This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft File: shUnDjtZdrRPOt7OVwR9HgeHunU.mft (raw, json) Hash identifier: xc3CT8Iwq7CEd4RSCawGVsBVzJSv2ugNORi0XgIbEt8= Subject key identifier: 1F:25:D0:EF:5F:B1:FA:02:52:C1:E2:3C:C8:94:41:9B:1B:54:39:A8 Authority key identifier: B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75 Certificate issuer: /CN=b215270e3b5976b44f3adece57047d1e0787ba75 Certificate serial: 019B53059F3AB687BAF063AF1A821C47CEBE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft Manifest number: 1793 Signing time: Thu 25 Dec 2025 01:00:35 +0000 Manifest this update: Thu 25 Dec 2025 01:00:35 +0000 Manifest next update: Fri 26 Dec 2025 01:00:35 +0000 Files and hashes: 1: shUnDjtZdrRPOt7OVwR9HgeHunU.crl (hash: /i0Rlr781+p/UIqM0+tUR0bGDM776fnU3762wa5NnnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:53:05:9f:3a:b6:87:ba:f0:63:af:1a:82:1c:47:ce:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b215270e3b5976b44f3adece57047d1e0787ba75 Validity Not Before: Dec 25 01:00:35 2025 GMT Not After : Dec 26 01:00:35 2025 GMT Subject: CN=1f25d0ef5fb1fa0252c1e23cc894419b1b5439a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:be:10:a4:d1:83:78:63:24:e8:8e:09:7b:d6: ea:fd:18:2b:ae:22:a4:84:1a:06:ed:3f:06:12:94: 24:87:9c:00:6f:47:b5:41:c9:2f:14:a2:69:70:ca: e4:11:24:f5:2c:c1:c1:8c:6a:d6:ac:1c:88:88:77: 98:5f:82:2a:89:3a:dd:cb:0a:64:33:f1:cc:e7:a2: 27:39:a6:cc:e0:f2:9a:19:d2:ab:fe:53:d0:7a:da: 6e:1c:87:4b:a7:f6:b8:26:8e:c3:3c:77:17:ab:99: 63:b6:23:33:1c:a2:5d:f8:7c:bd:08:5e:33:21:93: 0b:93:ba:b7:82:0c:36:d2:f2:ed:4e:88:ec:5b:fb: c7:a8:fa:8a:88:42:0c:aa:93:7d:49:b7:48:cc:6c: ed:11:d8:cb:30:08:b2:fa:69:22:dd:10:c8:c2:1d: 47:96:07:e0:c1:bf:ea:6d:15:da:9f:46:09:b0:27: 9a:98:22:6f:72:67:28:e3:fe:ca:94:e8:7f:5e:1a: 41:9c:f2:58:35:ef:c6:43:e3:f5:2b:5a:9e:d9:71: 27:f8:f0:bb:5a:48:8b:e9:fe:f7:3b:6b:fc:d2:ce: e1:0a:fd:88:74:e5:9e:02:dc:62:20:c8:7b:a5:12: 3e:06:73:9c:9f:3c:f9:ec:a7:2f:dc:9b:5b:d5:bf: db:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:25:D0:EF:5F:B1:FA:02:52:C1:E2:3C:C8:94:41:9B:1B:54:39:A8 X509v3 Authority Key Identifier: keyid:B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:60:00:d2:8d:9e:8e:fa:6c:2e:79:bb:92:b0:f1:03:6c:ed: 26:84:2b:5a:e5:35:26:da:7e:cc:97:e6:d1:c4:8c:75:9c:74: b8:69:2b:8e:55:7f:80:e0:37:77:b8:f3:ba:56:4c:2b:70:20: 84:7f:d6:97:86:98:25:b1:d6:e3:e5:76:3c:d6:c5:62:79:6f: 86:78:09:fc:72:64:09:d1:c7:5c:6b:49:2c:1e:bb:eb:ee:31: ea:5e:12:39:3a:a8:77:4e:b0:8d:05:9d:4e:56:8e:97:f1:9d: 59:9a:3a:70:8d:f0:59:e2:34:12:23:52:74:53:02:bd:78:6a: 5e:6b:03:38:2e:7e:dc:5c:8f:24:16:0c:da:a1:43:ea:86:01: 30:57:3c:0f:af:26:bf:73:4d:da:db:1d:25:a4:20:bb:fa:9b: 7f:3e:cc:bd:13:cf:2e:f6:94:75:2c:aa:74:51:5f:a7:7f:48: 4d:7a:fa:71:a9:c1:f2:4a:ba:d1:69:d3:4c:55:6b:c1:4e:d7: 53:44:db:d3:38:75:df:d5:02:d5:e3:5b:35:87:32:67:a9:7b: 43:59:61:48:9e:00:13:85:db:d8:69:f2:cc:1c:7e:b4:e2:fb: 57:3b:b0:2b:f5:a5:0b:be:b8:26:28:4a:d3:a2:a3:04:53:b3: 7d:be:b1:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtTBZ86toe68GOvGoIcR86+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMTUyNzBlM2I1OTc2YjQ0ZjNhZGVjZTU3MDQ3ZDFlMDc4 N2JhNzUwHhcNMjUxMjI1MDEwMDM1WhcNMjUxMjI2MDEwMDM1WjAzMTEwLwYDVQQD EygxZjI1ZDBlZjVmYjFmYTAyNTJjMWUyM2NjODk0NDE5YjFiNTQzOWE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwL4QpNGDeGMk6I4Je9bq/RgrriKk hBoG7T8GEpQkh5wAb0e1QckvFKJpcMrkEST1LMHBjGrWrByIiHeYX4IqiTrdywpk M/HM56InOabM4PKaGdKr/lPQetpuHIdLp/a4Jo7DPHcXq5ljtiMzHKJd+Hy9CF4z IZMLk7q3ggw20vLtTojsW/vHqPqKiEIMqpN9SbdIzGztEdjLMAiy+mki3RDIwh1H lgfgwb/qbRXan0YJsCeamCJvcmco4/7KlOh/XhpBnPJYNe/GQ+P1K1qe2XEn+PC7 WkiL6f73O2v80s7hCv2IdOWeAtxiIMh7pRI+BnOcnzz57Kcv3Jtb1b/bAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB8l0O9fsfoCUsHiPMiUQZsbVDmoMB8GA1UdIwQY MBaAFLIVJw47WXa0TzrezlcEfR4Hh7p1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2hVbkRqdFpkclJQT3Q3T1Z3UjlIZ2VIdW5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9iZDU5YWUtNWI3ZC00YzI2LThlMTQt MjRiOWU4MjExODg1LzEvc2hVbkRqdFpkclJQT3Q3T1Z3UjlIZ2VIdW5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9iZDU5YWUtNWI3ZC00YzI2LThlMTQtMjRiOWU4MjExODg1 LzEvc2hVbkRqdFpkclJQT3Q3T1Z3UjlIZ2VIdW5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf2AA0o2e jvpsLnm7krDxA2ztJoQrWuU1Jtp+zJfm0cSMdZx0uGkrjlV/gOA3d7jzulZMK3Ag hH/Wl4aYJbHW4+V2PNbFYnlvhngJ/HJkCdHHXGtJLB676+4x6l4SOTqod06wjQWd TlaOl/GdWZo6cI3wWeI0EiNSdFMCvXhqXmsDOC5+3FyPJBYM2qFD6oYBMFc8D68m v3NN2tsdJaQgu/qbfz7MvRPPLvaUdSyqdFFfp39ITXr6canB8kq60WnTTFVrwU7X U0Tb0zh139UC1eNbNYcyZ6l7Q1lhSJ4AE4Xb2GnyzBx+tOL7VzuwK/WlC764JihK 06KjBFOzfb6xTg== -----END CERTIFICATE-----Generated at Thu Dec 25 03:31:45 2025 by rpki-client