This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft File: 95d69YDIUMyL-QZJ-b2opqSL85Y.mft (raw, json) Hash identifier: 3siMqYiMl/hQXJ13XTwrL1FRudu4j1rHwB/nKVO0lMM= Subject key identifier: F0:B7:6D:BE:60:92:BD:3A:6B:BC:8F:8E:44:EE:C3:8B:60:13:B2:68 Authority key identifier: F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96 Certificate issuer: /CN=f7977af580c850cc8bf90649f9bda8a6a48bf396 Certificate serial: 019B5ED35E2BB769B6953E131D84E299140D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft Manifest number: 0E1D Signing time: Sat 27 Dec 2025 08:01:09 +0000 Manifest this update: Sat 27 Dec 2025 08:01:09 +0000 Manifest next update: Sun 28 Dec 2025 08:01:09 +0000 Files and hashes: 1: 95d69YDIUMyL-QZJ-b2opqSL85Y.crl (hash: XqmKXRU4H+hva2M3TLgFFYY5lLqfmaZ3SYjidWV9Xa0=) 2: cmLjyeJCay-rIpV13cL4nS3umqA.roa (hash: zv80BsoFgYMaUhk2eqxE9kG1WrpCEraiiqsDzPaa4r8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 08:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5e:d3:5e:2b:b7:69:b6:95:3e:13:1d:84:e2:99:14:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7977af580c850cc8bf90649f9bda8a6a48bf396 Validity Not Before: Dec 27 08:01:09 2025 GMT Not After : Dec 28 08:01:09 2025 GMT Subject: CN=f0b76dbe6092bd3a6bbc8f8e44eec38b6013b268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a4:2f:20:05:52:ca:55:10:ad:12:6e:17:c7: e5:27:a4:f4:9d:6d:36:a2:c6:96:8a:44:c2:9a:c5: ce:2a:a6:b6:c3:d9:04:fd:1b:0e:c2:c2:1a:a8:d6: e0:9a:94:41:09:3b:85:ee:f8:71:d5:7b:e6:ed:c7: 08:aa:df:87:6e:8f:89:54:7a:be:dc:74:a9:76:7f: 8e:6d:3f:e5:50:47:41:7e:e6:8c:20:56:55:70:c6: bd:ed:ec:d4:aa:99:7e:3d:5e:4c:b8:42:ff:56:51: 67:45:8b:9d:78:e0:cb:36:bc:ac:2f:c7:01:dc:13: 05:6c:9c:9c:f4:7a:7b:eb:a8:aa:4b:20:85:f0:f9: dc:a7:94:16:1c:b3:03:74:bb:85:82:6c:2b:dc:e7: 18:ab:16:e3:31:07:21:f5:fe:8b:5e:1c:c2:ac:c8: 2d:bf:76:cd:5a:cd:4e:aa:81:80:72:c1:a0:47:3c: b8:e5:7e:50:41:75:e0:9c:c9:57:6b:0e:c1:b5:72: 42:44:47:31:21:98:3a:64:ac:9e:8a:92:32:f7:7c: 46:e7:2e:73:fa:d8:36:29:55:1b:56:de:72:e4:85: 42:87:9a:d0:b2:a7:54:45:55:79:7c:ac:83:47:0d: a4:a6:66:9d:e3:cd:0b:99:d0:c9:d0:a0:dc:42:8a: 03:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B7:6D:BE:60:92:BD:3A:6B:BC:8F:8E:44:EE:C3:8B:60:13:B2:68 X509v3 Authority Key Identifier: keyid:F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:74:c4:9d:e5:d7:4f:84:0d:d0:45:3b:8d:2f:ad:cc:34:57: fa:de:af:8f:c0:d2:08:a8:a9:72:be:11:15:69:9c:10:d2:5d: 58:4f:ac:3c:cd:03:74:f2:ce:57:58:d8:ec:fb:65:af:5e:ad: 7e:8e:82:06:f9:ff:d8:8a:c5:18:50:1c:d6:65:36:25:0a:1e: ff:a7:8c:79:08:a1:e2:d1:2b:95:4b:31:08:4f:6f:d8:aa:44: 3a:5c:f8:6a:b7:5a:4c:b6:81:90:2f:b9:d6:b4:d4:52:85:85: 2c:71:ca:74:1d:99:91:9c:63:b7:21:6c:56:0f:09:71:e3:33: 3d:75:93:c6:a8:c1:a0:e5:ac:14:f1:a2:8a:aa:bc:1e:db:92: ba:9e:05:d6:a8:f1:9f:4e:7c:86:1f:dd:dc:a0:d3:f3:8f:59: 8f:ba:42:70:18:a2:f4:5f:51:77:77:83:4e:d4:b8:ec:01:75: 05:38:25:5f:1e:a6:d9:45:0f:c6:e1:c5:b7:09:ae:e2:0c:3f: 02:3e:02:fb:4d:c4:1f:d6:f8:5d:72:c9:c7:bc:86:62:47:36: a0:49:76:31:cd:ee:62:2b:39:4f:1e:57:7e:e4:9b:55:0b:1a: 33:4a:77:78:85:53:b6:cf:4a:55:98:38:3f:62:1f:e5:50:dd: bd:98:0f:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZte014rt2m2lT4THYTimRQNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3OTc3YWY1ODBjODUwY2M4YmY5MDY0OWY5YmRhOGE2YTQ4 YmYzOTYwHhcNMjUxMjI3MDgwMTA5WhcNMjUxMjI4MDgwMTA5WjAzMTEwLwYDVQQD EyhmMGI3NmRiZTYwOTJiZDNhNmJiYzhmOGU0NGVlYzM4YjYwMTNiMjY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAraQvIAVSylUQrRJuF8flJ6T0nW02 osaWikTCmsXOKqa2w9kE/RsOwsIaqNbgmpRBCTuF7vhx1Xvm7ccIqt+Hbo+JVHq+ 3HSpdn+ObT/lUEdBfuaMIFZVcMa97ezUqpl+PV5MuEL/VlFnRYudeODLNrysL8cB 3BMFbJyc9Hp766iqSyCF8Pncp5QWHLMDdLuFgmwr3OcYqxbjMQch9f6LXhzCrMgt v3bNWs1OqoGAcsGgRzy45X5QQXXgnMlXaw7BtXJCREcxIZg6ZKyeipIy93xG5y5z +tg2KVUbVt5y5IVCh5rQsqdURVV5fKyDRw2kpmad480LmdDJ0KDcQooDTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPC3bb5gkr06a7yPjkTuw4tgE7JoMB8GA1UdIwQY MBaAFPeXevWAyFDMi/kGSfm9qKaki/OWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTVkNjlZRElVTXlMLVFaSi1iMm9wcVNMODVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9iMzYxZWYtNWY2OS00YmNiLTk4M2Mt MjExMjgwMjcyNTVkLzEvOTVkNjlZRElVTXlMLVFaSi1iMm9wcVNMODVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi9iMzYxZWYtNWY2OS00YmNiLTk4M2MtMjExMjgwMjcyNTVk LzEvOTVkNjlZRElVTXlMLVFaSi1iMm9wcVNMODVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn3TEneXX T4QN0EU7jS+tzDRX+t6vj8DSCKipcr4RFWmcENJdWE+sPM0DdPLOV1jY7Ptlr16t fo6CBvn/2IrFGFAc1mU2JQoe/6eMeQih4tErlUsxCE9v2KpEOlz4ardaTLaBkC+5 1rTUUoWFLHHKdB2ZkZxjtyFsVg8JceMzPXWTxqjBoOWsFPGiiqq8HtuSup4F1qjx n058hh/d3KDT849Zj7pCcBii9F9Rd3eDTtS47AF1BTglXx6m2UUPxuHFtwmu4gw/ Aj4C+03EH9b4XXLJx7yGYkc2oEl2Mc3uYis5Tx5XfuSbVQsaM0p3eIVTts9KVZg4 P2If5VDdvZgPbg== -----END CERTIFICATE-----Generated at Sat Dec 27 10:52:13 2025 by rpki-client