:71:40:78:ef:ae:96:a2:b1:21:06:3e:98:14:57: 10:07:e7:13:1a:05:48:a5:c7:79:e9:9f:59:63:d2:8f:59:45: 92:de:1f:f5:37:cb:54:e5:bc:97:88:a3:43:82:bc:28:07:82: 7b:78:0a:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZDoJ9Klfr1xlrWzO7b+wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwN2Y3ZWU2YWI5Y2Y0NDhmOTk0OTM2N2ZiN2MwZWRlMTA3 M2Y5N2YwHhcNMjUxMjA2MDIwMTA4WhcNMjUxMjA3MDIwMTA4WjAzMTEwLwYDVQQD EygzNjAzMGM1NzcwZTJjMTc5OTQ5YmMzNDdkYjFhOGE3MjRiZmM0MTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCJQuqiwEOliwWP1mZjOBksybojJ sVcYNk9Z0IIVZ9jPjktn05sNDG9ZxRSA/y5HttI/jQKBBDEgGQYYi1zzmzpZh27E YsTMNFxaY9csLyxQmg9b0Rms6EKMqw46IOKN2DWcgKkCgHxUUbXS1SYeQQ48/eCU vqznlv6WUeSJcpPolRkmPMRYNVV66u5hsv56Efpn04bA9kR3fzC+3/Oq2AlAzVvw 9qYz258IPHB2tjWZzFhfLbbTKlxaUoYdWM5uqGhEDsE69I213D2udNMPiMO5SAk8 jcNuIObGBg4kldkpRpeEmIajndxlKbiwZpYd+G8sd6aEG0UVJk8q+bf3gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDYDDFdw4sF5lJvDR9sainJL/EGWMB8GA1UdIwQY MBaAFHB/fuarnPRI+ZSTZ/t8Dt4Qc/l/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0g5LTVxdWM5RWo1bEpObi0zd08zaEJ6LVg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni8zYjQ1YjMtMThhNC00N2Y4LTgyNjQt ZjcwOGJjNzBlNmVlLzEvY0g5LTVxdWM5RWo1bEpObi0zd08zaEJ6LVg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ni8zYjQ1YjMtMThhNC00N2Y4LTgyNjQtZjcwOGJjNzBlNmVl LzEvY0g5LTVxdWM5RWo1bEpObi0zd08zaEJ6LVg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh4DCDwNJ ZkvcrFK6VcZNI2k76K8EgoXqWB30A8C4vsuPGZA2SM2CoTEonwOwy25+zvWWBgzR l7zQ0fy3HSj9pGIL8OjqWiPNvIwtNvVm6soUmD/BD2TomRysyqV9vofpSj6VFxBe oMQ6jFYPES+X+8bGWuPql8uEE0Af+GJeXgLyV4FAHSmgbJ1f/DZOgRZ5d/FwBtt3 Y/CyfEXCKNEzMtHqLLFIk/8QvFx/MqWftABFwCysJvju+6QNQeQ0rim5h+CetQ2u vmEKaHFAeO+ulqKxIQY+mBRXEAfnExoFSKXHeemfWWPSj1lFkt4f9TfLVOW8l4ij Q4K8KAeCe3gKvA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:15:12 2025 by rpki-client