This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json) Hash identifier: KB0kZJ8MvZQUKIOjg9nDMx2iLkdTVaOsr/S+nEiNS4U= Subject key identifier: F1:5C:4E:B8:00:1B:4A:D8:F9:F7:23:BA:C0:DF:28:25:74:E3:2D:2F Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e Certificate serial: 019AF12DCBC80DDF1D477F647FE113580B6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft Manifest number: 0736 Signing time: Sat 06 Dec 2025 01:01:41 +0000 Manifest this update: Sat 06 Dec 2025 01:01:41 +0000 Manifest next update: Sun 07 Dec 2025 01:01:41 +0000 Files and hashes: 1: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: q5XE2R9wxMoglIlvrO57gxfPLq3cZZGh4VRhlRznTXE=) 2: t0ukQ5CSEan3v8t7w6xA6LKAlPA.roa (hash: 0NRhgZITCHjsjwAYQth1zntdOiq0gcrilmGiiV4E8WI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:cb:c8:0d:df:1d:47:7f:64:7f:e1:13:58:0b:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e Validity Not Before: Dec 6 01:01:41 2025 GMT Not After : Dec 7 01:01:41 2025 GMT Subject: CN=f15c4eb8001b4ad8f9f723bac0df282574e32d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e3:2d:ca:b0:33:0e:80:6e:bf:90:da:70:e9: 1a:e3:2d:e5:f5:00:ec:e2:45:5b:d9:32:43:f4:68: 89:4a:b8:d8:10:61:9c:3c:01:08:19:c3:73:7f:ef: fc:ff:59:b5:ef:bc:14:84:98:b1:a9:68:73:da:25: 3c:6e:26:f2:8d:db:d2:4f:e5:0a:9e:33:10:7c:8e: 95:1f:ed:84:70:c1:14:19:f5:b1:83:a9:08:48:37: df:21:4b:f3:a6:1a:65:a8:d1:e6:04:f5:28:51:86: c1:6c:1d:24:48:43:0f:7d:40:db:65:f0:90:eb:f0: f4:15:8c:d6:f7:c9:65:d7:fb:95:c1:53:59:8a:51: 2a:6c:1c:38:a1:30:ed:6c:ce:3f:42:7e:6b:c0:6b: af:9b:5d:85:b9:8e:90:d4:20:d3:1b:33:ef:b3:e0: 14:ba:84:9f:65:8a:ef:9e:d7:03:1b:3f:78:fb:7f: f2:12:3c:13:d5:8f:3f:fa:3e:b0:63:23:a9:61:c1: 4b:6f:e5:c2:e6:0d:8f:08:15:a4:d7:c9:ca:37:70: 4d:98:09:2e:97:e8:0d:60:c2:b5:bf:88:08:96:99: 6d:d2:bd:16:ef:b8:b5:33:af:1c:70:d8:01:71:24: 84:6d:57:f6:10:1a:44:e8:60:cc:8c:67:bf:a0:43: 4c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:5C:4E:B8:00:1B:4A:D8:F9:F7:23:BA:C0:DF:28:25:74:E3:2D:2F X509v3 Authority Key Identifier: keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:b2:f7:4d:d7:ba:28:ab:dd:93:e4:8b:76:ea:75:56:2e:92: 95:0e:54:36:06:d7:ca:f4:7b:78:f7:85:22:7f:d5:7a:c6:60: 5f:bc:2c:25:54:ec:10:d0:da:de:40:8d:a8:85:03:6a:cb:42: 1d:93:0e:53:84:93:d2:64:02:00:a3:11:59:1a:90:93:7f:87: 1f:f5:79:77:3a:1f:8d:e8:c3:d9:5a:f2:b3:9c:03:71:05:29: 70:9c:81:ca:1e:f7:3d:a3:1f:b4:f4:92:2f:52:fa:cb:e2:75: 3a:5c:cc:11:3c:55:3d:d7:03:f5:cc:d3:84:c5:f4:60:42:ec: 71:80:58:12:84:13:2b:30:0d:4b:5f:1a:13:49:19:82:44:83: 95:df:4d:33:57:74:74:59:dc:4c:1f:c8:51:e2:0d:0f:d6:26: e2:d2:c4:61:46:cb:55:d2:5f:79:9f:07:ad:92:d3:19:41:21: e4:b6:05:86:5a:80:bd:af:62:8c:34:3b:7f:c1:35:a2:d8:01: fc:f8:24:14:86:ff:97:e1:5e:73:c0:de:8a:19:06:c5:25:c1: d1:70:1a:bb:e2:9d:36:38:4d:2b:df:46:8c:0e:22:4a:e1:8b: 4c:29:9b:e8:de:0a:e2:e2:27:f7:d1:0b:41:e0:56:9f:ea:15: 47:89:ac:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLcvIDd8dR39kf+ETWAtuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZTZmZDIyNzFkZGUxMDg4NmQ5N2ZmMTQ3MDNlNTgxYTIw NGI2NWUwHhcNMjUxMjA2MDEwMTQxWhcNMjUxMjA3MDEwMTQxWjAzMTEwLwYDVQQD EyhmMTVjNGViODAwMWI0YWQ4ZjlmNzIzYmFjMGRmMjgyNTc0ZTMyZDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+MtyrAzDoBuv5DacOka4y3l9QDs 4kVb2TJD9GiJSrjYEGGcPAEIGcNzf+/8/1m177wUhJixqWhz2iU8bibyjdvST+UK njMQfI6VH+2EcMEUGfWxg6kISDffIUvzphplqNHmBPUoUYbBbB0kSEMPfUDbZfCQ 6/D0FYzW98ll1/uVwVNZilEqbBw4oTDtbM4/Qn5rwGuvm12FuY6Q1CDTGzPvs+AU uoSfZYrvntcDGz94+3/yEjwT1Y8/+j6wYyOpYcFLb+XC5g2PCBWk18nKN3BNmAku l+gNYMK1v4gIlplt0r0W77i1M68ccNgBcSSEbVf2EBpE6GDMjGe/oENMBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPFcTrgAG0rY+fcjusDfKCV04y0vMB8GA1UdIwQY MBaAFHLm/SJx3eEIhtl/8UcD5YGiBLZeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgt NmFmMjE1YmZmMWNlLzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgtNmFmMjE1YmZmMWNl LzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZbL3Tde6 KKvdk+SLdup1Vi6SlQ5UNgbXyvR7ePeFIn/VesZgX7wsJVTsENDa3kCNqIUDastC HZMOU4ST0mQCAKMRWRqQk3+HH/V5dzofjejD2Vrys5wDcQUpcJyByh73PaMftPSS L1L6y+J1OlzMETxVPdcD9czThMX0YELscYBYEoQTKzANS18aE0kZgkSDld9NM1d0 dFncTB/IUeIND9Ym4tLEYUbLVdJfeZ8HrZLTGUEh5LYFhlqAva9ijDQ7f8E1otgB /PgkFIb/l+Fec8DeihkGxSXB0XAau+KdNjhNK99GjA4iSuGLTCmb6N4K4uIn99EL QeBWn+oVR4msZg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:12:11 2025 by rpki-client