This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft File: 81TlIOe7fhP1Ms7PBagtK3l5UqI.mft (raw, json) Hash identifier: F/P/qAvgdEUmf+SruMZKigzvWjtSl67SJiQDNVfuEQ4= Subject key identifier: 7E:F2:00:14:F7:55:70:69:37:24:23:C9:18:B5:12:B9:83:6C:39:AA Authority key identifier: F3:54:E5:20:E7:BB:7E:13:F5:32:CE:CF:05:A8:2D:2B:79:79:52:A2 Certificate issuer: /CN=f354e520e7bb7e13f532cecf05a82d2b797952a2 Certificate serial: 019B40C93F277AFFA7190EDE68073148F3BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft Manifest number: 0CE2 Signing time: Sun 21 Dec 2025 12:01:29 +0000 Manifest this update: Sun 21 Dec 2025 12:01:29 +0000 Manifest next update: Mon 22 Dec 2025 12:01:29 +0000 Files and hashes: 1: 81TlIOe7fhP1Ms7PBagtK3l5UqI.crl (hash: QcOHuGwPTB4UdYExqCm7FCGavvP57+od6xKLJdZx15w=) 2: 9R7qE2JixKC-vbV8JeqORUi7upg.roa (hash: qMwpouu0cneK+WPX+gDmDCVwU3yx/zaa1DbEZEykJcU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 12:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:c9:3f:27:7a:ff:a7:19:0e:de:68:07:31:48:f3:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f354e520e7bb7e13f532cecf05a82d2b797952a2 Validity Not Before: Dec 21 12:01:29 2025 GMT Not After : Dec 22 12:01:29 2025 GMT Subject: CN=7ef20014f7557069372423c918b512b9836c39aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:34:e9:34:93:eb:53:fa:60:ef:54:ed:e5:d1: 4b:65:ab:b0:2a:d0:7b:35:a7:f4:de:ab:3e:11:75: 41:20:fb:74:38:f1:ef:77:00:03:fa:bc:12:64:35: 5f:53:18:b9:83:a3:cf:1b:69:b4:b7:60:ae:a5:95: 53:a3:9a:86:3b:c1:98:f8:71:d0:46:70:0d:d7:66: 65:bc:ef:91:64:1a:12:4e:fa:c5:da:e6:36:66:f1: cc:c3:7a:61:fd:0a:02:a4:a5:f3:1e:27:c4:30:19: 98:09:c3:27:2c:0c:89:8a:95:13:d0:03:c2:c5:74: 45:e6:a7:d9:83:a2:34:66:ee:ce:25:ab:f1:78:9b: 8b:78:1d:ad:8b:f6:89:af:1a:9f:0f:10:b7:d4:b8: 6d:45:74:3b:d2:c7:01:bf:df:bd:30:4c:95:7f:45: 0e:fb:c0:55:97:a8:00:9b:99:c7:b2:db:2d:d9:cb: cb:62:46:0b:5f:68:ac:2f:66:84:74:78:13:f9:6b: a5:54:0a:b4:c6:63:12:3e:c0:5a:26:89:39:d0:3f: 36:d1:8d:ca:a3:4a:59:5f:6c:2b:f0:35:9e:e8:c2: 0f:46:9c:15:26:f8:f8:e6:f4:70:5d:53:b6:21:77: c4:5a:74:69:07:2e:86:c9:f0:55:ea:df:39:99:ea: 98:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F2:00:14:F7:55:70:69:37:24:23:C9:18:B5:12:B9:83:6C:39:AA X509v3 Authority Key Identifier: keyid:F3:54:E5:20:E7:BB:7E:13:F5:32:CE:CF:05:A8:2D:2B:79:79:52:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:ef:3a:dc:31:7c:47:6c:8a:78:d4:50:6a:3b:7c:84:51:00: 03:aa:a2:d7:30:19:73:46:4a:28:8a:f5:82:0e:92:d6:fd:16: 04:a4:01:0d:27:90:fb:7e:96:76:41:20:db:61:0c:35:39:1c: 9a:30:fe:3e:c9:8f:33:f7:93:8b:50:9e:5b:df:e2:bb:e7:48: c0:8b:5b:2c:84:ae:68:df:52:e8:51:e1:6d:ee:a6:cb:6f:b8: 9d:7a:ff:5e:c0:f7:a4:14:85:af:e6:fc:de:f6:0c:6c:fd:48: e9:88:a6:ce:07:5b:82:65:8f:2a:bc:db:bb:b7:4a:ca:22:86: a1:48:a3:45:8a:a2:d4:39:88:fc:9d:e7:34:0c:d8:51:b6:9d: 62:73:c9:43:7a:bc:c4:db:46:e6:42:1c:21:8e:f3:e0:c7:3e: bf:b9:6d:60:fd:5d:ed:e3:89:1f:99:58:e9:4d:81:36:bd:20: 06:a4:bf:3b:ee:a9:69:7f:94:bb:7c:ad:71:6b:d2:cd:36:58: 00:12:e9:6c:12:9f:e9:b9:73:20:cd:c0:0a:53:38:36:82:7f: e5:62:78:f8:6d:cc:4e:9f:89:15:3b:8c:23:64:fc:65:23:72: 67:dd:70:dc:f7:c1:ab:2d:27:e4:3c:93:73:31:73:e0:a3:7c: 80:e2:92:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAyT8nev+nGQ7eaAcxSPO6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzNTRlNTIwZTdiYjdlMTNmNTMyY2VjZjA1YTgyZDJiNzk3 OTUyYTIwHhcNMjUxMjIxMTIwMTI5WhcNMjUxMjIyMTIwMTI5WjAzMTEwLwYDVQQD Eyg3ZWYyMDAxNGY3NTU3MDY5MzcyNDIzYzkxOGI1MTJiOTgzNmMzOWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTTpNJPrU/pg71Tt5dFLZauwKtB7 Naf03qs+EXVBIPt0OPHvdwAD+rwSZDVfUxi5g6PPG2m0t2CupZVTo5qGO8GY+HHQ RnAN12ZlvO+RZBoSTvrF2uY2ZvHMw3ph/QoCpKXzHifEMBmYCcMnLAyJipUT0APC xXRF5qfZg6I0Zu7OJavxeJuLeB2ti/aJrxqfDxC31LhtRXQ70scBv9+9MEyVf0UO +8BVl6gAm5nHstst2cvLYkYLX2isL2aEdHgT+WulVAq0xmMSPsBaJok50D820Y3K o0pZX2wr8DWe6MIPRpwVJvj45vRwXVO2IXfEWnRpBy6GyfBV6t85meqYxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH7yABT3VXBpNyQjyRi1ErmDbDmqMB8GA1UdIwQY MBaAFPNU5SDnu34T9TLOzwWoLSt5eVKiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvODFUbElPZTdmaFAxTXM3UEJhZ3RLM2w1VXFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9jMmY2OWYtZWU4ZS00NzVhLTkwNzkt Y2E1MWZiMzBlZGRmLzEvODFUbElPZTdmaFAxTXM3UEJhZ3RLM2w1VXFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS9jMmY2OWYtZWU4ZS00NzVhLTkwNzktY2E1MWZiMzBlZGRm LzEvODFUbElPZTdmaFAxTXM3UEJhZ3RLM2w1VXFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAu863DF8 R2yKeNRQajt8hFEAA6qi1zAZc0ZKKIr1gg6S1v0WBKQBDSeQ+36WdkEg22EMNTkc mjD+PsmPM/eTi1CeW9/iu+dIwItbLISuaN9S6FHhbe6my2+4nXr/XsD3pBSFr+b8 3vYMbP1I6YimzgdbgmWPKrzbu7dKyiKGoUijRYqi1DmI/J3nNAzYUbadYnPJQ3q8 xNtG5kIcIY7z4Mc+v7ltYP1d7eOJH5lY6U2BNr0gBqS/O+6paX+Uu3ytcWvSzTZY ABLpbBKf6blzIM3AClM4NoJ/5WJ4+G3MTp+JFTuMI2T8ZSNyZ91w3PfBqy0n5DyT czFz4KN8gOKSHw== -----END CERTIFICATE-----Generated at Sun Dec 21 15:20:28 2025 by rpki-client