This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft File: MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft (raw, json) Hash identifier: QPfN0GD/vLmVIcU6tKJl+vHaeyWN0DupcPwP32rRffY= Subject key identifier: 20:7D:F6:B2:E7:4B:41:A7:8F:1B:B9:8D:18:E3:51:36:7D:87:DA:CA Authority key identifier: 32:50:52:B7:A6:78:FA:A0:97:DC:BE:65:47:17:0C:91:52:B4:6C:F1 Certificate issuer: /CN=325052b7a678faa097dcbe6547170c9152b46cf1 Certificate serial: 019B4E4DBEE44D718337CA2DDB2576C3120C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft Manifest number: 1720 Signing time: Wed 24 Dec 2025 03:01:16 +0000 Manifest this update: Wed 24 Dec 2025 03:01:16 +0000 Manifest next update: Thu 25 Dec 2025 03:01:16 +0000 Files and hashes: 1: MlBSt6Z4-qCX3L5lRxcMkVK0bPE.crl (hash: rjTTCem//X/kdRyPOtbVZicP61FyGaS/dpDVKTArcmk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft rsync://rpki.ripe.net/repository/DEFAULT/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 03:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:4d:be:e4:4d:71:83:37:ca:2d:db:25:76:c3:12:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=325052b7a678faa097dcbe6547170c9152b46cf1 Validity Not Before: Dec 24 03:01:16 2025 GMT Not After : Dec 25 03:01:16 2025 GMT Subject: CN=207df6b2e74b41a78f1bb98d18e351367d87daca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:2b:81:2b:93:9a:f0:76:0e:9c:b3:0b:ba:7d: 33:99:2a:6f:29:f0:2f:9c:29:1c:69:ae:36:71:59: 89:ce:19:eb:a6:f7:50:25:5f:ab:8d:8c:a5:38:cd: 88:60:52:19:21:13:02:20:89:a4:9a:b2:48:95:97: 12:89:bb:b5:c9:03:7d:4a:37:76:7d:76:c9:2c:96: 45:1a:d7:1f:42:a4:a9:74:5e:28:df:22:3f:d8:18: b3:d9:e6:f7:4f:a6:4f:6b:ba:1c:c0:3b:58:ce:5a: a2:68:89:cd:e9:88:32:75:08:32:6e:95:2f:c0:3b: 0e:57:9f:2b:ad:c2:e5:c1:37:9a:8e:85:69:28:6d: 97:00:3f:2d:0a:bc:be:30:f7:91:29:eb:9c:57:13: a2:08:8d:fa:c9:90:7a:f3:fe:28:90:b3:f0:c3:3c: d4:2c:d4:08:56:05:99:78:33:58:19:8c:67:75:7b: e8:78:95:0e:c8:2a:39:90:87:cc:f6:61:cd:63:83: 6c:eb:f0:1d:f9:3f:e5:2b:0a:69:16:fc:37:ea:c9: e4:bf:41:52:53:58:f8:c6:1d:12:95:15:b9:91:15: a8:67:cb:e8:15:30:86:32:f0:f9:39:a6:76:14:3b: ca:87:b8:22:e4:a3:d7:53:fc:06:f5:9a:8e:a9:00: 79:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:7D:F6:B2:E7:4B:41:A7:8F:1B:B9:8D:18:E3:51:36:7D:87:DA:CA X509v3 Authority Key Identifier: keyid:32:50:52:B7:A6:78:FA:A0:97:DC:BE:65:47:17:0C:91:52:B4:6C:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:cd:48:b8:61:47:61:a0:7f:c4:20:26:9a:b7:a8:88:2a:a0: 77:78:b8:66:d9:7b:58:d9:bd:bc:31:c3:fb:ab:a0:3f:5e:84: b5:20:b3:70:61:a5:a5:4e:cf:70:cd:ff:0d:bb:5e:05:40:43: 99:2d:fc:f8:28:43:5e:d4:02:e1:c5:7e:c1:c9:61:4b:dc:34: a3:6a:c5:96:74:c9:71:30:31:48:38:fd:70:51:2b:c0:f7:8a: 10:19:fd:96:a7:13:8b:be:57:06:a0:4a:4d:ad:d6:1f:84:e7: 8c:de:d9:1f:49:5a:2e:41:dc:42:d1:31:44:14:91:98:72:f8: b2:d6:92:a2:f8:74:ea:9a:b4:80:9a:77:a3:02:03:6a:89:4b: 81:37:06:b1:3e:3e:0d:f9:08:4a:47:83:32:77:58:e9:ba:f3: b3:d0:68:7a:ff:c8:d7:77:73:e9:fc:4e:7e:ea:bf:a8:98:cd: 73:3a:98:71:25:cc:75:a5:45:9c:9b:c7:e8:e1:94:87:18:97: 4f:96:45:b7:26:f1:8e:72:54:46:3c:26:f6:eb:dd:55:d9:b8: f4:e6:e4:74:77:17:75:39:3f:c4:27:9c:48:b4:f6:6c:6a:33: 78:60:66:85:9d:3f:43:17:d2:88:61:90:2d:c7:30:24:6e:79: c7:57:05:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOTb7kTXGDN8ot2yV2wxIMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNTA1MmI3YTY3OGZhYTA5N2RjYmU2NTQ3MTcwYzkxNTJi NDZjZjEwHhcNMjUxMjI0MDMwMTE2WhcNMjUxMjI1MDMwMTE2WjAzMTEwLwYDVQQD EygyMDdkZjZiMmU3NGI0MWE3OGYxYmI5OGQxOGUzNTEzNjdkODdkYWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhSuBK5Oa8HYOnLMLun0zmSpvKfAv nCkcaa42cVmJzhnrpvdQJV+rjYylOM2IYFIZIRMCIImkmrJIlZcSibu1yQN9Sjd2 fXbJLJZFGtcfQqSpdF4o3yI/2Biz2eb3T6ZPa7ocwDtYzlqiaInN6YgydQgybpUv wDsOV58rrcLlwTeajoVpKG2XAD8tCry+MPeRKeucVxOiCI36yZB68/4okLPwwzzU LNQIVgWZeDNYGYxndXvoeJUOyCo5kIfM9mHNY4Ns6/Ad+T/lKwppFvw36snkv0FS U1j4xh0SlRW5kRWoZ8voFTCGMvD5OaZ2FDvKh7gi5KPXU/wG9ZqOqQB5PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCB99rLnS0Gnjxu5jRjjUTZ9h9rKMB8GA1UdIwQY MBaAFDJQUremePqgl9y+ZUcXDJFStGzxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWxCU3Q2WjQtcUNYM0w1bFJ4Y01rVkswYlBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yZmQwMjMtZTY0Ni00MDZhLTg0YTUt YmI2OTQ1YTE2ZmU3LzEvTWxCU3Q2WjQtcUNYM0w1bFJ4Y01rVkswYlBFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8yZmQwMjMtZTY0Ni00MDZhLTg0YTUtYmI2OTQ1YTE2ZmU3 LzEvTWxCU3Q2WjQtcUNYM0w1bFJ4Y01rVkswYlBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAc1IuGFH YaB/xCAmmreoiCqgd3i4Ztl7WNm9vDHD+6ugP16EtSCzcGGlpU7PcM3/DbteBUBD mS38+ChDXtQC4cV+wclhS9w0o2rFlnTJcTAxSDj9cFErwPeKEBn9lqcTi75XBqBK Ta3WH4TnjN7ZH0laLkHcQtExRBSRmHL4staSovh06pq0gJp3owIDaolLgTcGsT4+ DfkISkeDMndY6brzs9Boev/I13dz6fxOfuq/qJjNczqYcSXMdaVFnJvH6OGUhxiX T5ZFtybxjnJURjwm9uvdVdm49ObkdHcXdTk/xCecSLT2bGozeGBmhZ0/QxfSiGGQ LccwJG55x1cFzw== -----END CERTIFICATE-----Generated at Wed Dec 24 11:26:45 2025 by rpki-client