This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json) Hash identifier: 4AUOmnwvIW+R/Yb59ArC8rAbLvBohJft3A+8BBDVci8= Subject key identifier: D9:0C:1C:6C:7B:3C:0F:1B:C6:ED:0B:47:E8:75:37:84:DB:74:78:B6 Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1 Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1 Certificate serial: 019AF653438517CB19CCC4E8B2E531A70697 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft Manifest number: 0129 Signing time: Sun 07 Dec 2025 01:00:43 +0000 Manifest this update: Sun 07 Dec 2025 01:00:43 +0000 Manifest next update: Mon 08 Dec 2025 01:00:43 +0000 Files and hashes: 1: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: oTkBOz75684FA9N2dpJlaJNEvducd2EqoQWywaVxRQc=) 2: tE2-w8GfKCp0rc9wUQGDCMDaXtA.roa (hash: 2MgwOZTjIHEb4mTC8CdutjmxgqJ5RVv+wXieNgEA//M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:53:43:85:17:cb:19:cc:c4:e8:b2:e5:31:a7:06:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1 Validity Not Before: Dec 7 01:00:43 2025 GMT Not After : Dec 8 01:00:43 2025 GMT Subject: CN=d90c1c6c7b3c0f1bc6ed0b47e8753784db7478b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f2:da:05:2b:81:fa:e5:e4:11:10:5d:11:f5: 6a:24:58:41:5c:e3:88:2f:8c:e1:8a:7a:41:fc:d4: b6:11:04:4e:be:2f:21:61:93:87:c7:92:f4:48:5f: 8c:ce:a7:55:18:49:1e:ae:de:19:75:dc:6b:d3:d4: 3f:f4:7a:5c:91:f5:d1:12:e9:b3:0c:07:ab:e7:99: 35:48:8a:db:de:f1:93:48:95:47:d4:b9:99:be:ce: 48:9c:6f:8e:33:bd:37:7a:16:e4:0d:0f:ce:ed:5b: c3:e1:83:4f:80:40:dd:17:18:8f:df:e7:4c:cd:2d: c9:62:40:29:7e:12:1f:39:d9:00:85:af:5d:4a:30: 3d:28:e0:e5:53:ca:3a:4d:45:02:a0:d2:65:0c:99: 76:7d:88:2c:a4:be:d6:65:80:15:cc:52:f5:8c:14: 3e:47:8c:2a:d6:1f:c8:2a:7b:ba:f6:cc:00:60:6b: d0:76:28:54:2f:76:07:2a:d7:af:02:a3:36:9b:13: 5b:46:f5:34:41:c6:15:26:07:b4:67:e8:c6:d8:94: c3:66:c8:38:13:f0:92:02:6e:3b:13:d4:8e:26:4d: 84:dd:a1:41:b8:6c:6d:78:38:a7:0b:5e:0c:16:26: 8e:e3:21:d8:35:ff:54:9b:64:f4:84:88:11:4b:9d: 75:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:0C:1C:6C:7B:3C:0F:1B:C6:ED:0B:47:E8:75:37:84:DB:74:78:B6 X509v3 Authority Key Identifier: keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:75:b1:8a:f7:f0:53:3b:64:5a:d8:7f:5d:9b:ce:f0:5a:0f: 91:84:86:81:8d:e5:0a:cb:46:de:1a:ff:70:8a:82:c7:c7:3d: cd:5f:ae:0f:d3:11:da:46:d8:59:42:f8:a8:46:9c:76:10:cb: 8b:7c:bf:4f:e0:3b:6b:a6:a9:28:19:2d:57:55:f1:0b:6e:00: 95:3f:db:14:59:be:53:ea:55:50:e0:ef:10:ff:a0:27:c8:0f: bd:1d:1b:51:1a:ba:f1:47:9a:0a:df:55:09:02:01:af:79:64: 71:7b:2d:05:86:17:80:d2:5a:f3:cf:d1:13:1a:10:0b:de:b6: eb:33:53:75:a2:d0:93:37:6d:55:36:f1:a8:54:0e:0f:b0:cb: ce:60:51:0f:17:3d:04:ad:08:3b:a2:ce:5b:35:15:71:6b:55: bd:a8:73:fb:09:1e:54:88:7e:fa:3e:b6:db:1f:d0:14:6b:20: 07:05:31:a8:6d:ec:34:f2:00:03:a9:4e:70:59:ef:58:1b:cc: 6b:42:a9:c3:46:0e:16:31:1f:84:79:5d:4e:66:a8:83:cc:3b: a9:6d:3f:8e:bf:61:dd:48:fe:df:4d:8b:6d:b7:80:68:c5:4f: 4f:a9:a6:4e:05:d8:e4:57:b4:3a:87:57:5f:3e:4e:fe:db:26: fb:9f:97:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2U0OFF8sZzMTosuUxpwaXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjNWM1MzEyMTU4NGQ3ZDg2Mjk4N2YyNmZmN2JlZDVhZTEz ODE2YTEwHhcNMjUxMjA3MDEwMDQzWhcNMjUxMjA4MDEwMDQzWjAzMTEwLwYDVQQD EyhkOTBjMWM2YzdiM2MwZjFiYzZlZDBiNDdlODc1Mzc4NGRiNzQ3OGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/LaBSuB+uXkERBdEfVqJFhBXOOI L4zhinpB/NS2EQROvi8hYZOHx5L0SF+MzqdVGEkert4Zddxr09Q/9HpckfXREumz DAer55k1SIrb3vGTSJVH1LmZvs5InG+OM703ehbkDQ/O7VvD4YNPgEDdFxiP3+dM zS3JYkApfhIfOdkAha9dSjA9KODlU8o6TUUCoNJlDJl2fYgspL7WZYAVzFL1jBQ+ R4wq1h/IKnu69swAYGvQdihUL3YHKtevAqM2mxNbRvU0QcYVJge0Z+jG2JTDZsg4 E/CSAm47E9SOJk2E3aFBuGxteDinC14MFiaO4yHYNf9Um2T0hIgRS511IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkMHGx7PA8bxu0LR+h1N4TbdHi2MB8GA1UdIwQY MBaAFKxcUxIVhNfYYph/Jv977VrhOBahMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEt MjViZjI1MDE4NDg5LzEvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEtMjViZjI1MDE4NDg5 LzEvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADXWxivfw UztkWth/XZvO8FoPkYSGgY3lCstG3hr/cIqCx8c9zV+uD9MR2kbYWUL4qEacdhDL i3y/T+A7a6apKBktV1XxC24AlT/bFFm+U+pVUODvEP+gJ8gPvR0bURq68UeaCt9V CQIBr3lkcXstBYYXgNJa88/RExoQC9626zNTdaLQkzdtVTbxqFQOD7DLzmBRDxc9 BK0IO6LOWzUVcWtVvahz+wkeVIh++j622x/QFGsgBwUxqG3sNPIAA6lOcFnvWBvM a0Kpw0YOFjEfhHldTmaog8w7qW0/jr9h3Uj+302LbbeAaMVPT6mmTgXY5Fe0OodX Xz5O/tsm+5+XEw== -----END CERTIFICATE-----Generated at Sun Dec 7 08:12:14 2025 by rpki-client