This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft File: bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft (raw, json) Hash identifier: pCKjOFGVnkSXLOGlVzi8/PukOEaArQ7Zu2Ten29F6Dg= Subject key identifier: 31:07:12:F7:BF:98:F2:4B:B2:E6:F3:C9:4F:9C:D5:84:5C:52:7C:96 Authority key identifier: 6C:0D:27:F0:D1:30:FE:E6:7D:82:D5:98:2F:7C:93:4F:87:91:CD:F0 Certificate issuer: /CN=6c0d27f0d130fee67d82d5982f7c934f8791cdf0 Certificate serial: 019AF2ADD70C2615A5038E0C974C4FCFCB50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft Manifest number: 0184 Signing time: Sat 06 Dec 2025 08:01:10 +0000 Manifest this update: Sat 06 Dec 2025 08:01:10 +0000 Manifest next update: Sun 07 Dec 2025 08:01:10 +0000 Files and hashes: 1: bA0n8NEw_uZ9gtWYL3yTT4eRzfA.crl (hash: fzw2v5+uLbogRU7PqEUKXADr65e8Btql+ArFs/XUe14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft rsync://rpki.ripe.net/repository/DEFAULT/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:d7:0c:26:15:a5:03:8e:0c:97:4c:4f:cf:cb:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c0d27f0d130fee67d82d5982f7c934f8791cdf0 Validity Not Before: Dec 6 08:01:10 2025 GMT Not After : Dec 7 08:01:10 2025 GMT Subject: CN=310712f7bf98f24bb2e6f3c94f9cd5845c527c96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0f:1c:21:a8:e3:5a:55:42:a2:61:8d:45:12: ea:9b:8d:91:c1:7b:28:68:a2:f3:4f:81:a7:fe:49: 8a:1a:d7:26:37:e9:bc:5b:f0:03:43:f1:e9:3b:61: 20:53:5f:01:23:db:9f:27:fe:65:a6:06:d4:cc:60: 42:b2:d5:d2:7e:53:51:d4:13:cd:46:6a:1b:cb:75: 34:59:6a:1c:dc:84:56:5b:e7:80:39:f6:e4:72:31: c5:56:be:23:3f:ae:3d:f0:fb:87:8f:22:94:fb:96: 35:25:35:58:2a:7b:f2:9d:99:c0:78:34:01:b2:a3: d0:79:87:1a:30:50:32:2a:98:91:18:84:80:dc:ef: 44:f3:05:6f:4f:ee:01:e8:b4:f9:f7:f3:60:f1:32: 84:cb:4f:85:ce:f1:8b:cc:b7:8c:fe:3b:4e:e1:0a: 69:8a:07:6d:9a:81:67:a5:d7:e7:30:5f:a8:e0:91: e3:78:13:c4:0b:9a:ff:d9:6a:20:5a:55:a1:d5:0e: 26:79:00:6b:b7:97:64:c6:85:12:61:7e:dd:14:03: e1:aa:a5:fa:bb:db:4d:a3:e3:db:f6:41:35:9f:fa: 5e:ee:71:58:93:fc:86:98:a3:ff:62:2c:50:38:37: ba:6a:2f:6d:ed:8a:8c:0c:79:69:a6:b8:5a:ea:f5: 32:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:07:12:F7:BF:98:F2:4B:B2:E6:F3:C9:4F:9C:D5:84:5C:52:7C:96 X509v3 Authority Key Identifier: keyid:6C:0D:27:F0:D1:30:FE:E6:7D:82:D5:98:2F:7C:93:4F:87:91:CD:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:7c:8d:71:fa:b9:b2:4a:5a:30:fa:d6:4a:2b:67:f0:72:e4: 5d:02:06:c4:ff:39:47:b1:d5:1c:41:bc:74:45:27:27:0d:60: 6c:9a:4d:73:7a:5f:b6:c8:9c:91:c6:0b:4f:da:8a:81:b6:ae: cc:49:12:06:dc:c2:50:8b:bf:e6:46:da:69:95:7f:c7:7e:08: 79:4a:ff:f4:09:0c:6a:96:7e:9f:8b:d8:ca:93:87:3c:bb:7d: 86:1a:01:eb:74:3d:f2:cd:c9:59:2c:0f:a9:4a:de:31:9b:12: 8e:32:ff:68:f8:d2:5d:96:3c:95:55:63:22:2e:e8:65:34:f7: eb:aa:d1:36:8e:bd:50:c1:39:1d:25:2b:b9:80:09:f0:73:1b: e4:f6:b2:ae:18:76:7a:36:43:9c:03:b4:8d:e1:1c:e6:90:e4: 42:29:6f:80:07:52:a8:b1:bb:82:91:b3:54:a3:ba:2b:fb:c4: 95:2b:5a:4f:f4:6d:46:a3:4c:63:12:ba:5a:b9:cb:f0:81:78: c7:fd:da:53:a4:d5:12:87:a0:1c:a7:0c:5d:da:d3:0a:32:a8: c4:01:a0:5a:66:a8:27:d1:82:f4:c6:e4:1e:bb:c4:29:04:fa: fd:5b:33:7e:91:fe:69:8e:87:38:ed:dc:a0:32:6e:05:0f:9e: 09:64:41:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrdcMJhWlA44Ml0xPz8tQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjMGQyN2YwZDEzMGZlZTY3ZDgyZDU5ODJmN2M5MzRmODc5 MWNkZjAwHhcNMjUxMjA2MDgwMTEwWhcNMjUxMjA3MDgwMTEwWjAzMTEwLwYDVQQD EygzMTA3MTJmN2JmOThmMjRiYjJlNmYzYzk0ZjljZDU4NDVjNTI3Yzk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3w8cIajjWlVComGNRRLqm42RwXso aKLzT4Gn/kmKGtcmN+m8W/ADQ/HpO2EgU18BI9ufJ/5lpgbUzGBCstXSflNR1BPN Rmoby3U0WWoc3IRWW+eAOfbkcjHFVr4jP6498PuHjyKU+5Y1JTVYKnvynZnAeDQB sqPQeYcaMFAyKpiRGISA3O9E8wVvT+4B6LT59/Ng8TKEy0+FzvGLzLeM/jtO4Qpp igdtmoFnpdfnMF+o4JHjeBPEC5r/2WogWlWh1Q4meQBrt5dkxoUSYX7dFAPhqqX6 u9tNo+Pb9kE1n/pe7nFYk/yGmKP/YixQODe6ai9t7YqMDHlpprha6vUy5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDEHEve/mPJLsubzyU+c1YRcUnyWMB8GA1UdIwQY MBaAFGwNJ/DRMP7mfYLVmC98k0+Hkc3wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkEwbjhORXdfdVo5Z3RXWUwzeVRUNGVSemZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85MjkyYzktMjRhYi00ZGJmLWJlYmUt ODk2M2Q1MjcxZjljLzEvYkEwbjhORXdfdVo5Z3RXWUwzeVRUNGVSemZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi85MjkyYzktMjRhYi00ZGJmLWJlYmUtODk2M2Q1MjcxZjlj LzEvYkEwbjhORXdfdVo5Z3RXWUwzeVRUNGVSemZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGXyNcfq5 skpaMPrWSitn8HLkXQIGxP85R7HVHEG8dEUnJw1gbJpNc3pftsickcYLT9qKgbau zEkSBtzCUIu/5kbaaZV/x34IeUr/9AkMapZ+n4vYypOHPLt9hhoB63Q98s3JWSwP qUreMZsSjjL/aPjSXZY8lVVjIi7oZTT366rRNo69UME5HSUruYAJ8HMb5Payrhh2 ejZDnAO0jeEc5pDkQilvgAdSqLG7gpGzVKO6K/vElStaT/RtRqNMYxK6WrnL8IF4 x/3aU6TVEoegHKcMXdrTCjKoxAGgWmaoJ9GC9MbkHrvEKQT6/VszfpH+aY6HOO3c oDJuBQ+eCWRB0g== -----END CERTIFICATE-----Generated at Sat Dec 6 11:07:37 2025 by rpki-client