This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json) Hash identifier: oC8cRjbRUrp918GwD8VgUMRq2X7+qXmK8TuMVNYuoUg= Subject key identifier: 78:67:41:07:BC:2E:2D:A7:40:38:82:5B:A6:8E:37:9D:0F:B6:D3:D3 Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79 Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79 Certificate serial: 019B32D5EEB96920F941A7F36EC6F848FBFF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft Manifest number: 0DEB Signing time: Thu 18 Dec 2025 19:00:39 +0000 Manifest this update: Thu 18 Dec 2025 19:00:39 +0000 Manifest next update: Fri 19 Dec 2025 19:00:39 +0000 Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: UETlLmfsNtcdDNcEE3G1X6DotfOUJFmxwcs+7Le2WCc=) 2: GWHlXKm0sM09h00CHS4OA90ZDEo.roa (hash: nINowmfDfKGL1Tvt7j8uTMeqVpzK8gUstL889w0cG50=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d5:ee:b9:69:20:f9:41:a7:f3:6e:c6:f8:48:fb:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79 Validity Not Before: Dec 18 19:00:39 2025 GMT Not After : Dec 19 19:00:39 2025 GMT Subject: CN=78674107bc2e2da74038825ba68e379d0fb6d3d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b3:bc:4f:07:39:1e:7a:b7:ec:4f:86:fb:2a: e1:1a:0b:b1:1a:e2:a6:b6:39:f3:48:d4:bb:21:a1: 8a:c6:1c:7f:04:95:e5:b0:72:7b:d3:9f:b6:16:cb: d1:25:fe:cd:f3:8d:73:87:0d:f7:dd:51:bd:b7:a7: e9:90:e8:a3:02:fa:05:98:e4:78:b1:c4:58:ef:10: bc:61:3a:62:31:2e:9b:24:38:85:57:ef:a2:ea:b3: 91:ac:27:2f:9b:6a:e0:1a:7d:f7:17:8f:f8:86:b1: f9:c3:b9:ef:f6:ec:b7:87:69:b0:54:1d:4d:67:d6: 70:db:43:cf:7e:10:57:d5:53:22:db:6c:8d:02:7a: 38:8a:fb:df:68:6b:b5:20:65:b9:78:e4:97:75:56: 27:57:a0:aa:c3:a1:ce:bd:d1:57:41:d7:ea:dd:65: dc:07:55:99:34:73:0d:bf:85:e0:3d:89:75:f7:15: 9a:d3:ca:38:76:2d:84:33:47:f0:c1:6b:ab:a6:a3: 05:fd:35:e6:a3:70:ad:81:37:38:60:13:22:64:ea: 00:00:b1:9a:8d:6f:d7:b2:50:b4:e2:2e:44:a0:64: 06:35:e8:f5:83:c4:4f:90:08:7c:0f:36:0c:5a:35: d9:bd:10:5d:76:1c:d8:09:fd:14:81:1e:2a:d2:53: 04:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:67:41:07:BC:2E:2D:A7:40:38:82:5B:A6:8E:37:9D:0F:B6:D3:D3 X509v3 Authority Key Identifier: keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:22:60:3b:32:d5:77:ff:00:4c:4d:70:a5:5d:55:41:4e:ad: 0c:d3:b9:00:68:6b:0e:f5:6e:69:c2:b6:68:ed:0b:24:9a:39: f1:25:dd:a7:d7:c9:e9:0c:0b:1f:ed:46:9c:0b:01:e6:ad:ba: c3:54:80:6c:74:44:f3:95:35:3a:ce:0b:62:b1:93:fa:c9:cd: 2f:17:51:7d:cc:17:a2:ae:17:02:5a:90:56:81:ec:c9:b1:85: 1c:ba:27:74:74:d8:fc:b7:e0:0e:7a:52:58:12:23:3c:a3:2b: da:0f:ff:de:42:56:5e:17:03:10:0b:ed:a6:56:97:9e:69:99: dc:1d:dd:56:96:78:2d:ca:47:0e:13:43:55:4e:68:4d:62:0f: 44:98:6a:52:a8:78:75:a6:2d:2b:0e:e2:e0:c4:5e:85:56:b3: 37:76:df:ea:b4:87:ef:bf:4e:8a:e5:be:82:f1:32:54:3d:e7: 3c:64:69:c3:11:bb:85:6d:27:14:92:52:9e:ac:02:db:40:76: 3a:59:23:8f:d3:a1:4b:d6:69:5b:70:51:80:b4:2f:ef:9e:d9: 04:2a:2f:f9:5c:9d:7d:da:1a:92:26:64:90:94:67:c1:7a:26: 3f:02:5b:0d:6a:27:e4:a9:ac:37:9f:1e:8b:df:ab:b0:53:dd: c8:3f:c3:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1e65aSD5Qafzbsb4SPv/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ZmJiM2VkMmYwMjljNGJhY2M2ZWEyYzRjN2Y0YzFjZDZl ODBlNzkwHhcNMjUxMjE4MTkwMDM5WhcNMjUxMjE5MTkwMDM5WjAzMTEwLwYDVQQD Eyg3ODY3NDEwN2JjMmUyZGE3NDAzODgyNWJhNjhlMzc5ZDBmYjZkM2QzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LO8Twc5Hnq37E+G+yrhGguxGuKm tjnzSNS7IaGKxhx/BJXlsHJ705+2FsvRJf7N841zhw333VG9t6fpkOijAvoFmOR4 scRY7xC8YTpiMS6bJDiFV++i6rORrCcvm2rgGn33F4/4hrH5w7nv9uy3h2mwVB1N Z9Zw20PPfhBX1VMi22yNAno4ivvfaGu1IGW5eOSXdVYnV6Cqw6HOvdFXQdfq3WXc B1WZNHMNv4XgPYl19xWa08o4di2EM0fwwWurpqMF/TXmo3CtgTc4YBMiZOoAALGa jW/XslC04i5EoGQGNej1g8RPkAh8DzYMWjXZvRBddhzYCf0UgR4q0lMEFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHhnQQe8Li2nQDiCW6aON50PttPTMB8GA1UdIwQY MBaAFAn7s+0vApxLrMbqLEx/TBzW6A55MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAt ODIyOTUzZjhjZjc3LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAtODIyOTUzZjhjZjc3 LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQyJgOzLV d/8ATE1wpV1VQU6tDNO5AGhrDvVuacK2aO0LJJo58SXdp9fJ6QwLH+1GnAsB5q26 w1SAbHRE85U1Os4LYrGT+snNLxdRfcwXoq4XAlqQVoHsybGFHLondHTY/LfgDnpS WBIjPKMr2g//3kJWXhcDEAvtplaXnmmZ3B3dVpZ4LcpHDhNDVU5oTWIPRJhqUqh4 daYtKw7i4MRehVazN3bf6rSH779OiuW+gvEyVD3nPGRpwxG7hW0nFJJSnqwC20B2 Olkjj9OhS9ZpW3BRgLQv757ZBCov+VydfdoakiZkkJRnwXomPwJbDWon5KmsN58e i9+rsFPdyD/Daw== -----END CERTIFICATE-----Generated at Thu Dec 18 23:43:06 2025 by rpki-client