This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft File: 1peKb6yHM4CG9TacW0AhsIBhHlc.mft (raw, json) Hash identifier: 5PDcAbokfW1doh54B44y8PJ7C17T94N+q2udKW2fRyA= Subject key identifier: 70:94:68:56:98:4C:A3:98:73:74:F1:61:91:84:38:B2:54:64:92:A2 Authority key identifier: D6:97:8A:6F:AC:87:33:80:86:F5:36:9C:5B:40:21:B0:80:61:1E:57 Certificate issuer: /CN=d6978a6fac87338086f5369c5b4021b080611e57 Certificate serial: 019B337B18969C9EADD19A5FFAD166444903 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1peKb6yHM4CG9TacW0AhsIBhHlc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft Manifest number: 03BB Signing time: Thu 18 Dec 2025 22:01:03 +0000 Manifest this update: Thu 18 Dec 2025 22:01:03 +0000 Manifest next update: Fri 19 Dec 2025 22:01:03 +0000 Files and hashes: 1: 1peKb6yHM4CG9TacW0AhsIBhHlc.crl (hash: 2CeRS9RbcuG2lxyG0/sA0k16/ivdtdS5GcifgzqPd2s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft rsync://rpki.ripe.net/repository/DEFAULT/1peKb6yHM4CG9TacW0AhsIBhHlc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:7b:18:96:9c:9e:ad:d1:9a:5f:fa:d1:66:44:49:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d6978a6fac87338086f5369c5b4021b080611e57 Validity Not Before: Dec 18 22:01:03 2025 GMT Not After : Dec 19 22:01:03 2025 GMT Subject: CN=70946856984ca3987374f161918438b2546492a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a5:20:a6:ac:76:82:61:42:ab:76:a5:1a:06: 72:ff:89:76:d5:16:ba:77:11:e1:04:2c:7f:79:bb: 3f:d0:b2:91:a1:46:2a:16:82:48:b8:5b:a8:0c:df: 75:bb:ea:f9:ef:0d:c9:4e:9d:65:eb:d5:b5:97:74: 7d:e3:65:93:e1:f1:5b:31:43:46:c6:6d:c5:ce:ab: f1:df:a9:7f:63:b8:a9:6f:2d:0d:50:e7:37:6c:f2: 07:f8:02:23:d8:c5:b6:b5:d3:a5:c0:78:86:e4:a0: 24:60:ea:73:02:8f:a0:c3:9b:c8:81:71:e0:73:3c: 9a:a9:fe:1e:2f:c0:3c:37:0f:17:d3:0e:43:34:9c: 17:d7:c2:f0:01:42:96:37:11:15:90:98:de:99:3d: 4a:77:d7:42:f0:3d:c4:06:5f:6c:30:5b:7b:ad:36: d3:1b:f4:ce:3c:3a:2e:6c:9c:f3:7c:7a:13:6a:4b: f0:0a:bf:1f:e0:8a:f5:91:39:d4:2d:3e:3c:55:3c: 07:73:ff:62:d9:52:5f:03:0f:b9:06:0a:82:0f:30: d3:29:ff:3f:ad:f2:45:82:22:b4:a4:f3:bd:a1:2b: 4b:61:36:8c:05:66:83:86:62:fa:57:58:1a:fd:e1: f4:e3:5b:bc:72:fb:38:d7:28:18:5e:43:9b:9d:5f: e7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:94:68:56:98:4C:A3:98:73:74:F1:61:91:84:38:B2:54:64:92:A2 X509v3 Authority Key Identifier: keyid:D6:97:8A:6F:AC:87:33:80:86:F5:36:9C:5B:40:21:B0:80:61:1E:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1peKb6yHM4CG9TacW0AhsIBhHlc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:ba:0d:18:33:42:e3:4a:38:01:f1:e3:d9:ef:b0:8e:54:45: 94:f4:06:9a:db:b5:25:57:4a:80:1f:d2:83:bf:64:5c:45:ed: ef:bf:94:6d:d4:8f:68:d0:58:ca:b6:de:d1:ef:32:31:97:91: bc:86:5e:f1:83:f2:e7:9e:7d:9f:b0:c5:15:96:b1:cd:d9:1c: 15:6c:ed:86:3a:b0:70:73:5e:ad:0e:b2:b1:0f:09:17:66:a1: 2e:f0:53:c7:5d:ad:6f:75:de:10:a1:2a:1c:9a:28:18:ba:73: f8:d4:38:a0:95:1a:dc:19:a2:0e:63:c2:0a:ed:db:b6:56:66: 3f:3e:ea:bf:7d:a1:db:b6:de:12:30:14:e2:78:3b:cb:bd:8a: 7a:d9:75:00:a4:85:c7:58:d4:8e:85:14:3f:d3:6e:af:b6:f2: 0c:5b:a8:ac:f7:4a:60:32:83:02:12:31:23:69:48:31:f2:bc: 3d:86:6e:59:22:eb:50:f7:63:1a:1e:75:e0:ab:e4:87:d6:b6: 92:1a:03:47:43:a4:08:9b:0e:b4:b7:bc:9b:ec:9e:f0:ea:8c: cb:35:34:7b:92:b9:73:27:c0:33:17:71:1b:77:a7:a1:1b:8e: 9d:89:d8:b5:55:be:8e:d4:a9:8c:06:c7:62:26:9a:df:c7:21: 17:b1:f3:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszexiWnJ6t0Zpf+tFmREkDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2OTc4YTZmYWM4NzMzODA4NmY1MzY5YzViNDAyMWIwODA2 MTFlNTcwHhcNMjUxMjE4MjIwMTAzWhcNMjUxMjE5MjIwMTAzWjAzMTEwLwYDVQQD Eyg3MDk0Njg1Njk4NGNhMzk4NzM3NGYxNjE5MTg0MzhiMjU0NjQ5MmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKUgpqx2gmFCq3alGgZy/4l21Ra6 dxHhBCx/ebs/0LKRoUYqFoJIuFuoDN91u+r57w3JTp1l69W1l3R942WT4fFbMUNG xm3Fzqvx36l/Y7ipby0NUOc3bPIH+AIj2MW2tdOlwHiG5KAkYOpzAo+gw5vIgXHg czyaqf4eL8A8Nw8X0w5DNJwX18LwAUKWNxEVkJjemT1Kd9dC8D3EBl9sMFt7rTbT G/TOPDoubJzzfHoTakvwCr8f4Ir1kTnULT48VTwHc/9i2VJfAw+5BgqCDzDTKf8/ rfJFgiK0pPO9oStLYTaMBWaDhmL6V1ga/eH041u8cvs41ygYXkObnV/nTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHCUaFaYTKOYc3TxYZGEOLJUZJKiMB8GA1UdIwQY MBaAFNaXim+shzOAhvU2nFtAIbCAYR5XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXBlS2I2eUhNNENHOVRhY1cwQWhzSUJoSGxjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi84NzA1OTYtOThhZC00N2I5LWE3ODgt NDNlNzA5NzdhNzBlLzEvMXBlS2I2eUhNNENHOVRhY1cwQWhzSUJoSGxjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi84NzA1OTYtOThhZC00N2I5LWE3ODgtNDNlNzA5NzdhNzBl LzEvMXBlS2I2eUhNNENHOVRhY1cwQWhzSUJoSGxjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQboNGDNC 40o4AfHj2e+wjlRFlPQGmtu1JVdKgB/Sg79kXEXt77+UbdSPaNBYyrbe0e8yMZeR vIZe8YPy5559n7DFFZaxzdkcFWzthjqwcHNerQ6ysQ8JF2ahLvBTx12tb3XeEKEq HJooGLpz+NQ4oJUa3BmiDmPCCu3btlZmPz7qv32h27beEjAU4ng7y72Ketl1AKSF x1jUjoUUP9Nur7byDFuorPdKYDKDAhIxI2lIMfK8PYZuWSLrUPdjGh514Kvkh9a2 khoDR0OkCJsOtLe8m+ye8OqMyzU0e5K5cyfAMxdxG3enoRuOnYnYtVW+jtSpjAbH Yiaa38chF7HzRA== -----END CERTIFICATE-----Generated at Thu Dec 18 23:45:37 2025 by rpki-client