This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft File: 31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft (raw, json) Hash identifier: IrUCE/pQk82c8aaVK8KFXDlXJwGrOvb4QFTK7EyeTUc= Subject key identifier: 54:14:E3:B2:51:C0:59:A9:36:A1:E5:E5:8A:8F:DD:E8:2E:5C:0E:CF Authority key identifier: DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E Certificate issuer: /CN=df52526f3d282765325c15a6e5765d7cd7f1f89e Certificate serial: 019B337AD13F466EFA77BCEEB855C6E58A99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft Manifest number: 0EEB Signing time: Thu 18 Dec 2025 22:00:45 +0000 Manifest this update: Thu 18 Dec 2025 22:00:45 +0000 Manifest next update: Fri 19 Dec 2025 22:00:45 +0000 Files and hashes: 1: 31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl (hash: 6v28M2GokB0fsU5v8GQNEDntdysecwlmes1bhYfjPCM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:7a:d1:3f:46:6e:fa:77:bc:ee:b8:55:c6:e5:8a:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df52526f3d282765325c15a6e5765d7cd7f1f89e Validity Not Before: Dec 18 22:00:45 2025 GMT Not After : Dec 19 22:00:45 2025 GMT Subject: CN=5414e3b251c059a936a1e5e58a8fdde82e5c0ecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:13:72:a1:b2:1a:5c:0c:e8:cb:8a:01:fb:11: 24:f4:5e:e4:df:93:86:5a:51:9a:d8:1a:ff:11:1e: 2f:20:55:2c:c7:43:b1:dd:4c:f7:72:48:77:78:fd: e0:fc:c7:b6:50:87:60:24:5a:7e:2a:f2:2d:64:d9: 44:fe:0e:f0:3b:1b:19:d2:b8:24:5a:ec:4c:b2:1e: be:8b:b1:b6:cd:87:25:4a:06:4c:d8:85:a0:1e:ed: 75:b6:0b:65:10:e0:61:8a:3c:2d:ce:be:00:77:c4: 37:b6:48:64:9b:ae:d6:a7:6f:f7:84:d4:d1:4d:42: 22:cf:01:3d:1a:27:d3:91:b0:7e:2b:be:7e:a2:74: dd:90:a3:e0:0d:fe:2c:20:d2:d7:c7:23:39:1c:7b: 0e:34:da:4c:9f:a2:30:d0:5b:06:09:10:11:b8:79: 23:21:2f:63:85:ad:7e:0a:d8:52:1d:0c:da:a8:17: 2c:3c:ae:3b:81:10:23:79:88:0e:de:cf:e8:61:01: ba:6f:92:37:06:a7:eb:07:ec:c1:33:dd:79:19:2c: 93:5c:6b:74:bf:86:79:72:89:64:af:8a:e3:12:0b: cf:bb:d8:22:69:4e:0f:38:53:8f:31:95:9e:9e:f1: 2e:3a:5e:2c:65:2d:b9:ba:84:30:ca:82:f1:90:f3: bd:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:14:E3:B2:51:C0:59:A9:36:A1:E5:E5:8A:8F:DD:E8:2E:5C:0E:CF X509v3 Authority Key Identifier: keyid:DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:0d:c9:88:96:d4:fc:aa:88:c9:4f:ca:4f:54:9c:5b:19:3a: c8:4b:de:8f:60:bc:ba:b7:39:ef:0a:46:20:fa:58:5f:bb:b9: 4f:a8:0c:6b:49:92:8f:9a:42:05:80:5b:56:35:84:e2:76:af: 75:5c:a7:41:01:f9:c2:74:a7:1d:3e:d7:54:27:3f:36:55:16: 55:b7:52:f4:f5:ef:72:4b:bc:de:f4:ba:77:b4:13:98:76:3b: 88:1f:2c:18:0d:bc:83:f2:1d:69:e6:73:0a:f2:9a:f3:a6:4a: 28:20:20:f0:e5:2b:9f:2d:b0:f2:dd:90:4f:e7:a8:d5:c9:30: 6a:8f:fe:6a:89:8d:5c:a5:b7:68:eb:3a:13:e6:e3:df:16:7b: b7:75:5a:6b:d1:47:05:c2:6d:4c:6f:08:82:c3:eb:dd:ad:0e: 11:b4:3f:89:95:6b:c3:6a:cb:1d:09:a0:f2:c3:d3:84:b7:b8: 1e:00:be:26:43:e6:9e:ba:cf:03:aa:4d:95:ba:b9:d8:4c:39: 1a:2c:19:bb:26:35:6a:b0:d3:80:0a:96:ac:7a:a3:8f:2a:b5: 3e:c3:92:58:14:cb:27:2e:37:eb:84:6d:e6:bc:7b:ed:2a:2c: 00:50:20:83:11:58:ba:a1:0b:2a:44:7c:4c:ab:2a:f9:62:38: 95:14:80:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszetE/Rm76d7zuuFXG5YqZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmNTI1MjZmM2QyODI3NjUzMjVjMTVhNmU1NzY1ZDdjZDdm MWY4OWUwHhcNMjUxMjE4MjIwMDQ1WhcNMjUxMjE5MjIwMDQ1WjAzMTEwLwYDVQQD Eyg1NDE0ZTNiMjUxYzA1OWE5MzZhMWU1ZTU4YThmZGRlODJlNWMwZWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhNyobIaXAzoy4oB+xEk9F7k35OG WlGa2Br/ER4vIFUsx0Ox3Uz3ckh3eP3g/Me2UIdgJFp+KvItZNlE/g7wOxsZ0rgk WuxMsh6+i7G2zYclSgZM2IWgHu11tgtlEOBhijwtzr4Ad8Q3tkhkm67Wp2/3hNTR TUIizwE9GifTkbB+K75+onTdkKPgDf4sINLXxyM5HHsONNpMn6Iw0FsGCRARuHkj IS9jha1+CthSHQzaqBcsPK47gRAjeYgO3s/oYQG6b5I3BqfrB+zBM915GSyTXGt0 v4Z5colkr4rjEgvPu9giaU4POFOPMZWenvEuOl4sZS25uoQwyoLxkPO9JQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFQU47JRwFmpNqHl5YqP3eguXA7PMB8GA1UdIwQY MBaAFN9SUm89KCdlMlwVpuV2XXzX8fieMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzFKU2J6MG9KMlV5WEJXbTVYWmRmTmZ4LUo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8wYmY2ZGItY2M3ZC00Njk3LTlhZWMt NjIzZTZjOWM0NDY0LzEvMzFKU2J6MG9KMlV5WEJXbTVYWmRmTmZ4LUo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8wYmY2ZGItY2M3ZC00Njk3LTlhZWMtNjIzZTZjOWM0NDY0 LzEvMzFKU2J6MG9KMlV5WEJXbTVYWmRmTmZ4LUo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMA3JiJbU /KqIyU/KT1ScWxk6yEvej2C8urc57wpGIPpYX7u5T6gMa0mSj5pCBYBbVjWE4nav dVynQQH5wnSnHT7XVCc/NlUWVbdS9PXvcku83vS6d7QTmHY7iB8sGA28g/IdaeZz CvKa86ZKKCAg8OUrny2w8t2QT+eo1ckwao/+aomNXKW3aOs6E+bj3xZ7t3Vaa9FH BcJtTG8IgsPr3a0OEbQ/iZVrw2rLHQmg8sPThLe4HgC+JkPmnrrPA6pNlbq52Ew5 GiwZuyY1arDTgAqWrHqjjyq1PsOSWBTLJy4364Rt5rx77SosAFAggxFYuqELKkR8 TKsq+WI4lRSAdg== -----END CERTIFICATE-----Generated at Fri Dec 19 04:01:12 2025 by rpki-client