This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft File: USd7w4wS4ELt31bX519QVjxL0ic.mft (raw, json) Hash identifier: nsmcovNRq1RWTi1aDRfvxPS/FpliosXlpPcOU+gfcWo= Subject key identifier: F4:8B:FF:45:F0:6B:B2:ED:8C:49:55:2C:8A:77:2F:52:0A:CB:DB:F0 Authority key identifier: 51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27 Certificate issuer: /CN=51277bc38c12e042eddf56d7e75f50563c4bd227 Certificate serial: 019AF5099BF01F045CFD27E53D8A3A676C18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 19:00:38 +0000 Manifest this update: Sat 06 Dec 2025 19:00:38 +0000 Manifest next update: Sun 07 Dec 2025 19:00:38 +0000 Files and hashes: 1: USd7w4wS4ELt31bX519QVjxL0ic.crl (hash: h18pFecZrBqwmf6jXIvi/vrUnY+k1QA5CgrJOeRs0GQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:9b:f0:1f:04:5c:fd:27:e5:3d:8a:3a:67:6c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51277bc38c12e042eddf56d7e75f50563c4bd227 Validity Not Before: Dec 6 19:00:38 2025 GMT Not After : Dec 7 19:00:38 2025 GMT Subject: CN=f48bff45f06bb2ed8c49552c8a772f520acbdbf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:24:9a:1e:3c:22:15:6f:e8:ba:83:96:85:73: da:97:bd:57:41:18:18:55:52:71:7c:a0:e2:5f:ed: bc:90:9e:b0:8f:80:72:97:78:5f:8b:09:2b:a9:08: 42:a9:82:13:97:69:75:40:9c:4b:a0:70:38:e2:6b: f0:3a:fb:c8:4b:c6:09:cb:7a:2e:0c:09:d5:d9:9c: 83:ff:e5:81:b3:e6:7f:4c:76:a3:7d:46:2f:fb:7b: 91:55:38:41:5d:04:fd:c4:a5:c6:ee:b0:5f:c5:7e: 46:d5:d9:ab:61:87:c9:74:42:39:20:cf:02:a2:89: 5d:17:7c:3a:6b:79:63:1f:24:1a:30:d4:12:47:e7: a9:69:3b:78:87:51:bb:fc:c0:42:db:f9:fa:eb:bd: d7:03:61:88:e7:7c:ca:9f:f3:b5:79:68:ae:3d:df: be:13:bf:b9:07:c0:56:62:3f:c0:5d:41:0d:c3:bd: ff:92:86:58:58:0f:da:44:5d:13:ec:3a:c2:4d:e9: dd:07:6e:28:7f:d3:d5:84:a1:6d:31:96:f2:29:5c: 6a:09:32:89:a6:eb:d7:66:65:39:1a:fb:3d:58:c8: ff:d4:fd:34:93:e4:6c:fe:90:3b:21:b5:56:ca:55: 7f:08:2d:91:2e:da:bf:6a:88:95:5c:e5:e8:f3:df: c5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:8B:FF:45:F0:6B:B2:ED:8C:49:55:2C:8A:77:2F:52:0A:CB:DB:F0 X509v3 Authority Key Identifier: keyid:51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:6c:d2:86:3a:66:bc:a3:4c:9b:26:8d:67:3a:5c:c5:52:4a: 0d:57:7b:42:01:3d:58:1a:cf:24:cd:aa:89:3f:e3:8c:8c:d1: c6:6d:54:ab:68:db:50:3e:73:35:8b:b5:4a:01:53:05:6b:29: 0e:b8:3a:46:26:3f:d4:e7:1f:93:9e:79:09:4d:01:05:b8:6c: 5f:63:8e:1b:fd:c8:c0:46:b0:c5:9f:29:48:3d:35:fa:3a:42: b1:29:2b:99:0a:d8:d4:7e:4c:bd:22:55:75:80:7f:80:83:a7: 13:df:d7:fd:5d:bf:ec:8e:91:f2:a5:48:c4:e4:ad:34:1f:4d: 50:1f:36:8f:6e:62:68:81:bf:81:59:a5:d8:c1:cc:4f:f6:b4: e0:9b:50:77:2c:13:ca:fe:9f:5c:78:9b:6a:39:04:e2:f6:58: 93:70:21:25:46:84:a3:3e:03:5c:2c:13:cd:df:5c:76:25:f2: 92:23:64:60:5f:50:62:35:eb:5a:54:9a:b9:22:bb:f3:27:8f: ed:04:26:5e:4b:4f:3d:36:42:93:f3:99:11:b1:b1:9b:ad:69: ac:f4:d9:14:6d:19:8f:bc:d8:4b:fa:9f:8a:c5:39:c8:7f:c7: 1d:27:bf:85:e6:32:82:4e:e5:92:e3:91:86:18:fc:c6:f3:cd: 4b:a8:0c:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CZvwHwRc/SflPYo6Z2wYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMjc3YmMzOGMxMmUwNDJlZGRmNTZkN2U3NWY1MDU2M2M0 YmQyMjcwHhcNMjUxMjA2MTkwMDM4WhcNMjUxMjA3MTkwMDM4WjAzMTEwLwYDVQQD EyhmNDhiZmY0NWYwNmJiMmVkOGM0OTU1MmM4YTc3MmY1MjBhY2JkYmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkCSaHjwiFW/ouoOWhXPal71XQRgY VVJxfKDiX+28kJ6wj4Byl3hfiwkrqQhCqYITl2l1QJxLoHA44mvwOvvIS8YJy3ou DAnV2ZyD/+WBs+Z/THajfUYv+3uRVThBXQT9xKXG7rBfxX5G1dmrYYfJdEI5IM8C ooldF3w6a3ljHyQaMNQSR+epaTt4h1G7/MBC2/n6673XA2GI53zKn/O1eWiuPd++ E7+5B8BWYj/AXUENw73/koZYWA/aRF0T7DrCTendB24of9PVhKFtMZbyKVxqCTKJ puvXZmU5Gvs9WMj/1P00k+Rs/pA7IbVWylV/CC2RLtq/aoiVXOXo89/F8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPSL/0Xwa7LtjElVLIp3L1IKy9vwMB8GA1UdIwQY MBaAFFEne8OMEuBC7d9W1+dfUFY8S9InMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVNkN3c0d1M0RUx0MzFiWDUxOVFWanhMMGljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS8zYmExNjAtZTk0NS00ZDU2LWIxMjkt NTJjMTk3NThmYTE1LzEvVVNkN3c0d1M0RUx0MzFiWDUxOVFWanhMMGljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS8zYmExNjAtZTk0NS00ZDU2LWIxMjktNTJjMTk3NThmYTE1 LzEvVVNkN3c0d1M0RUx0MzFiWDUxOVFWanhMMGljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ2zShjpm vKNMmyaNZzpcxVJKDVd7QgE9WBrPJM2qiT/jjIzRxm1Uq2jbUD5zNYu1SgFTBWsp Drg6RiY/1Ocfk555CU0BBbhsX2OOG/3IwEawxZ8pSD01+jpCsSkrmQrY1H5MvSJV dYB/gIOnE9/X/V2/7I6R8qVIxOStNB9NUB82j25iaIG/gVml2MHMT/a04JtQdywT yv6fXHibajkE4vZYk3AhJUaEoz4DXCwTzd9cdiXykiNkYF9QYjXrWlSauSK78yeP 7QQmXktPPTZCk/OZEbGxm61prPTZFG0Zj7zYS/qfisU5yH/HHSe/heYygk7lkuOR hhj8xvPNS6gMEA== -----END CERTIFICATE-----Generated at Sun Dec 7 05:20:06 2025 by rpki-client