This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.mft File: in1zAecVR30mgJu6u0zQMr07Vhg.mft (raw, json) Hash identifier: fRZJcoHpYMUbPvmSzKdMHLI5IHeeRojeZfeqtNxTd3Y= Subject key identifier: 2B:13:B4:94:DA:82:30:39:C8:A4:E9:10:33:53:71:D4:AB:94:65:EB Authority key identifier: 8A:7D:73:01:E7:15:47:7D:26:80:9B:BA:BB:4C:D0:32:BD:3B:56:18 Certificate issuer: /CN=8a7d7301e715477d26809bbabb4cd032bd3b5618 Certificate serial: 019AF208D8C698B0F82B144FF0040B54C32C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/in1zAecVR30mgJu6u0zQMr07Vhg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.mft Manifest number: 0410 Signing time: Sat 06 Dec 2025 05:00:57 +0000 Manifest this update: Sat 06 Dec 2025 05:00:57 +0000 Manifest next update: Sun 07 Dec 2025 05:00:57 +0000 Files and hashes: 1: in1zAecVR30mgJu6u0zQMr07Vhg.crl (hash: vzGW/7Zy6J47h6wkPTTOjkeCy8bSRWLvPrClhgSsFHk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.crl rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.mft rsync://rpki.ripe.net/repository/DEFAULT/in1zAecVR30mgJu6u0zQMr07Vhg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:d8:c6:98:b0:f8:2b:14:4f:f0:04:0b:54:c3:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a7d7301e715477d26809bbabb4cd032bd3b5618 Validity Not Before: Dec 6 05:00:57 2025 GMT Not After : Dec 7 05:00:57 2025 GMT Subject: CN=2b13b494da823039c8a4e910335371d4ab9465eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:99:75:b9:d9:33:8a:69:fb:bb:ab:21:ec:91: 05:de:fc:07:de:ca:38:05:51:28:62:1b:74:6d:df: 54:92:8f:fc:7e:8c:e8:a8:e4:f7:8a:e7:b8:52:57: 41:1e:8d:53:75:14:86:c9:fb:cc:bf:48:24:ca:ea: 79:21:6f:db:a3:18:d0:2c:38:d7:6f:2b:e2:6b:c7: 22:a7:16:3d:11:40:22:c5:7f:56:a9:28:54:22:94: 58:ee:69:78:a8:5b:a2:a6:46:c0:90:b8:cc:10:b2: eb:4a:30:db:55:fc:75:55:26:fb:99:bc:9e:92:b9: 37:8d:e3:06:6a:5d:4c:e8:8d:6a:38:39:54:c8:33: af:3d:51:cf:b5:09:b8:01:16:ce:a0:09:07:db:fa: c3:b8:75:9c:94:bc:f5:e5:70:3f:6e:29:b8:cd:57: 6a:9e:11:bc:ad:e4:14:07:93:d4:c9:5f:4f:8f:f1: ae:c2:7f:b9:f3:76:ff:42:73:7f:65:ec:01:9c:ef: ec:20:80:82:73:62:90:c2:c5:02:9c:81:23:a8:69: 55:0b:55:67:da:46:38:78:47:e2:85:82:cc:6e:0b: 4e:7b:dd:e0:b7:74:fb:ec:b2:ac:b2:68:f3:30:ce: ef:98:f1:eb:04:14:89:b8:0a:17:49:3e:69:0f:71: b2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:13:B4:94:DA:82:30:39:C8:A4:E9:10:33:53:71:D4:AB:94:65:EB X509v3 Authority Key Identifier: keyid:8A:7D:73:01:E7:15:47:7D:26:80:9B:BA:BB:4C:D0:32:BD:3B:56:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/in1zAecVR30mgJu6u0zQMr07Vhg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:52:9d:be:f7:f6:d4:fb:33:b7:63:5b:63:de:83:b4:6d:cc: 33:a5:8c:86:89:12:06:5e:2a:ca:95:b7:21:81:4e:c5:d8:f2: cb:c3:f7:1e:0c:67:bf:1e:37:2b:34:f5:42:f1:b3:66:38:72: eb:0f:f4:20:88:b4:a8:13:e5:68:d1:5a:6c:40:1c:40:46:9d: e6:f9:39:5d:eb:9c:e7:37:35:bf:76:2b:76:15:c6:55:62:eb: 3f:b1:b7:e2:69:99:30:3a:d2:d1:75:29:2b:2b:04:29:8c:e2: 09:b5:60:42:7c:ef:59:21:10:84:00:91:a5:cd:c5:7e:87:92: 0c:ce:bc:d5:c9:fc:e7:8a:76:8c:7a:79:39:8a:85:d5:50:d1: 47:7a:fb:47:8e:3d:8b:cf:ad:56:ec:78:05:41:a8:92:d9:83: 72:69:15:1a:a7:7e:84:48:e1:43:c1:6f:9d:3d:48:82:ba:04: c1:67:a8:b8:79:8e:51:f1:fe:f0:82:ba:cc:c0:a0:19:1c:6d: d2:cb:9a:d3:18:fe:58:9d:c1:8f:5a:d5:1d:e9:b0:d3:28:94: df:4f:62:0f:bb:25:b3:78:a2:60:b3:fb:74:17:d0:16:db:2a: 2a:e5:ca:89:20:a8:d5:f1:b6:b0:9e:0f:93:0a:e8:52:60:d2: e0:64:78:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCNjGmLD4KxRP8AQLVMMsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhN2Q3MzAxZTcxNTQ3N2QyNjgwOWJiYWJiNGNkMDMyYmQz YjU2MTgwHhcNMjUxMjA2MDUwMDU3WhcNMjUxMjA3MDUwMDU3WjAzMTEwLwYDVQQD EygyYjEzYjQ5NGRhODIzMDM5YzhhNGU5MTAzMzUzNzFkNGFiOTQ2NWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5l1udkzimn7u6sh7JEF3vwH3so4 BVEoYht0bd9Uko/8fozoqOT3iue4UldBHo1TdRSGyfvMv0gkyup5IW/boxjQLDjX byvia8cipxY9EUAixX9WqShUIpRY7ml4qFuipkbAkLjMELLrSjDbVfx1VSb7mbye krk3jeMGal1M6I1qODlUyDOvPVHPtQm4ARbOoAkH2/rDuHWclLz15XA/bim4zVdq nhG8reQUB5PUyV9Pj/Guwn+583b/QnN/ZewBnO/sIICCc2KQwsUCnIEjqGlVC1Vn 2kY4eEfihYLMbgtOe93gt3T77LKssmjzMM7vmPHrBBSJuAoXST5pD3Gy8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCsTtJTagjA5yKTpEDNTcdSrlGXrMB8GA1UdIwQY MBaAFIp9cwHnFUd9JoCburtM0DK9O1YYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaW4xekFlY1ZSMzBtZ0p1NnUwelFNcjA3VmhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iNjY5ODYtOGY2Yi00NmI5LWJjY2Qt ZjczNjlmOWRjYzljLzEvaW4xekFlY1ZSMzBtZ0p1NnUwelFNcjA3VmhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iNjY5ODYtOGY2Yi00NmI5LWJjY2QtZjczNjlmOWRjYzlj LzEvaW4xekFlY1ZSMzBtZ0p1NnUwelFNcjA3VmhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAclKdvvf2 1Pszt2NbY96DtG3MM6WMhokSBl4qypW3IYFOxdjyy8P3Hgxnvx43KzT1QvGzZjhy 6w/0IIi0qBPlaNFabEAcQEad5vk5Xeuc5zc1v3YrdhXGVWLrP7G34mmZMDrS0XUp KysEKYziCbVgQnzvWSEQhACRpc3FfoeSDM681cn854p2jHp5OYqF1VDRR3r7R449 i8+tVux4BUGoktmDcmkVGqd+hEjhQ8FvnT1IgroEwWeouHmOUfH+8IK6zMCgGRxt 0sua0xj+WJ3Bj1rVHemw0yiU309iD7sls3iiYLP7dBfQFtsqKuXKiSCo1fG2sJ4P kwroUmDS4GR4aA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:06:05 2025 by rpki-client