This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft File: U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft (raw, json) Hash identifier: +FplBMzAEYtl+r1ykUst2UKZFoDR8m6C1vVwUmb0OS0= Subject key identifier: D8:81:AD:19:A7:30:37:9A:D0:C4:F0:83:78:05:E1:CA:5C:B2:97:F6 Authority key identifier: 53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1 Certificate issuer: /CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1 Certificate serial: 019AF2764D3BC1EBBE9084DFB98491D19E0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 07:00:30 +0000 Manifest this update: Sat 06 Dec 2025 07:00:30 +0000 Manifest next update: Sun 07 Dec 2025 07:00:30 +0000 Files and hashes: 1: U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl (hash: 7xMwfh6cPuGvkNEKWrykP9mmwaMS91xJJ9S3RDmgTDM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:4d:3b:c1:eb:be:90:84:df:b9:84:91:d1:9e:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1 Validity Not Before: Dec 6 07:00:30 2025 GMT Not After : Dec 7 07:00:30 2025 GMT Subject: CN=d881ad19a730379ad0c4f0837805e1ca5cb297f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cf:5f:f7:d6:33:94:59:ab:e3:0e:62:06:84: f7:13:ca:6e:50:2c:61:71:9b:3f:da:d8:7c:53:96: 0a:7c:94:9d:01:81:e8:74:65:8b:d6:ef:5a:2a:c9: 88:89:33:14:e7:4f:e1:8a:7a:ae:9e:9b:49:1a:c5: ca:a0:12:d2:75:fb:2a:f6:90:d9:8c:bb:58:97:a7: 00:47:16:3e:77:a1:03:bf:2e:5a:ba:7a:4e:20:12: 21:bd:7a:7d:cd:3f:90:15:a2:77:47:07:cf:39:25: 15:e4:77:de:32:d8:8d:c2:49:7d:9b:58:86:8d:34: 80:db:ad:b4:bf:ee:35:56:ee:d9:4a:ac:dd:bf:4c: 99:35:aa:af:0f:69:62:3a:25:41:2c:c3:a3:a0:6b: f6:a1:09:c8:7c:43:82:d4:b2:01:7f:eb:12:a2:87: fc:49:7f:50:8f:98:cd:d3:51:b1:83:34:73:ac:47: 76:91:73:cd:cc:b4:67:00:12:99:3d:23:5e:ca:76: 2d:9e:e0:87:24:67:da:01:f6:41:dd:04:cf:ae:77: 28:77:f7:3e:0c:c3:24:14:16:95:32:67:c5:73:45: d0:40:10:c7:d5:3b:ba:fa:66:4c:47:ec:bc:45:40: 1e:63:c8:ed:11:09:d6:cd:d0:c9:7d:13:03:b4:25: a8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:81:AD:19:A7:30:37:9A:D0:C4:F0:83:78:05:E1:CA:5C:B2:97:F6 X509v3 Authority Key Identifier: keyid:53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:85:b6:98:54:d1:37:21:91:98:e9:f3:61:8e:ed:62:2f:d8: bc:fe:3e:03:f8:bd:3e:97:ad:17:1b:b2:e5:a0:66:cc:c2:b4: f1:88:3c:89:78:c5:8c:3e:96:43:7e:c1:6c:5e:6e:48:8a:c8: 36:20:e5:8b:33:7d:13:e8:a2:78:0e:de:4e:be:c1:d8:6b:2e: 3b:e5:15:e4:71:ed:b5:e7:44:ed:3d:cd:f5:e5:49:cd:90:a9: 83:d9:5c:46:19:7e:d1:9b:2b:1a:4c:02:ca:49:f8:f9:22:63: 4f:55:68:10:3e:81:51:33:79:d7:e3:18:b2:c1:25:c5:17:ff: 44:e8:53:47:42:a4:72:3b:ff:c2:e2:2d:51:2c:96:80:78:51: c5:b3:8a:5e:c8:3f:c7:9f:a1:23:7a:7a:25:68:16:48:c8:20: 4f:af:2c:d5:c5:d7:d8:6e:90:9c:22:b5:9c:7b:d7:59:e9:db: e6:87:55:01:6c:85:c4:41:ad:5a:ba:4e:52:6c:d8:c3:54:26: ac:b2:01:07:68:f0:d3:6c:67:a7:21:11:70:86:f2:a3:0e:e6: a4:b3:0b:82:f5:3a:69:4e:e4:b4:4f:ac:5c:c8:d2:ee:87:1d: 28:1f:82:f7:57:89:7b:3c:97:57:99:67:fa:fd:fb:cb:c7:7f: 1b:65:9f:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydk07weu+kITfuYSR0Z4LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNjU4M2RlODM2ZmNjMjhlNzBiZjY2ZWFkYjhkMzhmM2Y2 NGY0ZTEwHhcNMjUxMjA2MDcwMDMwWhcNMjUxMjA3MDcwMDMwWjAzMTEwLwYDVQQD EyhkODgxYWQxOWE3MzAzNzlhZDBjNGYwODM3ODA1ZTFjYTVjYjI5N2Y2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAns9f99YzlFmr4w5iBoT3E8puUCxh cZs/2th8U5YKfJSdAYHodGWL1u9aKsmIiTMU50/hinqunptJGsXKoBLSdfsq9pDZ jLtYl6cARxY+d6EDvy5aunpOIBIhvXp9zT+QFaJ3RwfPOSUV5HfeMtiNwkl9m1iG jTSA2620v+41Vu7ZSqzdv0yZNaqvD2liOiVBLMOjoGv2oQnIfEOC1LIBf+sSoof8 SX9Qj5jN01GxgzRzrEd2kXPNzLRnABKZPSNeynYtnuCHJGfaAfZB3QTPrncod/c+ DMMkFBaVMmfFc0XQQBDH1Tu6+mZMR+y8RUAeY8jtEQnWzdDJfRMDtCWoiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNiBrRmnMDea0MTwg3gF4cpcspf2MB8GA1UdIwQY MBaAFFNlg96Db8wo5wv2bq24048/ZPThMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTJXRDNvTnZ6Q2puQ19adXJialRqejlrOU9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy82ZjI2M2EtNDE5My00MzA5LTljN2Et ODJhNjk5MGRmMzhkLzEvVTJXRDNvTnZ6Q2puQ19adXJialRqejlrOU9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy82ZjI2M2EtNDE5My00MzA5LTljN2EtODJhNjk5MGRmMzhk LzEvVTJXRDNvTnZ6Q2puQ19adXJialRqejlrOU9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG4W2mFTR NyGRmOnzYY7tYi/YvP4+A/i9PpetFxuy5aBmzMK08Yg8iXjFjD6WQ37BbF5uSIrI NiDlizN9E+iieA7eTr7B2GsuO+UV5HHttedE7T3N9eVJzZCpg9lcRhl+0ZsrGkwC ykn4+SJjT1VoED6BUTN51+MYssElxRf/ROhTR0Kkcjv/wuItUSyWgHhRxbOKXsg/ x5+hI3p6JWgWSMggT68s1cXX2G6QnCK1nHvXWenb5odVAWyFxEGtWrpOUmzYw1Qm rLIBB2jw02xnpyERcIbyow7mpLMLgvU6aU7ktE+sXMjS7ocdKB+C91eJezyXV5ln +v37y8d/G2WfpA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:38:21 2025 by rpki-client