This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft File: 4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft (raw, json) Hash identifier: s+n5YClrtJXnpyyAlKktGi8P3UaJNbMjpTaqzB+vWu0= Subject key identifier: A5:88:A1:DD:EC:55:05:D0:C7:15:56:69:B3:FC:79:7F:F4:4F:6A:78 Authority key identifier: E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60 Certificate issuer: /CN=e33779b8388d001fdcbddc48ace227f009850660 Certificate serial: 019B2EFA7516507E3FCED1AC3C67EFBC6E64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft Manifest number: 177C Signing time: Thu 18 Dec 2025 01:02:04 +0000 Manifest this update: Thu 18 Dec 2025 01:02:04 +0000 Manifest next update: Fri 19 Dec 2025 01:02:04 +0000 Files and hashes: 1: 4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl (hash: VU26Gk9ltZbEQWf3oKqta+K4KV4KWcPLMBUwENmBB6k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:fa:75:16:50:7e:3f:ce:d1:ac:3c:67:ef:bc:6e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e33779b8388d001fdcbddc48ace227f009850660 Validity Not Before: Dec 18 01:02:04 2025 GMT Not After : Dec 19 01:02:04 2025 GMT Subject: CN=a588a1ddec5505d0c7155669b3fc797ff44f6a78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:99:c9:86:f7:27:4d:55:3b:8f:7d:32:15:ea: 6d:59:ea:0f:1e:a4:12:47:ef:8d:4b:c2:b2:01:7b: 48:3d:25:a4:6a:f5:86:7f:c9:26:e0:d0:ed:99:0e: 76:08:83:62:66:16:a5:b5:5d:8f:6e:70:d0:7a:4c: a5:9d:13:f3:e9:75:11:0e:90:33:5a:ed:de:38:0e: a1:09:08:05:25:b9:16:48:bd:a1:ed:0b:54:f7:94: 83:0f:b5:84:c8:b7:e3:0d:88:50:26:fa:11:55:e3: b4:9d:95:e0:38:e5:9c:ab:e0:20:83:7e:29:ed:44: bd:f3:64:51:58:34:f6:ee:e7:c5:10:f9:08:0a:1b: 9b:e7:31:90:6d:f2:c6:7a:e4:69:a7:56:b5:87:30: cd:f9:1f:dc:42:28:4b:57:7d:e8:ad:81:bd:03:cb: e8:ad:bc:be:ed:61:9a:ca:b9:64:52:aa:fa:e8:a8: 79:ec:5f:b7:0a:7c:e4:18:ba:ff:41:8f:75:3a:19: 6c:02:99:9a:4b:73:0c:3b:83:6d:57:02:d2:61:29: d0:f1:18:d5:65:bb:2c:00:9e:41:40:cb:c4:d6:08: a7:79:9e:23:24:f5:d3:95:c3:18:a6:eb:15:97:e9: 95:b4:96:3c:32:a6:07:22:7b:98:e6:32:be:6c:4d: f5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:88:A1:DD:EC:55:05:D0:C7:15:56:69:B3:FC:79:7F:F4:4F:6A:78 X509v3 Authority Key Identifier: keyid:E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:74:d3:85:b6:95:57:68:8c:c4:d4:07:0a:c9:75:b0:51:7f: c0:62:48:bd:8e:30:eb:1c:f4:4f:31:ee:1a:7b:bd:fe:06:53: 96:ba:50:14:b8:fd:6f:77:f3:04:41:79:22:c5:4a:8b:65:39: ef:f9:39:64:08:f1:86:02:81:2d:e2:d9:42:1a:a6:4a:73:51: 5c:6e:14:2e:bf:22:8e:07:bc:fc:f8:5d:ac:28:f9:d0:04:75: be:20:c9:92:e1:83:a9:a4:34:fb:1b:06:69:80:c9:bb:16:96: f3:b4:89:b2:51:05:8a:5f:8d:29:d8:4a:89:0e:ee:ec:f9:e1: 8a:ff:7f:d3:2b:e2:dd:84:70:63:e7:93:c7:6d:4e:80:bd:02: a4:fd:32:28:a0:5a:95:9d:a6:ad:9e:5a:82:f4:bd:22:b9:e0: c1:d8:a5:ec:c0:37:1b:7c:6f:d5:73:e1:55:be:08:60:43:26: 67:ec:76:aa:7a:f4:b8:69:89:0d:6a:12:dd:67:2c:c8:eb:3e: 92:18:81:84:56:98:f4:eb:1e:e1:c9:b0:f3:58:f5:b7:73:46: 4d:fa:c5:72:9b:9f:94:31:ca:08:16:86:82:c8:18:41:4a:21: 1a:a5:e8:d3:25:8f:dd:2a:fe:ff:f5:05:11:89:5a:8a:3c:75: c5:9a:0e:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+nUWUH4/ztGsPGfvvG5kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzMzc3OWI4Mzg4ZDAwMWZkY2JkZGM0OGFjZTIyN2YwMDk4 NTA2NjAwHhcNMjUxMjE4MDEwMjA0WhcNMjUxMjE5MDEwMjA0WjAzMTEwLwYDVQQD EyhhNTg4YTFkZGVjNTUwNWQwYzcxNTU2NjliM2ZjNzk3ZmY0NGY2YTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2JnJhvcnTVU7j30yFeptWeoPHqQS R++NS8KyAXtIPSWkavWGf8km4NDtmQ52CINiZhaltV2PbnDQekylnRPz6XURDpAz Wu3eOA6hCQgFJbkWSL2h7QtU95SDD7WEyLfjDYhQJvoRVeO0nZXgOOWcq+Agg34p 7US982RRWDT27ufFEPkIChub5zGQbfLGeuRpp1a1hzDN+R/cQihLV33orYG9A8vo rby+7WGayrlkUqr66Kh57F+3CnzkGLr/QY91OhlsApmaS3MMO4NtVwLSYSnQ8RjV ZbssAJ5BQMvE1gineZ4jJPXTlcMYpusVl+mVtJY8MqYHInuY5jK+bE311wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKWIod3sVQXQxxVWabP8eX/0T2p4MB8GA1UdIwQY MBaAFOM3ebg4jQAf3L3cSKziJ/AJhQZgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi85ZGIzMjYtMTE4OS00YWM5LWI0MTIt ZjI5NGQzYjEyY2ZkLzEvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi85ZGIzMjYtMTE4OS00YWM5LWI0MTItZjI5NGQzYjEyY2Zk LzEvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoXTThbaV V2iMxNQHCsl1sFF/wGJIvY4w6xz0TzHuGnu9/gZTlrpQFLj9b3fzBEF5IsVKi2U5 7/k5ZAjxhgKBLeLZQhqmSnNRXG4ULr8ijge8/PhdrCj50AR1viDJkuGDqaQ0+xsG aYDJuxaW87SJslEFil+NKdhKiQ7u7Pnhiv9/0yvi3YRwY+eTx21OgL0CpP0yKKBa lZ2mrZ5agvS9Irngwdil7MA3G3xv1XPhVb4IYEMmZ+x2qnr0uGmJDWoS3WcsyOs+ khiBhFaY9Ose4cmw81j1t3NGTfrFcpuflDHKCBaGgsgYQUohGqXo0yWP3Sr+//UF EYlaijx1xZoO3A== -----END CERTIFICATE-----Generated at Thu Dec 18 11:12:14 2025 by rpki-client