This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft File: U3YJ5EhhINufF7bT10v4VfJxV18.mft (raw, json) Hash identifier: vOOe9dyWfpDI3SwL/1onhzDaOJpFwdHyWnj6NbmvPcQ= Subject key identifier: CA:B0:97:9D:2C:E6:D4:6B:6F:2F:54:18:65:C2:5C:A1:2C:79:C9:BA Authority key identifier: 53:76:09:E4:48:61:20:DB:9F:17:B6:D3:D7:4B:F8:55:F2:71:57:5F Certificate issuer: /CN=537609e4486120db9f17b6d3d74bf855f271575f Certificate serial: 019AF12DFF4405FCDB733ED8043FDF94CA0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3YJ5EhhINufF7bT10v4VfJxV18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft Manifest number: 0DDF Signing time: Sat 06 Dec 2025 01:01:54 +0000 Manifest this update: Sat 06 Dec 2025 01:01:54 +0000 Manifest next update: Sun 07 Dec 2025 01:01:54 +0000 Files and hashes: 1: U3YJ5EhhINufF7bT10v4VfJxV18.crl (hash: sW3zvuNO1iz4cfP8TDLwEnfZMPyufTAR3BwRfqfEvqM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft rsync://rpki.ripe.net/repository/DEFAULT/U3YJ5EhhINufF7bT10v4VfJxV18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:ff:44:05:fc:db:73:3e:d8:04:3f:df:94:ca:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=537609e4486120db9f17b6d3d74bf855f271575f Validity Not Before: Dec 6 01:01:54 2025 GMT Not After : Dec 7 01:01:54 2025 GMT Subject: CN=cab0979d2ce6d46b6f2f541865c25ca12c79c9ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:b3:40:4c:f6:c3:2f:cc:48:50:14:74:61: 8f:fd:13:62:08:d3:ba:4c:ca:91:f0:bc:e0:ae:22: 2e:1f:a8:31:1e:3e:a2:c4:d7:51:3c:0d:09:56:65: 9b:5e:0d:60:e4:e3:57:5f:8f:ff:19:5e:61:06:ce: ba:57:56:71:cc:f5:8c:b5:d4:7e:c3:17:d7:76:f1: 22:64:0d:d5:50:3b:6f:b7:d9:85:61:fd:d1:62:6d: 1b:73:a7:46:3f:05:bf:91:6b:cd:0d:97:2e:56:85: 69:30:e3:88:1a:91:ca:a6:8c:81:43:ca:08:ce:43: 67:f8:a5:c4:7f:b5:3b:03:d3:3d:e3:50:21:cc:6d: 71:b1:84:83:06:ad:67:2d:b3:f1:bf:33:91:9e:8f: 21:fc:6a:3f:7f:ea:ca:95:cb:bf:ee:8c:d4:9e:93: ae:eb:ba:ff:9d:bd:5a:99:4b:25:97:19:a6:a6:f8: 89:e7:be:51:f4:4a:00:58:55:a0:2a:e0:f2:29:2a: 5c:fb:e9:ea:03:b5:b0:9b:92:cb:d6:f8:89:d7:ea: cf:1d:de:6f:20:39:8e:0d:94:d5:2a:10:c6:cf:3a: 6e:90:b1:b8:0f:bb:f2:61:80:0c:c6:f8:ae:d1:f7: c4:0c:f7:f9:99:6e:48:e6:52:fe:fd:17:34:fd:ac: ec:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B0:97:9D:2C:E6:D4:6B:6F:2F:54:18:65:C2:5C:A1:2C:79:C9:BA X509v3 Authority Key Identifier: keyid:53:76:09:E4:48:61:20:DB:9F:17:B6:D3:D7:4B:F8:55:F2:71:57:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3YJ5EhhINufF7bT10v4VfJxV18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:5c:54:1b:65:00:02:86:95:c8:1d:e1:ad:f8:e0:aa:a7:09: 64:e2:45:a8:75:a0:36:21:34:3b:6e:66:b4:a9:43:20:48:26: ea:93:d0:b5:8a:c1:6f:d2:93:ac:13:3b:ee:6d:e9:7e:04:c4: e7:a8:97:c8:76:f8:c4:c0:3a:af:12:78:83:3d:8b:a6:88:37: 21:6d:fc:5d:72:07:64:d7:12:00:2e:fb:6f:44:87:9a:75:f5: 8b:65:73:86:01:be:ee:05:d4:9a:ba:fb:26:f4:2e:94:22:4c: cd:2c:3b:82:5c:b6:4c:24:78:dd:e3:5e:7d:e9:35:4b:4f:63: 67:0b:12:2e:6a:dd:27:e9:72:40:93:24:30:1c:f7:47:ff:55: 28:ac:d7:ab:64:6d:0a:af:a6:74:09:af:7a:33:5d:14:cd:f7: 44:4a:4a:f6:95:99:94:82:a3:8c:00:55:01:2e:18:76:0d:5e: 54:d3:0b:90:06:13:b6:e5:83:15:d2:73:34:46:6a:d8:f1:4f: 56:9d:dc:05:5c:90:48:8a:61:69:d6:b0:e0:0d:15:1b:e9:4e: 46:f9:14:d9:f1:31:89:50:dd:f3:87:52:a0:7b:50:fb:1e:66: 13:b6:2d:16:0c:d4:70:9c:db:39:0a:9d:ad:57:03:6b:9f:a7: 47:27:26:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLf9EBfzbcz7YBD/flMoPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNzYwOWU0NDg2MTIwZGI5ZjE3YjZkM2Q3NGJmODU1ZjI3 MTU3NWYwHhcNMjUxMjA2MDEwMTU0WhcNMjUxMjA3MDEwMTU0WjAzMTEwLwYDVQQD EyhjYWIwOTc5ZDJjZTZkNDZiNmYyZjU0MTg2NWMyNWNhMTJjNzljOWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumizQEz2wy/MSFAUdGGP/RNiCNO6 TMqR8LzgriIuH6gxHj6ixNdRPA0JVmWbXg1g5ONXX4//GV5hBs66V1ZxzPWMtdR+ wxfXdvEiZA3VUDtvt9mFYf3RYm0bc6dGPwW/kWvNDZcuVoVpMOOIGpHKpoyBQ8oI zkNn+KXEf7U7A9M941AhzG1xsYSDBq1nLbPxvzORno8h/Go/f+rKlcu/7ozUnpOu 67r/nb1amUsllxmmpviJ575R9EoAWFWgKuDyKSpc++nqA7Wwm5LL1viJ1+rPHd5v IDmODZTVKhDGzzpukLG4D7vyYYAMxviu0ffEDPf5mW5I5lL+/Rc0/azsTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMqwl50s5tRrby9UGGXCXKEsecm6MB8GA1UdIwQY MBaAFFN2CeRIYSDbnxe209dL+FXycVdfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTNZSjVFaGhJTnVmRjdiVDEwdjRWZkp4VjE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8wNWRiODAtMWJhZi00MzdhLWE0OGYt ZDRkNDRiZDkxYWZlLzEvVTNZSjVFaGhJTnVmRjdiVDEwdjRWZkp4VjE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8wNWRiODAtMWJhZi00MzdhLWE0OGYtZDRkNDRiZDkxYWZl LzEvVTNZSjVFaGhJTnVmRjdiVDEwdjRWZkp4VjE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIFxUG2UA AoaVyB3hrfjgqqcJZOJFqHWgNiE0O25mtKlDIEgm6pPQtYrBb9KTrBM77m3pfgTE 56iXyHb4xMA6rxJ4gz2Lpog3IW38XXIHZNcSAC77b0SHmnX1i2VzhgG+7gXUmrr7 JvQulCJMzSw7gly2TCR43eNefek1S09jZwsSLmrdJ+lyQJMkMBz3R/9VKKzXq2Rt Cq+mdAmvejNdFM33REpK9pWZlIKjjABVAS4Ydg1eVNMLkAYTtuWDFdJzNEZq2PFP Vp3cBVyQSIphadaw4A0VG+lORvkU2fExiVDd84dSoHtQ+x5mE7YtFgzUcJzbOQqd rVcDa5+nRycmHA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:26:35 2025 by rpki-client