This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft File: cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft (raw, json) Hash identifier: Za2Kq5EqlFnBp8bXBiIzUpLCj+jxTC2TGiMyuPkh3+w= Subject key identifier: E1:A7:5B:A1:D7:13:32:A0:8B:F4:80:1F:7A:48:5F:C9:4A:56:DE:1C Authority key identifier: 73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2 Certificate issuer: /CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2 Certificate serial: 019AF5E649E1AE3404B5C2F0D42F0230CF0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft Manifest number: 03FE Signing time: Sat 06 Dec 2025 23:01:41 +0000 Manifest this update: Sat 06 Dec 2025 23:01:41 +0000 Manifest next update: Sun 07 Dec 2025 23:01:41 +0000 Files and hashes: 1: cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl (hash: ogT7NfkeAQJVWeBztFBJsuKlgQC7L0Nnn4KoZAgjnlQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e6:49:e1:ae:34:04:b5:c2:f0:d4:2f:02:30:cf:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2 Validity Not Before: Dec 6 23:01:41 2025 GMT Not After : Dec 7 23:01:41 2025 GMT Subject: CN=e1a75ba1d71332a08bf4801f7a485fc94a56de1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d5:4c:dd:d5:29:60:5d:25:36:1a:bc:cc:69: 8d:a6:e9:04:8e:1c:3a:23:b7:48:a4:5c:46:41:ae: 49:27:58:1c:e7:42:df:1e:fd:12:35:d6:cc:5e:5d: 40:13:f1:8f:a9:45:9e:8d:6a:a4:e3:1d:d8:61:71: 2c:20:8c:b0:c6:cb:7f:58:38:be:67:00:a7:87:db: 6e:db:da:21:83:8f:2f:58:55:1a:48:40:21:04:98: b8:fd:37:61:12:d8:8f:5f:cf:43:9d:16:f9:d7:da: 35:91:3a:63:e7:11:71:3b:a6:6a:8d:f2:24:24:41: b5:b5:1e:5b:5d:d9:99:f1:05:b3:2f:cc:ce:49:72: c3:bd:53:f5:73:8c:3d:1a:86:59:ea:0f:3e:d2:40: 51:23:8e:05:91:9f:82:4e:fc:28:c5:8b:9c:ad:6a: 69:ae:7a:c7:18:4c:60:3e:1e:49:ea:15:75:50:61: 38:12:c2:6a:d6:15:33:4d:c1:eb:c2:29:d1:bc:b3: d6:63:78:b4:8c:89:91:63:44:9b:6c:d6:76:6a:46: 71:d9:9a:4a:5d:28:26:49:7b:e2:96:52:8a:a0:73: c7:97:dc:db:f6:f3:57:f5:55:89:9a:69:39:bb:11: ac:d2:8b:a8:2a:73:38:38:f5:ee:80:82:b3:73:8b: c6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A7:5B:A1:D7:13:32:A0:8B:F4:80:1F:7A:48:5F:C9:4A:56:DE:1C X509v3 Authority Key Identifier: keyid:73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:27:1b:94:47:ff:b2:e6:b6:29:71:ce:e9:af:2e:d8:5b:69: c1:d2:6c:5b:04:2b:50:cd:84:73:bf:39:e1:e0:0e:9e:5a:57: 64:d6:d6:ae:22:52:13:35:2f:fc:9f:9a:b3:23:38:9d:5e:4f: 19:78:b0:c3:f9:1c:e7:b1:43:65:36:63:bc:26:04:f8:09:0d: 12:88:a9:b3:dc:f2:a3:24:66:4a:35:66:41:47:aa:a1:c2:5a: e3:17:5c:10:d3:a1:80:e1:54:e5:3c:23:8e:ef:b1:62:c2:71: d9:55:5e:1c:3e:4c:35:91:b7:67:5e:66:fb:77:d4:69:a6:a2: d1:37:05:e9:cd:6b:f8:d1:97:f2:9e:3a:fc:57:a2:1e:0f:ed: 19:a1:b0:9d:63:3a:d8:68:79:a0:9f:5a:d5:7e:41:bd:5b:d3: d4:b4:fd:46:6e:97:bd:1b:91:0e:a5:7f:8f:19:a5:61:d7:ae: cf:ad:0c:8d:52:d4:a6:f8:d4:a8:d2:c9:66:4e:e9:7c:8e:e4: 29:b2:e6:12:d7:7a:c8:af:a1:e3:33:48:b2:f7:fe:bf:50:0a: 89:b1:2a:9a:df:e6:1c:ba:86:f1:2b:54:05:4b:e4:f3:44:c6: b3:28:50:35:61:89:53:65:2e:2f:47:fa:f3:52:8b:24:00:5a: d6:ca:1a:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15knhrjQEtcLw1C8CMM8PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczMGNiYzQ3YTZhMzBmMjNjNWQ4NGMxODBiMTQ4ODFkMjBi YTBhYzIwHhcNMjUxMjA2MjMwMTQxWhcNMjUxMjA3MjMwMTQxWjAzMTEwLwYDVQQD EyhlMWE3NWJhMWQ3MTMzMmEwOGJmNDgwMWY3YTQ4NWZjOTRhNTZkZTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxNVM3dUpYF0lNhq8zGmNpukEjhw6 I7dIpFxGQa5JJ1gc50LfHv0SNdbMXl1AE/GPqUWejWqk4x3YYXEsIIywxst/WDi+ ZwCnh9tu29ohg48vWFUaSEAhBJi4/TdhEtiPX89DnRb519o1kTpj5xFxO6ZqjfIk JEG1tR5bXdmZ8QWzL8zOSXLDvVP1c4w9GoZZ6g8+0kBRI44FkZ+CTvwoxYucrWpp rnrHGExgPh5J6hV1UGE4EsJq1hUzTcHrwinRvLPWY3i0jImRY0SbbNZ2akZx2ZpK XSgmSXvillKKoHPHl9zb9vNX9VWJmmk5uxGs0ouoKnM4OPXugIKzc4vG1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOGnW6HXEzKgi/SAH3pIX8lKVt4cMB8GA1UdIwQY MBaAFHMMvEemow8jxdhMGAsUiB0gugrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3d5OFI2YWpEeVBGMkV3WUN4U0lIU0M2Q3NJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS84NGIwNzQtOWM4ZC00OGY1LWJhZGUt Y2JhNDlhNDQ2ZDIyLzEvY3d5OFI2YWpEeVBGMkV3WUN4U0lIU0M2Q3NJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS84NGIwNzQtOWM4ZC00OGY1LWJhZGUtY2JhNDlhNDQ2ZDIy LzEvY3d5OFI2YWpEeVBGMkV3WUN4U0lIU0M2Q3NJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbCcblEf/ sua2KXHO6a8u2FtpwdJsWwQrUM2Ec7854eAOnlpXZNbWriJSEzUv/J+asyM4nV5P GXiww/kc57FDZTZjvCYE+AkNEoips9zyoyRmSjVmQUeqocJa4xdcENOhgOFU5Twj ju+xYsJx2VVeHD5MNZG3Z15m+3fUaaai0TcF6c1r+NGX8p46/FeiHg/tGaGwnWM6 2Gh5oJ9a1X5BvVvT1LT9Rm6XvRuRDqV/jxmlYdeuz60MjVLUpvjUqNLJZk7pfI7k KbLmEtd6yK+h4zNIsvf+v1AKibEqmt/mHLqG8StUBUvk80TGsyhQNWGJU2UuL0f6 81KLJABa1soagA== -----END CERTIFICATE-----Generated at Sun Dec 7 04:14:25 2025 by rpki-client