This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft File: cW9tEfDOYyMBgac_haZmFw9zib0.mft (raw, json) Hash identifier: yN37iZuG6Fx+Gzz3/WJQNodmqoiJbYm57jsVvHOwj8E= Subject key identifier: 1A:BB:A5:26:1E:E8:94:54:4D:24:52:EB:90:D9:82:D8:2C:61:75:C8 Authority key identifier: 71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD Certificate issuer: /CN=716f6d11f0ce63230181a73f85a666170f7389bd Certificate serial: 019B4A7149CC2D80D2E0EF753C8DD322BAA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft Manifest number: 0CB1 Signing time: Tue 23 Dec 2025 09:01:36 +0000 Manifest this update: Tue 23 Dec 2025 09:01:36 +0000 Manifest next update: Wed 24 Dec 2025 09:01:36 +0000 Files and hashes: 1: cW9tEfDOYyMBgac_haZmFw9zib0.crl (hash: 9kFlG56uGqMpeorbg8jEmo40p2a2CNdkLHTZ2R8Mwro=) 2: fS7Vtpenx3ISocQLcsKDmT4cdAc.roa (hash: lsacutCDcdT1KWfBtvedBOBvauWcszwNt+V8+YsxMyc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:71:49:cc:2d:80:d2:e0:ef:75:3c:8d:d3:22:ba:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=716f6d11f0ce63230181a73f85a666170f7389bd Validity Not Before: Dec 23 09:01:36 2025 GMT Not After : Dec 24 09:01:36 2025 GMT Subject: CN=1abba5261ee894544d2452eb90d982d82c6175c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f5:f1:f1:84:23:a8:fd:40:34:06:e4:78:65: f3:85:2e:be:87:6f:69:20:d7:bc:d6:5a:59:da:b4: 18:50:ea:6f:42:b2:1d:c4:0a:43:f5:eb:b4:e1:fb: e7:5a:9d:21:7f:cd:8d:cd:0e:e7:c6:83:fa:cc:ff: a7:a0:94:77:e9:50:f3:f9:af:fb:b6:51:dc:9c:71: 6d:87:23:95:2f:c2:b5:26:b3:37:ab:ed:04:7a:c0: 8d:34:57:de:c1:80:93:a1:60:f0:24:3e:5e:16:0a: 1a:9f:d5:2a:9e:32:86:54:b7:26:47:c4:50:3b:c6: 89:36:ec:8f:4e:fa:d0:91:9f:57:36:14:62:95:d2: b9:1e:cd:e5:84:ff:ce:14:cf:e0:2b:70:b2:c7:07: 4a:f5:7b:d3:c1:8c:c2:4e:2b:6d:6c:d4:79:0d:d8: 98:d8:17:1e:de:c4:2b:2f:4b:10:f2:86:6b:76:19: d6:e6:54:af:95:ec:50:eb:c5:df:35:5f:80:86:25: 21:b3:a2:c0:e5:30:57:78:65:5e:ca:21:b2:78:76: a7:51:3d:09:ed:8d:91:7a:be:88:4f:44:60:79:0b: 63:20:a4:40:19:99:1d:d0:80:61:ee:4c:d5:5d:08: c1:54:a2:cf:09:26:85:44:7f:56:bf:3d:91:5f:a2: 30:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BB:A5:26:1E:E8:94:54:4D:24:52:EB:90:D9:82:D8:2C:61:75:C8 X509v3 Authority Key Identifier: keyid:71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:b9:c0:44:fb:ea:f1:dc:d2:49:29:1d:76:ad:c6:8d:79:86: c8:57:a1:7a:d1:00:2e:cb:3f:64:e6:54:70:ea:af:58:6c:8a: 79:4c:16:8e:4b:17:2c:fb:cc:b0:22:23:bf:57:7a:94:e7:dc: 93:36:4a:db:9e:b8:66:f5:0c:0d:d5:60:c8:e9:63:fc:ce:18: 7e:47:0e:75:45:3e:21:65:11:2b:36:60:33:e1:e5:b2:24:ae: bf:f4:6d:66:f3:40:a9:8d:b4:67:c7:b8:23:58:4b:8b:2d:34: 87:bd:d4:f9:e9:9a:a6:80:26:35:bc:24:ad:15:4d:f3:da:6b: 59:c0:10:83:dd:de:0b:6c:95:c6:27:17:6d:89:ba:8f:3a:21: 74:1d:d3:f4:b6:42:65:a9:bb:a8:b0:fc:d1:fb:35:04:e7:0c: ee:27:61:36:02:48:88:3a:a5:58:d9:30:62:f0:30:4d:d4:db: 4d:54:63:9f:b5:66:0d:b2:8c:3e:fb:2e:16:73:1c:66:07:93: 1e:d9:db:5e:a2:30:dc:c2:15:71:96:c9:e7:97:cf:27:c1:14: 36:09:6a:01:91:d8:85:31:58:01:84:e7:f5:b9:6c:2b:17:86: f3:01:33:cf:99:bc:11:c7:03:62:11:8c:e6:09:5c:d0:31:81: ae:96:76:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKcUnMLYDS4O91PI3TIrqhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxNmY2ZDExZjBjZTYzMjMwMTgxYTczZjg1YTY2NjE3MGY3 Mzg5YmQwHhcNMjUxMjIzMDkwMTM2WhcNMjUxMjI0MDkwMTM2WjAzMTEwLwYDVQQD EygxYWJiYTUyNjFlZTg5NDU0NGQyNDUyZWI5MGQ5ODJkODJjNjE3NWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5PXx8YQjqP1ANAbkeGXzhS6+h29p INe81lpZ2rQYUOpvQrIdxApD9eu04fvnWp0hf82NzQ7nxoP6zP+noJR36VDz+a/7 tlHcnHFthyOVL8K1JrM3q+0EesCNNFfewYCToWDwJD5eFgoan9UqnjKGVLcmR8RQ O8aJNuyPTvrQkZ9XNhRildK5Hs3lhP/OFM/gK3CyxwdK9XvTwYzCTittbNR5DdiY 2Bce3sQrL0sQ8oZrdhnW5lSvlexQ68XfNV+AhiUhs6LA5TBXeGVeyiGyeHanUT0J 7Y2Rer6IT0RgeQtjIKRAGZkd0IBh7kzVXQjBVKLPCSaFRH9Wvz2RX6IwawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBq7pSYe6JRUTSRS65DZgtgsYXXIMB8GA1UdIwQY MBaAFHFvbRHwzmMjAYGnP4WmZhcPc4m9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1c5dEVmRE9ZeU1CZ2FjX2hhWm1Gdzl6aWIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9iNmEyMzMtNmY4MC00ZjRlLTkzMTIt ZTNmNDlhYzQ5NTYwLzEvY1c5dEVmRE9ZeU1CZ2FjX2hhWm1Gdzl6aWIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy9iNmEyMzMtNmY4MC00ZjRlLTkzMTItZTNmNDlhYzQ5NTYw LzEvY1c5dEVmRE9ZeU1CZ2FjX2hhWm1Gdzl6aWIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJbnARPvq 8dzSSSkddq3GjXmGyFehetEALss/ZOZUcOqvWGyKeUwWjksXLPvMsCIjv1d6lOfc kzZK2564ZvUMDdVgyOlj/M4YfkcOdUU+IWURKzZgM+HlsiSuv/RtZvNAqY20Z8e4 I1hLiy00h73U+emapoAmNbwkrRVN89prWcAQg93eC2yVxicXbYm6jzohdB3T9LZC Zam7qLD80fs1BOcM7idhNgJIiDqlWNkwYvAwTdTbTVRjn7VmDbKMPvsuFnMcZgeT HtnbXqIw3MIVcZbJ55fPJ8EUNglqAZHYhTFYAYTn9blsKxeG8wEzz5m8EccDYhGM 5glc0DGBrpZ2rQ== -----END CERTIFICATE-----Generated at Tue Dec 23 17:27:15 2025 by rpki-client