This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json) Hash identifier: 2RDaajnpqLd5+OAOLp2h0pgMtjHJNR79MA+o+f8O4BY= Subject key identifier: 80:95:1A:AF:D9:53:12:7D:EA:59:01:56:21:D0:2C:8A:B8:A9:E9:7C Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603 Certificate serial: 019B3CEC75FB60AE08A07A5EF6792D6CFD03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft Manifest number: 09F2 Signing time: Sat 20 Dec 2025 18:01:28 +0000 Manifest this update: Sat 20 Dec 2025 18:01:28 +0000 Manifest next update: Sun 21 Dec 2025 18:01:28 +0000 Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: 8KJRu0kOWCNN63CUkuqshgJ1Qmzjs7Rchu4AODCohyg=) 2: mFFNgz0LoOIjeTT2_r0-wBPyYQM.roa (hash: 8oKdatfS4ydJsathXE08ETrnAsR4fEoI1qYHumOim1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:ec:75:fb:60:ae:08:a0:7a:5e:f6:79:2d:6c:fd:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603 Validity Not Before: Dec 20 18:01:28 2025 GMT Not After : Dec 21 18:01:28 2025 GMT Subject: CN=80951aafd953127dea59015621d02c8ab8a9e97c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:44:b0:4f:3c:0f:6b:78:30:7b:d8:49:34:d7: 1e:00:1b:0d:68:b7:9a:b7:48:be:34:00:94:6f:6f: a0:f0:da:5f:4f:25:c8:eb:0a:5e:f5:92:94:81:db: 50:dc:6e:99:38:dd:dc:17:34:be:2e:25:2b:a7:9f: ea:c5:fd:f6:e6:de:c6:8c:67:3f:05:3b:69:ae:12: 3f:0e:8d:5b:80:08:e7:97:46:90:0e:30:ba:a7:6d: 14:26:1d:54:93:eb:ab:25:c3:e0:6a:84:4f:a6:f3: 11:c3:6a:6f:fc:bb:7f:e1:71:2a:44:1e:db:f3:e0: 72:f4:c2:3d:ec:14:19:31:1b:ff:14:56:3d:b9:91: 1d:ed:04:dc:38:5d:9a:00:c9:3f:7e:6d:31:0c:81: 45:5c:4a:43:3a:de:20:5b:f7:30:a3:c1:2e:f3:ba: 32:68:ba:5e:83:ac:6e:77:cf:6e:73:f2:85:1a:fc: 24:7d:98:92:47:b4:9c:f1:a0:23:53:37:e4:5a:c5: e2:9f:a4:6e:2f:1c:c5:80:1c:4e:b8:47:26:24:45: 6a:42:51:be:d5:e9:50:7e:af:a5:3b:db:57:b9:d3: c6:b6:c6:61:b4:f2:92:bb:28:da:66:ac:16:6c:63: 0b:2e:d3:72:cc:c8:f1:bf:bd:a2:55:86:5d:d4:9e: 46:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:95:1A:AF:D9:53:12:7D:EA:59:01:56:21:D0:2C:8A:B8:A9:E9:7C X509v3 Authority Key Identifier: keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:50:31:4a:bf:e7:8f:0e:09:0f:b8:0f:f5:35:a2:b5:e3:69: 57:67:e0:60:67:84:65:fc:a0:46:6a:b8:64:9a:05:45:c2:4d: 67:e8:cd:a8:cb:1f:4e:59:1e:91:ec:04:e6:26:9e:4e:cd:6e: fc:9f:5c:70:8e:b5:d0:d1:d7:e3:6c:c1:f2:27:ef:01:28:86: ae:f8:de:06:f3:17:b8:ab:2f:44:34:07:ec:95:9e:b4:df:53: 08:4e:40:ed:82:e0:ca:90:3e:4b:84:bb:05:a3:00:ae:8a:ea: f7:8d:d2:7e:7f:6f:28:d8:82:09:76:67:c1:1e:38:9a:e1:bf: 66:64:43:f4:f7:29:d4:8e:38:02:94:39:d3:30:16:0b:80:2f: 90:27:4d:a6:ed:be:71:29:50:0c:cb:29:0d:80:f1:79:3e:e4: 73:c2:11:31:7c:72:1f:0e:43:04:b3:b6:df:13:7e:6d:9f:7c: a7:c4:43:93:d1:d1:73:d2:5d:64:f6:cb:81:14:69:bd:be:33: 17:8b:8d:9d:e1:ce:fc:35:fd:c3:f1:6a:4a:17:f6:a0:62:45: 46:b5:0a:6c:41:26:54:b1:59:8d:51:59:82:4f:a0:c5:de:7a: 6d:a2:98:1c:e2:bc:d1:5d:98:f3:55:59:60:70:71:ea:91:cf: 25:c8:74:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs87HX7YK4IoHpe9nktbP0DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZWFkYzdhN2VjZTQ3N2Q1ZjRkNzc3MjQzYjYwZjJiYmJi NzU2MDMwHhcNMjUxMjIwMTgwMTI4WhcNMjUxMjIxMTgwMTI4WjAzMTEwLwYDVQQD Eyg4MDk1MWFhZmQ5NTMxMjdkZWE1OTAxNTYyMWQwMmM4YWI4YTllOTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4kSwTzwPa3gwe9hJNNceABsNaLea t0i+NACUb2+g8NpfTyXI6wpe9ZKUgdtQ3G6ZON3cFzS+LiUrp5/qxf325t7GjGc/ BTtprhI/Do1bgAjnl0aQDjC6p20UJh1Uk+urJcPgaoRPpvMRw2pv/Lt/4XEqRB7b 8+By9MI97BQZMRv/FFY9uZEd7QTcOF2aAMk/fm0xDIFFXEpDOt4gW/cwo8Eu87oy aLpeg6xud89uc/KFGvwkfZiSR7Sc8aAjUzfkWsXin6RuLxzFgBxOuEcmJEVqQlG+ 1elQfq+lO9tXudPGtsZhtPKSuyjaZqwWbGMLLtNyzMjxv72iVYZd1J5GsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFICVGq/ZUxJ96lkBViHQLIq4qel8MB8GA1UdIwQY MBaAFHLq3Hp+zkd9X013ckO2Dyu7t1YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjkt NDczODUxNzA5YzU4LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjktNDczODUxNzA5YzU4 LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhlAxSr/n jw4JD7gP9TWiteNpV2fgYGeEZfygRmq4ZJoFRcJNZ+jNqMsfTlkekewE5iaeTs1u /J9ccI610NHX42zB8ifvASiGrvjeBvMXuKsvRDQH7JWetN9TCE5A7YLgypA+S4S7 BaMArorq943Sfn9vKNiCCXZnwR44muG/ZmRD9Pcp1I44ApQ50zAWC4AvkCdNpu2+ cSlQDMspDYDxeT7kc8IRMXxyHw5DBLO23xN+bZ98p8RDk9HRc9JdZPbLgRRpvb4z F4uNneHO/DX9w/FqShf2oGJFRrUKbEEmVLFZjVFZgk+gxd56baKYHOK80V2Y81VZ YHBx6pHPJch07g== -----END CERTIFICATE-----Generated at Sat Dec 20 22:35:54 2025 by rpki-client