This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft File: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft (raw, json) Hash identifier: o3ASVnhB8lLgMQ+CmAKz0P+inDG35ceQNpGSQ/kTy1s= Subject key identifier: 1B:A6:62:23:81:93:84:55:BB:5C:7B:D9:6E:CE:A4:92:A1:A2:BA:40 Authority key identifier: B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F Certificate issuer: /CN=b56daa6f850414a13f650df094506628a46dc12f Certificate serial: 019B24ACDCF9C9976266FDFFAB686114C7DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft Manifest number: 1277 Signing time: Tue 16 Dec 2025 01:01:07 +0000 Manifest this update: Tue 16 Dec 2025 01:01:07 +0000 Manifest next update: Wed 17 Dec 2025 01:01:07 +0000 Files and hashes: 1: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl (hash: nXVFxN4r1AuuPgzgmz1iGOo/B0OMqdKKJQD8k9iL7Cs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:ac:dc:f9:c9:97:62:66:fd:ff:ab:68:61:14:c7:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b56daa6f850414a13f650df094506628a46dc12f Validity Not Before: Dec 16 01:01:07 2025 GMT Not After : Dec 17 01:01:07 2025 GMT Subject: CN=1ba6622381938455bb5c7bd96ecea492a1a2ba40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:2b:88:6a:c0:73:92:d6:b4:8f:2b:34:12:02: e1:32:08:fb:37:a9:dc:05:df:ea:bc:06:5b:fc:b1: dd:ef:7c:1f:3f:49:86:43:c4:95:c8:cf:c5:6b:5e: c4:3f:ee:46:3b:7d:30:35:35:33:ad:aa:27:47:a6: d2:6f:37:57:85:b1:a7:c6:b8:00:ae:95:9e:93:f7: db:73:a6:d0:0f:e3:85:b1:fa:ad:8e:2b:f4:ed:31: 13:40:0d:82:76:08:25:da:7a:3d:c3:61:37:87:34: ba:96:97:45:3b:44:dd:dd:e1:7d:b0:3c:66:a4:19: a9:20:56:01:f2:71:89:e1:82:3a:56:df:97:9a:99: 41:6f:e7:30:1b:56:df:5e:a7:7c:eb:d2:9d:61:f0: fd:f5:83:6a:a3:67:5b:00:7e:0c:b4:d1:04:3f:2f: b3:cf:72:35:9f:01:4a:71:29:e5:61:dc:8a:b5:81: 2a:11:a6:bb:d7:58:e8:7e:0c:bc:10:c0:d5:53:03: dc:fd:23:da:52:e5:cf:8d:33:d4:9a:3e:60:eb:26: 0b:cb:0d:d9:c7:34:79:17:52:95:83:78:70:9d:c0: 97:0e:8f:77:cd:6e:f7:7a:77:6c:4b:ca:fd:fd:7c: a8:b1:cd:a2:e8:1a:89:8e:2d:fb:b3:d7:c9:ff:d9: 08:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A6:62:23:81:93:84:55:BB:5C:7B:D9:6E:CE:A4:92:A1:A2:BA:40 X509v3 Authority Key Identifier: keyid:B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:e8:47:5b:81:2a:63:c5:2f:5c:2f:d6:4d:62:1a:87:00:53: d4:25:40:ea:23:18:fa:6a:38:ef:05:9b:fb:f1:79:89:d4:8e: cc:0c:74:05:4d:c4:ce:b4:2c:53:7b:16:0a:b4:d5:24:d2:38: 0f:39:32:e9:00:2e:09:cc:ca:50:d7:45:7c:7c:57:ff:f5:1a: 09:df:64:31:7b:f3:d1:7f:60:05:c4:b6:ca:3d:88:27:3c:56: 65:e9:44:54:87:bd:26:23:a0:8e:c5:af:33:05:89:a8:7c:0d: ce:37:25:3a:7f:3c:dc:9c:f1:c3:b9:8d:48:b5:2e:86:6f:2d: e6:dc:a4:8b:73:87:00:31:49:1c:ca:22:05:7a:4f:c0:44:3e: 3b:fc:d0:ba:30:aa:a4:30:2a:d8:30:28:d8:e0:fe:07:ea:d0: 37:22:95:f0:a7:7d:5d:90:96:e2:a6:6c:fc:7e:52:a6:67:f4: 51:02:ea:f8:fb:f0:ff:b7:ea:3e:67:ce:16:07:a2:21:f4:8a: e1:43:4c:d0:b9:80:ad:b3:30:56:db:2b:cb:d9:86:fb:d4:27: f2:7f:97:2f:8a:8e:f5:48:c4:62:c9:ad:29:66:9b:c2:2c:ea: 3f:8f:ef:b7:5b:0f:dc:d3:4f:90:24:9e:b6:85:6b:e6:c1:f2: 35:b8:18:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskrNz5yZdiZv3/q2hhFMfcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NmRhYTZmODUwNDE0YTEzZjY1MGRmMDk0NTA2NjI4YTQ2 ZGMxMmYwHhcNMjUxMjE2MDEwMTA3WhcNMjUxMjE3MDEwMTA3WjAzMTEwLwYDVQQD EygxYmE2NjIyMzgxOTM4NDU1YmI1YzdiZDk2ZWNlYTQ5MmExYTJiYTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8iuIasBzkta0jys0EgLhMgj7N6nc Bd/qvAZb/LHd73wfP0mGQ8SVyM/Fa17EP+5GO30wNTUzraonR6bSbzdXhbGnxrgA rpWek/fbc6bQD+OFsfqtjiv07TETQA2Cdggl2no9w2E3hzS6lpdFO0Td3eF9sDxm pBmpIFYB8nGJ4YI6Vt+XmplBb+cwG1bfXqd869KdYfD99YNqo2dbAH4MtNEEPy+z z3I1nwFKcSnlYdyKtYEqEaa711jofgy8EMDVUwPc/SPaUuXPjTPUmj5g6yYLyw3Z xzR5F1KVg3hwncCXDo93zW73endsS8r9/Xyosc2i6BqJji37s9fJ/9kIcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBumYiOBk4RVu1x72W7OpJKhorpAMB8GA1UdIwQY MBaAFLVtqm+FBBShP2UN8JRQZiikbcEvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFcycWI0VUVGS0VfWlEzd2xGQm1LS1J0d1M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8zYmVlMDEtMWZiOC00N2UyLWI3NjYt ZmUwYTJhYzA4NjlmLzEvdFcycWI0VUVGS0VfWlEzd2xGQm1LS1J0d1M4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi8zYmVlMDEtMWZiOC00N2UyLWI3NjYtZmUwYTJhYzA4Njlm LzEvdFcycWI0VUVGS0VfWlEzd2xGQm1LS1J0d1M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfehHW4Eq Y8UvXC/WTWIahwBT1CVA6iMY+mo47wWb+/F5idSOzAx0BU3EzrQsU3sWCrTVJNI4 Dzky6QAuCczKUNdFfHxX//UaCd9kMXvz0X9gBcS2yj2IJzxWZelEVIe9JiOgjsWv MwWJqHwNzjclOn883Jzxw7mNSLUuhm8t5tyki3OHADFJHMoiBXpPwEQ+O/zQujCq pDAq2DAo2OD+B+rQNyKV8Kd9XZCW4qZs/H5Spmf0UQLq+Pvw/7fqPmfOFgeiIfSK 4UNM0LmArbMwVtsry9mG+9Qn8n+XL4qO9UjEYsmtKWabwizqP4/vt1sP3NNPkCSe toVr5sHyNbgYyA== -----END CERTIFICATE-----Generated at Tue Dec 16 07:01:45 2025 by rpki-client