This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft File: RmSgU4XAYmgVApGX6xUGSF09bRw.mft (raw, json) Hash identifier: 4C8NwL4EjxnkxWaUBDtZ0yyBEd4DaSoh7KBsft3B8bI= Subject key identifier: E1:25:51:BA:19:85:45:C1:C1:D0:2F:39:C8:C5:1B:E3:04:44:33:BE Authority key identifier: 46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C Certificate issuer: /CN=4664a05385c0626815029197eb1506485d3d6d1c Certificate serial: 019B6278C299D845A1916BC1D52ACD4CE28C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft Manifest number: 08F1 Signing time: Sun 28 Dec 2025 01:00:39 +0000 Manifest this update: Sun 28 Dec 2025 01:00:39 +0000 Manifest next update: Mon 29 Dec 2025 01:00:39 +0000 Files and hashes: 1: RmSgU4XAYmgVApGX6xUGSF09bRw.crl (hash: DLKO94DaiTc7Ik5N8Q5X86+iJyk8F/DRZM+NdeN40QU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:62:78:c2:99:d8:45:a1:91:6b:c1:d5:2a:cd:4c:e2:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4664a05385c0626815029197eb1506485d3d6d1c Validity Not Before: Dec 28 01:00:39 2025 GMT Not After : Dec 29 01:00:39 2025 GMT Subject: CN=e12551ba198545c1c1d02f39c8c51be3044433be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b1:c0:d9:1b:8b:22:b6:c4:64:b1:6c:6d:4c: f1:1f:e8:98:70:9f:e5:da:58:25:6c:b8:09:62:b1: fc:88:e3:f3:4b:2e:eb:fe:a1:5a:ad:76:db:7c:a2: 77:bd:55:d7:44:9f:ca:5c:ad:5f:4c:d5:7f:d2:02: 92:b9:e7:4a:a5:ff:fb:10:85:40:50:01:99:e7:0f: 7d:8e:d5:21:92:b3:bf:7c:05:ce:8c:9f:24:9e:30: 9f:ff:d6:97:66:9d:32:ab:70:c8:cd:8d:86:6c:aa: 85:69:e0:0e:e0:25:7b:d2:97:ea:25:06:ac:8a:cf: 4b:7f:28:56:a8:ff:8d:ee:f9:ea:2b:85:9f:f2:26: 66:36:c2:c5:b1:7d:de:e7:da:b6:95:3d:26:84:58: be:84:86:ca:f3:35:1a:87:a3:35:6b:aa:b2:95:e1: 10:52:0d:d0:06:16:bb:a0:66:42:f6:87:b4:64:2d: 06:aa:94:09:e6:24:bc:56:5d:a1:b7:79:73:3d:a6: 7b:0b:42:4d:f5:a6:80:e1:fc:d2:6a:d6:10:26:27: 77:2d:c0:86:14:7b:d8:7b:98:5c:2a:bd:8e:17:69: e1:d7:21:d2:26:d7:d4:9e:8f:be:14:2c:c4:d0:c1: 23:c3:e5:76:fb:c4:a1:72:47:1d:9d:a0:c1:12:ed: 9f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:25:51:BA:19:85:45:C1:C1:D0:2F:39:C8:C5:1B:E3:04:44:33:BE X509v3 Authority Key Identifier: keyid:46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:ee:5f:00:98:e3:af:43:4b:c0:f5:86:bd:a6:32:b7:31:be: 89:68:63:9a:52:41:a6:9c:0d:4f:84:fd:ed:ee:ad:76:b4:da: 8d:db:1a:6f:0c:99:6a:3d:a1:64:9b:5f:e6:19:ee:18:8b:e4: b0:9f:a7:f6:5b:b4:bb:ba:a1:96:18:e6:0f:4c:74:cc:d6:3c: 93:a8:5d:54:37:4f:bb:f7:7c:99:7b:40:e4:04:ce:ea:26:b4: f4:29:9c:e2:bb:91:7e:9e:98:49:2f:97:2d:0b:a7:0e:02:2d: 74:0e:65:04:26:52:df:a7:b4:21:6a:67:22:66:92:b5:1d:96: 91:0c:41:12:fb:91:6f:0b:39:0a:5f:53:54:c9:65:c7:98:43: ef:ba:6f:ec:5f:1d:35:25:f3:ac:01:3d:21:68:2c:da:f3:6a: 55:6f:a7:06:87:ca:78:b1:d3:ad:ed:21:13:89:47:d7:f5:d7: 05:4f:ef:a3:01:ea:cb:a1:38:00:74:a2:ea:76:22:88:94:cd: ac:56:55:3e:69:8a:5e:18:fb:12:04:7b:22:d2:dc:8f:ad:b1: 5e:c4:a8:25:99:4b:0e:95:99:19:5d:a9:cc:83:0b:35:2c:6a: 17:8e:99:cf:21:a7:76:8d:36:93:70:6e:f7:ca:44:03:ee:89: 5c:ea:e7:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtieMKZ2EWhkWvB1SrNTOKMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2NjRhMDUzODVjMDYyNjgxNTAyOTE5N2ViMTUwNjQ4NWQz ZDZkMWMwHhcNMjUxMjI4MDEwMDM5WhcNMjUxMjI5MDEwMDM5WjAzMTEwLwYDVQQD EyhlMTI1NTFiYTE5ODU0NWMxYzFkMDJmMzljOGM1MWJlMzA0NDQzM2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7HA2RuLIrbEZLFsbUzxH+iYcJ/l 2lglbLgJYrH8iOPzSy7r/qFarXbbfKJ3vVXXRJ/KXK1fTNV/0gKSuedKpf/7EIVA UAGZ5w99jtUhkrO/fAXOjJ8knjCf/9aXZp0yq3DIzY2GbKqFaeAO4CV70pfqJQas is9LfyhWqP+N7vnqK4Wf8iZmNsLFsX3e59q2lT0mhFi+hIbK8zUah6M1a6qyleEQ Ug3QBha7oGZC9oe0ZC0GqpQJ5iS8Vl2ht3lzPaZ7C0JN9aaA4fzSatYQJid3LcCG FHvYe5hcKr2OF2nh1yHSJtfUno++FCzE0MEjw+V2+8ShckcdnaDBEu2fBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOElUboZhUXBwdAvOcjFG+MERDO+MB8GA1UdIwQY MBaAFEZkoFOFwGJoFQKRl+sVBkhdPW0cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUm1TZ1U0WEFZbWdWQXBHWDZ4VUdTRjA5YlJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9iZDc2NDYtYWRkOS00ODU5LTlkZTkt OWM4NDg1NDgzZDU5LzEvUm1TZ1U0WEFZbWdWQXBHWDZ4VUdTRjA5YlJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi9iZDc2NDYtYWRkOS00ODU5LTlkZTktOWM4NDg1NDgzZDU5 LzEvUm1TZ1U0WEFZbWdWQXBHWDZ4VUdTRjA5YlJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGO5fAJjj r0NLwPWGvaYytzG+iWhjmlJBppwNT4T97e6tdrTajdsabwyZaj2hZJtf5hnuGIvk sJ+n9lu0u7qhlhjmD0x0zNY8k6hdVDdPu/d8mXtA5ATO6ia09Cmc4ruRfp6YSS+X LQunDgItdA5lBCZS36e0IWpnImaStR2WkQxBEvuRbws5Cl9TVMllx5hD77pv7F8d NSXzrAE9IWgs2vNqVW+nBofKeLHTre0hE4lH1/XXBU/vowHqy6E4AHSi6nYiiJTN rFZVPmmKXhj7EgR7ItLcj62xXsSoJZlLDpWZGV2pzIMLNSxqF46ZzyGndo02k3Bu 98pEA+6JXOrnUg== -----END CERTIFICATE-----Generated at Sun Dec 28 06:40:01 2025 by rpki-client