This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.mft File: MFKpUR4ZpULAuyN4td6PT7RSHb4.mft (raw, json) Hash identifier: pUQ1WqPrt2LxebwWO2Y+sKkAvQy+0RnjbIhx/nhLgrI= Subject key identifier: 8D:3C:57:EB:AA:8D:37:49:B9:48:7B:C6:65:97:77:53:83:61:47:94 Authority key identifier: 30:52:A9:51:1E:19:A5:42:C0:BB:23:78:B5:DE:8F:4F:B4:52:1D:BE Certificate issuer: /CN=3052a9511e19a542c0bb2378b5de8f4fb4521dbe Certificate serial: 019B5F410ADFDA6FC1A63F6A0F1BAC03D9FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFKpUR4ZpULAuyN4td6PT7RSHb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.mft Manifest number: 1729 Signing time: Sat 27 Dec 2025 10:00:56 +0000 Manifest this update: Sat 27 Dec 2025 10:00:56 +0000 Manifest next update: Sun 28 Dec 2025 10:00:56 +0000 Files and hashes: 1: MFKpUR4ZpULAuyN4td6PT7RSHb4.crl (hash: 4RxiWlcswAFyuOMd+2IiyBVrSO8mL7svLiESaN0bmyg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.crl rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.mft rsync://rpki.ripe.net/repository/DEFAULT/MFKpUR4ZpULAuyN4td6PT7RSHb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5f:41:0a:df:da:6f:c1:a6:3f:6a:0f:1b:ac:03:d9:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3052a9511e19a542c0bb2378b5de8f4fb4521dbe Validity Not Before: Dec 27 10:00:56 2025 GMT Not After : Dec 28 10:00:56 2025 GMT Subject: CN=8d3c57ebaa8d3749b9487bc66597775383614794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f2:e6:c0:d2:ab:da:8c:ed:b3:12:e7:46:b2: d6:24:28:d1:1f:c9:d6:37:b0:c5:77:ed:f8:af:84: 0d:9e:0c:41:bc:dd:ce:9b:4d:46:49:bc:16:3e:05: c1:d0:d3:23:b8:60:2d:f5:3f:77:28:3c:ae:71:a6: 68:d3:db:d4:df:c6:c3:89:4b:9d:f3:d9:33:85:37: 17:7b:97:ed:ba:a5:2a:0c:ca:74:b9:2c:7b:1e:41: 16:8b:11:24:a0:b1:d1:f9:01:dc:ca:0c:ee:66:0b: 46:47:ab:e6:3e:c0:b4:6e:d2:9a:dd:0b:db:85:dc: a6:1e:7c:f2:1f:44:20:11:b4:ff:be:2f:53:71:22: 1c:b2:99:87:ed:ff:2d:6a:6b:ab:8f:fd:6c:4c:f3: e3:09:9d:77:0f:41:3c:49:85:d1:08:5b:60:98:2f: 2d:bb:14:33:f5:c8:d7:45:74:c9:4d:4a:40:98:8d: 76:7e:78:67:ec:62:c5:38:dc:6c:21:0a:67:34:83: ee:1f:84:55:ae:af:9a:d9:66:83:00:a9:bf:a1:67: 61:ed:76:ba:33:13:58:18:28:2b:f8:7f:8f:c3:16: 2c:cd:49:69:ef:0e:eb:11:56:f6:cc:a7:3d:96:68: b3:8a:b9:b3:9a:14:0f:31:db:62:01:b0:61:be:c1: ab:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:3C:57:EB:AA:8D:37:49:B9:48:7B:C6:65:97:77:53:83:61:47:94 X509v3 Authority Key Identifier: keyid:30:52:A9:51:1E:19:A5:42:C0:BB:23:78:B5:DE:8F:4F:B4:52:1D:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFKpUR4ZpULAuyN4td6PT7RSHb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:4f:69:e0:ce:5c:8b:b7:14:7a:58:6a:06:52:d5:21:b6:bd: d7:89:4f:97:d0:5a:f1:62:bb:ad:58:31:86:d5:fe:e1:6f:cc: e6:5a:d8:88:07:60:71:3a:01:4b:36:e2:bd:51:86:db:9e:af: 22:99:af:a9:18:af:75:36:25:51:43:b1:a7:01:60:0d:0f:7f: e5:17:78:18:56:c8:e4:64:df:6a:70:8b:09:c5:60:af:0b:fa: b0:ac:14:e9:5a:a1:dc:7f:51:79:17:d2:d7:27:d0:26:fd:b0: e5:d2:ef:b3:e2:93:6e:0c:1c:14:9c:48:e8:ea:5d:0e:7f:5d: 3c:6b:87:ea:05:a1:e5:ba:d9:fd:96:93:1b:d2:d0:38:41:53: af:79:5b:34:8c:cb:17:9e:f7:99:f2:4e:22:d1:cb:28:92:d5: 7e:44:ae:fb:48:42:a3:bc:ea:0f:a7:d0:e0:06:23:56:05:86: 61:bf:8b:b9:ef:6e:c4:1e:e6:e8:d5:83:1c:ed:ce:69:13:47: 33:12:a2:6d:9b:39:df:74:77:5a:41:03:dc:42:94:76:01:89: 6a:c5:91:05:f9:21:f9:6a:de:89:ee:94:08:3b:ec:2b:d2:1d: f0:99:40:3f:84:fd:0f:98:a6:c9:d1:a9:96:17:c5:16:3a:d2: 90:a4:bb:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtfQQrf2m/Bpj9qDxusA9n7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNTJhOTUxMWUxOWE1NDJjMGJiMjM3OGI1ZGU4ZjRmYjQ1 MjFkYmUwHhcNMjUxMjI3MTAwMDU2WhcNMjUxMjI4MTAwMDU2WjAzMTEwLwYDVQQD Eyg4ZDNjNTdlYmFhOGQzNzQ5Yjk0ODdiYzY2NTk3Nzc1MzgzNjE0Nzk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPLmwNKr2oztsxLnRrLWJCjRH8nW N7DFd+34r4QNngxBvN3Om01GSbwWPgXB0NMjuGAt9T93KDyucaZo09vU38bDiUud 89kzhTcXe5ftuqUqDMp0uSx7HkEWixEkoLHR+QHcygzuZgtGR6vmPsC0btKa3Qvb hdymHnzyH0QgEbT/vi9TcSIcspmH7f8tamurj/1sTPPjCZ13D0E8SYXRCFtgmC8t uxQz9cjXRXTJTUpAmI12fnhn7GLFONxsIQpnNIPuH4RVrq+a2WaDAKm/oWdh7Xa6 MxNYGCgr+H+PwxYszUlp7w7rEVb2zKc9lmizirmzmhQPMdtiAbBhvsGrTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI08V+uqjTdJuUh7xmWXd1ODYUeUMB8GA1UdIwQY MBaAFDBSqVEeGaVCwLsjeLXej0+0Uh2+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUZLcFVSNFpwVUxBdXlONHRkNlBUN1JTSGI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9kMzVhMWQtOTRlOS00ZWI0LTgzZjQt MDIwZTE4NTFlOTQzLzEvTUZLcFVSNFpwVUxBdXlONHRkNlBUN1JTSGI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9kMzVhMWQtOTRlOS00ZWI0LTgzZjQtMDIwZTE4NTFlOTQz LzEvTUZLcFVSNFpwVUxBdXlONHRkNlBUN1JTSGI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQk9p4M5c i7cUelhqBlLVIba914lPl9Ba8WK7rVgxhtX+4W/M5lrYiAdgcToBSzbivVGG256v IpmvqRivdTYlUUOxpwFgDQ9/5Rd4GFbI5GTfanCLCcVgrwv6sKwU6Vqh3H9ReRfS 1yfQJv2w5dLvs+KTbgwcFJxI6OpdDn9dPGuH6gWh5brZ/ZaTG9LQOEFTr3lbNIzL F573mfJOItHLKJLVfkSu+0hCo7zqD6fQ4AYjVgWGYb+Lue9uxB7m6NWDHO3OaRNH MxKibZs533R3WkED3EKUdgGJasWRBfkh+Wreie6UCDvsK9Id8JlAP4T9D5imydGp lhfFFjrSkKS7QA== -----END CERTIFICATE-----Generated at Sat Dec 27 17:48:36 2025 by rpki-client