This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft File: F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft (raw, json) Hash identifier: qwPomTF5aQNIK01BNzjbI/xkpeyfRIpck6/5wqUeews= Subject key identifier: F0:DE:BD:2B:F1:40:52:D2:8C:82:4C:0A:5B:DA:D1:F0:20:28:06:50 Authority key identifier: 17:4D:54:5B:29:3C:16:DC:EF:DC:41:D1:56:F4:91:9B:B1:54:C0:D9 Certificate issuer: /CN=174d545b293c16dcefdc41d156f4919bb154c0d9 Certificate serial: 019AF19B7909D6B1C2765EFCB3312570EBAA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft Manifest number: 0BEF Signing time: Sat 06 Dec 2025 03:01:29 +0000 Manifest this update: Sat 06 Dec 2025 03:01:29 +0000 Manifest next update: Sun 07 Dec 2025 03:01:29 +0000 Files and hashes: 1: F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl (hash: o6+9Ozp/OEglpbtIiuIidBn7LBo3wADlb4WLammN2hs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:79:09:d6:b1:c2:76:5e:fc:b3:31:25:70:eb:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=174d545b293c16dcefdc41d156f4919bb154c0d9 Validity Not Before: Dec 6 03:01:29 2025 GMT Not After : Dec 7 03:01:29 2025 GMT Subject: CN=f0debd2bf14052d28c824c0a5bdad1f020280650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ff:8d:b0:97:00:9d:f1:8c:88:d7:1f:86:bd: a9:30:92:a3:6d:a3:26:c4:43:e4:c6:4b:57:d4:a3: 7a:c7:4b:62:18:19:3d:a8:1b:53:30:b8:a6:91:2c: 4e:10:cf:ad:28:4a:ff:6f:e5:7c:c9:40:09:bb:48: 34:d2:ad:89:93:d7:82:ff:fb:9d:2e:be:0e:5e:c8: 90:be:7a:d9:4a:90:f6:34:e9:8f:82:f9:66:63:7f: 64:eb:69:ac:e8:21:ac:7f:60:2a:83:25:84:c0:06: d5:81:76:7f:ff:76:e5:66:3e:21:36:a5:54:2b:26: 6c:a8:5a:e6:c2:d8:d0:d3:02:ef:6c:79:15:e3:ab: ba:82:82:d2:65:c7:ab:e3:24:20:1d:74:54:cb:6f: ec:ab:51:d8:83:d0:1e:f8:2d:56:ba:0c:8a:85:91: 17:66:43:90:4b:c8:96:70:21:26:e0:e7:4c:12:4a: 31:08:b5:9d:33:7d:ce:c1:33:4a:b5:87:63:dc:3e: ec:d2:f2:07:80:9c:17:29:ab:09:81:4d:f0:f7:40: 11:e1:44:86:70:c2:b0:41:78:19:ae:1b:95:72:9f: 48:c4:d4:b7:5e:10:27:29:2d:22:f6:70:55:6b:20: 4a:3d:86:0c:8c:06:c0:78:0b:8b:97:3c:a7:cf:e2: e2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DE:BD:2B:F1:40:52:D2:8C:82:4C:0A:5B:DA:D1:F0:20:28:06:50 X509v3 Authority Key Identifier: keyid:17:4D:54:5B:29:3C:16:DC:EF:DC:41:D1:56:F4:91:9B:B1:54:C0:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:4c:04:5b:6d:32:80:06:38:c0:aa:88:b5:d4:8e:20:16:08: 6f:35:07:73:81:f9:4c:24:27:70:57:63:55:77:1e:ea:22:1e: 59:95:60:13:99:51:37:41:9d:4f:30:a1:42:57:f9:61:6b:35: 90:a1:da:b3:5a:b1:84:46:b6:5f:fa:ba:b1:93:5e:fb:28:e6: 56:c5:b3:e4:02:8f:3d:75:a3:28:cc:f4:9b:54:ba:94:a1:9a: 28:77:e6:5f:44:f3:52:8b:3b:de:be:e2:e1:3c:b0:f5:00:16: e6:f6:2c:84:50:7c:f9:2e:40:98:87:67:6b:91:4b:8a:12:14: 43:5d:cb:f9:e4:fb:42:bc:e2:9e:95:da:aa:32:9f:8c:96:64: f2:bc:ed:5f:f4:f9:41:61:b6:01:f6:87:00:c6:7d:5f:0a:0c: 58:03:f6:3b:c5:2e:ee:11:9b:34:58:c4:aa:6d:d9:4d:83:73: 4d:22:4a:3a:78:ca:46:ee:c8:fb:b6:e8:d5:cb:59:02:05:cf: 97:29:92:77:e6:f7:2e:52:58:f6:97:8a:3d:58:19:89:a6:da: 29:f5:9a:f4:7e:4b:81:13:e8:78:07:f6:c6:27:08:49:4e:1e: c5:2a:d5:61:e7:37:86:cb:1c:3d:2c:58:8f:0a:8e:ef:ff:75: 28:cd:27:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm3kJ1rHCdl78szElcOuqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NGQ1NDViMjkzYzE2ZGNlZmRjNDFkMTU2ZjQ5MTliYjE1 NGMwZDkwHhcNMjUxMjA2MDMwMTI5WhcNMjUxMjA3MDMwMTI5WjAzMTEwLwYDVQQD EyhmMGRlYmQyYmYxNDA1MmQyOGM4MjRjMGE1YmRhZDFmMDIwMjgwNjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnP+NsJcAnfGMiNcfhr2pMJKjbaMm xEPkxktX1KN6x0tiGBk9qBtTMLimkSxOEM+tKEr/b+V8yUAJu0g00q2Jk9eC//ud Lr4OXsiQvnrZSpD2NOmPgvlmY39k62ms6CGsf2AqgyWEwAbVgXZ//3blZj4hNqVU KyZsqFrmwtjQ0wLvbHkV46u6goLSZcer4yQgHXRUy2/sq1HYg9Ae+C1WugyKhZEX ZkOQS8iWcCEm4OdMEkoxCLWdM33OwTNKtYdj3D7s0vIHgJwXKasJgU3w90AR4USG cMKwQXgZrhuVcp9IxNS3XhAnKS0i9nBVayBKPYYMjAbAeAuLlzynz+LiUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPDevSvxQFLSjIJMClva0fAgKAZQMB8GA1UdIwQY MBaAFBdNVFspPBbc79xB0Vb0kZuxVMDZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjAxVVd5azhGdHp2M0VIUlZ2U1JtN0ZVd05rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy80YWI2ODgtOGE1MS00MzIyLWEyODYt ODQ3ZTExNmJjNmViLzEvRjAxVVd5azhGdHp2M0VIUlZ2U1JtN0ZVd05rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy80YWI2ODgtOGE1MS00MzIyLWEyODYtODQ3ZTExNmJjNmVi LzEvRjAxVVd5azhGdHp2M0VIUlZ2U1JtN0ZVd05rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAakwEW20y gAY4wKqItdSOIBYIbzUHc4H5TCQncFdjVXce6iIeWZVgE5lRN0GdTzChQlf5YWs1 kKHas1qxhEa2X/q6sZNe+yjmVsWz5AKPPXWjKMz0m1S6lKGaKHfmX0TzUos73r7i 4Tyw9QAW5vYshFB8+S5AmIdna5FLihIUQ13L+eT7QrzinpXaqjKfjJZk8rztX/T5 QWG2AfaHAMZ9XwoMWAP2O8Uu7hGbNFjEqm3ZTYNzTSJKOnjKRu7I+7bo1ctZAgXP lymSd+b3LlJY9peKPVgZiabaKfWa9H5LgRPoeAf2xicISU4exSrVYec3hsscPSxY jwqO7/91KM0nAw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:21:05 2025 by rpki-client