This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft File: pU3VdP7HLUOUwlU2uoUyydOPQLo.mft (raw, json) Hash identifier: ZyusVfumHSYOiKV1GwUR2zv1rluyH6ENnVWixwrTM00= Subject key identifier: 05:3A:54:23:E5:BE:06:E9:7C:96:0C:A5:4C:E7:1B:61:0F:05:58:AD Authority key identifier: A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA Certificate issuer: /CN=a54dd574fec72d4394c25536ba8532c9d38f40ba Certificate serial: 019AF31CD509CA1E1E669DCAF547A4504782 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft Manifest number: 0A77 Signing time: Sat 06 Dec 2025 10:02:24 +0000 Manifest this update: Sat 06 Dec 2025 10:02:24 +0000 Manifest next update: Sun 07 Dec 2025 10:02:24 +0000 Files and hashes: 1: pU3VdP7HLUOUwlU2uoUyydOPQLo.crl (hash: 5ddunVAMNys2gVEu6rCuWGa7/RJKimanOVngy1sxMi8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:d5:09:ca:1e:1e:66:9d:ca:f5:47:a4:50:47:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a54dd574fec72d4394c25536ba8532c9d38f40ba Validity Not Before: Dec 6 10:02:24 2025 GMT Not After : Dec 7 10:02:24 2025 GMT Subject: CN=053a5423e5be06e97c960ca54ce71b610f0558ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2d:ff:45:fb:e4:e3:ce:58:65:72:c9:81:fc: 48:b3:6e:36:c5:bb:df:66:6a:c1:da:aa:23:e0:7a: 51:00:54:ed:92:08:1c:26:7f:14:ce:37:1c:56:1a: 1e:e5:43:0e:90:99:cb:ce:9e:f5:57:05:81:fa:bf: 4f:3c:97:33:2b:fc:e8:f1:4f:27:44:66:05:c1:12: a2:76:e9:c6:ba:66:70:f2:45:d7:a4:2b:ef:84:4b: 51:43:43:a2:fc:3f:e6:fb:01:dc:b3:d4:04:36:20: 61:96:69:74:8d:16:fe:32:c9:07:fd:bc:d5:3f:78: e7:56:55:f5:18:e4:83:5d:d1:82:69:66:35:3b:ae: d5:7c:d0:5a:2b:90:0c:c0:fd:97:dd:0f:fb:61:b8: 99:c0:0c:99:5f:73:be:28:4d:33:76:63:91:2f:60: 43:06:be:e6:59:4d:9f:03:ab:48:58:ba:39:78:09: cb:05:13:ce:d3:26:04:51:7e:99:dd:50:d2:d3:82: 4d:66:2a:3a:72:ef:37:64:b6:cd:c5:63:fa:27:5f: 62:1e:5f:e5:4e:e8:47:5b:84:58:49:76:24:4b:72: 13:45:1d:08:9c:7c:53:cb:9b:db:5d:85:b4:4e:06: c3:15:83:29:25:f1:71:be:40:1f:05:a9:cc:37:7a: 62:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3A:54:23:E5:BE:06:E9:7C:96:0C:A5:4C:E7:1B:61:0F:05:58:AD X509v3 Authority Key Identifier: keyid:A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:67:82:d7:ea:56:51:be:18:0c:54:d8:41:3f:6c:4a:48:a4: 01:43:5b:7c:54:af:48:ae:6f:d0:de:ab:d4:fe:2d:86:a0:81: 8c:22:c8:c7:05:33:91:25:cd:26:28:8d:c2:f1:b3:66:da:88: 2f:13:1c:ba:5a:48:49:8f:54:31:1b:8a:b0:89:9b:9b:41:5b: 33:78:d5:d4:7b:b5:5f:75:a6:0c:b6:e4:98:68:66:27:b3:b1: 87:41:12:ac:17:09:a9:84:f0:05:6f:e1:cd:63:83:66:80:33: d9:f6:db:a3:67:f1:cd:72:e0:e3:b3:61:0b:76:3e:07:e1:1b: 06:24:e0:66:b1:eb:6b:d1:88:e5:3f:fb:b0:85:3b:dc:89:c6: fc:3c:29:fb:57:60:3a:59:2e:69:d3:a5:bb:ce:92:ff:5f:38: a4:3d:5a:b0:1b:7d:5f:43:e6:c5:2c:2e:fa:f0:63:66:9d:71: 1c:c5:78:92:ae:fa:e0:ec:1c:2a:9b:01:83:8b:fa:c0:5f:4c: 31:79:10:81:f4:86:05:2b:f2:b8:7e:fe:09:1a:a0:77:64:9a: b1:c5:76:db:e4:14:87:6f:04:a5:fc:98:87:47:0a:7e:ec:23: fc:17:11:91:36:29:8d:cb:e9:ff:b7:aa:f6:10:c2:7d:82:be: 71:ab:09:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHNUJyh4eZp3K9UekUEeCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NGRkNTc0ZmVjNzJkNDM5NGMyNTUzNmJhODUzMmM5ZDM4 ZjQwYmEwHhcNMjUxMjA2MTAwMjI0WhcNMjUxMjA3MTAwMjI0WjAzMTEwLwYDVQQD EygwNTNhNTQyM2U1YmUwNmU5N2M5NjBjYTU0Y2U3MWI2MTBmMDU1OGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzy3/Rfvk485YZXLJgfxIs242xbvf ZmrB2qoj4HpRAFTtkggcJn8UzjccVhoe5UMOkJnLzp71VwWB+r9PPJczK/zo8U8n RGYFwRKidunGumZw8kXXpCvvhEtRQ0Oi/D/m+wHcs9QENiBhlml0jRb+MskH/bzV P3jnVlX1GOSDXdGCaWY1O67VfNBaK5AMwP2X3Q/7YbiZwAyZX3O+KE0zdmORL2BD Br7mWU2fA6tIWLo5eAnLBRPO0yYEUX6Z3VDS04JNZio6cu83ZLbNxWP6J19iHl/l TuhHW4RYSXYkS3ITRR0InHxTy5vbXYW0TgbDFYMpJfFxvkAfBanMN3pi5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAU6VCPlvgbpfJYMpUznG2EPBVitMB8GA1UdIwQY MBaAFKVN1XT+xy1DlMJVNrqFMsnTj0C6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFUzVmRQN0hMVU9Vd2xVMnVvVXl5ZE9QUUxvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS82OTM0YjUtOTZjMC00NzZkLWJmNTQt MjM3ZjY1YjY0MzI3LzEvcFUzVmRQN0hMVU9Vd2xVMnVvVXl5ZE9QUUxvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS82OTM0YjUtOTZjMC00NzZkLWJmNTQtMjM3ZjY1YjY0MzI3 LzEvcFUzVmRQN0hMVU9Vd2xVMnVvVXl5ZE9QUUxvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ2eC1+pW Ub4YDFTYQT9sSkikAUNbfFSvSK5v0N6r1P4thqCBjCLIxwUzkSXNJiiNwvGzZtqI LxMculpISY9UMRuKsImbm0FbM3jV1Hu1X3WmDLbkmGhmJ7Oxh0ESrBcJqYTwBW/h zWODZoAz2fbbo2fxzXLg47NhC3Y+B+EbBiTgZrHra9GI5T/7sIU73InG/Dwp+1dg OlkuadOlu86S/184pD1asBt9X0PmxSwu+vBjZp1xHMV4kq764OwcKpsBg4v6wF9M MXkQgfSGBSvyuH7+CRqgd2SascV22+QUh28EpfyYh0cKfuwj/BcRkTYpjcvp/7eq 9hDCfYK+casJ1g== -----END CERTIFICATE-----Generated at Sat Dec 6 13:39:23 2025 by rpki-client