This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft File: cc2ljxUk2CM2224M8qKf-vLaifg.mft (raw, json) Hash identifier: L9PgOh5/kgmoNU9cPZAZ/DX5zhcokMYCahmyVo8WBCI= Subject key identifier: 44:9A:67:04:18:CE:D2:4E:B6:88:35:5E:30:5E:AA:E4:89:79:7A:99 Authority key identifier: 71:CD:A5:8F:15:24:D8:23:36:DB:6E:0C:F2:A2:9F:FA:F2:DA:89:F8 Certificate issuer: /CN=71cda58f1524d82336db6e0cf2a29ffaf2da89f8 Certificate serial: 019B32D650C70DAFF29C3310494ECE779144 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft Manifest number: 0F9E Signing time: Thu 18 Dec 2025 19:01:04 +0000 Manifest this update: Thu 18 Dec 2025 19:01:04 +0000 Manifest next update: Fri 19 Dec 2025 19:01:04 +0000 Files and hashes: 1: cc2ljxUk2CM2224M8qKf-vLaifg.crl (hash: fQoWalG4kiDuK1+Rr1fOxifnjlP8t8p0EUPbo8z2OeI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.crl rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:50:c7:0d:af:f2:9c:33:10:49:4e:ce:77:91:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71cda58f1524d82336db6e0cf2a29ffaf2da89f8 Validity Not Before: Dec 18 19:01:04 2025 GMT Not After : Dec 19 19:01:04 2025 GMT Subject: CN=449a670418ced24eb688355e305eaae489797a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:20:d4:4a:2d:62:dd:77:ea:21:cd:5c:93:c6: d9:17:4d:22:ef:0e:54:83:f3:33:e3:42:ca:cf:4e: ab:10:59:03:26:60:3f:de:4b:e9:67:90:5b:ff:1e: b7:dc:e1:90:36:da:76:6d:bf:3d:a4:4c:13:9b:18: cf:ff:57:80:d6:a7:7f:0b:ab:00:51:f2:7c:6b:86: d9:5b:c5:86:98:c9:53:aa:02:b9:b8:69:7a:a8:0a: 0a:66:4f:bc:3e:98:25:18:bd:91:47:73:bd:de:50: e9:ef:8a:3e:2d:02:5b:df:c3:c9:7a:57:7d:b5:d3: 4b:ca:71:28:e5:34:6b:a5:de:4e:20:9c:1d:18:51: 75:97:13:11:e1:19:ec:00:53:28:ea:90:a4:95:7f: d0:f8:27:4d:16:23:6b:d6:33:d2:81:22:30:2d:2b: 40:11:16:d3:f8:04:56:cc:58:a3:15:8b:8a:f5:1c: c9:e2:65:0e:64:fe:94:72:4f:2d:a4:0d:53:03:47: 48:15:b4:31:ab:c6:c7:9d:6b:a6:8a:fa:33:35:fa: 47:a9:15:df:cd:3e:b8:b0:76:51:3b:ef:ac:96:69: b7:73:b5:27:68:e8:52:f2:66:9c:cc:ae:ec:8b:fe: 03:1b:31:f8:69:2a:70:01:87:e7:dc:86:5e:46:8c: aa:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9A:67:04:18:CE:D2:4E:B6:88:35:5E:30:5E:AA:E4:89:79:7A:99 X509v3 Authority Key Identifier: keyid:71:CD:A5:8F:15:24:D8:23:36:DB:6E:0C:F2:A2:9F:FA:F2:DA:89:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:3f:1e:d7:fe:6c:a4:ae:12:d6:72:21:b5:33:9b:43:71:45: 59:6d:45:92:bd:7d:00:6c:fd:9d:c6:46:cd:36:df:82:5b:81: ab:1e:f5:0b:85:6e:f9:3f:1d:90:9d:a5:a8:7c:93:48:d6:bf: 94:26:62:58:91:00:2f:bd:ad:73:9a:e4:de:20:19:c4:c6:1c: 2b:d2:30:29:3c:12:77:e0:a7:27:9b:53:6d:95:bb:80:af:f5: 27:5f:a8:ab:45:e6:bc:7c:d6:cd:b6:e1:2f:44:a5:fa:f7:fd: 05:3c:ce:dd:57:8e:f6:00:18:43:56:9d:04:84:66:10:80:e8: 0a:e3:44:31:2c:6d:dd:68:b3:28:34:be:cd:a1:19:64:e1:5c: 76:c3:6e:73:d7:e1:03:4c:ca:c9:a3:3a:42:01:d0:e3:87:70: 47:7b:2c:2a:0b:3f:33:4b:ac:7d:66:d3:89:6a:65:2c:60:5f: 07:71:0e:51:22:a1:c8:02:aa:b4:3e:87:ec:46:49:fa:33:cb: ed:be:8c:65:11:bf:94:fa:2c:9f:2e:db:98:fc:83:c9:c6:ed: bb:39:50:25:67:36:bf:03:db:41:dd:89:c6:09:df:56:9f:cd: e8:e4:8d:1a:94:8a:00:f6:d3:60:c1:32:e5:90:b6:4c:29:98: c1:37:6f:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1lDHDa/ynDMQSU7Od5FEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxY2RhNThmMTUyNGQ4MjMzNmRiNmUwY2YyYTI5ZmZhZjJk YTg5ZjgwHhcNMjUxMjE4MTkwMTA0WhcNMjUxMjE5MTkwMTA0WjAzMTEwLwYDVQQD Eyg0NDlhNjcwNDE4Y2VkMjRlYjY4ODM1NWUzMDVlYWFlNDg5Nzk3YTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCDUSi1i3XfqIc1ck8bZF00i7w5U g/Mz40LKz06rEFkDJmA/3kvpZ5Bb/x633OGQNtp2bb89pEwTmxjP/1eA1qd/C6sA UfJ8a4bZW8WGmMlTqgK5uGl6qAoKZk+8PpglGL2RR3O93lDp74o+LQJb38PJeld9 tdNLynEo5TRrpd5OIJwdGFF1lxMR4RnsAFMo6pCklX/Q+CdNFiNr1jPSgSIwLStA ERbT+ARWzFijFYuK9RzJ4mUOZP6Uck8tpA1TA0dIFbQxq8bHnWumivozNfpHqRXf zT64sHZRO++slmm3c7UnaOhS8maczK7si/4DGzH4aSpwAYfn3IZeRoyqNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFESaZwQYztJOtog1XjBequSJeXqZMB8GA1UdIwQY MBaAFHHNpY8VJNgjNttuDPKin/ry2on4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2MybGp4VWsyQ00yMjI0TThxS2YtdkxhaWZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hMzU1NDAtYWE1OC00YTNjLWFiNDUt YmMyZDE3ZmU4YmViLzEvY2MybGp4VWsyQ00yMjI0TThxS2YtdkxhaWZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hMzU1NDAtYWE1OC00YTNjLWFiNDUtYmMyZDE3ZmU4YmVi LzEvY2MybGp4VWsyQ00yMjI0TThxS2YtdkxhaWZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnz8e1/5s pK4S1nIhtTObQ3FFWW1Fkr19AGz9ncZGzTbfgluBqx71C4Vu+T8dkJ2lqHyTSNa/ lCZiWJEAL72tc5rk3iAZxMYcK9IwKTwSd+CnJ5tTbZW7gK/1J1+oq0XmvHzWzbbh L0Sl+vf9BTzO3VeO9gAYQ1adBIRmEIDoCuNEMSxt3WizKDS+zaEZZOFcdsNuc9fh A0zKyaM6QgHQ44dwR3ssKgs/M0usfWbTiWplLGBfB3EOUSKhyAKqtD6H7EZJ+jPL 7b6MZRG/lPosny7bmPyDycbtuzlQJWc2vwPbQd2JxgnfVp/N6OSNGpSKAPbTYMEy 5ZC2TCmYwTdvEQ== -----END CERTIFICATE-----Generated at Fri Dec 19 02:21:11 2025 by rpki-client