This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft File: 9l95H50M9str44nJRWjId0BeUUQ.mft (raw, json) Hash identifier: s/i0zTECT8dW/K2F6kPu2/NhYyzimLZaPGjBUVT9/aM= Subject key identifier: 90:E6:FE:0B:78:E9:7C:AC:FE:C0:C2:BF:20:72:FC:C3:62:37:54:4E Authority key identifier: F6:5F:79:1F:9D:0C:F6:CB:6B:E3:89:C9:45:68:C8:77:40:5E:51:44 Certificate issuer: /CN=f65f791f9d0cf6cb6be389c94568c877405e5144 Certificate serial: 019AF19AE3312B677B66235C3230195280B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9l95H50M9str44nJRWjId0BeUUQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft Manifest number: 06CB Signing time: Sat 06 Dec 2025 03:00:50 +0000 Manifest this update: Sat 06 Dec 2025 03:00:50 +0000 Manifest next update: Sun 07 Dec 2025 03:00:50 +0000 Files and hashes: 1: 9l95H50M9str44nJRWjId0BeUUQ.crl (hash: rrkqfkX3NjjnEAF6fWNDTn3rRDvOwHNTDHJFu1n4rRg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft rsync://rpki.ripe.net/repository/DEFAULT/9l95H50M9str44nJRWjId0BeUUQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:e3:31:2b:67:7b:66:23:5c:32:30:19:52:80:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f65f791f9d0cf6cb6be389c94568c877405e5144 Validity Not Before: Dec 6 03:00:50 2025 GMT Not After : Dec 7 03:00:50 2025 GMT Subject: CN=90e6fe0b78e97cacfec0c2bf2072fcc36237544e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:82:39:b6:86:59:2d:9a:63:a0:92:a9:94:83: 35:28:57:1d:c7:dd:12:aa:47:1d:6e:d6:8b:9b:03: d0:77:ce:30:ad:d5:5e:e8:11:1a:92:38:85:48:1d: af:6a:f9:6e:bb:96:60:02:10:ab:8a:81:65:af:5e: 0d:3a:8f:d5:5c:9a:7d:bc:1d:f2:92:81:70:0d:ed: 80:20:f1:a0:a2:42:45:80:0d:2c:d6:44:bf:51:ad: 0d:17:0f:4a:f5:7f:a9:c2:c3:29:9e:ad:f4:0e:57: ac:f7:cb:95:b0:b3:d0:07:97:7c:19:3b:37:95:0d: da:ac:50:dc:a6:e4:72:a2:86:17:b1:80:8f:35:84: 3f:46:3a:72:e9:ef:10:a0:84:7b:d9:96:33:e9:a1: ec:f5:8a:16:54:f2:f0:d8:4a:53:ad:24:07:1d:09: 00:1a:73:d4:c9:a6:0e:74:41:13:d7:a1:25:ae:db: da:40:8e:c8:48:f8:8c:30:08:06:4f:11:4b:78:3c: f0:fd:b9:b8:c1:9a:c0:b9:3e:f0:88:a8:e8:40:b0: 77:09:07:07:43:e7:c2:a8:bd:9b:f0:b7:47:a5:3a: 7a:a1:3c:f3:12:e8:00:20:c2:73:be:80:05:f2:50: f1:8a:ff:44:e7:b3:44:04:19:91:9d:58:93:42:d2: 74:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E6:FE:0B:78:E9:7C:AC:FE:C0:C2:BF:20:72:FC:C3:62:37:54:4E X509v3 Authority Key Identifier: keyid:F6:5F:79:1F:9D:0C:F6:CB:6B:E3:89:C9:45:68:C8:77:40:5E:51:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9l95H50M9str44nJRWjId0BeUUQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:82:fa:48:6f:4a:2e:91:da:d2:69:dd:fb:b0:09:fd:4b:97: 4e:87:ed:58:c9:ca:38:e9:68:96:3e:10:c8:e1:b1:a9:73:09: 24:81:7c:dc:4e:1a:9b:06:41:98:83:48:9f:3d:7c:bd:6e:b4: 49:e4:d7:de:56:49:76:a3:3a:e4:15:d6:dd:c9:69:f5:7e:eb: 49:07:6e:1b:c8:47:77:56:6f:ed:67:75:72:20:58:75:7e:5d: 46:fe:8a:da:0b:e2:19:3d:b4:3f:0c:84:17:ad:a2:e5:fc:e8: 23:6a:10:5b:f4:e4:04:bd:0b:e0:15:d2:c5:d4:48:da:f0:70: ad:26:83:f4:bb:50:c5:7e:c0:00:74:51:89:74:98:c5:39:49: 48:bf:f4:3a:86:c0:39:e7:79:88:9f:2d:55:83:1a:37:43:51: 57:8c:52:29:60:a5:e9:b8:06:f9:f0:88:ca:0c:60:20:57:00: 3c:47:bb:bf:ad:10:7f:b7:33:01:67:11:4c:e1:97:f0:d8:c6: 7f:4c:af:fa:7f:87:3b:d7:29:3a:6b:3f:5c:04:78:14:25:0c: db:4a:b0:1b:9b:04:23:d5:6d:fe:6c:59:e2:a2:a2:b1:7c:62: db:b9:a9:b4:05:0d:4d:3f:db:55:d6:11:84:ab:d1:15:1c:b4: cc:c1:d0:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmuMxK2d7ZiNcMjAZUoCxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2NWY3OTFmOWQwY2Y2Y2I2YmUzODljOTQ1NjhjODc3NDA1 ZTUxNDQwHhcNMjUxMjA2MDMwMDUwWhcNMjUxMjA3MDMwMDUwWjAzMTEwLwYDVQQD Eyg5MGU2ZmUwYjc4ZTk3Y2FjZmVjMGMyYmYyMDcyZmNjMzYyMzc1NDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiYI5toZZLZpjoJKplIM1KFcdx90S qkcdbtaLmwPQd84wrdVe6BEakjiFSB2vavluu5ZgAhCrioFlr14NOo/VXJp9vB3y koFwDe2AIPGgokJFgA0s1kS/Ua0NFw9K9X+pwsMpnq30Dles98uVsLPQB5d8GTs3 lQ3arFDcpuRyooYXsYCPNYQ/Rjpy6e8QoIR72ZYz6aHs9YoWVPLw2EpTrSQHHQkA GnPUyaYOdEET16ElrtvaQI7ISPiMMAgGTxFLeDzw/bm4wZrAuT7wiKjoQLB3CQcH Q+fCqL2b8LdHpTp6oTzzEugAIMJzvoAF8lDxiv9E57NEBBmRnViTQtJ0QwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJDm/gt46Xys/sDCvyBy/MNiN1ROMB8GA1UdIwQY MBaAFPZfeR+dDPbLa+OJyUVoyHdAXlFEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWw5NUg1ME05c3RyNDRuSlJXaklkMEJlVVVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8xNzM4OTQtMjBkNS00ZDA0LWJlNzAt Y2QwMzc0MWQyNmI1LzEvOWw5NUg1ME05c3RyNDRuSlJXaklkMEJlVVVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi8xNzM4OTQtMjBkNS00ZDA0LWJlNzAtY2QwMzc0MWQyNmI1 LzEvOWw5NUg1ME05c3RyNDRuSlJXaklkMEJlVVVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABIL6SG9K LpHa0mnd+7AJ/UuXToftWMnKOOlolj4QyOGxqXMJJIF83E4amwZBmINInz18vW60 SeTX3lZJdqM65BXW3clp9X7rSQduG8hHd1Zv7Wd1ciBYdX5dRv6K2gviGT20PwyE F62i5fzoI2oQW/TkBL0L4BXSxdRI2vBwrSaD9LtQxX7AAHRRiXSYxTlJSL/0OobA Oed5iJ8tVYMaN0NRV4xSKWCl6bgG+fCIygxgIFcAPEe7v60Qf7czAWcRTOGX8NjG f0yv+n+HO9cpOms/XAR4FCUM20qwG5sEI9Vt/mxZ4qKisXxi27mptAUNTT/bVdYR hKvRFRy0zMHQyw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:58:25 2025 by rpki-client