This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.mft File: rWbePns_OvDgZAZ70c52RUNYL18.mft (raw, json) Hash identifier: FHfTIbbUAwEx2dQuSn3Lyi449b+H9jGxFkexjOY8ezs= Subject key identifier: BF:79:1A:C4:19:F9:D6:8D:51:E5:C9:B5:4C:FA:7D:55:BD:5F:1C:69 Authority key identifier: AD:66:DE:3E:7B:3F:3A:F0:E0:64:06:7B:D1:CE:76:45:43:58:2F:5F Certificate issuer: /CN=ad66de3e7b3f3af0e064067bd1ce764543582f5f Certificate serial: 019AF12D18EAA8CDF99A3F0121211CD4CBFC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWbePns_OvDgZAZ70c52RUNYL18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.mft Manifest number: 1412 Signing time: Sat 06 Dec 2025 01:00:55 +0000 Manifest this update: Sat 06 Dec 2025 01:00:55 +0000 Manifest next update: Sun 07 Dec 2025 01:00:55 +0000 Files and hashes: 1: rWbePns_OvDgZAZ70c52RUNYL18.crl (hash: 6IMPB2Sy3pnDwSObZ0TWCLqxLaAgXYjjax0/9yrMRk4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.mft rsync://rpki.ripe.net/repository/DEFAULT/rWbePns_OvDgZAZ70c52RUNYL18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:18:ea:a8:cd:f9:9a:3f:01:21:21:1c:d4:cb:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad66de3e7b3f3af0e064067bd1ce764543582f5f Validity Not Before: Dec 6 01:00:55 2025 GMT Not After : Dec 7 01:00:55 2025 GMT Subject: CN=bf791ac419f9d68d51e5c9b54cfa7d55bd5f1c69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:87:2f:0e:4a:78:b9:ab:c6:e0:25:b5:15:c0: 5b:6b:34:99:10:63:c8:ad:17:af:ed:de:82:d5:bd: ae:84:93:a3:30:50:b1:f7:32:f0:6b:83:91:3e:ad: 41:6e:49:fa:09:69:a9:fb:53:ea:79:e8:99:64:f2: 02:09:ca:a8:2f:f3:f4:03:55:62:ae:11:c1:81:e1: be:48:2e:8a:be:55:0f:5f:dd:a5:7b:d0:cd:05:7a: 9a:da:ce:2f:31:5b:35:ec:a5:0b:5f:ed:2e:21:f8: 27:4a:1a:96:ed:5e:e3:57:b9:81:ac:cb:4b:78:dd: ed:ea:68:ff:a8:b2:dc:81:56:a9:5f:15:15:74:9a: 21:f3:90:a7:dd:ae:27:be:27:36:f2:5e:2a:49:ac: 67:c2:4c:e5:7f:65:29:ea:dc:1e:ec:7f:30:12:d4: 00:67:2d:3a:c7:60:fb:fa:87:a0:63:06:b6:46:ae: ca:38:bb:ae:16:d0:ef:5d:f3:d7:e6:a4:f5:26:b6: 2f:8a:f4:ff:48:85:92:55:87:2f:80:9a:f7:cf:90: 3a:98:9a:cb:44:94:4f:09:cc:c9:a6:8c:1e:76:0b: 8e:26:e1:3b:d1:0b:b1:52:57:7d:a9:39:17:6f:4b: e1:4f:a6:c4:51:99:81:65:7a:5a:f2:1f:b8:2e:58: 8a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:79:1A:C4:19:F9:D6:8D:51:E5:C9:B5:4C:FA:7D:55:BD:5F:1C:69 X509v3 Authority Key Identifier: keyid:AD:66:DE:3E:7B:3F:3A:F0:E0:64:06:7B:D1:CE:76:45:43:58:2F:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWbePns_OvDgZAZ70c52RUNYL18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:0d:7f:d1:e1:11:2a:cc:ce:eb:cb:cd:2b:09:80:13:7d:2f: ff:a8:93:09:db:4c:cf:bb:cc:3d:52:81:58:61:08:4e:a5:66: 88:a8:67:bf:ed:90:23:33:89:83:3c:c6:9b:ac:39:1b:44:93: 81:1d:26:c1:41:25:3a:a4:e7:46:13:39:a5:69:35:c3:39:1e: cf:b2:d5:c1:72:1e:61:df:9a:0a:25:fd:cc:3e:2b:02:90:31: 56:4b:c5:38:ed:6d:05:14:9c:d9:d8:ee:d2:45:77:f5:79:8b: 4c:ab:16:fd:67:52:ba:73:f1:a6:8d:9a:c4:07:33:b2:e3:b4: 8c:5c:a8:e1:04:9f:69:90:57:05:6f:80:23:bb:d7:39:6b:0e: b4:34:27:50:dc:0e:bf:40:51:52:e1:13:95:87:4b:7c:a6:a1: 8b:ff:a7:db:90:7a:1c:e3:4c:79:eb:c3:c1:ca:2b:97:13:e7: 4e:b3:10:83:29:ca:06:86:95:8c:0d:cd:e8:ef:78:8d:83:90: df:ed:0a:ea:92:31:e3:a1:18:6f:3a:7a:7c:e6:e7:c4:56:24: 12:9f:38:0e:48:02:55:3e:cd:e7:2d:5d:e5:64:e8:4a:73:75: 33:d5:6d:3f:04:0a:a4:0d:66:bb:5c:5d:a8:ac:ca:56:8f:78: bf:96:13:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLRjqqM35mj8BISEc1Mv8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkNjZkZTNlN2IzZjNhZjBlMDY0MDY3YmQxY2U3NjQ1NDM1 ODJmNWYwHhcNMjUxMjA2MDEwMDU1WhcNMjUxMjA3MDEwMDU1WjAzMTEwLwYDVQQD EyhiZjc5MWFjNDE5ZjlkNjhkNTFlNWM5YjU0Y2ZhN2Q1NWJkNWYxYzY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ocvDkp4uavG4CW1FcBbazSZEGPI rRev7d6C1b2uhJOjMFCx9zLwa4ORPq1Bbkn6CWmp+1PqeeiZZPICCcqoL/P0A1Vi rhHBgeG+SC6KvlUPX92le9DNBXqa2s4vMVs17KULX+0uIfgnShqW7V7jV7mBrMtL eN3t6mj/qLLcgVapXxUVdJoh85Cn3a4nvic28l4qSaxnwkzlf2Up6twe7H8wEtQA Zy06x2D7+oegYwa2Rq7KOLuuFtDvXfPX5qT1JrYvivT/SIWSVYcvgJr3z5A6mJrL RJRPCczJpowedguOJuE70QuxUld9qTkXb0vhT6bEUZmBZXpa8h+4LliKaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL95GsQZ+daNUeXJtUz6fVW9XxxpMB8GA1UdIwQY MBaAFK1m3j57Pzrw4GQGe9HOdkVDWC9fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcldiZVBuc19PdkRnWkFaNzBjNTJSVU5ZTDE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS8wM2U3NTUtODAyMS00OWIwLTgyZTQt NzFlZjQ5Nzk5YmQ5LzEvcldiZVBuc19PdkRnWkFaNzBjNTJSVU5ZTDE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS8wM2U3NTUtODAyMS00OWIwLTgyZTQtNzFlZjQ5Nzk5YmQ5 LzEvcldiZVBuc19PdkRnWkFaNzBjNTJSVU5ZTDE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwg1/0eER KszO68vNKwmAE30v/6iTCdtMz7vMPVKBWGEITqVmiKhnv+2QIzOJgzzGm6w5G0ST gR0mwUElOqTnRhM5pWk1wzkez7LVwXIeYd+aCiX9zD4rApAxVkvFOO1tBRSc2dju 0kV39XmLTKsW/WdSunPxpo2axAczsuO0jFyo4QSfaZBXBW+AI7vXOWsOtDQnUNwO v0BRUuETlYdLfKahi/+n25B6HONMeevDwcorlxPnTrMQgynKBoaVjA3N6O94jYOQ 3+0K6pIx46EYbzp6fObnxFYkEp84DkgCVT7N5y1d5WToSnN1M9VtPwQKpA1mu1xd qKzKVo94v5YTig== -----END CERTIFICATE-----Generated at Sat Dec 6 07:22:29 2025 by rpki-client