This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft File: C86QcAXcPrBHC8PbRpCNoQkXuEo.mft (raw, json) Hash identifier: 81msWVElLEd2tk3R/H8IvMRBsaXVP+8e+0p52pxOOsU= Subject key identifier: 4E:32:A3:9E:0A:81:65:0D:78:2D:B8:76:30:DB:5E:F1:C5:12:53:31 Authority key identifier: 0B:CE:90:70:05:DC:3E:B0:47:0B:C3:DB:46:90:8D:A1:09:17:B8:4A Certificate issuer: /CN=0bce907005dc3eb0470bc3db46908da10917b84a Certificate serial: 019AF12ED0A553BFE40453EAE88870A0506B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft Manifest number: 1110 Signing time: Sat 06 Dec 2025 01:02:48 +0000 Manifest this update: Sat 06 Dec 2025 01:02:48 +0000 Manifest next update: Sun 07 Dec 2025 01:02:48 +0000 Files and hashes: 1: C86QcAXcPrBHC8PbRpCNoQkXuEo.crl (hash: SmGFCGK6qZviPmgkyrU3BQ0woYsbfz1JzJGBT1l4ZpY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:d0:a5:53:bf:e4:04:53:ea:e8:88:70:a0:50:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0bce907005dc3eb0470bc3db46908da10917b84a Validity Not Before: Dec 6 01:02:48 2025 GMT Not After : Dec 7 01:02:48 2025 GMT Subject: CN=4e32a39e0a81650d782db87630db5ef1c5125331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7f:5d:ea:a6:f6:70:79:ee:41:93:c8:a4:9e: 5b:c0:10:5a:1a:d9:fd:ea:c0:9e:b8:a7:e9:d8:23: 51:a1:a5:80:4e:c7:2e:c4:0e:2e:f9:12:21:94:82: 00:9f:0f:ad:08:6a:9d:ab:5d:ec:0b:0c:3b:f4:12: 84:98:ef:d1:3d:c6:b4:3a:51:80:11:34:06:03:f9: ab:69:cc:49:28:5f:a8:96:1f:22:c7:14:8c:80:a5: c8:13:60:69:85:40:50:ed:e9:da:88:35:56:46:28: 38:c7:c4:cd:b2:00:e1:1c:9a:cb:07:87:3b:d3:6d: ba:36:8b:02:a7:77:85:4f:fb:df:b2:12:15:c2:4c: 57:b4:d0:30:9b:6c:4a:08:7c:d2:34:ff:73:09:8a: 37:80:e6:36:bd:45:75:86:fe:ce:8b:1a:04:f9:83: 36:ca:09:8d:e5:25:13:f0:5d:4a:94:f3:a2:a8:d7: 3e:d9:12:bd:c0:58:d9:75:d2:50:56:24:9f:8b:56: 8f:79:66:e5:20:d9:7e:11:79:4c:be:31:94:9d:3d: 1a:1b:66:8f:a6:39:ed:ed:30:23:82:34:2b:f9:50: dc:52:6b:87:5a:eb:85:97:fb:c4:19:f3:88:ef:d9: 55:04:b2:29:d7:61:f8:75:cd:c8:d1:1d:d1:9b:4c: 6e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:32:A3:9E:0A:81:65:0D:78:2D:B8:76:30:DB:5E:F1:C5:12:53:31 X509v3 Authority Key Identifier: keyid:0B:CE:90:70:05:DC:3E:B0:47:0B:C3:DB:46:90:8D:A1:09:17:B8:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:73:99:b0:36:6a:5c:d9:fc:ed:16:db:b8:06:8e:94:05:54: 3c:b1:2e:d9:93:6d:01:8a:74:5d:5f:7f:7b:95:ea:a3:2f:eb: fb:e5:bc:75:27:29:f6:61:09:ee:ab:78:f4:dd:38:50:eb:b4: 76:0c:b8:34:19:80:4a:9d:7f:66:83:68:65:02:f8:db:a0:93: 02:77:9a:90:2c:e9:47:84:19:82:57:f4:fc:b7:af:ae:17:e6: 83:55:6f:8d:8c:6f:1f:aa:bd:56:de:9d:9f:94:28:e2:a3:b8: 3d:fb:b1:6c:9f:4d:b0:45:65:ec:9b:66:95:99:6a:96:f9:85: 14:b3:da:bb:b8:49:f8:3a:7b:82:46:fc:97:b7:f1:5b:36:7a: 1e:49:48:55:9f:52:3c:86:6a:81:06:3e:92:4f:fa:98:56:3c: 29:10:60:e1:86:76:81:dc:3d:0c:7a:56:85:59:bf:3c:ca:e7: f3:1d:5d:f0:0e:ad:82:47:93:d7:71:4a:58:1b:65:ca:2e:06: 8d:bc:30:87:0a:f2:bd:1a:95:22:b2:bf:8b:87:e8:94:dc:d5: 09:76:98:8a:d8:73:1f:6e:c1:68:59:cc:7d:09:4a:24:8c:6c: c3:d3:0e:62:da:78:e8:27:cd:8a:91:3f:8e:bf:0f:43:c8:3e: 43:93:76:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLtClU7/kBFPq6IhwoFBrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiY2U5MDcwMDVkYzNlYjA0NzBiYzNkYjQ2OTA4ZGExMDkx N2I4NGEwHhcNMjUxMjA2MDEwMjQ4WhcNMjUxMjA3MDEwMjQ4WjAzMTEwLwYDVQQD Eyg0ZTMyYTM5ZTBhODE2NTBkNzgyZGI4NzYzMGRiNWVmMWM1MTI1MzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAln9d6qb2cHnuQZPIpJ5bwBBaGtn9 6sCeuKfp2CNRoaWATscuxA4u+RIhlIIAnw+tCGqdq13sCww79BKEmO/RPca0OlGA ETQGA/mracxJKF+olh8ixxSMgKXIE2BphUBQ7enaiDVWRig4x8TNsgDhHJrLB4c7 0226NosCp3eFT/vfshIVwkxXtNAwm2xKCHzSNP9zCYo3gOY2vUV1hv7OixoE+YM2 ygmN5SUT8F1KlPOiqNc+2RK9wFjZddJQViSfi1aPeWblINl+EXlMvjGUnT0aG2aP pjnt7TAjgjQr+VDcUmuHWuuFl/vEGfOI79lVBLIp12H4dc3I0R3Rm0xuTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE4yo54KgWUNeC24djDbXvHFElMxMB8GA1UdIwQY MBaAFAvOkHAF3D6wRwvD20aQjaEJF7hKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzg2UWNBWGNQckJIQzhQYlJwQ05vUWtYdUVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi82MzVmNzUtNjE2Yi00YjkzLWFiNDAt ZTM3MTg5OThiMTg0LzEvQzg2UWNBWGNQckJIQzhQYlJwQ05vUWtYdUVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi82MzVmNzUtNjE2Yi00YjkzLWFiNDAtZTM3MTg5OThiMTg0 LzEvQzg2UWNBWGNQckJIQzhQYlJwQ05vUWtYdUVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO3OZsDZq XNn87RbbuAaOlAVUPLEu2ZNtAYp0XV9/e5Xqoy/r++W8dScp9mEJ7qt49N04UOu0 dgy4NBmASp1/ZoNoZQL426CTAneakCzpR4QZglf0/Levrhfmg1VvjYxvH6q9Vt6d n5Qo4qO4PfuxbJ9NsEVl7JtmlZlqlvmFFLPau7hJ+Dp7gkb8l7fxWzZ6HklIVZ9S PIZqgQY+kk/6mFY8KRBg4YZ2gdw9DHpWhVm/PMrn8x1d8A6tgkeT13FKWBtlyi4G jbwwhwryvRqVIrK/i4folNzVCXaYithzH27BaFnMfQlKJIxsw9MOYtp46CfNipE/ jr8PQ8g+Q5N2FA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:11:21 2025 by rpki-client