This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft File: FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft (raw, json) Hash identifier: KWHg1uhMscacdGkyFFOA9y0MKcaH941QIicBvaOzYys= Subject key identifier: 89:D0:4A:4A:82:B7:D2:E5:3F:EE:40:C3:D5:26:1D:3E:42:BB:44:B6 Authority key identifier: 16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08 Certificate issuer: /CN=16536fc756a5864aaa2c1e77bb764248dabe2608 Certificate serial: 019AF19ABC019D05065638F009053D5FFD24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft Manifest number: 07B3 Signing time: Sat 06 Dec 2025 03:00:40 +0000 Manifest this update: Sat 06 Dec 2025 03:00:40 +0000 Manifest next update: Sun 07 Dec 2025 03:00:40 +0000 Files and hashes: 1: FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl (hash: C9ZGAlFBaGufmbcMietDvasB+Rb6Yd3pb+VWSjHTgLg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:bc:01:9d:05:06:56:38:f0:09:05:3d:5f:fd:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16536fc756a5864aaa2c1e77bb764248dabe2608 Validity Not Before: Dec 6 03:00:40 2025 GMT Not After : Dec 7 03:00:40 2025 GMT Subject: CN=89d04a4a82b7d2e53fee40c3d5261d3e42bb44b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8a:51:1e:83:a3:cf:41:8b:b0:d6:4b:a2:9d: 58:ad:06:38:71:1c:6b:84:3e:71:1d:66:3b:c7:74: b5:33:b2:b7:cb:8e:04:b4:fb:62:08:08:bf:0e:43: 2c:d4:ac:e9:86:2d:ff:9d:76:d5:b0:d3:72:2e:21: 69:82:d3:db:a2:70:02:85:ee:65:4a:2f:8e:4f:40: c9:96:b1:12:8e:0c:d7:2f:ac:67:7f:3d:17:8f:1b: 05:b7:88:90:ec:1c:4f:8c:9f:16:bd:b9:d4:52:ee: 34:5d:ef:6d:95:9c:34:b0:37:20:c7:1a:b5:2e:33: b6:07:b6:4d:45:c1:9d:d4:6e:4a:c0:61:6a:d8:ca: 68:b7:f0:82:51:f8:00:cb:03:c1:64:8d:35:2c:f8: 76:24:ec:6e:9b:56:7c:d6:e9:2d:af:aa:27:ab:8e: c8:45:91:b2:79:b5:86:c7:e3:22:a1:ba:2a:dd:bb: 37:89:3e:b9:14:e6:03:73:19:a8:84:90:7a:b0:77: c5:4f:24:da:65:83:c6:ee:ff:9f:b9:7e:6d:46:13: ec:8d:36:6a:9d:39:55:2a:e4:46:f8:99:2b:1e:22: 27:a3:2f:81:21:1f:13:8b:f0:47:64:3d:09:fa:c2: 79:f7:d3:41:c8:fd:ef:66:20:2e:a6:ec:e2:48:13: 35:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D0:4A:4A:82:B7:D2:E5:3F:EE:40:C3:D5:26:1D:3E:42:BB:44:B6 X509v3 Authority Key Identifier: keyid:16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:fe:dc:1e:bb:c4:23:a1:6b:f7:f0:7a:33:92:ff:2f:3b:7f: 5c:63:7e:d1:66:21:e2:54:15:9a:be:7d:0e:0b:a5:52:18:b1: 35:4d:dc:f7:98:27:3e:27:d1:b4:a7:3d:dd:31:d0:86:3e:cd: d4:39:6d:49:3e:f2:9b:55:09:ea:53:af:20:01:6a:de:7c:57: e3:f9:c2:13:ca:b9:ee:a9:56:c4:38:7e:af:04:bc:3a:24:09: c3:2a:ba:37:18:20:fa:c7:cb:61:40:7a:6d:41:07:49:30:58: 7c:be:3a:05:31:8e:48:88:d4:bf:7b:b3:e7:b6:82:ab:99:b3: 5b:ea:74:af:0c:9a:d3:a8:d2:48:29:c8:58:0d:97:ca:08:e9: 48:9d:cc:c3:a4:83:6a:55:12:78:89:f5:75:fe:9f:7d:af:50: ff:26:51:c1:87:ae:b4:28:65:4d:46:14:2d:f1:36:04:2a:f9: d2:b5:73:28:d7:90:39:0b:ac:a0:11:c6:a1:5d:b2:c7:e7:bd: 38:c0:40:ec:b0:53:f5:c3:60:50:83:1a:9e:4d:a6:ba:db:55: 87:6f:36:8e:37:f9:bd:bd:7f:c5:75:2f:75:e3:88:fd:13:23: b3:19:97:40:59:41:23:cf:f5:1d:bf:92:68:8f:ef:c8:65:43: 8c:77:9d:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmrwBnQUGVjjwCQU9X/0kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2NTM2ZmM3NTZhNTg2NGFhYTJjMWU3N2JiNzY0MjQ4ZGFi ZTI2MDgwHhcNMjUxMjA2MDMwMDQwWhcNMjUxMjA3MDMwMDQwWjAzMTEwLwYDVQQD Eyg4OWQwNGE0YTgyYjdkMmU1M2ZlZTQwYzNkNTI2MWQzZTQyYmI0NGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4pRHoOjz0GLsNZLop1YrQY4cRxr hD5xHWY7x3S1M7K3y44EtPtiCAi/DkMs1Kzphi3/nXbVsNNyLiFpgtPbonAChe5l Si+OT0DJlrESjgzXL6xnfz0XjxsFt4iQ7BxPjJ8WvbnUUu40Xe9tlZw0sDcgxxq1 LjO2B7ZNRcGd1G5KwGFq2Mpot/CCUfgAywPBZI01LPh2JOxum1Z81uktr6onq47I RZGyebWGx+Mioboq3bs3iT65FOYDcxmohJB6sHfFTyTaZYPG7v+fuX5tRhPsjTZq nTlVKuRG+JkrHiInoy+BIR8Ti/BHZD0J+sJ599NByP3vZiAupuziSBM1BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFInQSkqCt9LlP+5Aw9UmHT5Cu0S2MB8GA1UdIwQY MBaAFBZTb8dWpYZKqiwed7t2QkjaviYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmxOdngxYWxoa3FxTEI1M3UzWkNTTnEtSmdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS85YTRiNDUtZGFjMC00Yzc5LThlMTQt N2YzZWI3NTQ2MTAyLzEvRmxOdngxYWxoa3FxTEI1M3UzWkNTTnEtSmdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS85YTRiNDUtZGFjMC00Yzc5LThlMTQtN2YzZWI3NTQ2MTAy LzEvRmxOdngxYWxoa3FxTEI1M3UzWkNTTnEtSmdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhf7cHrvE I6Fr9/B6M5L/Lzt/XGN+0WYh4lQVmr59DgulUhixNU3c95gnPifRtKc93THQhj7N 1DltST7ym1UJ6lOvIAFq3nxX4/nCE8q57qlWxDh+rwS8OiQJwyq6Nxgg+sfLYUB6 bUEHSTBYfL46BTGOSIjUv3uz57aCq5mzW+p0rwya06jSSCnIWA2XygjpSJ3Mw6SD alUSeIn1df6ffa9Q/yZRwYeutChlTUYULfE2BCr50rVzKNeQOQusoBHGoV2yx+e9 OMBA7LBT9cNgUIMank2muttVh282jjf5vb1/xXUvdeOI/RMjsxmXQFlBI8/1Hb+S aI/vyGVDjHedAQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:20:06 2025 by rpki-client