This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/5fa81b-1f3f-482d-9525-ab69da8f37ec/1/H83UEOElAi3gfKWWP5L3jo-JSG4.mft File: H83UEOElAi3gfKWWP5L3jo-JSG4.mft (raw, json) Hash identifier: +pfnSCcFc4YX5G1ynYSs3qIWO7JxC19jrq89rGae63A= Subject key identifier: CB:D5:D0:7F:83:CF:24:15:50:E1:9A:9C:06:F5:4C:57:DC:A9:85:D6 Authority key identifier: 1F:CD:D4:10:E1:25:02:2D:E0:7C:A5:96:3F:92:F7:8E:8F:89:48:6E Certificate issuer: /CN=1fcdd410e125022de07ca5963f92f78e8f89486e Certificate serial: 019B3CEC1A1FF922471456AAD238991E7F47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H83UEOElAi3gfKWWP5L3jo-JSG4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/5fa81b-1f3f-482d-9525-ab69da8f37ec/1/H83UEOElAi3gfKWWP5L3jo-JSG4.mft Manifest number: 1784 Signing time: Sat 20 Dec 2025 18:01:04 +0000 Manifest this update: Sat 20 Dec 2025 18:01:04 +0000 Manifest next update: Sun 21 Dec 2025 18:01:04 +0000 Files and hashes: 1: H83UEOElAi3gfKWWP5L3jo-JSG4.crl (hash: MJzMGRGI4AmzGamgt2gv+vx8prwe1CpStY0cyf70Yps=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/5fa81b-1f3f-482d-9525-ab69da8f37ec/1/H83UEOElAi3gfKWWP5L3jo-JSG4.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/5fa81b-1f3f-482d-9525-ab69da8f37ec/1/H83UEOElAi3gfKWWP5L3jo-JSG4.mft rsync://rpki.ripe.net/repository/DEFAULT/H83UEOElAi3gfKWWP5L3jo-JSG4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 18:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:ec:1a:1f:f9:22:47:14:56:aa:d2:38:99:1e:7f:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fcdd410e125022de07ca5963f92f78e8f89486e Validity Not Before: Dec 20 18:01:04 2025 GMT Not After : Dec 21 18:01:04 2025 GMT Subject: CN=cbd5d07f83cf241550e19a9c06f54c57dca985d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e1:52:c8:cf:a4:cf:c2:59:58:a4:9d:b1:a7: 4c:53:48:53:7c:79:0a:1d:da:68:5b:56:72:ac:a1: d5:f1:35:9d:72:00:93:aa:2e:a2:f5:3e:cc:c7:45: 7e:84:ee:37:a2:73:f2:8c:c0:7c:9b:30:30:a7:c9: d1:86:ef:7e:13:d0:15:dd:f1:00:52:ea:9c:85:3e: 13:38:fe:4b:59:62:c1:95:e1:7e:9b:d9:26:ab:ef: c7:de:87:97:35:85:b5:e2:00:52:f5:ec:c8:06:03: eb:17:17:43:6b:85:12:eb:fe:d9:c4:a5:11:c8:7d: 83:07:55:77:7b:36:fd:06:d4:8c:51:cc:73:f8:cd: 36:27:ad:a4:1a:73:22:84:49:3a:0a:48:d3:bf:76: a2:89:13:51:2f:26:e3:d6:72:87:6b:22:37:b7:0d: 7b:42:74:4f:8c:fd:f1:9e:25:11:4a:9a:2e:ab:55: b1:53:a4:23:05:fd:a1:f7:f8:a6:57:07:53:7a:b0: 2c:69:2f:9f:af:c1:1a:b2:49:a8:e7:41:cb:58:2f: e7:96:3f:db:f0:e7:f5:0a:47:60:6a:c7:08:f5:ea: b9:2a:b9:42:26:13:d8:c2:ca:76:61:59:8d:33:53: c7:94:b1:c9:93:89:03:ae:fb:a3:a3:42:16:61:1c: ca:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D5:D0:7F:83:CF:24:15:50:E1:9A:9C:06:F5:4C:57:DC:A9:85:D6 X509v3 Authority Key Identifier: keyid:1F:CD:D4:10:E1:25:02:2D:E0:7C:A5:96:3F:92:F7:8E:8F:89:48:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H83UEOElAi3gfKWWP5L3jo-JSG4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5fa81b-1f3f-482d-9525-ab69da8f37ec/1/H83UEOElAi3gfKWWP5L3jo-JSG4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5fa81b-1f3f-482d-9525-ab69da8f37ec/1/H83UEOElAi3gfKWWP5L3jo-JSG4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:01:73:fe:7b:fb:28:23:8b:c4:96:fe:76:73:e5:82:7f:73: b9:df:73:19:73:b1:5e:96:77:a8:f7:da:ce:8e:5b:b4:27:4f: 35:60:52:86:97:c0:b3:16:0f:22:62:d8:32:6e:a4:4b:29:68: f5:b2:01:63:ec:ac:4b:03:a6:37:77:57:e3:e1:71:9d:df:76: cc:6d:2b:36:ce:cd:0f:bf:f9:3e:69:f5:05:3f:a3:71:d8:ab: 99:92:5a:b4:2a:86:96:ad:f0:db:bf:9a:a6:32:28:d9:af:91: c0:43:18:f7:3a:e9:7b:25:41:ea:b4:84:d8:83:7c:d2:64:72: 3c:ea:27:64:79:03:fd:cc:01:ce:f9:c3:95:c9:5f:87:c7:c2: 57:11:90:4b:29:ec:21:1a:ed:e9:5b:a2:ad:36:87:22:a2:8a: f0:90:37:96:d7:53:cb:3d:78:2f:19:17:d6:87:e9:c2:51:d6: 14:58:94:df:f7:28:53:80:52:f2:7d:bb:ea:98:7f:ad:b2:8a: 3d:b4:ca:37:34:36:44:04:3e:0a:e6:11:c5:88:3f:6e:45:d8: bb:64:51:90:54:02:01:cf:7a:71:02:5d:32:e2:30:21:46:39: cd:ca:e1:65:6d:40:d1:ba:cc:4c:96:0f:66:eb:ec:97:0b:42: c5:87:5c:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs87Bof+SJHFFaq0jiZHn9HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmY2RkNDEwZTEyNTAyMmRlMDdjYTU5NjNmOTJmNzhlOGY4 OTQ4NmUwHhcNMjUxMjIwMTgwMTA0WhcNMjUxMjIxMTgwMTA0WjAzMTEwLwYDVQQD EyhjYmQ1ZDA3ZjgzY2YyNDE1NTBlMTlhOWMwNmY1NGM1N2RjYTk4NWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreFSyM+kz8JZWKSdsadMU0hTfHkK HdpoW1ZyrKHV8TWdcgCTqi6i9T7Mx0V+hO43onPyjMB8mzAwp8nRhu9+E9AV3fEA UuqchT4TOP5LWWLBleF+m9kmq+/H3oeXNYW14gBS9ezIBgPrFxdDa4US6/7ZxKUR yH2DB1V3ezb9BtSMUcxz+M02J62kGnMihEk6CkjTv3aiiRNRLybj1nKHayI3tw17 QnRPjP3xniURSpouq1WxU6QjBf2h9/imVwdTerAsaS+fr8Easkmo50HLWC/nlj/b 8Of1CkdgascI9eq5KrlCJhPYwsp2YVmNM1PHlLHJk4kDrvujo0IWYRzKhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMvV0H+DzyQVUOGanAb1TFfcqYXWMB8GA1UdIwQY MBaAFB/N1BDhJQIt4Hyllj+S946PiUhuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDgzVUVPRWxBaTNnZktXV1A1TDNqby1KU0c0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi81ZmE4MWItMWYzZi00ODJkLTk1MjUt YWI2OWRhOGYzN2VjLzEvSDgzVUVPRWxBaTNnZktXV1A1TDNqby1KU0c0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi81ZmE4MWItMWYzZi00ODJkLTk1MjUtYWI2OWRhOGYzN2Vj LzEvSDgzVUVPRWxBaTNnZktXV1A1TDNqby1KU0c0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASQFz/nv7 KCOLxJb+dnPlgn9zud9zGXOxXpZ3qPfazo5btCdPNWBShpfAsxYPImLYMm6kSylo 9bIBY+ysSwOmN3dX4+Fxnd92zG0rNs7ND7/5Pmn1BT+jcdirmZJatCqGlq3w27+a pjIo2a+RwEMY9zrpeyVB6rSE2IN80mRyPOonZHkD/cwBzvnDlclfh8fCVxGQSyns IRrt6VuirTaHIqKK8JA3ltdTyz14LxkX1ofpwlHWFFiU3/coU4BS8n276ph/rbKK PbTKNzQ2RAQ+CuYRxYg/bkXYu2RRkFQCAc96cQJdMuIwIUY5zcrhZW1A0brMTJYP ZuvslwtCxYdcZw== -----END CERTIFICATE-----Generated at Sun Dec 21 02:00:26 2025 by rpki-client