This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft File: tWpL1vXr8vf_2ajRzZparN5iKFw.mft (raw, json) Hash identifier: k3IbLTnFD12thCdzZ+YOPvbFOfRe8cp9RHk6NjT5OB8= Subject key identifier: B4:52:29:48:4E:99:20:DC:75:F0:1B:65:A0:57:61:EF:1A:8F:DC:B6 Authority key identifier: B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C Certificate issuer: /CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c Certificate serial: 019AF1D1F296AFB90A7356CA79FAAB2D6417 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft Manifest number: 091B Signing time: Sat 06 Dec 2025 04:00:59 +0000 Manifest this update: Sat 06 Dec 2025 04:00:59 +0000 Manifest next update: Sun 07 Dec 2025 04:00:59 +0000 Files and hashes: 1: tWpL1vXr8vf_2ajRzZparN5iKFw.crl (hash: ghddA86GA516aJMcNLmoKIY6hRSFwD/6R7yVEmU9Yfg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:f2:96:af:b9:0a:73:56:ca:79:fa:ab:2d:64:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c Validity Not Before: Dec 6 04:00:59 2025 GMT Not After : Dec 7 04:00:59 2025 GMT Subject: CN=b45229484e9920dc75f01b65a05761ef1a8fdcb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a6:ae:87:8a:79:c8:0c:6d:fc:42:59:97:e8: 22:2c:0a:19:ef:a2:a5:08:89:df:63:8c:8d:8a:96: 84:68:02:3c:65:d5:9a:5c:e5:88:de:3b:7a:35:2b: 66:f9:6e:9a:95:aa:9a:26:b3:1f:25:ad:1d:b6:73: 8e:4a:30:8c:67:2b:99:7a:93:f8:de:13:34:d4:ff: 55:1e:4b:21:cc:15:d8:46:e3:1e:61:c8:16:18:02: 23:27:64:ff:3d:bc:80:c8:7c:0d:aa:8a:a1:8c:b3: c8:67:34:81:5e:9b:a1:96:7a:9c:85:c7:29:df:c8: 7d:50:72:d7:37:18:9c:a0:8e:07:78:48:f8:55:f9: 12:a3:cc:9e:13:de:67:79:89:e4:d2:fa:8c:bb:de: aa:52:11:db:b6:60:c3:db:aa:64:cf:5f:4b:87:a2: 42:43:73:2e:ce:ec:c7:7b:2a:f9:b3:d7:f1:8b:ba: 52:96:75:e1:eb:0d:26:97:b9:4d:54:7f:c6:01:81: 21:d3:f1:8d:e1:df:02:8b:ab:ae:f0:10:d6:9c:19: 58:73:7c:2a:7b:5b:1e:47:d1:56:51:53:f1:fa:8b: 6c:ef:13:4e:d0:32:ff:b4:76:86:e0:99:ae:81:08: 9f:0f:dd:e3:9a:b6:b0:8c:9f:6e:8f:fc:bb:98:39: af:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:52:29:48:4E:99:20:DC:75:F0:1B:65:A0:57:61:EF:1A:8F:DC:B6 X509v3 Authority Key Identifier: keyid:B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:d8:36:c2:53:b1:fc:a7:28:2d:47:82:ae:5a:2e:ec:3a:4c: ed:74:4b:40:9c:28:b7:58:f8:26:f7:e4:d2:20:5c:f4:ee:d6: eb:58:fe:4b:e3:42:1c:1e:bc:6d:e1:97:4d:2f:7e:f6:81:02: eb:2f:ae:ae:a3:6c:61:39:83:fd:12:ae:5f:bd:b7:13:65:f1: 9e:c5:1d:69:6f:a3:2a:dd:e5:c7:a3:d3:0c:03:d1:bd:27:16: 9a:81:61:74:65:06:a4:0d:bd:e4:11:c8:5a:62:e3:5c:04:c9: bd:95:c7:7c:1f:ce:bc:1c:cc:d6:98:14:13:82:17:f4:50:0a: 8b:c2:df:d5:d5:c0:72:a0:9d:02:72:58:f0:8f:37:c2:3a:91: a0:3d:69:10:43:89:da:5f:37:bd:d0:94:9a:7f:23:1e:61:db: 9e:59:8a:02:e4:46:e2:04:56:f9:be:37:ac:1c:fe:39:44:df: 04:2a:f3:10:ab:58:c7:31:99:9a:82:3b:cf:39:f7:b4:19:82: 75:19:9c:28:19:ab:7f:f0:d9:f1:f4:c5:43:ad:5e:52:68:9e: 91:49:d4:b7:ba:6b:a1:7e:80:0f:cb:ad:c9:78:74:2e:b7:73: 75:fa:71:44:13:f3:7b:54:d9:b0:10:49:70:f6:b6:3c:9d:76: 52:ae:9d:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0fKWr7kKc1bKefqrLWQXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NmE0YmQ2ZjVlYmYyZjdmZmQ5YThkMWNkOWE1YWFjZGU2 MjI4NWMwHhcNMjUxMjA2MDQwMDU5WhcNMjUxMjA3MDQwMDU5WjAzMTEwLwYDVQQD EyhiNDUyMjk0ODRlOTkyMGRjNzVmMDFiNjVhMDU3NjFlZjFhOGZkY2I2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Kauh4p5yAxt/EJZl+giLAoZ76Kl CInfY4yNipaEaAI8ZdWaXOWI3jt6NStm+W6alaqaJrMfJa0dtnOOSjCMZyuZepP4 3hM01P9VHkshzBXYRuMeYcgWGAIjJ2T/PbyAyHwNqoqhjLPIZzSBXpuhlnqchccp 38h9UHLXNxicoI4HeEj4VfkSo8yeE95neYnk0vqMu96qUhHbtmDD26pkz19Lh6JC Q3MuzuzHeyr5s9fxi7pSlnXh6w0ml7lNVH/GAYEh0/GN4d8Ci6uu8BDWnBlYc3wq e1seR9FWUVPx+ots7xNO0DL/tHaG4JmugQifD93jmrawjJ9uj/y7mDmvGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLRSKUhOmSDcdfAbZaBXYe8aj9y2MB8GA1UdIwQY MBaAFLVqS9b16/L3/9mo0c2aWqzeYihcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMt MDgyZTExMzYzZjBhLzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMtMDgyZTExMzYzZjBh LzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGtg2wlOx /KcoLUeCrlou7DpM7XRLQJwot1j4Jvfk0iBc9O7W61j+S+NCHB68beGXTS9+9oEC 6y+urqNsYTmD/RKuX723E2XxnsUdaW+jKt3lx6PTDAPRvScWmoFhdGUGpA295BHI WmLjXATJvZXHfB/OvBzM1pgUE4IX9FAKi8Lf1dXAcqCdAnJY8I83wjqRoD1pEEOJ 2l83vdCUmn8jHmHbnlmKAuRG4gRW+b43rBz+OUTfBCrzEKtYxzGZmoI7zzn3tBmC dRmcKBmrf/DZ8fTFQ61eUmiekUnUt7proX6AD8utyXh0LrdzdfpxRBPze1TZsBBJ cPa2PJ12Uq6dKw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:07:27 2025 by rpki-client