This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft File: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft (raw, json) Hash identifier: CIiSKU+3wPaPQb83Dul30j8h/b/QNMmP+A2yidSRnqo= Subject key identifier: 41:B2:4B:F5:EE:94:5E:A5:48:99:64:D9:F3:16:90:F7:D4:21:6A:7C Authority key identifier: AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30 Certificate issuer: /CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330 Certificate serial: 019AF31C8F1C7407BC34E0343C4CA70B67FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft Manifest number: 0FF7 Signing time: Sat 06 Dec 2025 10:02:06 +0000 Manifest this update: Sat 06 Dec 2025 10:02:06 +0000 Manifest next update: Sun 07 Dec 2025 10:02:06 +0000 Files and hashes: 1: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl (hash: ZkQ/2yzs+H8x7gz9k4zsU+5aYhtjiPbfJZV8SRw7XGo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:8f:1c:74:07:bc:34:e0:34:3c:4c:a7:0b:67:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330 Validity Not Before: Dec 6 10:02:06 2025 GMT Not After : Dec 7 10:02:06 2025 GMT Subject: CN=41b24bf5ee945ea5489964d9f31690f7d4216a7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e4:bf:78:b1:03:5d:0e:18:b9:26:0f:7b:00: b3:bd:0f:3f:5c:96:cd:1e:d7:94:28:c6:f0:2d:8a: 85:b6:cc:3c:06:24:3e:39:e3:4a:fd:87:d9:9c:2f: 8c:25:0b:27:e2:ed:b8:73:a5:b2:1a:e6:e8:46:6b: ac:5a:c7:40:e2:a8:4f:56:80:38:82:f0:37:e5:1a: f2:41:c1:b2:b8:b6:2e:4b:72:aa:06:4a:81:d0:0d: d6:64:dd:0c:62:6b:34:00:be:e8:e7:e3:22:23:80: 29:cc:68:d4:89:72:90:eb:5c:53:ff:bb:65:82:e5: 1b:7c:b4:d8:8e:0e:7f:53:63:14:98:d5:0d:0e:eb: 7b:97:1f:c4:e5:95:99:b6:ff:1a:73:d1:25:26:33: 47:5e:5a:06:bd:fa:fa:23:b6:5a:a5:9e:92:8e:7e: c6:6b:0c:1b:9b:32:16:53:c1:e8:80:03:6c:5a:75: fe:86:e8:63:95:2b:43:00:ef:c5:05:20:16:ed:f0: a7:32:e5:5b:6e:99:67:ab:b6:64:d0:18:25:43:94: 39:3a:bf:4b:33:3b:b8:02:7f:b6:a4:38:02:2a:1c: 0e:4f:6d:b9:1b:a8:fb:bb:46:34:fa:94:ee:1b:17: 69:c7:54:84:38:ca:48:24:3b:63:8a:a1:aa:c8:6e: 3e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B2:4B:F5:EE:94:5E:A5:48:99:64:D9:F3:16:90:F7:D4:21:6A:7C X509v3 Authority Key Identifier: keyid:AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:3c:f3:1e:50:56:ce:87:43:a3:8f:c9:78:46:e4:58:12:2e: 42:69:5d:42:2b:a1:f8:46:4d:40:72:62:6a:ed:99:f5:78:1f: 20:67:51:bb:08:66:27:dd:d2:63:09:b7:bf:6a:16:f2:61:6c: f0:0f:7f:55:30:3c:95:e8:87:a4:ac:34:a4:f6:f9:57:67:a3: bf:d4:23:a3:ab:e5:e6:69:21:29:6f:0a:aa:ec:52:d8:66:b2: a1:68:67:cf:16:58:54:55:cd:dc:b8:ff:12:fa:b3:0b:19:9c: 7c:31:8a:3c:3f:35:78:0d:fa:8a:91:6d:8b:dc:49:b1:65:fb: f2:00:47:4b:35:7d:7c:64:b8:4d:77:c8:d3:4a:27:80:5e:b4: e9:9e:55:b5:8e:33:ac:0d:ea:a8:43:56:ae:be:8d:20:d1:ef: c7:00:0a:ab:3a:6e:27:7d:7e:c5:8e:21:24:96:b9:43:c1:18: f2:77:4c:4d:31:8f:64:23:8c:2d:35:5a:86:f0:df:10:a8:2c: 29:4a:67:ad:58:f6:04:e0:5c:fe:37:04:e5:09:5f:7e:a8:de: 59:2e:1b:f8:c4:9b:01:b6:d7:dd:f6:94:1e:2c:e0:bc:de:10: 10:7a:8a:62:99:92:66:82:75:9b:e8:2c:ba:e9:0f:f4:29:4c: 24:1b:a5:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHI8cdAe8NOA0PEynC2f/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmODJhMDk3YTI4YTZiNmE2OTlkOGQ2YWJlNGRjYjk1YmIx OTgzMzAwHhcNMjUxMjA2MTAwMjA2WhcNMjUxMjA3MTAwMjA2WjAzMTEwLwYDVQQD Eyg0MWIyNGJmNWVlOTQ1ZWE1NDg5OTY0ZDlmMzE2OTBmN2Q0MjE2YTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveS/eLEDXQ4YuSYPewCzvQ8/XJbN HteUKMbwLYqFtsw8BiQ+OeNK/YfZnC+MJQsn4u24c6WyGuboRmusWsdA4qhPVoA4 gvA35RryQcGyuLYuS3KqBkqB0A3WZN0MYms0AL7o5+MiI4ApzGjUiXKQ61xT/7tl guUbfLTYjg5/U2MUmNUNDut7lx/E5ZWZtv8ac9ElJjNHXloGvfr6I7ZapZ6Sjn7G awwbmzIWU8HogANsWnX+huhjlStDAO/FBSAW7fCnMuVbbplnq7Zk0BglQ5Q5Or9L Mzu4An+2pDgCKhwOT225G6j7u0Y0+pTuGxdpx1SEOMpIJDtjiqGqyG4+/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEGyS/XulF6lSJlk2fMWkPfUIWp8MB8GA1UdIwQY MBaAFK+CoJeiimtqaZ2Nar5Ny5W7GYMwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjRLZ2w2S0thMnBwblkxcXZrM0xsYnNaZ3pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi83NWM1N2ItMjc4Ni00N2I5LTk4MWMt ZmFhOGI3MThiNmNiLzEvcjRLZ2w2S0thMnBwblkxcXZrM0xsYnNaZ3pBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi83NWM1N2ItMjc4Ni00N2I5LTk4MWMtZmFhOGI3MThiNmNi LzEvcjRLZ2w2S0thMnBwblkxcXZrM0xsYnNaZ3pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMjzzHlBW zodDo4/JeEbkWBIuQmldQiuh+EZNQHJiau2Z9XgfIGdRuwhmJ93SYwm3v2oW8mFs 8A9/VTA8leiHpKw0pPb5V2ejv9Qjo6vl5mkhKW8KquxS2GayoWhnzxZYVFXN3Lj/ EvqzCxmcfDGKPD81eA36ipFti9xJsWX78gBHSzV9fGS4TXfI00ongF606Z5VtY4z rA3qqENWrr6NINHvxwAKqzpuJ31+xY4hJJa5Q8EY8ndMTTGPZCOMLTVahvDfEKgs KUpnrVj2BOBc/jcE5QlffqjeWS4b+MSbAbbX3faUHizgvN4QEHqKYpmSZoJ1m+gs uukP9ClMJBulPQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:51:43 2025 by rpki-client