This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft File: U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft (raw, json) Hash identifier: k/IEyUhLtC93CEZ3I3jVIEQQD8DAvnmCc+/tUzlTeL0= Subject key identifier: 79:4C:30:34:6D:60:79:93:4F:A5:96:F6:2C:1D:64:23:E6:71:3E:E4 Authority key identifier: 53:8B:06:2C:B5:42:6F:00:E6:53:73:EE:F4:E4:CD:8A:1C:27:F6:8E Certificate issuer: /CN=538b062cb5426f00e65373eef4e4cd8a1c27f68e Certificate serial: 019AF31C8FE851B92294ABDEC944B142E2CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 10:02:06 +0000 Manifest this update: Sat 06 Dec 2025 10:02:06 +0000 Manifest next update: Sun 07 Dec 2025 10:02:06 +0000 Files and hashes: 1: U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl (hash: 1Qrps2LEbqFLmUaVIgL7+y1vnNni9sTJOQwKayBlAWM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:8f:e8:51:b9:22:94:ab:de:c9:44:b1:42:e2:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=538b062cb5426f00e65373eef4e4cd8a1c27f68e Validity Not Before: Dec 6 10:02:06 2025 GMT Not After : Dec 7 10:02:06 2025 GMT Subject: CN=794c30346d6079934fa596f62c1d6423e6713ee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ff:ca:3d:a9:35:c9:28:da:c3:c7:ca:8e:8c: b1:c4:03:a7:3d:a0:98:4b:53:ba:cc:1d:f0:29:41: e7:e7:48:e6:17:94:e0:73:69:38:2a:e8:da:ef:a3: 36:71:fa:a5:23:22:36:17:0a:9a:78:d1:ee:0c:5f: ce:02:13:13:a6:dd:88:ca:98:0e:29:91:cf:89:74: 5b:99:03:9e:42:7b:72:9a:72:07:83:13:74:70:e4: 9b:a3:b5:92:39:3c:6c:56:2b:54:18:f2:4f:83:cc: e0:2f:dc:79:80:cd:e6:c8:a0:91:33:32:80:d3:27: be:7d:79:45:25:91:d4:7b:9e:67:e8:24:83:6e:97: 55:8b:14:b4:24:8e:4f:95:fb:63:db:9e:87:52:1b: b8:a0:19:da:62:38:38:60:db:7a:49:11:ea:c8:da: a3:37:60:dc:a0:6d:28:9e:3b:f7:59:e6:04:7f:6b: 9e:aa:7a:ab:97:fb:bf:e9:b1:e3:98:92:c4:a9:7d: 7c:28:a5:19:fc:90:5b:28:c1:4f:b4:f0:51:9a:34: c1:21:df:03:c2:41:86:6f:79:2d:b8:cf:4c:1b:2d: e5:f9:00:91:d3:8b:81:8d:88:76:3f:e5:0b:b1:c2: d3:e8:cc:b1:62:27:c3:ba:ab:de:e8:df:e3:c1:25: 05:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4C:30:34:6D:60:79:93:4F:A5:96:F6:2C:1D:64:23:E6:71:3E:E4 X509v3 Authority Key Identifier: keyid:53:8B:06:2C:B5:42:6F:00:E6:53:73:EE:F4:E4:CD:8A:1C:27:F6:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:8b:6e:6b:df:46:03:62:dc:46:09:ed:4c:47:5b:e9:a0:78: 00:d0:87:63:a8:9c:27:11:27:90:b4:23:c3:c9:03:88:67:e4: 37:24:3b:9c:58:06:2c:1a:95:ed:89:b9:95:65:db:d4:34:2e: 56:bb:35:12:57:02:31:48:c5:62:92:12:ef:23:c8:03:ba:1d: c3:79:e5:8f:b8:95:5b:7a:b8:18:6a:a4:0e:fa:03:a6:83:ca: d9:4a:43:11:bf:35:81:aa:cb:2c:22:fd:1c:22:8f:5d:53:73: 16:df:58:58:76:44:18:71:ae:38:7d:22:6f:22:0a:3b:dc:75: 0f:2a:26:4f:38:67:3f:81:df:f5:68:ca:19:a6:c1:15:1f:cb: d4:c2:a3:3a:71:fb:e3:ca:98:d9:92:e9:85:43:e1:0a:97:4d: d1:26:f2:f5:04:bf:85:33:12:6f:89:de:96:c1:d9:81:9a:f4: c6:59:76:77:a6:43:f2:59:99:be:16:46:ae:e6:21:74:e7:9b: b5:d4:32:99:26:ff:1f:6f:b6:a7:4b:8e:f2:f5:9d:bf:2f:81: f0:4b:38:b5:61:08:31:49:8e:16:15:83:43:9c:7a:d6:b0:0f: 2d:7b:f6:d3:72:5f:79:4b:f1:21:f1:5d:f8:e6:6c:2a:7c:58: 91:38:5e:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHI/oUbkilKveyUSxQuLKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzOGIwNjJjYjU0MjZmMDBlNjUzNzNlZWY0ZTRjZDhhMWMy N2Y2OGUwHhcNMjUxMjA2MTAwMjA2WhcNMjUxMjA3MTAwMjA2WjAzMTEwLwYDVQQD Eyg3OTRjMzAzNDZkNjA3OTkzNGZhNTk2ZjYyYzFkNjQyM2U2NzEzZWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzv/KPak1ySjaw8fKjoyxxAOnPaCY S1O6zB3wKUHn50jmF5Tgc2k4Kuja76M2cfqlIyI2FwqaeNHuDF/OAhMTpt2IypgO KZHPiXRbmQOeQntymnIHgxN0cOSbo7WSOTxsVitUGPJPg8zgL9x5gM3myKCRMzKA 0ye+fXlFJZHUe55n6CSDbpdVixS0JI5Plftj256HUhu4oBnaYjg4YNt6SRHqyNqj N2DcoG0onjv3WeYEf2ueqnqrl/u/6bHjmJLEqX18KKUZ/JBbKMFPtPBRmjTBId8D wkGGb3ktuM9MGy3l+QCR04uBjYh2P+ULscLT6MyxYifDuqve6N/jwSUFfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHlMMDRtYHmTT6WW9iwdZCPmcT7kMB8GA1UdIwQY MBaAFFOLBiy1Qm8A5lNz7vTkzYocJ/aOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8xZDQ1N2ItNDBiZC00NDhmLWE5MTUt MjBjOGFiOTI2OTZmLzEvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi8xZDQ1N2ItNDBiZC00NDhmLWE5MTUtMjBjOGFiOTI2OTZm LzEvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABItua99G A2LcRgntTEdb6aB4ANCHY6icJxEnkLQjw8kDiGfkNyQ7nFgGLBqV7Ym5lWXb1DQu Vrs1ElcCMUjFYpIS7yPIA7odw3nlj7iVW3q4GGqkDvoDpoPK2UpDEb81garLLCL9 HCKPXVNzFt9YWHZEGHGuOH0ibyIKO9x1DyomTzhnP4Hf9WjKGabBFR/L1MKjOnH7 48qY2ZLphUPhCpdN0Sby9QS/hTMSb4nelsHZgZr0xll2d6ZD8lmZvhZGruYhdOeb tdQymSb/H2+2p0uO8vWdvy+B8Es4tWEIMUmOFhWDQ5x61rAPLXv203JfeUvxIfFd +OZsKnxYkTheUg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:17:47 2025 by rpki-client