This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft File: CbtjJ836FlJNx9AzcTivMl-14tk.mft (raw, json) Hash identifier: uPlmR94B5GkEh/KV5Eo7iqfZ3uoddJn73tXjG7lfDEE= Subject key identifier: ED:A9:45:D1:D8:0C:34:45:C7:6A:14:0A:D5:15:98:62:6A:33:C7:DB Authority key identifier: 09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9 Certificate issuer: /CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9 Certificate serial: 019B3A90D2720BDE070AB06F3FCC766F264B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft Manifest number: 154B Signing time: Sat 20 Dec 2025 07:02:08 +0000 Manifest this update: Sat 20 Dec 2025 07:02:08 +0000 Manifest next update: Sun 21 Dec 2025 07:02:08 +0000 Files and hashes: 1: CbtjJ836FlJNx9AzcTivMl-14tk.crl (hash: iQGHiKo1A7BUbqhhA4o8+MqjoqWKXEINEysRnf3x0vQ=) 2: o4Fd53Yi8gf1Z2E5SaQrj9OqD_Y.roa (hash: ju/o7BILnihNNjEqI90onU7QdzoVAl2fjP/NUv+3xWQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:90:d2:72:0b:de:07:0a:b0:6f:3f:cc:76:6f:26:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9 Validity Not Before: Dec 20 07:02:08 2025 GMT Not After : Dec 21 07:02:08 2025 GMT Subject: CN=eda945d1d80c3445c76a140ad51598626a33c7db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5f:cc:38:73:4f:e2:8a:04:1f:33:62:b9:60: bc:dd:b5:45:08:8a:ef:ec:d9:e1:a7:06:ca:61:27: db:fb:85:16:3a:da:ca:20:63:9f:f5:11:d7:b6:cb: 92:8c:91:7c:60:a8:27:4b:3b:77:dd:46:2a:75:12: 21:0d:25:25:27:af:4a:28:fc:66:bb:fc:d0:41:36: 72:33:82:2e:5d:a9:23:24:f3:41:4d:be:2f:94:9d: cf:0f:b1:de:5c:00:1a:65:ea:fb:ce:8d:d1:08:c7: e0:d8:58:c8:e8:d2:ea:63:70:b1:01:d3:08:38:1a: 68:a8:04:38:45:3c:5a:c3:63:d5:11:de:86:49:8b: 7b:0e:68:fe:8d:f5:55:18:ed:97:92:e4:68:00:87: a5:f1:28:ef:33:3f:2a:e2:f7:0a:33:ef:ca:c0:b0: 46:f5:cd:64:f5:6f:c5:b2:17:61:35:52:60:5a:9d: 02:59:fe:0c:61:46:c7:f7:0a:f8:fe:7e:0a:3c:45: dd:c6:d8:9b:4f:ab:9e:7a:2e:a7:11:b0:2d:7e:e1: ab:e3:06:d1:da:f6:83:2d:a2:00:c9:6e:25:0a:ec: f7:85:50:24:b2:af:de:1f:65:dd:f7:dc:70:b8:8d: 2e:05:09:64:45:39:fe:07:f7:48:00:e7:51:37:09: 3a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A9:45:D1:D8:0C:34:45:C7:6A:14:0A:D5:15:98:62:6A:33:C7:DB X509v3 Authority Key Identifier: keyid:09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:ec:ae:1e:a1:99:45:7c:c5:dc:b8:ff:bf:dc:93:4a:48:98: 0e:18:ba:37:6d:d6:8d:b0:59:f3:07:81:e8:66:dd:e4:2e:14: 80:c0:0d:41:08:4b:34:22:ad:12:62:3c:79:5b:2f:53:52:f8: e6:4e:04:b2:77:5f:79:dd:f8:a0:8d:26:fc:47:78:b1:a8:91: 2e:0d:9e:c7:b9:1a:9c:b5:f1:30:c5:a4:7b:6b:d4:54:34:bf: 93:fa:22:36:af:e0:df:64:db:72:6f:3d:3c:38:3e:de:e7:f8: d0:f2:4f:87:05:e9:5d:56:2d:5f:87:36:0c:fb:de:7d:f8:e3: 05:22:b4:ef:7c:db:ac:27:ff:c5:ee:68:62:53:4f:cb:c4:4d: 99:af:bc:cc:59:18:a1:2e:d0:7b:8c:b7:63:b9:4f:57:e7:34: c9:66:c1:b0:ad:6f:35:a4:cf:18:7c:84:0d:07:8d:a1:4a:44: 6d:f0:de:1a:4a:62:d1:33:d5:ec:47:9f:30:3e:b5:4f:a3:a0: 2a:d9:05:5f:d2:ee:fd:18:1c:c6:1a:a5:6c:a9:12:bb:6a:cd: 39:a8:aa:b8:7a:dd:0b:4a:fe:00:48:95:49:e3:c2:42:68:c7: 1d:7f:44:cc:95:54:70:91:fb:be:df:16:30:5c:03:5a:1c:42: 6c:e3:5c:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kNJyC94HCrBvP8x2byZLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5YmI2MzI3Y2RmYTE2NTI0ZGM3ZDAzMzcxMzhhZjMyNWZi NWUyZDkwHhcNMjUxMjIwMDcwMjA4WhcNMjUxMjIxMDcwMjA4WjAzMTEwLwYDVQQD EyhlZGE5NDVkMWQ4MGMzNDQ1Yzc2YTE0MGFkNTE1OTg2MjZhMzNjN2RiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApl/MOHNP4ooEHzNiuWC83bVFCIrv 7NnhpwbKYSfb+4UWOtrKIGOf9RHXtsuSjJF8YKgnSzt33UYqdRIhDSUlJ69KKPxm u/zQQTZyM4IuXakjJPNBTb4vlJ3PD7HeXAAaZer7zo3RCMfg2FjI6NLqY3CxAdMI OBpoqAQ4RTxaw2PVEd6GSYt7Dmj+jfVVGO2XkuRoAIel8SjvMz8q4vcKM+/KwLBG 9c1k9W/FshdhNVJgWp0CWf4MYUbH9wr4/n4KPEXdxtibT6ueei6nEbAtfuGr4wbR 2vaDLaIAyW4lCuz3hVAksq/eH2Xd99xwuI0uBQlkRTn+B/dIAOdRNwk6/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO2pRdHYDDRFx2oUCtUVmGJqM8fbMB8GA1UdIwQY MBaAFAm7YyfN+hZSTcfQM3E4rzJfteLZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2J0ako4MzZGbEpOeDlBemNUaXZNbC0xNHRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9mZmZkZTEtOWQ4Ny00NDA4LWFjYzIt ZTczNjAzMjMzMDNjLzEvQ2J0ako4MzZGbEpOeDlBemNUaXZNbC0xNHRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS9mZmZkZTEtOWQ4Ny00NDA4LWFjYzItZTczNjAzMjMzMDNj LzEvQ2J0ako4MzZGbEpOeDlBemNUaXZNbC0xNHRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZOyuHqGZ RXzF3Lj/v9yTSkiYDhi6N23WjbBZ8weB6Gbd5C4UgMANQQhLNCKtEmI8eVsvU1L4 5k4Esndfed34oI0m/Ed4saiRLg2ex7kanLXxMMWke2vUVDS/k/oiNq/g32Tbcm89 PDg+3uf40PJPhwXpXVYtX4c2DPveffjjBSK073zbrCf/xe5oYlNPy8RNma+8zFkY oS7Qe4y3Y7lPV+c0yWbBsK1vNaTPGHyEDQeNoUpEbfDeGkpi0TPV7EefMD61T6Og KtkFX9Lu/RgcxhqlbKkSu2rNOaiquHrdC0r+AEiVSePCQmjHHX9EzJVUcJH7vt8W MFwDWhxCbONclg== -----END CERTIFICATE-----Generated at Sat Dec 20 09:03:27 2025 by rpki-client