This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft File: syznolxromOxucmrdrjS3DoNaAY.mft (raw, json) Hash identifier: Jc8eoPCHB3PppYOwXZID0kC+NcYbj0+wc5j2HyjcTyU= Subject key identifier: DB:4C:8A:16:71:AF:A0:D9:90:DE:37:FC:3C:AC:FF:2F:38:4E:55:65 Authority key identifier: B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06 Certificate issuer: /CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806 Certificate serial: 019B2D0CA4CE007588F41FFBF59F5CA83C4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft Manifest number: 0631 Signing time: Wed 17 Dec 2025 16:02:41 +0000 Manifest this update: Wed 17 Dec 2025 16:02:41 +0000 Manifest next update: Thu 18 Dec 2025 16:02:41 +0000 Files and hashes: 1: syznolxromOxucmrdrjS3DoNaAY.crl (hash: H7cvr99pam3GiAV3XF2xoJD8cdpgB3RWtpaw0UrJPa0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 16:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:0c:a4:ce:00:75:88:f4:1f:fb:f5:9f:5c:a8:3c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806 Validity Not Before: Dec 17 16:02:41 2025 GMT Not After : Dec 18 16:02:41 2025 GMT Subject: CN=db4c8a1671afa0d990de37fc3cacff2f384e5565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:08:32:7d:7e:4d:ca:16:03:e8:4f:8e:3e:e9: f0:2e:60:a0:2a:c4:c0:18:52:e7:bc:79:3a:8c:2a: 8e:0e:04:42:1a:f8:15:00:87:85:32:26:4f:56:d5: 26:fe:a3:30:59:75:80:ee:ed:db:c0:b6:1a:2f:17: 04:92:e5:f1:9e:56:21:93:ca:36:da:f3:4a:20:82: c1:6a:1b:4e:7e:bf:fd:07:99:0e:bd:0b:d3:1c:86: ef:0d:fc:c1:c3:c7:d8:ae:9c:ae:9c:6f:e0:12:92: 84:e4:ca:91:fd:c8:d7:89:9a:1e:f7:10:5e:3c:3e: 2d:e6:1a:b5:bd:16:39:27:e0:3e:82:5a:c3:0d:6c: 74:45:1c:c8:e1:2d:cd:f6:d6:c2:39:6b:49:21:3c: 57:5c:a6:56:1c:7c:d7:9c:b0:d1:4a:24:fe:94:a1: 9e:0b:30:44:34:e5:90:14:89:78:14:a0:59:c4:6c: a3:c2:11:52:ec:dc:08:bd:6e:e2:73:74:af:59:3a: e8:52:98:28:7c:33:81:e8:3e:d6:eb:04:6f:43:73: 69:48:62:e0:af:5d:49:76:67:e8:e2:d8:68:98:e4: bd:d6:33:bd:01:f7:59:f8:07:bd:da:ad:6b:6c:2e: 26:df:93:e5:dd:14:51:c4:7b:f1:18:5e:02:4b:e6: 59:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4C:8A:16:71:AF:A0:D9:90:DE:37:FC:3C:AC:FF:2F:38:4E:55:65 X509v3 Authority Key Identifier: keyid:B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:a2:cb:7a:7b:e8:df:b4:84:b4:db:cd:ba:25:7e:e7:40:8d: 40:35:2d:9f:5f:a7:04:ad:c4:80:a5:56:0c:5b:32:73:6e:82: 2e:fd:40:21:bd:dd:cd:33:6e:ef:f0:8b:e6:ea:29:24:19:08: cd:0d:82:b3:0b:b3:82:1e:be:ba:f0:29:82:d9:3c:40:31:50: 1c:46:e7:08:14:bb:ec:0a:66:18:35:04:ec:44:3b:77:34:f1: 13:93:90:c3:71:ed:0a:87:09:56:de:64:20:15:23:77:b6:a0: 72:43:f4:82:40:d7:1b:54:fc:b3:8d:25:64:ff:c6:e4:6a:7d: 1d:9a:7d:b4:4d:38:d2:bf:fe:0d:da:64:a7:65:23:e9:fd:9c: b0:98:97:30:b4:c7:ac:07:14:05:a3:88:08:8d:7e:0a:b9:fa: 64:b8:3d:15:6e:9a:75:b0:28:bd:26:03:ce:a2:75:49:8c:21: 8f:8d:80:64:41:14:53:44:dd:60:2f:b4:18:9f:b2:8a:88:9a: 04:dc:28:50:25:be:81:35:86:eb:fc:06:84:c6:8f:c4:a7:a4: 66:a1:17:33:05:1f:ad:ac:89:37:be:21:80:73:e9:0f:b1:1e: 68:0e:0d:98:dc:da:60:a1:30:c6:33:40:52:9a:48:65:6a:30: 9d:60:f3:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZstDKTOAHWI9B/79Z9cqDxMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMmNlN2EyNWM2YmEyNjNiMWI5YzlhYjc2YjhkMmRjM2Ew ZDY4MDYwHhcNMjUxMjE3MTYwMjQxWhcNMjUxMjE4MTYwMjQxWjAzMTEwLwYDVQQD EyhkYjRjOGExNjcxYWZhMGQ5OTBkZTM3ZmMzY2FjZmYyZjM4NGU1NTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzggyfX5NyhYD6E+OPunwLmCgKsTA GFLnvHk6jCqODgRCGvgVAIeFMiZPVtUm/qMwWXWA7u3bwLYaLxcEkuXxnlYhk8o2 2vNKIILBahtOfr/9B5kOvQvTHIbvDfzBw8fYrpyunG/gEpKE5MqR/cjXiZoe9xBe PD4t5hq1vRY5J+A+glrDDWx0RRzI4S3N9tbCOWtJITxXXKZWHHzXnLDRSiT+lKGe CzBENOWQFIl4FKBZxGyjwhFS7NwIvW7ic3SvWTroUpgofDOB6D7W6wRvQ3NpSGLg r11Jdmfo4thomOS91jO9AfdZ+Ae92q1rbC4m35Pl3RRRxHvxGF4CS+ZZGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNtMihZxr6DZkN43/Dys/y84TlVlMB8GA1UdIwQY MBaAFLMs56Jca6JjsbnJq3a40tw6DWgGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3l6bm9seHJvbU94dWNtcmRyalMzRG9OYUFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hM2E2NTMtYWVmYS00OGNkLWFhYzct MzQwM2E4NDI5N2IxLzEvc3l6bm9seHJvbU94dWNtcmRyalMzRG9OYUFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9hM2E2NTMtYWVmYS00OGNkLWFhYzctMzQwM2E4NDI5N2Ix LzEvc3l6bm9seHJvbU94dWNtcmRyalMzRG9OYUFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfqLLenvo 37SEtNvNuiV+50CNQDUtn1+nBK3EgKVWDFsyc26CLv1AIb3dzTNu7/CL5uopJBkI zQ2Cswuzgh6+uvApgtk8QDFQHEbnCBS77ApmGDUE7EQ7dzTxE5OQw3HtCocJVt5k IBUjd7agckP0gkDXG1T8s40lZP/G5Gp9HZp9tE040r/+Ddpkp2Uj6f2csJiXMLTH rAcUBaOICI1+Crn6ZLg9FW6adbAovSYDzqJ1SYwhj42AZEEUU0TdYC+0GJ+yioia BNwoUCW+gTWG6/wGhMaPxKekZqEXMwUfrayJN74hgHPpD7EeaA4NmNzaYKEwxjNA UppIZWownWDz/A== -----END CERTIFICATE-----Generated at Wed Dec 17 22:12:40 2025 by rpki-client