This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft File: miIdT5cAcYIi7es06TinZjQ_JOE.mft (raw, json) Hash identifier: YbLaiyHbP9eu4IKEc4Wqf+jvxRvb1chiC2ODUZ+HeG4= Subject key identifier: 26:91:C4:57:49:30:A1:AE:1D:DA:3F:AC:A2:23:B0:17:CA:1E:73:9E Authority key identifier: 9A:22:1D:4F:97:00:71:82:22:ED:EB:34:E9:38:A7:66:34:3F:24:E1 Certificate issuer: /CN=9a221d4f9700718222edeb34e938a766343f24e1 Certificate serial: 019AF6F96B41899F7B494F6D8E77EDF5BF31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft Manifest number: 160E Signing time: Sun 07 Dec 2025 04:02:12 +0000 Manifest this update: Sun 07 Dec 2025 04:02:12 +0000 Manifest next update: Mon 08 Dec 2025 04:02:12 +0000 Files and hashes: 1: miIdT5cAcYIi7es06TinZjQ_JOE.crl (hash: hoX5nlqzXTAR6tS7K0QvPfTa4ZHCjzGBhtNK4RlhEdA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:f9:6b:41:89:9f:7b:49:4f:6d:8e:77:ed:f5:bf:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a221d4f9700718222edeb34e938a766343f24e1 Validity Not Before: Dec 7 04:02:12 2025 GMT Not After : Dec 8 04:02:12 2025 GMT Subject: CN=2691c4574930a1ae1dda3faca223b017ca1e739e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6f:1d:1f:83:a6:d2:15:b6:6b:37:ab:8c:3c: a8:4e:fc:31:56:c6:4a:f9:d5:20:0a:02:3a:3f:0f: 43:e4:d8:dd:a1:df:ed:c7:37:17:fc:b9:07:6e:f0: 8d:3c:1a:33:e6:22:cb:70:bb:f7:e2:20:4a:6a:f3: 35:36:fc:e0:bf:9d:14:9b:45:fb:ef:43:d6:a2:f1: 1f:1d:ef:81:08:9c:3d:62:1c:63:c0:c6:45:83:8a: 20:ca:80:d7:cd:12:57:ff:ad:d7:8e:de:65:d1:43: 74:26:ef:d2:6e:04:cf:28:bf:8b:46:d2:55:8a:6c: 1b:cd:fd:f5:ac:31:65:84:b8:9a:05:fc:74:07:c6: c9:24:3c:82:60:f8:30:e3:cc:db:73:03:3b:0e:f3: d1:e3:d1:00:26:fa:b6:78:11:2a:2e:d5:bf:41:c3: 4c:93:7a:03:7c:06:78:f6:5d:bf:c0:e4:ca:03:c8: 6d:71:03:bd:c8:ba:33:cb:93:02:59:8a:f8:c7:5c: f4:d2:e4:ee:22:df:c4:4a:98:30:7b:3c:0b:29:2f: 3a:2c:cd:23:c1:a3:c5:93:d1:a7:52:d8:f1:9f:64: cb:b4:03:48:ec:9e:83:02:05:b8:40:f8:21:ca:7d: 1f:5b:fe:d4:bf:e8:3a:c9:3c:f1:21:e5:4a:38:18: 23:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:91:C4:57:49:30:A1:AE:1D:DA:3F:AC:A2:23:B0:17:CA:1E:73:9E X509v3 Authority Key Identifier: keyid:9A:22:1D:4F:97:00:71:82:22:ED:EB:34:E9:38:A7:66:34:3F:24:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:46:2a:6b:18:27:69:3b:db:f1:6f:15:51:02:96:cb:7d:d7: ba:3d:b1:3f:44:4e:cd:e0:d1:94:03:6f:9d:3b:b9:f0:ff:42: d2:14:5f:23:84:36:5e:1a:09:65:9f:15:1f:a1:10:9f:74:8d: 82:a0:b9:57:eb:0b:c8:46:ab:41:b0:c8:96:2e:88:39:72:22: a4:1d:d4:39:2f:72:f1:88:30:c1:2b:89:18:90:e3:bd:b3:27: 20:5d:22:71:9d:80:e4:fd:a6:9c:9d:df:b8:4f:5d:fa:09:a3: f5:ec:01:0c:15:f2:19:7b:d2:b6:32:ff:a0:54:76:de:22:a3: 79:c2:14:d3:e1:e6:7b:b1:f2:40:03:25:a8:13:40:ea:8d:a8: 25:77:a2:02:98:53:e5:34:be:a0:c7:b6:67:d9:d5:21:fa:07: 51:96:19:be:93:8b:12:d0:54:84:fa:c5:d3:03:b7:ea:3e:76: b2:53:69:31:53:8b:7d:42:3e:51:c3:f7:e1:f4:68:36:4d:6f: b9:fe:60:11:47:15:a3:80:8f:20:77:23:f6:3f:37:e8:bd:ff: e5:c5:69:04:63:2a:6a:82:d2:32:63:3a:5d:66:83:56:58:94: f1:4e:b7:b8:c3:34:9f:0f:7a:d6:f6:fa:20:58:dd:59:d0:29: a3:45:96:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2+WtBiZ97SU9tjnft9b8xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMjIxZDRmOTcwMDcxODIyMmVkZWIzNGU5MzhhNzY2MzQz ZjI0ZTEwHhcNMjUxMjA3MDQwMjEyWhcNMjUxMjA4MDQwMjEyWjAzMTEwLwYDVQQD EygyNjkxYzQ1NzQ5MzBhMWFlMWRkYTNmYWNhMjIzYjAxN2NhMWU3MzllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4G8dH4Om0hW2azerjDyoTvwxVsZK +dUgCgI6Pw9D5Njdod/txzcX/LkHbvCNPBoz5iLLcLv34iBKavM1Nvzgv50Um0X7 70PWovEfHe+BCJw9YhxjwMZFg4ogyoDXzRJX/63Xjt5l0UN0Ju/SbgTPKL+LRtJV imwbzf31rDFlhLiaBfx0B8bJJDyCYPgw48zbcwM7DvPR49EAJvq2eBEqLtW/QcNM k3oDfAZ49l2/wOTKA8htcQO9yLozy5MCWYr4x1z00uTuIt/ESpgwezwLKS86LM0j waPFk9GnUtjxn2TLtANI7J6DAgW4QPghyn0fW/7Uv+g6yTzxIeVKOBgjOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCaRxFdJMKGuHdo/rKIjsBfKHnOeMB8GA1UdIwQY MBaAFJoiHU+XAHGCIu3rNOk4p2Y0PyThMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWlJZFQ1Y0FjWUlpN2VzMDZUaW5aalFfSk9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hYzYzYjYtNTVjNi00NmRmLThjMTEt N2RlN2E3YzViZjcyLzEvbWlJZFQ1Y0FjWUlpN2VzMDZUaW5aalFfSk9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9hYzYzYjYtNTVjNi00NmRmLThjMTEtN2RlN2E3YzViZjcy LzEvbWlJZFQ1Y0FjWUlpN2VzMDZUaW5aalFfSk9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhEYqaxgn aTvb8W8VUQKWy33Xuj2xP0ROzeDRlANvnTu58P9C0hRfI4Q2XhoJZZ8VH6EQn3SN gqC5V+sLyEarQbDIli6IOXIipB3UOS9y8YgwwSuJGJDjvbMnIF0icZ2A5P2mnJ3f uE9d+gmj9ewBDBXyGXvStjL/oFR23iKjecIU0+Hme7HyQAMlqBNA6o2oJXeiAphT 5TS+oMe2Z9nVIfoHUZYZvpOLEtBUhPrF0wO36j52slNpMVOLfUI+UcP34fRoNk1v uf5gEUcVo4CPIHcj9j836L3/5cVpBGMqaoLSMmM6XWaDVliU8U63uMM0nw961vb6 IFjdWdApo0WW8Q== -----END CERTIFICATE-----Generated at Sun Dec 7 07:25:30 2025 by rpki-client