This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.mft File: 898KdcnvaBuNIzZ9vo7a0FPzvZU.mft (raw, json) Hash identifier: RFFU0kAut2mrR5l6MdFNUePCnE+O73cs/TXahh7pync= Subject key identifier: 96:C4:35:38:68:75:CB:77:08:A1:86:33:27:75:D7:0C:B3:22:11:17 Authority key identifier: F3:DF:0A:75:C9:EF:68:1B:8D:23:36:7D:BE:8E:DA:D0:53:F3:BD:95 Certificate issuer: /CN=f3df0a75c9ef681b8d23367dbe8edad053f3bd95 Certificate serial: 019AF31BD503605EE72BD3343B5EB592CFA5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/898KdcnvaBuNIzZ9vo7a0FPzvZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 10:01:18 +0000 Manifest this update: Sat 06 Dec 2025 10:01:18 +0000 Manifest next update: Sun 07 Dec 2025 10:01:18 +0000 Files and hashes: 1: 898KdcnvaBuNIzZ9vo7a0FPzvZU.crl (hash: xtd6dqPYIAM/iGTC+469Qj4LJAxj6vQfRNbakomoUHI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.mft rsync://rpki.ripe.net/repository/DEFAULT/898KdcnvaBuNIzZ9vo7a0FPzvZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:d5:03:60:5e:e7:2b:d3:34:3b:5e:b5:92:cf:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f3df0a75c9ef681b8d23367dbe8edad053f3bd95 Validity Not Before: Dec 6 10:01:18 2025 GMT Not After : Dec 7 10:01:18 2025 GMT Subject: CN=96c435386875cb7708a186332775d70cb3221117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:07:9b:50:39:30:81:09:5f:51:0f:b3:f1:c1: 1e:6d:99:dd:1c:82:17:9c:25:11:e4:a3:b4:1b:39: 4b:4f:3b:64:d5:13:6e:76:f1:51:ea:fe:88:41:ea: 45:9d:5e:8a:0d:c9:2c:cb:1f:b7:ae:94:d3:1b:b4: c3:d0:35:f1:ca:a8:4a:70:7e:9d:b3:52:3a:00:24: 69:74:3f:3a:3a:8d:f4:ea:5f:00:76:9d:4d:9c:96: 68:40:8b:9b:c5:ea:b6:da:97:ad:8e:7e:55:51:00: 06:86:4e:ec:f8:29:80:82:36:4c:e9:8f:b1:de:f4: 7a:18:1c:eb:c1:27:71:09:cf:95:e9:b9:d0:48:3e: d0:75:42:9f:46:fc:50:e1:84:43:27:f2:50:c9:5a: b3:97:fa:d8:50:a6:39:fa:f8:06:06:94:8c:d9:83: d4:e9:71:35:d7:6f:93:1a:79:86:12:55:18:ea:dd: 21:ab:8b:c0:9e:99:f2:8e:a7:9f:a6:3f:22:39:5d: 96:a5:dd:06:78:52:d7:4a:87:dc:3b:17:bb:3e:fd: 3c:4f:81:df:f5:8a:2e:ed:f1:98:0c:ff:f0:90:ba: 19:30:f2:6e:05:c1:04:8a:54:f9:40:9e:50:7e:a8: c8:ba:e9:21:96:6b:c7:e1:cf:1a:da:43:a5:dc:7b: 8d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C4:35:38:68:75:CB:77:08:A1:86:33:27:75:D7:0C:B3:22:11:17 X509v3 Authority Key Identifier: keyid:F3:DF:0A:75:C9:EF:68:1B:8D:23:36:7D:BE:8E:DA:D0:53:F3:BD:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/898KdcnvaBuNIzZ9vo7a0FPzvZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ae:b6:81:19:4e:ee:41:f1:ea:df:04:2d:bc:4b:3e:30:ce: 94:c2:3d:60:c8:9c:17:16:d4:dd:ff:64:5c:88:7b:27:2f:b0: 2c:72:db:39:48:9a:4a:b9:81:19:7c:85:d2:77:da:5a:b5:ec: 98:de:2d:1e:36:7c:1a:17:5b:b3:c7:dd:e8:1e:e3:76:67:f2: d4:9a:c1:c2:a7:a1:7d:57:73:97:c9:e3:a2:0e:da:04:8a:65: 00:15:fe:af:03:cc:d8:b1:f7:fa:86:43:cd:b1:27:b2:b1:42: dc:f3:7f:0f:73:75:d3:b8:50:15:23:92:61:7b:1e:91:77:07: 4e:7f:11:8a:d1:5a:67:1b:fe:db:52:10:7f:9e:ac:3f:b5:b3: 85:77:19:05:de:2c:12:49:c5:65:9b:0c:78:81:98:03:33:d0: 44:ff:df:9d:98:f4:7f:42:cd:b9:ee:e4:f7:c9:ea:94:c1:03: 97:66:5c:ad:21:c8:dd:0b:d6:ed:5e:e0:45:f5:a6:d7:77:ad: b8:c8:37:fc:ae:d7:32:54:c8:be:f0:65:f9:79:0e:31:fd:a1: 3b:f2:2f:46:f8:89:87:9a:80:e0:ce:d4:8d:d8:f8:da:d5:f0: 8d:b5:33:e6:20:2d:97:dc:9e:92:94:fd:12:0f:b3:16:d8:f9: 67:15:1c:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG9UDYF7nK9M0O161ks+lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzZGYwYTc1YzllZjY4MWI4ZDIzMzY3ZGJlOGVkYWQwNTNm M2JkOTUwHhcNMjUxMjA2MTAwMTE4WhcNMjUxMjA3MTAwMTE4WjAzMTEwLwYDVQQD Eyg5NmM0MzUzODY4NzVjYjc3MDhhMTg2MzMyNzc1ZDcwY2IzMjIxMTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0webUDkwgQlfUQ+z8cEebZndHIIX nCUR5KO0GzlLTztk1RNudvFR6v6IQepFnV6KDcksyx+3rpTTG7TD0DXxyqhKcH6d s1I6ACRpdD86Oo306l8Adp1NnJZoQIubxeq22petjn5VUQAGhk7s+CmAgjZM6Y+x 3vR6GBzrwSdxCc+V6bnQSD7QdUKfRvxQ4YRDJ/JQyVqzl/rYUKY5+vgGBpSM2YPU 6XE112+TGnmGElUY6t0hq4vAnpnyjqefpj8iOV2Wpd0GeFLXSofcOxe7Pv08T4Hf 9You7fGYDP/wkLoZMPJuBcEEilT5QJ5QfqjIuukhlmvH4c8a2kOl3HuNHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJbENThodct3CKGGMyd11wyzIhEXMB8GA1UdIwQY MBaAFPPfCnXJ72gbjSM2fb6O2tBT872VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvODk4S2RjbnZhQnVOSXpaOXZvN2EwRlB6dlpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS80Y2I3MmItM2Y4Mi00NmQyLWJmMjUt YWI4YWJjYzY5MDE2LzEvODk4S2RjbnZhQnVOSXpaOXZvN2EwRlB6dlpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS80Y2I3MmItM2Y4Mi00NmQyLWJmMjUtYWI4YWJjYzY5MDE2 LzEvODk4S2RjbnZhQnVOSXpaOXZvN2EwRlB6dlpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD662gRlO 7kHx6t8ELbxLPjDOlMI9YMicFxbU3f9kXIh7Jy+wLHLbOUiaSrmBGXyF0nfaWrXs mN4tHjZ8Ghdbs8fd6B7jdmfy1JrBwqehfVdzl8njog7aBIplABX+rwPM2LH3+oZD zbEnsrFC3PN/D3N107hQFSOSYXsekXcHTn8RitFaZxv+21IQf56sP7WzhXcZBd4s EknFZZsMeIGYAzPQRP/fnZj0f0LNue7k98nqlMEDl2ZcrSHI3QvW7V7gRfWm13et uMg3/K7XMlTIvvBl+XkOMf2hO/IvRviJh5qA4M7Ujdj42tXwjbUz5iAtl9yekpT9 Eg+zFtj5ZxUcow== -----END CERTIFICATE-----Generated at Sat Dec 6 12:38:06 2025 by rpki-client