This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json) Hash identifier: yfByO0pfMdkuUBycUmJBWecdMJwEFWQWl9cE384XeB4= Subject key identifier: 50:02:73:B6:E9:EC:F3:3E:60:C2:9D:6A:30:BB:F9:B7:96:13:93:47 Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75 Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75 Certificate serial: 019AF31CA250FA4C3BD5B7EDB0B2171E7775 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft Manifest number: 0DB6 Signing time: Sat 06 Dec 2025 10:02:11 +0000 Manifest this update: Sat 06 Dec 2025 10:02:11 +0000 Manifest next update: Sun 07 Dec 2025 10:02:11 +0000 Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: rhlQZxg8MvpftkQSumR94IIWmXt19T2Ibsk5mNintk4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:a2:50:fa:4c:3b:d5:b7:ed:b0:b2:17:1e:77:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75 Validity Not Before: Dec 6 10:02:11 2025 GMT Not After : Dec 7 10:02:11 2025 GMT Subject: CN=500273b6e9ecf33e60c29d6a30bbf9b796139347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b2:3f:87:73:d7:2a:b5:f0:8f:49:8f:02:6d: 88:26:55:c5:1f:6b:fd:85:c9:07:90:b8:52:a3:14: fa:2b:67:da:6f:0a:c4:49:a6:0b:f3:4e:7f:81:e9: 67:79:88:cb:20:c9:6f:ab:95:15:60:f1:b8:ca:e0: 42:db:49:80:e1:64:f5:26:d9:f1:87:e8:5b:52:f5: 0d:96:41:97:e0:f7:f2:6b:96:05:92:23:4d:59:dc: 4e:ed:1d:6b:fa:07:f6:8e:09:8b:8d:84:46:75:fa: dc:0d:a6:d3:6a:05:9b:62:57:5d:5b:55:92:c6:07: e2:35:24:30:aa:79:0e:2a:8e:69:e2:af:71:ea:57: df:75:d7:c7:1f:ba:db:06:0c:dd:ef:49:76:85:ed: e1:d2:62:55:c4:56:b1:eb:1e:c1:8b:bd:28:36:d4: e5:98:4a:33:29:01:e8:02:89:00:0a:4b:11:0e:2a: 60:04:90:82:39:0a:b1:c8:42:29:0b:d8:5a:a9:a8: 97:43:97:ae:bc:37:94:ce:56:dc:0b:02:ec:c8:b3: 76:00:11:8b:09:55:e2:1d:52:bd:49:cd:83:c8:f0: 59:5b:01:82:6e:c0:23:01:f9:cf:e7:72:d0:c3:90: 21:a5:08:85:15:bc:80:ba:e9:ac:01:d0:2e:7b:19: 63:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:02:73:B6:E9:EC:F3:3E:60:C2:9D:6A:30:BB:F9:B7:96:13:93:47 X509v3 Authority Key Identifier: keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:36:22:b3:21:a5:84:28:3d:ff:01:a4:12:13:d4:4c:39:f4: df:c1:29:d2:27:53:ec:f1:33:1d:f7:06:6f:86:42:09:6d:2a: e3:ee:bd:a0:61:e8:ab:85:7c:d3:51:19:f4:57:7c:b5:00:57: 53:49:e7:5b:b9:8f:80:00:89:62:28:18:76:34:44:7f:89:6e: b2:a8:ab:ff:34:10:12:c1:0e:11:cd:35:37:b7:e3:8b:f9:cd: 87:71:ba:d1:ae:14:d2:ab:dc:0c:5a:0a:56:d5:6a:c8:20:0e: 3d:a8:f3:3a:70:c3:02:ac:c3:81:ca:ab:3f:57:9e:fb:7b:84: c9:fd:da:74:5f:e1:b4:50:48:da:2f:b7:c5:31:0f:0a:c6:e3: e3:fc:07:7d:67:b9:55:b4:8c:e4:95:cd:2c:9f:79:c5:0b:60: 35:07:6f:6f:53:54:ac:39:91:f9:37:37:bf:16:18:10:67:a1: 19:fa:af:6b:68:47:ec:1c:47:6a:20:bf:e6:15:c7:7c:c7:f2: 0a:3d:a3:6b:8f:e9:8e:7d:bf:fc:ff:22:1d:64:fb:a9:57:3c: dd:2b:a2:c8:88:ce:c5:b9:83:f0:45:da:1e:81:dc:a0:5f:67: 15:0c:a4:c8:8c:7a:b1:50:84:3f:9c:90:dc:dc:b3:8c:a6:bd: 3c:f5:ff:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHKJQ+kw71bftsLIXHnd1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2M2ZlOWMxMzQwNDFjZWJkYTU2OGI5ZjkwOGUyYWVmMzhh YjdmNzUwHhcNMjUxMjA2MTAwMjExWhcNMjUxMjA3MTAwMjExWjAzMTEwLwYDVQQD Eyg1MDAyNzNiNmU5ZWNmMzNlNjBjMjlkNmEzMGJiZjliNzk2MTM5MzQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7I/h3PXKrXwj0mPAm2IJlXFH2v9 hckHkLhSoxT6K2fabwrESaYL805/gelneYjLIMlvq5UVYPG4yuBC20mA4WT1Jtnx h+hbUvUNlkGX4Pfya5YFkiNNWdxO7R1r+gf2jgmLjYRGdfrcDabTagWbYlddW1WS xgfiNSQwqnkOKo5p4q9x6lffddfHH7rbBgzd70l2he3h0mJVxFax6x7Bi70oNtTl mEozKQHoAokACksRDipgBJCCOQqxyEIpC9haqaiXQ5euvDeUzlbcCwLsyLN2ABGL CVXiHVK9Sc2DyPBZWwGCbsAjAfnP53LQw5AhpQiFFbyAuumsAdAuexljbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFACc7bp7PM+YMKdajC7+beWE5NHMB8GA1UdIwQY MBaAFPY/6cE0BBzr2laLn5COKu84q391MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYt NWFlYzc2NmE0OWI0LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYtNWFlYzc2NmE0OWI0 LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQzYisyGl hCg9/wGkEhPUTDn038Ep0idT7PEzHfcGb4ZCCW0q4+69oGHoq4V801EZ9Fd8tQBX U0nnW7mPgACJYigYdjREf4lusqir/zQQEsEOEc01N7fji/nNh3G60a4U0qvcDFoK VtVqyCAOPajzOnDDAqzDgcqrP1ee+3uEyf3adF/htFBI2i+3xTEPCsbj4/wHfWe5 VbSM5JXNLJ95xQtgNQdvb1NUrDmR+Tc3vxYYEGehGfqva2hH7BxHaiC/5hXHfMfy Cj2ja4/pjn2//P8iHWT7qVc83SuiyIjOxbmD8EXaHoHcoF9nFQykyIx6sVCEP5yQ 3NyzjKa9PPX/Aw== -----END CERTIFICATE-----Generated at Sat Dec 6 16:55:17 2025 by rpki-client