This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft File: MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft (raw, json) Hash identifier: qYbanPTdppCHayv92tIt1YAMLzxQ6WSEpnHEzI34zuo= Subject key identifier: 82:87:AB:EC:2C:67:1F:39:0C:E7:A6:D7:AE:FA:E9:AB:CF:40:95:B9 Authority key identifier: 32:50:52:B7:A6:78:FA:A0:97:DC:BE:65:47:17:0C:91:52:B4:6C:F1 Certificate issuer: /CN=325052b7a678faa097dcbe6547170c9152b46cf1 Certificate serial: 019B3CEBBE14BE114E72D7E377C6FC5D1273 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft Manifest number: 1717 Signing time: Sat 20 Dec 2025 18:00:40 +0000 Manifest this update: Sat 20 Dec 2025 18:00:40 +0000 Manifest next update: Sun 21 Dec 2025 18:00:40 +0000 Files and hashes: 1: MlBSt6Z4-qCX3L5lRxcMkVK0bPE.crl (hash: jiqH1g1CrGexw+cHAbvmiponn/Ig1hFq8XTdEgnNIZ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft rsync://rpki.ripe.net/repository/DEFAULT/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 18:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:eb:be:14:be:11:4e:72:d7:e3:77:c6:fc:5d:12:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=325052b7a678faa097dcbe6547170c9152b46cf1 Validity Not Before: Dec 20 18:00:40 2025 GMT Not After : Dec 21 18:00:40 2025 GMT Subject: CN=8287abec2c671f390ce7a6d7aefae9abcf4095b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:76:8a:ca:54:54:b5:1a:25:51:7f:81:bf:d5: c7:8e:14:3c:aa:11:05:f0:d1:f7:59:66:09:05:80: 37:fb:67:7f:96:92:6e:cf:06:58:a9:17:3b:3b:70: f9:85:47:39:e3:a5:28:c9:08:69:b3:c6:4a:d1:36: 4e:10:9e:d8:c7:57:65:b1:97:0c:1e:f2:5a:16:5d: 5d:bb:9a:8a:6f:d0:92:93:0e:37:bb:19:27:c6:66: 63:1d:5b:9c:a0:44:e5:b0:3b:69:b9:b4:b6:bb:4a: 61:d7:3e:1c:a9:44:3c:24:d0:02:1f:85:bb:0f:29: 6a:89:13:f3:29:9e:6d:c1:8c:17:c8:e8:ff:7f:e8: 60:ac:91:42:cc:9d:d3:3c:5b:62:c2:6b:bf:1c:77: 7e:1b:ce:b9:d0:4d:60:7d:68:6d:aa:d3:06:ab:1f: 56:45:9c:ca:e4:c2:08:29:a0:7e:cf:da:f6:cc:cb: 6b:0d:b6:24:e6:fd:98:9b:01:5e:2e:6e:19:98:99: 8a:53:fa:82:ea:ae:55:46:e5:cd:c1:a3:a3:84:6e: f4:81:7b:80:a2:77:d6:44:2f:24:52:28:90:ad:0a: f7:8b:b7:92:f8:08:e5:49:6c:b0:cc:28:42:e8:29: 4c:36:7f:ec:33:ea:5c:53:18:ed:ab:1d:2a:22:e5: e9:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:87:AB:EC:2C:67:1F:39:0C:E7:A6:D7:AE:FA:E9:AB:CF:40:95:B9 X509v3 Authority Key Identifier: keyid:32:50:52:B7:A6:78:FA:A0:97:DC:BE:65:47:17:0C:91:52:B4:6C:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:49:57:89:f5:95:c8:b9:fe:dd:f4:ea:4c:e9:31:06:41:ff: 17:91:60:bc:df:22:37:f5:f6:d8:de:d3:47:df:97:b4:95:d6: 4a:30:36:fb:73:40:c9:1c:c1:29:f6:1a:7a:68:3f:d6:51:2b: 60:0e:a4:38:f3:6c:8d:1c:56:12:b9:e8:ed:19:90:f7:87:56: a8:79:48:0d:7b:d3:e2:5b:7a:76:eb:0d:35:5a:85:10:6b:4f: be:44:20:dd:c9:9e:dc:22:67:a8:83:aa:eb:bc:b0:3f:7d:a1: 6e:68:0e:09:51:04:ac:5f:72:db:dd:7f:33:45:c1:f7:da:7c: a5:33:ac:c8:61:1d:92:e9:f4:84:f6:b9:42:5d:3b:31:12:3d: a1:bb:b2:fc:38:6d:d1:07:6a:d6:db:61:3f:d5:ca:1d:53:37: af:64:f7:e5:a4:3d:1a:cd:1d:14:84:37:c9:2f:ad:e9:ff:37: 93:8c:a8:e7:65:b1:e1:65:d1:71:8c:ac:f0:09:49:c8:5f:ab: 55:30:fc:61:b5:83:79:3f:f0:8d:c1:e0:23:24:ba:8d:a9:5b: 8c:f0:bb:8a:45:fe:37:08:ad:6d:cc:f8:10:87:db:9c:7f:8b: 03:47:33:a1:8b:2b:be:bc:c8:29:80:5a:74:42:da:00:31:02: f5:98:37:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8674UvhFOctfjd8b8XRJzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNTA1MmI3YTY3OGZhYTA5N2RjYmU2NTQ3MTcwYzkxNTJi NDZjZjEwHhcNMjUxMjIwMTgwMDQwWhcNMjUxMjIxMTgwMDQwWjAzMTEwLwYDVQQD Eyg4Mjg3YWJlYzJjNjcxZjM5MGNlN2E2ZDdhZWZhZTlhYmNmNDA5NWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjnaKylRUtRolUX+Bv9XHjhQ8qhEF 8NH3WWYJBYA3+2d/lpJuzwZYqRc7O3D5hUc546UoyQhps8ZK0TZOEJ7Yx1dlsZcM HvJaFl1du5qKb9CSkw43uxknxmZjHVucoETlsDtpubS2u0ph1z4cqUQ8JNACH4W7 DylqiRPzKZ5twYwXyOj/f+hgrJFCzJ3TPFtiwmu/HHd+G8650E1gfWhtqtMGqx9W RZzK5MIIKaB+z9r2zMtrDbYk5v2YmwFeLm4ZmJmKU/qC6q5VRuXNwaOjhG70gXuA onfWRC8kUiiQrQr3i7eS+AjlSWywzChC6ClMNn/sM+pcUxjtqx0qIuXptwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIKHq+wsZx85DOem16766avPQJW5MB8GA1UdIwQY MBaAFDJQUremePqgl9y+ZUcXDJFStGzxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWxCU3Q2WjQtcUNYM0w1bFJ4Y01rVkswYlBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yZmQwMjMtZTY0Ni00MDZhLTg0YTUt YmI2OTQ1YTE2ZmU3LzEvTWxCU3Q2WjQtcUNYM0w1bFJ4Y01rVkswYlBFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8yZmQwMjMtZTY0Ni00MDZhLTg0YTUtYmI2OTQ1YTE2ZmU3 LzEvTWxCU3Q2WjQtcUNYM0w1bFJ4Y01rVkswYlBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARUlXifWV yLn+3fTqTOkxBkH/F5FgvN8iN/X22N7TR9+XtJXWSjA2+3NAyRzBKfYaemg/1lEr YA6kOPNsjRxWErno7RmQ94dWqHlIDXvT4lt6dusNNVqFEGtPvkQg3cme3CJnqIOq 67ywP32hbmgOCVEErF9y291/M0XB99p8pTOsyGEdkun0hPa5Ql07MRI9obuy/Dht 0Qdq1tthP9XKHVM3r2T35aQ9Gs0dFIQ3yS+t6f83k4yo52Wx4WXRcYys8AlJyF+r VTD8YbWDeT/wjcHgIyS6jalbjPC7ikX+Nwitbcz4EIfbnH+LA0czoYsrvrzIKYBa dELaADEC9Zg3Mw== -----END CERTIFICATE-----Generated at Sun Dec 21 01:46:03 2025 by rpki-client