This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft File: a3tNxJzDUDQveq4ssyBbn3dfZh0.mft (raw, json) Hash identifier: hlBS9KwBfC3/FUwc+HELg2NY54GlIWdGLqc8aIkveJI= Subject key identifier: C5:A0:04:8F:0F:0A:47:C6:21:DA:87:66:BF:39:B5:80:31:C6:E4:51 Authority key identifier: 6B:7B:4D:C4:9C:C3:50:34:2F:7A:AE:2C:B3:20:5B:9F:77:5F:66:1D Certificate issuer: /CN=6b7b4dc49cc350342f7aae2cb3205b9f775f661d Certificate serial: 019AF12EC6D5CA4922AE66B64C24E7BC554C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft Manifest number: 175C Signing time: Sat 06 Dec 2025 01:02:45 +0000 Manifest this update: Sat 06 Dec 2025 01:02:45 +0000 Manifest next update: Sun 07 Dec 2025 01:02:45 +0000 Files and hashes: 1: a3tNxJzDUDQveq4ssyBbn3dfZh0.crl (hash: kIIqahgozX2aWUfGsPsfiS0ZSrbpaBvk9IIEYG1xBWo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c6:d5:ca:49:22:ae:66:b6:4c:24:e7:bc:55:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b7b4dc49cc350342f7aae2cb3205b9f775f661d Validity Not Before: Dec 6 01:02:45 2025 GMT Not After : Dec 7 01:02:45 2025 GMT Subject: CN=c5a0048f0f0a47c621da8766bf39b58031c6e451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:05:2d:f4:18:ad:b7:d4:84:51:28:b8:eb:c1: 7a:33:2b:f0:28:84:ec:54:03:56:b1:a1:f0:c9:23: 24:a9:16:89:c9:bf:31:0d:cc:fe:74:71:4b:a8:0a: 8c:07:bd:6c:c7:fe:6e:9a:1a:00:47:ac:0a:41:25: 8d:0d:e9:a4:65:f1:32:ee:33:01:e0:f7:89:4b:7e: 34:b7:fc:ed:2c:a4:51:79:de:3c:f1:cc:c4:36:f1: 33:25:ef:2a:5c:ac:50:d8:13:4b:f2:d2:17:83:01: ca:bc:65:6d:75:c1:64:32:a1:4b:25:55:99:7d:b8: 11:7f:30:71:9a:e2:67:82:a2:ca:95:96:e7:a6:7a: 98:f0:8d:79:4c:e6:ac:ee:11:bc:88:79:e2:0b:65: fa:87:0f:9a:e7:c8:ea:8a:db:d4:8f:e3:de:6a:fd: 8d:03:fa:b4:81:de:95:79:db:a5:9d:41:11:4d:90: 3f:97:a2:f8:28:06:45:dd:7a:d3:4f:de:25:ce:e7: 95:aa:93:db:ed:96:88:68:ad:0c:23:28:bc:e8:21: 3e:a3:4f:06:83:1e:2f:84:f2:41:98:2c:9e:98:d5: 09:38:46:f7:94:39:3d:2b:af:7d:6d:2a:0f:92:ba: ef:29:0c:57:40:3e:eb:38:88:b9:a4:22:e7:cb:68: d7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A0:04:8F:0F:0A:47:C6:21:DA:87:66:BF:39:B5:80:31:C6:E4:51 X509v3 Authority Key Identifier: keyid:6B:7B:4D:C4:9C:C3:50:34:2F:7A:AE:2C:B3:20:5B:9F:77:5F:66:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b1:4c:cc:ad:9a:3a:d5:e3:6a:a1:09:e5:54:30:f2:76:78: d6:b4:86:ba:5e:86:23:ca:62:d2:5f:08:06:6a:ac:19:a8:35: 4c:b5:f0:c9:0a:45:1e:fe:0f:bd:da:00:dc:f5:1d:fd:88:e7: e9:f1:ae:11:74:ce:17:eb:59:98:ce:53:f1:b9:14:76:cd:92: a8:d7:87:cd:38:3a:72:fe:fe:f8:92:9b:e7:0f:89:56:84:38: 29:34:82:83:7a:c7:19:21:cc:7f:27:3a:a3:4c:a8:8e:89:73: c9:79:19:db:ef:89:dd:47:aa:c7:71:ab:bf:e7:ca:76:93:cb: 61:50:8d:0f:45:1e:7d:87:a3:0e:1b:28:bc:ce:b5:13:e9:84: 9a:27:a1:e1:70:7c:fe:7e:da:56:16:07:6b:e0:31:e4:71:67: 4a:70:3a:5d:21:3e:09:c8:5b:e5:e9:1d:f0:3b:c8:47:9e:9f: 01:60:dc:7d:89:60:29:3f:66:cb:59:49:0d:9d:0e:32:28:16: b6:ac:44:d9:88:3a:cc:21:1d:20:38:5c:06:06:1a:82:77:26: 64:10:ff:34:f6:e1:46:aa:55:5b:08:e0:fc:18:8f:fa:8e:1e: cd:c1:43:87:40:df:60:77:76:2b:7c:44:ea:1e:17:e3:20:53: d9:f9:21:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsbVykkirma2TCTnvFVMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiN2I0ZGM0OWNjMzUwMzQyZjdhYWUyY2IzMjA1YjlmNzc1 ZjY2MWQwHhcNMjUxMjA2MDEwMjQ1WhcNMjUxMjA3MDEwMjQ1WjAzMTEwLwYDVQQD EyhjNWEwMDQ4ZjBmMGE0N2M2MjFkYTg3NjZiZjM5YjU4MDMxYzZlNDUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwUt9Bitt9SEUSi468F6MyvwKITs VANWsaHwySMkqRaJyb8xDcz+dHFLqAqMB71sx/5umhoAR6wKQSWNDemkZfEy7jMB 4PeJS340t/ztLKRRed488czENvEzJe8qXKxQ2BNL8tIXgwHKvGVtdcFkMqFLJVWZ fbgRfzBxmuJngqLKlZbnpnqY8I15TOas7hG8iHniC2X6hw+a58jqitvUj+Peav2N A/q0gd6VedulnUERTZA/l6L4KAZF3XrTT94lzueVqpPb7ZaIaK0MIyi86CE+o08G gx4vhPJBmCyemNUJOEb3lDk9K699bSoPkrrvKQxXQD7rOIi5pCLny2jXTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMWgBI8PCkfGIdqHZr85tYAxxuRRMB8GA1UdIwQY MBaAFGt7TcScw1A0L3quLLMgW593X2YdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTN0TnhKekRVRFF2ZXE0c3N5QmJuM2RmWmgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNTI3MDktMzhhZi00NTQ1LWE4ZGIt YzZkNGMxYTU0YTRiLzEvYTN0TnhKekRVRFF2ZXE0c3N5QmJuM2RmWmgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9iNTI3MDktMzhhZi00NTQ1LWE4ZGItYzZkNGMxYTU0YTRi LzEvYTN0TnhKekRVRFF2ZXE0c3N5QmJuM2RmWmgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj7FMzK2a OtXjaqEJ5VQw8nZ41rSGul6GI8pi0l8IBmqsGag1TLXwyQpFHv4PvdoA3PUd/Yjn 6fGuEXTOF+tZmM5T8bkUds2SqNeHzTg6cv7++JKb5w+JVoQ4KTSCg3rHGSHMfyc6 o0yojolzyXkZ2++J3Ueqx3Grv+fKdpPLYVCND0UefYejDhsovM61E+mEmieh4XB8 /n7aVhYHa+Ax5HFnSnA6XSE+Cchb5ekd8DvIR56fAWDcfYlgKT9my1lJDZ0OMigW tqxE2Yg6zCEdIDhcBgYagncmZBD/NPbhRqpVWwjg/BiP+o4ezcFDh0DfYHd2K3xE 6h4X4yBT2fkhOw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:27:13 2025 by rpki-client