This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft File: tY6n73bYACz8pmxSD3ybYIo5XZU.mft (raw, json) Hash identifier: 11zZi44cYuEo1fhZjVbL4sSan94lsKtmZLSy2J0I68U= Subject key identifier: DA:27:7C:F4:3C:FA:D0:80:15:86:13:F2:A4:47:55:1A:58:88:6A:CA Authority key identifier: B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95 Certificate issuer: /CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95 Certificate serial: 019AF277078EFF01EF2224667C294F6BAAC1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft Manifest number: 06F2 Signing time: Sat 06 Dec 2025 07:01:18 +0000 Manifest this update: Sat 06 Dec 2025 07:01:18 +0000 Manifest next update: Sun 07 Dec 2025 07:01:18 +0000 Files and hashes: 1: tY6n73bYACz8pmxSD3ybYIo5XZU.crl (hash: VRAim7wb6wHU8kCg3wAeNfj7xpw4jbUsZVn9IsUVlpY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:07:8e:ff:01:ef:22:24:66:7c:29:4f:6b:aa:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95 Validity Not Before: Dec 6 07:01:18 2025 GMT Not After : Dec 7 07:01:18 2025 GMT Subject: CN=da277cf43cfad080158613f2a447551a58886aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:9f:f1:08:99:e9:bc:1c:0e:11:3c:26:cd: 87:d6:b7:d4:43:a8:f7:07:a6:f8:de:2d:93:d7:db: ff:e0:17:e7:96:92:3e:60:96:48:8a:86:1c:b8:9f: 89:1a:91:4c:17:48:7c:73:a1:1c:0d:d8:6b:c5:de: 4b:f1:e3:5c:f4:91:fb:45:43:76:ad:ae:72:c4:cd: ef:13:cb:e0:f7:cb:04:1f:42:e6:22:64:de:c8:22: f4:87:76:75:c5:08:2a:96:91:f5:ae:bc:85:ae:2c: b5:6e:7e:3d:0d:e4:7d:c5:5d:9a:66:a0:f2:2e:b9: 4d:55:68:68:6c:b2:db:d3:d3:77:23:8e:a0:fa:f5: 8d:ef:6c:f4:69:05:aa:e4:cf:f4:77:e9:2b:d3:d7: b5:ed:bf:29:5b:f7:9b:c0:c5:2c:11:08:9e:d6:93: 95:e8:ac:c4:9d:d8:dd:42:b3:98:72:b1:85:05:50: ad:e9:ba:2e:e8:e9:d9:05:f8:a6:6a:02:2c:4b:e9: 11:fe:cd:8e:72:56:50:96:e0:90:f2:f5:2e:e6:ea: 26:a2:76:38:a0:b6:db:21:58:21:6a:40:95:95:03: b6:9b:ce:22:d4:22:08:8c:8d:8f:ec:ea:bc:b1:b9: 2e:1c:f0:78:7b:97:9a:b2:a0:e1:59:7d:7c:95:80: 22:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:27:7C:F4:3C:FA:D0:80:15:86:13:F2:A4:47:55:1A:58:88:6A:CA X509v3 Authority Key Identifier: keyid:B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:9d:da:8d:94:dd:98:5f:4e:76:47:13:49:8a:6f:11:6b:46: db:cc:6c:b8:d8:ad:52:a3:6f:37:f4:81:3d:94:62:9e:cf:cc: 2c:90:16:52:f9:e9:92:2c:0d:0e:c8:71:bd:28:97:2d:7d:e7: dc:91:aa:e5:47:1f:a4:13:63:48:b7:02:63:94:ad:e9:74:d0: fa:60:ce:81:33:f1:95:ca:4a:b2:a9:8e:29:80:03:2d:9b:32: e0:0c:f7:c4:d9:82:65:71:7b:8d:b2:49:a0:9b:7e:a5:ff:5e: 4a:15:05:01:09:77:72:98:63:b0:01:5d:58:99:a7:e0:86:bf: ac:08:e0:7a:ef:04:2c:ae:ec:da:01:38:79:79:b4:28:7d:f3: 5a:8c:0b:55:6c:cb:34:cb:4a:c3:d0:7b:a1:9b:a9:df:e1:4c: 5a:da:98:e0:39:18:51:45:91:8a:c4:db:e6:0e:9e:14:da:7f: c1:44:3d:f4:39:9c:05:05:5b:90:75:7b:4d:48:86:ad:85:b8: 7f:8b:da:63:70:4e:0b:de:d9:db:0d:7f:4c:15:b2:19:51:0c: 2f:0d:27:b8:dc:18:de:b6:a1:f0:3a:80:3f:3d:5a:d4:f6:b8: 72:2a:cd:4d:aa:fe:0d:87:7e:61:d1:b1:c3:c5:21:e0:bd:04: 05:99:57:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydweO/wHvIiRmfClPa6rBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1OGVhN2VmNzZkODAwMmNmY2E2NmM1MjBmN2M5YjYwOGEz OTVkOTUwHhcNMjUxMjA2MDcwMTE4WhcNMjUxMjA3MDcwMTE4WjAzMTEwLwYDVQQD EyhkYTI3N2NmNDNjZmFkMDgwMTU4NjEzZjJhNDQ3NTUxYTU4ODg2YWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApt+f8QiZ6bwcDhE8Js2H1rfUQ6j3 B6b43i2T19v/4BfnlpI+YJZIioYcuJ+JGpFMF0h8c6EcDdhrxd5L8eNc9JH7RUN2 ra5yxM3vE8vg98sEH0LmImTeyCL0h3Z1xQgqlpH1rryFriy1bn49DeR9xV2aZqDy LrlNVWhobLLb09N3I46g+vWN72z0aQWq5M/0d+kr09e17b8pW/ebwMUsEQie1pOV 6KzEndjdQrOYcrGFBVCt6bou6OnZBfimagIsS+kR/s2OclZQluCQ8vUu5uomonY4 oLbbIVghakCVlQO2m84i1CIIjI2P7Oq8sbkuHPB4e5easqDhWX18lYAiOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNonfPQ8+tCAFYYT8qRHVRpYiGrKMB8GA1UdIwQY MBaAFLWOp+922AAs/KZsUg98m2CKOV2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFk2bjczYllBQ3o4cG14U0QzeWJZSW81WFpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS80ZDk1YmEtOTlmYy00OTNlLWE1YzQt NmI5ZmYyY2ZhMDdmLzEvdFk2bjczYllBQ3o4cG14U0QzeWJZSW81WFpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS80ZDk1YmEtOTlmYy00OTNlLWE1YzQtNmI5ZmYyY2ZhMDdm LzEvdFk2bjczYllBQ3o4cG14U0QzeWJZSW81WFpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgZ3ajZTd mF9OdkcTSYpvEWtG28xsuNitUqNvN/SBPZRins/MLJAWUvnpkiwNDshxvSiXLX3n 3JGq5UcfpBNjSLcCY5St6XTQ+mDOgTPxlcpKsqmOKYADLZsy4Az3xNmCZXF7jbJJ oJt+pf9eShUFAQl3cphjsAFdWJmn4Ia/rAjgeu8ELK7s2gE4eXm0KH3zWowLVWzL NMtKw9B7oZup3+FMWtqY4DkYUUWRisTb5g6eFNp/wUQ99DmcBQVbkHV7TUiGrYW4 f4vaY3BOC97Z2w1/TBWyGVEMLw0nuNwY3rah8DqAPz1a1Pa4cirNTar+DYd+YdGx w8Uh4L0EBZlXhg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:09:02 2025 by rpki-client