This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json) Hash identifier: lJG9yyKIoYrndPfxm3+ytOEKW5t/HeILDRygXNO7OWI= Subject key identifier: C6:2B:46:CE:CC:E8:A4:40:B4:19:E0:78:0B:6F:6F:93:5B:BC:ED:FD Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79 Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79 Certificate serial: 019AF12E8B039D1BC677AD08F4E1935D7157 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft Manifest number: 0DC9 Signing time: Sat 06 Dec 2025 01:02:30 +0000 Manifest this update: Sat 06 Dec 2025 01:02:30 +0000 Manifest next update: Sun 07 Dec 2025 01:02:30 +0000 Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: kncTU9PJiBAKRARFfbR4gL+E9VEfOuImTnvjJOF9CdU=) 2: GWHlXKm0sM09h00CHS4OA90ZDEo.roa (hash: nINowmfDfKGL1Tvt7j8uTMeqVpzK8gUstL889w0cG50=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:8b:03:9d:1b:c6:77:ad:08:f4:e1:93:5d:71:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79 Validity Not Before: Dec 6 01:02:30 2025 GMT Not After : Dec 7 01:02:30 2025 GMT Subject: CN=c62b46cecce8a440b419e0780b6f6f935bbcedfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:92:7e:60:6b:aa:65:6d:8b:61:de:17:d9:c3: 43:04:f0:08:59:ed:95:dd:56:5d:bf:d1:28:5f:39: 31:65:eb:2c:33:db:58:e8:76:56:26:f4:ba:f8:38: 15:56:0b:55:da:39:13:8d:f1:e1:2c:e0:1a:3c:24: 89:c3:0d:4e:b8:d9:0a:f7:51:20:09:73:f7:a1:b0: c2:33:0b:68:56:18:cb:e8:46:6a:1e:51:9b:37:19: 24:71:20:8d:e4:d5:b3:44:3f:7e:11:44:99:cd:66: 7b:b0:e5:bf:99:1b:1d:81:0e:6c:cd:c8:f9:ab:d4: 7b:86:e8:cf:ca:d7:dd:cb:88:e3:96:36:64:80:a9: 00:4c:c6:09:29:09:89:c2:05:3a:24:07:f0:4e:cb: 42:51:b8:49:81:6b:b6:74:0b:a3:d1:0a:25:36:be: e5:7a:1f:63:f6:f2:40:82:07:61:5b:10:2d:ce:99: b7:b8:5d:3b:92:84:12:54:96:b5:91:11:61:c5:6a: 14:2f:79:f4:33:ff:3e:7b:16:aa:50:61:07:bc:ff: d2:5e:eb:f0:dc:1c:36:94:8a:08:c5:6f:f3:6e:54: 22:a0:12:b6:a8:9f:71:d0:1b:21:12:7f:62:00:c9: b9:da:44:27:61:83:08:3e:1b:56:5f:68:eb:53:ca: 10:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2B:46:CE:CC:E8:A4:40:B4:19:E0:78:0B:6F:6F:93:5B:BC:ED:FD X509v3 Authority Key Identifier: keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:48:df:c5:18:9e:21:0b:16:cb:f6:ba:aa:d3:de:78:29:7d: bb:b1:a0:db:56:92:ee:cc:e7:f8:0d:2d:89:3e:a8:e4:4b:28: 20:8c:7e:20:5b:63:6d:3b:fc:e0:26:de:c8:86:59:b5:21:54: 51:7b:fd:1a:7f:c4:79:96:ff:11:cc:c1:5f:29:f9:f6:44:e2: c4:87:c7:03:83:56:3a:f9:48:5b:d8:b7:25:60:cf:37:34:a2: f7:c8:fd:8f:77:8b:55:e1:d5:8c:ef:32:9e:f4:a0:be:b6:b3: c3:fb:2c:8f:63:ad:d8:04:10:7c:3c:37:c1:f2:f2:4b:b0:02: 60:f5:45:72:e1:ed:63:6a:36:17:9e:80:1d:1f:72:04:0e:ce: f8:d0:38:d3:d0:9f:a9:2e:6e:69:7a:4c:6e:f1:80:2d:3f:93: 81:2f:75:d2:f8:8a:3b:0c:7d:6f:5f:f7:1f:95:f6:15:c8:52: bd:0d:6f:93:be:ce:3d:70:13:70:34:b3:6c:cb:65:c3:94:61: 5d:f6:8b:a6:90:25:06:45:1a:d0:35:85:02:24:0a:44:3c:33: 58:27:89:37:b6:5e:c5:60:94:b2:ce:83:b8:72:3b:9b:4e:ac: fb:8a:3d:46:1b:88:b2:b0:42:60:ce:1a:dd:07:83:57:75:74: 41:f1:fd:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLosDnRvGd60I9OGTXXFXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ZmJiM2VkMmYwMjljNGJhY2M2ZWEyYzRjN2Y0YzFjZDZl ODBlNzkwHhcNMjUxMjA2MDEwMjMwWhcNMjUxMjA3MDEwMjMwWjAzMTEwLwYDVQQD EyhjNjJiNDZjZWNjZThhNDQwYjQxOWUwNzgwYjZmNmY5MzViYmNlZGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmpJ+YGuqZW2LYd4X2cNDBPAIWe2V 3VZdv9EoXzkxZessM9tY6HZWJvS6+DgVVgtV2jkTjfHhLOAaPCSJww1OuNkK91Eg CXP3obDCMwtoVhjL6EZqHlGbNxkkcSCN5NWzRD9+EUSZzWZ7sOW/mRsdgQ5szcj5 q9R7hujPytfdy4jjljZkgKkATMYJKQmJwgU6JAfwTstCUbhJgWu2dAuj0QolNr7l eh9j9vJAggdhWxAtzpm3uF07koQSVJa1kRFhxWoUL3n0M/8+exaqUGEHvP/SXuvw 3Bw2lIoIxW/zblQioBK2qJ9x0BshEn9iAMm52kQnYYMIPhtWX2jrU8oQHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMYrRs7M6KRAtBngeAtvb5NbvO39MB8GA1UdIwQY MBaAFAn7s+0vApxLrMbqLEx/TBzW6A55MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAt ODIyOTUzZjhjZjc3LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAtODIyOTUzZjhjZjc3 LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn0jfxRie IQsWy/a6qtPeeCl9u7Gg21aS7szn+A0tiT6o5EsoIIx+IFtjbTv84CbeyIZZtSFU UXv9Gn/EeZb/EczBXyn59kTixIfHA4NWOvlIW9i3JWDPNzSi98j9j3eLVeHVjO8y nvSgvrazw/ssj2Ot2AQQfDw3wfLyS7ACYPVFcuHtY2o2F56AHR9yBA7O+NA409Cf qS5uaXpMbvGALT+TgS910viKOwx9b1/3H5X2FchSvQ1vk77OPXATcDSzbMtlw5Rh XfaLppAlBkUa0DWFAiQKRDwzWCeJN7ZexWCUss6DuHI7m06s+4o9RhuIsrBCYM4a 3QeDV3V0QfH9tg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:11:12 2025 by rpki-client