This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json) Hash identifier: ONGJ+DgQNFF/slRf0GQPpFjG5wsHwh3QR9ZJQQTyFPE= Subject key identifier: 38:96:E2:24:45:80:42:E2:F2:00:C7:BC:6F:7D:0A:98:5C:58:5C:A4 Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603 Certificate serial: 019B2F677231E12155E5244C6A8DDCE6D85D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft Manifest number: 09EB Signing time: Thu 18 Dec 2025 03:01:07 +0000 Manifest this update: Thu 18 Dec 2025 03:01:07 +0000 Manifest next update: Fri 19 Dec 2025 03:01:07 +0000 Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: brNGrZX3qvYkoPKEyNSdUT9uiZQ7tECyl/V2hZwQgFg=) 2: mFFNgz0LoOIjeTT2_r0-wBPyYQM.roa (hash: 8oKdatfS4ydJsathXE08ETrnAsR4fEoI1qYHumOim1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:67:72:31:e1:21:55:e5:24:4c:6a:8d:dc:e6:d8:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603 Validity Not Before: Dec 18 03:01:07 2025 GMT Not After : Dec 19 03:01:07 2025 GMT Subject: CN=3896e224458042e2f200c7bc6f7d0a985c585ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a3:d5:c1:9a:e3:a8:9f:27:5b:c2:7e:63:69: 90:20:98:2c:87:03:44:2d:5f:67:4c:35:15:9d:2a: b6:2b:01:c7:48:6d:92:72:82:32:1d:8a:34:31:ea: 17:5b:c4:67:d0:ad:5d:03:1d:e7:60:af:7d:e0:73: 70:d4:fa:03:06:1b:ce:71:c3:78:d2:5b:a9:77:e3: b8:1f:8b:be:d0:b9:3a:f8:04:0d:cf:8f:a1:7b:94: 8f:13:05:72:26:92:07:54:40:53:f0:b0:85:a3:25: 71:5c:3c:a2:19:80:35:f8:a7:eb:c8:94:3f:ff:3b: b9:5f:dd:0d:b9:47:ec:3a:b3:44:f0:e7:88:9b:6e: 77:e2:57:6d:37:10:c5:4f:11:fb:79:92:0f:44:ff: 3a:9f:d3:22:ca:a3:e2:00:0e:98:d4:31:0a:40:1b: dc:f0:ff:a8:85:00:34:cf:16:fd:43:c7:34:84:ac: 55:96:5c:33:5e:53:7d:13:5b:ed:6a:1e:c0:17:94: e0:53:32:93:d0:01:06:a3:bb:b7:e7:5f:d4:77:a7: 74:44:57:99:19:c3:59:9a:1f:43:e9:a6:fd:81:c9: d2:77:23:f6:56:fb:9d:a2:86:04:c7:86:b8:ba:09: 4b:2c:7a:56:94:2c:7d:88:79:4e:4e:73:5c:41:8f: 7b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:96:E2:24:45:80:42:E2:F2:00:C7:BC:6F:7D:0A:98:5C:58:5C:A4 X509v3 Authority Key Identifier: keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:da:b1:3f:c0:db:d5:f7:5a:88:1e:fe:19:cc:93:72:01:8b: 1d:6d:d9:85:c9:c5:7b:0d:2b:10:93:d2:f6:ad:ec:a1:96:d9: fa:33:3e:68:5b:a6:7b:a1:da:91:49:72:ec:da:cf:0f:5c:68: 15:e7:aa:4f:78:dd:83:06:4e:bb:38:83:85:23:f3:3e:67:af: 70:a9:e6:f6:86:af:85:3e:e1:1f:62:ef:04:b8:92:c3:89:dc: e7:d9:b3:a0:ce:47:55:b0:7e:76:f7:64:03:f8:c0:7b:52:fc: 52:ea:8d:94:45:9e:8c:dc:dc:ea:62:08:13:57:05:11:24:0a: 20:7c:73:c8:21:58:bd:25:c3:c5:ab:6b:f8:ed:0b:e5:2d:0d: 1b:62:f4:55:7f:af:c0:64:98:88:bc:79:0a:93:23:d9:e4:1e: ba:55:03:8a:95:26:1d:8a:b8:23:98:c8:dc:79:24:bf:1b:87: 9e:1a:b4:80:c2:70:17:11:a0:b0:29:2e:a0:21:43:c1:ad:f0: c3:f1:07:95:70:10:02:2b:92:e8:9b:f0:cc:38:02:d7:8b:7b: e7:63:54:47:19:8c:b0:46:01:e2:56:bb:38:9f:d6:fb:9f:5f: b8:02:77:b1:c7:3a:03:a7:83:e6:af:a9:aa:30:68:67:33:53: 38:b5:01:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsvZ3Ix4SFV5SRMao3c5thdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZWFkYzdhN2VjZTQ3N2Q1ZjRkNzc3MjQzYjYwZjJiYmJi NzU2MDMwHhcNMjUxMjE4MDMwMTA3WhcNMjUxMjE5MDMwMTA3WjAzMTEwLwYDVQQD EygzODk2ZTIyNDQ1ODA0MmUyZjIwMGM3YmM2ZjdkMGE5ODVjNTg1Y2E0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA36PVwZrjqJ8nW8J+Y2mQIJgshwNE LV9nTDUVnSq2KwHHSG2ScoIyHYo0MeoXW8Rn0K1dAx3nYK994HNw1PoDBhvOccN4 0lupd+O4H4u+0Lk6+AQNz4+he5SPEwVyJpIHVEBT8LCFoyVxXDyiGYA1+KfryJQ/ /zu5X90NuUfsOrNE8OeIm2534ldtNxDFTxH7eZIPRP86n9MiyqPiAA6Y1DEKQBvc 8P+ohQA0zxb9Q8c0hKxVllwzXlN9E1vtah7AF5TgUzKT0AEGo7u351/Ud6d0RFeZ GcNZmh9D6ab9gcnSdyP2VvudooYEx4a4uglLLHpWlCx9iHlOTnNcQY97uQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDiW4iRFgELi8gDHvG99CphcWFykMB8GA1UdIwQY MBaAFHLq3Hp+zkd9X013ckO2Dyu7t1YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjkt NDczODUxNzA5YzU4LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjktNDczODUxNzA5YzU4 LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgtqxP8Db 1fdaiB7+GcyTcgGLHW3ZhcnFew0rEJPS9q3soZbZ+jM+aFume6HakUly7NrPD1xo FeeqT3jdgwZOuziDhSPzPmevcKnm9oavhT7hH2LvBLiSw4nc59mzoM5HVbB+dvdk A/jAe1L8UuqNlEWejNzc6mIIE1cFESQKIHxzyCFYvSXDxatr+O0L5S0NG2L0VX+v wGSYiLx5CpMj2eQeulUDipUmHYq4I5jI3HkkvxuHnhq0gMJwFxGgsCkuoCFDwa3w w/EHlXAQAiuS6JvwzDgC14t752NURxmMsEYB4la7OJ/W+59fuAJ3scc6A6eD5q+p qjBoZzNTOLUBxQ== -----END CERTIFICATE-----Generated at Thu Dec 18 05:40:42 2025 by rpki-client