This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json) Hash identifier: FYSysgz/MFtUOZ8BC8QU5ZRZS2ntK/tlcxj7ki7nwA4= Subject key identifier: 73:C8:78:F0:32:0D:BB:5D:3A:7C:D7:D1:F1:0F:75:C2:EC:22:7E:11 Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603 Certificate serial: 019AF19BB7F54B1A85CE075811105E160F36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft Manifest number: 09CB Signing time: Sat 06 Dec 2025 03:01:45 +0000 Manifest this update: Sat 06 Dec 2025 03:01:45 +0000 Manifest next update: Sun 07 Dec 2025 03:01:45 +0000 Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: 8mRZMA08HudxkTBLxZDNr0c19dAmnxmEfeUwOG2shxw=) 2: mFFNgz0LoOIjeTT2_r0-wBPyYQM.roa (hash: 8oKdatfS4ydJsathXE08ETrnAsR4fEoI1qYHumOim1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:b7:f5:4b:1a:85:ce:07:58:11:10:5e:16:0f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603 Validity Not Before: Dec 6 03:01:45 2025 GMT Not After : Dec 7 03:01:45 2025 GMT Subject: CN=73c878f0320dbb5d3a7cd7d1f10f75c2ec227e11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0d:47:66:3f:e7:41:ce:39:ef:f3:7e:d2:9f: 83:e4:66:96:5e:0e:dc:61:4b:94:6f:1b:a0:62:d7: 96:e0:84:b1:80:d6:42:36:6d:0a:14:42:7a:c9:5f: 6c:ec:1f:20:39:d3:57:e1:c0:16:72:32:90:51:ca: 34:e4:4f:60:e4:9d:83:d2:2c:f0:56:f4:b4:7c:ca: 1f:b1:b8:bd:36:ca:88:79:c5:36:77:06:4b:14:30: 6e:78:25:4b:84:ab:92:4c:e9:7f:a9:27:57:51:ce: 69:54:42:89:e9:71:ad:01:a3:d9:a7:c9:49:a3:23: e7:e7:01:f7:f5:66:8d:3d:ef:f1:4a:7c:6a:06:5a: 35:ed:59:49:8f:75:f3:c5:86:c0:42:61:91:8d:03: 65:af:86:74:90:34:6d:68:f3:de:3d:5c:9b:2e:39: c7:9a:33:f5:11:0d:1c:42:85:10:c7:c0:69:5b:d4: 0c:cd:4f:b1:c2:41:f1:03:a6:64:17:6c:76:f3:c7: 74:7c:13:e8:d6:61:69:55:94:a1:c1:e5:2e:ef:8d: f6:7b:c2:d8:17:67:a0:a3:96:5a:2e:48:0f:98:50: 45:14:d3:ea:31:b9:0f:2f:e2:4f:d7:4e:e0:22:25: 67:83:ae:92:6a:4b:12:00:0f:d6:e2:63:ce:1d:73: 3c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C8:78:F0:32:0D:BB:5D:3A:7C:D7:D1:F1:0F:75:C2:EC:22:7E:11 X509v3 Authority Key Identifier: keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:33:d5:64:22:2f:4b:46:2f:ff:9c:20:39:86:d0:22:e2:89: 6c:df:5d:13:37:4d:4a:0e:47:ff:e0:a3:46:49:bc:6e:96:9d: 77:56:1d:a5:6a:47:55:e5:bc:1a:25:cb:68:d3:b0:4d:49:d3: fe:7b:f4:1e:b4:37:76:61:f5:7e:aa:f8:e1:1f:e0:48:3a:93: eb:d0:55:c5:95:56:e6:36:ac:c3:b8:2b:c4:66:4a:9c:9a:83: 23:fb:4e:b7:9d:c0:81:14:38:df:22:e6:30:bd:e7:82:0c:86: e3:a6:fb:66:89:12:23:69:de:98:56:c2:b9:43:73:79:66:c3: d0:57:fa:9f:bc:6e:4a:77:95:dc:6b:46:74:ac:67:cc:b5:fa: cc:02:3f:e5:69:f0:8c:db:1f:f9:80:4e:57:13:cc:df:56:ad: eb:a4:b0:8b:8a:13:73:d4:c1:ca:6b:b0:35:f4:47:04:92:76: 2a:1b:94:68:6b:fc:97:27:ab:c4:78:ca:c3:dc:7a:53:62:a4: 0a:43:33:ab:70:af:2c:8a:fa:86:32:89:bc:14:22:ba:77:ad: 89:b4:8d:63:e5:38:26:30:34:02:fc:0a:70:53:cc:cd:0c:06: 6e:23:f4:dd:76:92:a0:96:30:af:09:08:43:c3:7e:ee:c6:32: c1:21:de:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm7f1SxqFzgdYERBeFg82MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZWFkYzdhN2VjZTQ3N2Q1ZjRkNzc3MjQzYjYwZjJiYmJi NzU2MDMwHhcNMjUxMjA2MDMwMTQ1WhcNMjUxMjA3MDMwMTQ1WjAzMTEwLwYDVQQD Eyg3M2M4NzhmMDMyMGRiYjVkM2E3Y2Q3ZDFmMTBmNzVjMmVjMjI3ZTExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Q1HZj/nQc457/N+0p+D5GaWXg7c YUuUbxugYteW4ISxgNZCNm0KFEJ6yV9s7B8gOdNX4cAWcjKQUco05E9g5J2D0izw VvS0fMofsbi9NsqIecU2dwZLFDBueCVLhKuSTOl/qSdXUc5pVEKJ6XGtAaPZp8lJ oyPn5wH39WaNPe/xSnxqBlo17VlJj3XzxYbAQmGRjQNlr4Z0kDRtaPPePVybLjnH mjP1EQ0cQoUQx8BpW9QMzU+xwkHxA6ZkF2x288d0fBPo1mFpVZShweUu7432e8LY F2ego5ZaLkgPmFBFFNPqMbkPL+JP107gIiVng66SaksSAA/W4mPOHXM84wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPIePAyDbtdOnzX0fEPdcLsIn4RMB8GA1UdIwQY MBaAFHLq3Hp+zkd9X013ckO2Dyu7t1YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjkt NDczODUxNzA5YzU4LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjktNDczODUxNzA5YzU4 LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeDPVZCIv S0Yv/5wgOYbQIuKJbN9dEzdNSg5H/+CjRkm8bpadd1YdpWpHVeW8GiXLaNOwTUnT /nv0HrQ3dmH1fqr44R/gSDqT69BVxZVW5jasw7grxGZKnJqDI/tOt53AgRQ43yLm ML3nggyG46b7ZokSI2nemFbCuUNzeWbD0Ff6n7xuSneV3GtGdKxnzLX6zAI/5Wnw jNsf+YBOVxPM31at66Swi4oTc9TBymuwNfRHBJJ2KhuUaGv8lyerxHjKw9x6U2Kk CkMzq3CvLIr6hjKJvBQiunetibSNY+U4JjA0AvwKcFPMzQwGbiP03XaSoJYwrwkI Q8N+7sYywSHejQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:00:19 2025 by rpki-client