This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.mft File: r39NEPAZQ0EHs7XcU6yakZjFxH0.mft (raw, json) Hash identifier: 8vQjsC1/I/+dKij7hhMBHatFFeCh0xgfASmfn6dyLeo= Subject key identifier: B2:F8:C9:AE:66:F0:6D:38:11:6D:51:2B:56:9B:C0:58:33:0E:56:66 Authority key identifier: AF:7F:4D:10:F0:19:43:41:07:B3:B5:DC:53:AC:9A:91:98:C5:C4:7D Certificate issuer: /CN=af7f4d10f019434107b3b5dc53ac9a9198c5c47d Certificate serial: 019B5C096BB3EC6EF87F1CB09AF903107C1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r39NEPAZQ0EHs7XcU6yakZjFxH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.mft Manifest number: 0F87 Signing time: Fri 26 Dec 2025 19:01:19 +0000 Manifest this update: Fri 26 Dec 2025 19:01:19 +0000 Manifest next update: Sat 27 Dec 2025 19:01:19 +0000 Files and hashes: 1: r39NEPAZQ0EHs7XcU6yakZjFxH0.crl (hash: 8KLSeuh9Xx9r635voDxcx89mhfi0yL7vuBOTM3Y0SxE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.mft rsync://rpki.ripe.net/repository/DEFAULT/r39NEPAZQ0EHs7XcU6yakZjFxH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:09:6b:b3:ec:6e:f8:7f:1c:b0:9a:f9:03:10:7c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af7f4d10f019434107b3b5dc53ac9a9198c5c47d Validity Not Before: Dec 26 19:01:19 2025 GMT Not After : Dec 27 19:01:19 2025 GMT Subject: CN=b2f8c9ae66f06d38116d512b569bc058330e5666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:17:a8:54:df:0b:36:17:07:e5:b1:2c:bd:72: 28:24:95:45:06:d5:e8:71:f2:54:ab:32:9e:1b:b2: a7:2d:5b:0d:a2:35:0b:8a:2c:3f:ad:f9:46:14:0a: 39:f6:05:ab:5d:d1:37:9c:dc:a1:7a:d6:38:b4:71: 8e:eb:bf:45:5c:64:00:a3:93:b8:6e:ca:85:50:27: 54:1d:36:0f:11:a3:f9:4a:eb:8a:49:01:ac:fb:6c: f4:eb:13:49:15:e9:b1:93:39:dc:d2:a9:a3:80:d5: 85:d5:60:11:3c:fa:fa:a7:44:4f:d4:8f:a9:ec:6d: 94:6b:ff:fe:ad:8f:92:79:c3:5a:34:19:25:6c:9a: e2:4a:4c:3a:94:7b:56:38:81:15:ef:86:25:98:81: dc:b6:8b:db:75:b4:cd:90:0f:fd:1c:7e:95:53:b6: 14:36:08:d2:b3:ca:5d:c9:03:66:8f:fa:3f:1f:51: 3b:44:44:41:a6:53:fc:87:57:69:c8:14:5b:a1:92: fe:9d:44:a8:14:07:df:c3:62:7b:f5:42:c9:da:5d: ea:19:de:e8:eb:c6:19:72:b0:5e:18:e5:e9:a8:78: d1:36:ae:0d:a7:6b:f3:b6:5f:93:83:37:5a:dc:5e: 10:99:b6:6b:58:28:7c:08:5c:44:19:6a:9c:3d:f0: 46:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:F8:C9:AE:66:F0:6D:38:11:6D:51:2B:56:9B:C0:58:33:0E:56:66 X509v3 Authority Key Identifier: keyid:AF:7F:4D:10:F0:19:43:41:07:B3:B5:DC:53:AC:9A:91:98:C5:C4:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r39NEPAZQ0EHs7XcU6yakZjFxH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:30:7c:47:0f:27:53:e7:03:47:1c:cb:ab:e2:ba:74:f8:43: 30:ff:16:fd:2f:19:6b:3f:7d:a0:2b:0e:77:ba:39:a5:2b:1a: ea:d3:d3:6c:cd:63:5b:a3:fd:15:cf:b2:a3:18:d9:d7:be:1d: f7:bd:dc:99:fe:79:ab:0c:ca:cf:4e:8a:77:7f:66:c9:e4:7c: 9f:a0:4e:b8:63:a1:51:51:a9:4f:6f:29:66:40:19:6e:a2:90: f7:dc:54:aa:ff:a7:7d:e6:3e:e2:69:d4:73:f4:66:ef:f2:bc: 5a:76:06:38:a3:d9:a8:cf:fd:63:a7:c0:cf:21:a3:b1:9a:3b: 1c:0f:38:fa:14:3b:7f:0c:f1:e7:26:51:ac:0f:08:81:fc:d5: 10:b0:b2:19:9c:92:94:83:dd:27:3a:9a:26:d9:40:f0:3a:96: 55:29:1f:26:d3:ae:1e:c4:51:66:ce:0f:a4:c8:22:17:80:cf: 00:eb:c1:f7:b9:23:a2:f8:cc:4c:11:9a:cc:8a:7f:2b:02:99: 47:25:53:58:b7:77:dd:d8:1a:f5:2c:12:db:20:6b:ff:7a:54: f5:81:d1:3d:2b:50:d5:06:25:b4:c1:be:f8:74:fb:78:5e:36: 93:98:50:f1:a7:a9:f2:7b:50:08:46:2f:12:a5:2a:59:8c:62: 7f:e5:29:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcCWuz7G74fxywmvkDEHwdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmN2Y0ZDEwZjAxOTQzNDEwN2IzYjVkYzUzYWM5YTkxOThj NWM0N2QwHhcNMjUxMjI2MTkwMTE5WhcNMjUxMjI3MTkwMTE5WjAzMTEwLwYDVQQD EyhiMmY4YzlhZTY2ZjA2ZDM4MTE2ZDUxMmI1NjliYzA1ODMzMGU1NjY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApReoVN8LNhcH5bEsvXIoJJVFBtXo cfJUqzKeG7KnLVsNojULiiw/rflGFAo59gWrXdE3nNyhetY4tHGO679FXGQAo5O4 bsqFUCdUHTYPEaP5SuuKSQGs+2z06xNJFemxkznc0qmjgNWF1WARPPr6p0RP1I+p 7G2Ua//+rY+SecNaNBklbJriSkw6lHtWOIEV74YlmIHctovbdbTNkA/9HH6VU7YU NgjSs8pdyQNmj/o/H1E7RERBplP8h1dpyBRboZL+nUSoFAffw2J79ULJ2l3qGd7o 68YZcrBeGOXpqHjRNq4Np2vztl+Tgzda3F4QmbZrWCh8CFxEGWqcPfBGswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLL4ya5m8G04EW1RK1abwFgzDlZmMB8GA1UdIwQY MBaAFK9/TRDwGUNBB7O13FOsmpGYxcR9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjM5TkVQQVpRMEVIczdYY1U2eWFrWmpGeEgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9kMjc0OWQtZjc3My00NzFhLWFjYTMt NjE4ZDk1ZmUzOTAxLzEvcjM5TkVQQVpRMEVIczdYY1U2eWFrWmpGeEgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9kMjc0OWQtZjc3My00NzFhLWFjYTMtNjE4ZDk1ZmUzOTAx LzEvcjM5TkVQQVpRMEVIczdYY1U2eWFrWmpGeEgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALjB8Rw8n U+cDRxzLq+K6dPhDMP8W/S8Zaz99oCsOd7o5pSsa6tPTbM1jW6P9Fc+yoxjZ174d 973cmf55qwzKz06Kd39myeR8n6BOuGOhUVGpT28pZkAZbqKQ99xUqv+nfeY+4mnU c/Rm7/K8WnYGOKPZqM/9Y6fAzyGjsZo7HA84+hQ7fwzx5yZRrA8IgfzVELCyGZyS lIPdJzqaJtlA8DqWVSkfJtOuHsRRZs4PpMgiF4DPAOvB97kjovjMTBGazIp/KwKZ RyVTWLd33dga9SwS2yBr/3pU9YHRPStQ1QYltMG++HT7eF42k5hQ8aep8ntQCEYv EqUqWYxif+UpJg== -----END CERTIFICATE-----Generated at Fri Dec 26 23:15:21 2025 by rpki-client