This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft File: RXHLqFoCMKnLR6vrWzue1NUxz54.mft (raw, json) Hash identifier: 1rKjmBWwTTjX3HjbQ7SqFl8zUe9Q/CGqV5RUVF4/qSo= Subject key identifier: 53:DC:F8:E9:14:A9:E5:13:7C:44:1B:39:18:E3:F4:B6:2E:48:BE:07 Authority key identifier: 45:71:CB:A8:5A:02:30:A9:CB:47:AB:EB:5B:3B:9E:D4:D5:31:CF:9E Certificate issuer: /CN=4571cba85a0230a9cb47abeb5b3b9ed4d531cf9e Certificate serial: 019AF1D245BA884BFECED941CBFB6A66C6BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RXHLqFoCMKnLR6vrWzue1NUxz54.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft Manifest number: 050B Signing time: Sat 06 Dec 2025 04:01:20 +0000 Manifest this update: Sat 06 Dec 2025 04:01:20 +0000 Manifest next update: Sun 07 Dec 2025 04:01:20 +0000 Files and hashes: 1: RXHLqFoCMKnLR6vrWzue1NUxz54.crl (hash: VzV/CZUg72Abgdj04pyvpUd6bMXFX14z8U8oEzXUXhs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.crl rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft rsync://rpki.ripe.net/repository/DEFAULT/RXHLqFoCMKnLR6vrWzue1NUxz54.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:45:ba:88:4b:fe:ce:d9:41:cb:fb:6a:66:c6:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4571cba85a0230a9cb47abeb5b3b9ed4d531cf9e Validity Not Before: Dec 6 04:01:20 2025 GMT Not After : Dec 7 04:01:20 2025 GMT Subject: CN=53dcf8e914a9e5137c441b3918e3f4b62e48be07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bb:0c:a2:10:c6:aa:6f:9b:1c:a9:e2:81:1e: 75:c7:08:61:64:ab:3f:94:30:a9:0c:15:3c:98:02: 46:ee:8e:7e:ee:f5:e0:51:39:c4:45:4d:7c:f7:cd: 84:e9:8f:82:d3:f4:16:78:15:a7:54:0b:56:55:be: f6:08:0e:22:df:f8:63:aa:ff:0b:c9:29:bd:13:a9: a2:b1:db:af:52:11:49:0f:83:67:9d:65:c7:66:20: c0:b7:c7:ce:3c:39:0e:3c:39:8c:32:81:39:e2:c0: 03:0f:a8:82:d3:d5:91:4b:d6:73:53:ca:a3:41:20: b0:41:57:08:3f:bf:62:08:76:00:a6:5d:f1:9c:40: e7:32:32:69:33:51:5e:42:e4:40:70:de:ae:85:53: 9c:6b:55:f9:8a:76:d1:33:71:be:0f:60:56:9d:cd: db:12:b3:d7:dd:e5:12:de:a0:73:57:2f:f4:11:86: 71:9f:24:e9:86:a4:f4:f5:8f:0a:e3:29:ad:a6:70: 4e:57:f1:22:5b:7e:e6:5d:39:e7:0b:9d:31:b2:c7: 71:9c:b3:80:26:03:3a:45:c9:a5:4c:81:b0:15:d4: d2:0a:e6:68:36:c1:cc:64:cd:80:a5:0b:8f:21:c0: 6f:63:9f:af:85:9a:78:bf:aa:69:94:ff:57:d9:43: 84:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DC:F8:E9:14:A9:E5:13:7C:44:1B:39:18:E3:F4:B6:2E:48:BE:07 X509v3 Authority Key Identifier: keyid:45:71:CB:A8:5A:02:30:A9:CB:47:AB:EB:5B:3B:9E:D4:D5:31:CF:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RXHLqFoCMKnLR6vrWzue1NUxz54.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:35:00:7d:2f:3d:70:17:bd:4a:82:03:8c:3a:04:61:82:fd: 26:d0:4d:b2:5e:1f:b4:4b:06:c7:0c:1a:9e:d2:44:24:96:30: a5:e7:53:fa:5c:f0:e5:73:f2:6c:1e:30:ff:23:19:5e:9a:62: 62:4f:6d:08:fc:5e:f6:50:6b:ec:44:37:85:2a:f8:43:eb:91: 8d:39:b0:b2:0d:38:a7:0e:94:6a:c0:49:de:88:48:4c:03:7b: f3:cb:53:fa:c1:e8:21:14:20:df:0c:59:6e:83:ca:70:0b:e1: 77:2d:77:ef:7b:87:39:11:11:9c:1e:72:81:8e:76:93:c2:d6: 8f:2b:f7:35:d1:1e:f8:8b:21:5f:78:16:d5:d8:e8:60:18:a2: db:f4:c2:81:d3:a5:be:e0:5c:e4:c4:ac:8f:2b:be:12:bb:c1: 1d:0d:39:3d:98:cd:88:7e:0b:29:40:de:ad:a4:69:87:47:56: 0a:c6:34:5b:81:1c:bb:66:62:ed:bd:58:49:2c:e8:8e:78:2f: 45:80:55:55:4f:1d:65:4d:b5:81:73:36:15:c0:d7:3f:e9:0c: d9:1e:ee:d1:94:6f:f2:25:35:66:d9:ae:a5:51:5e:49:57:74: 12:c5:0b:18:58:e5:bb:ba:b0:f9:0c:1c:40:b0:61:67:5e:56: 97:05:e6:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0kW6iEv+ztlBy/tqZsa6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1NzFjYmE4NWEwMjMwYTljYjQ3YWJlYjViM2I5ZWQ0ZDUz MWNmOWUwHhcNMjUxMjA2MDQwMTIwWhcNMjUxMjA3MDQwMTIwWjAzMTEwLwYDVQQD Eyg1M2RjZjhlOTE0YTllNTEzN2M0NDFiMzkxOGUzZjRiNjJlNDhiZTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrsMohDGqm+bHKnigR51xwhhZKs/ lDCpDBU8mAJG7o5+7vXgUTnERU18982E6Y+C0/QWeBWnVAtWVb72CA4i3/hjqv8L ySm9E6misduvUhFJD4NnnWXHZiDAt8fOPDkOPDmMMoE54sADD6iC09WRS9ZzU8qj QSCwQVcIP79iCHYApl3xnEDnMjJpM1FeQuRAcN6uhVOca1X5inbRM3G+D2BWnc3b ErPX3eUS3qBzVy/0EYZxnyTphqT09Y8K4ymtpnBOV/EiW37mXTnnC50xssdxnLOA JgM6RcmlTIGwFdTSCuZoNsHMZM2ApQuPIcBvY5+vhZp4v6pplP9X2UOEnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFPc+OkUqeUTfEQbORjj9LYuSL4HMB8GA1UdIwQY MBaAFEVxy6haAjCpy0er61s7ntTVMc+eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlhITHFGb0NNS25MUjZ2cld6dWUxTlV4ejU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9hNjQwOTktMzQ1Zi00ZjFjLWE5MzAt NzYwY2IzZWExNDE1LzEvUlhITHFGb0NNS25MUjZ2cld6dWUxTlV4ejU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9hNjQwOTktMzQ1Zi00ZjFjLWE5MzAtNzYwY2IzZWExNDE1 LzEvUlhITHFGb0NNS25MUjZ2cld6dWUxTlV4ejU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAujUAfS89 cBe9SoIDjDoEYYL9JtBNsl4ftEsGxwwantJEJJYwpedT+lzw5XPybB4w/yMZXppi Yk9tCPxe9lBr7EQ3hSr4Q+uRjTmwsg04pw6UasBJ3ohITAN788tT+sHoIRQg3wxZ boPKcAvhdy1373uHORERnB5ygY52k8LWjyv3NdEe+IshX3gW1djoYBii2/TCgdOl vuBc5MSsjyu+ErvBHQ05PZjNiH4LKUDeraRph0dWCsY0W4Ecu2Zi7b1YSSzojngv RYBVVU8dZU21gXM2FcDXP+kM2R7u0ZRv8iU1ZtmupVFeSVd0EsULGFjlu7qw+Qwc QLBhZ15WlwXmSg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:52:05 2025 by rpki-client