This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json) Hash identifier: hZn6j+wJATEEgm2vEjSGm9ohePRDGihf24F48EuvgO8= Subject key identifier: BC:E3:8F:30:B3:53:82:32:4D:38:74:BA:BC:F6:5C:EE:97:FD:CA:C4 Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a Certificate serial: 019B2F300EC563F785E86FCCA7C80B7224E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft Manifest number: 116C Signing time: Thu 18 Dec 2025 02:00:37 +0000 Manifest this update: Thu 18 Dec 2025 02:00:37 +0000 Manifest next update: Fri 19 Dec 2025 02:00:37 +0000 Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=) 2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: 58MDOLu861UneQCQShFX/dVlU76fL73IclLUe7C6RwU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 02:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:30:0e:c5:63:f7:85:e8:6f:cc:a7:c8:0b:72:24:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a Validity Not Before: Dec 18 02:00:37 2025 GMT Not After : Dec 19 02:00:37 2025 GMT Subject: CN=bce38f30b35382324d3874babcf65cee97fdcac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:01:f0:b5:20:36:a2:e5:30:14:1a:65:f6:be: 7f:b8:e6:0e:1d:10:e2:e3:66:c6:96:e0:ba:1a:64: f5:50:85:48:c5:eb:82:a1:ba:36:37:b2:ba:e7:a5: a7:d8:b1:1a:f2:42:0f:03:03:8b:d6:0e:9d:d7:39: ff:9c:cc:3a:ea:d9:bd:a8:a7:47:10:c8:27:f9:e1: 4a:dd:b5:21:d2:c7:c0:c6:f1:21:4f:d1:c5:f1:a4: 53:ee:02:66:c3:66:fe:ca:7a:a0:15:e0:19:75:74: 4d:96:d1:4a:d7:48:e2:0e:39:35:23:78:eb:6c:4c: 8a:de:35:e6:e1:77:f2:5b:14:f8:7d:e8:c8:c2:44: 82:30:b3:18:0d:44:b4:10:57:04:b2:03:cd:60:14: b8:8e:d3:af:24:33:08:fb:16:e6:3e:36:ff:c0:11: bb:1d:f3:78:7c:93:10:71:c1:7c:4f:62:dc:38:99: 2c:d8:e9:ce:4a:f9:d1:0f:f7:5a:72:60:76:8b:b4: 82:20:d7:c2:f0:f3:83:37:0c:36:a7:a4:5a:e7:75: 19:74:49:e7:eb:41:23:ee:55:1a:5f:e0:95:d8:9f: e4:1b:7c:e1:60:ff:82:6f:5c:4a:da:62:3f:07:7c: 95:95:e8:4f:4a:bd:35:90:a2:b3:70:be:02:e2:38: a0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E3:8F:30:B3:53:82:32:4D:38:74:BA:BC:F6:5C:EE:97:FD:CA:C4 X509v3 Authority Key Identifier: keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:a9:df:0a:db:d3:be:4e:94:4a:c1:c4:2a:4a:01:56:21:80: c0:68:af:5d:e6:a4:d1:70:b4:1d:f3:76:88:52:74:75:8a:24: 65:ac:5f:b9:67:d4:67:c8:10:8e:0d:c7:ea:25:14:38:66:2b: 03:0f:cc:df:55:0c:f1:b2:96:34:3e:42:d0:d2:fb:4b:2c:71: fd:c4:6c:09:20:37:fe:d4:b1:49:85:2f:fc:e3:86:b6:67:30: ba:24:26:22:61:c4:46:3c:52:e4:f7:58:60:9c:f4:d2:5e:7d: 95:20:31:3c:87:bb:15:93:ad:01:95:11:ee:06:2a:f8:96:70: 8f:be:8c:46:57:f8:92:1e:c2:d7:36:3e:3b:7a:1d:c4:78:12: b4:4f:7d:ed:03:9f:cd:bf:d5:6e:26:86:a8:56:21:06:38:04: 49:c9:27:ee:14:90:30:a4:c0:09:26:41:ee:02:31:5a:d4:9f: cf:08:cc:14:c5:ba:57:86:f9:2b:c1:40:2b:ba:20:49:97:4a: 5e:94:ea:bb:98:5a:5e:01:c1:d1:86:04:fd:97:7d:c5:8d:67: 60:ec:30:ac:69:ad:39:92:bf:27:97:f6:bb:ad:50:0b:cd:25: 54:87:a2:a4:d6:7b:34:16:b5:98:0d:54:fe:23:b3:0b:1a:58: e2:d1:a3:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsvMA7FY/eF6G/Mp8gLciTkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0MzRlZGJlMWI0MTAxYjI4YWJlMjMyZjJiY2YyYTAxNDg5 NzgyNWEwHhcNMjUxMjE4MDIwMDM3WhcNMjUxMjE5MDIwMDM3WjAzMTEwLwYDVQQD EyhiY2UzOGYzMGIzNTM4MjMyNGQzODc0YmFiY2Y2NWNlZTk3ZmRjYWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAHwtSA2ouUwFBpl9r5/uOYOHRDi 42bGluC6GmT1UIVIxeuCobo2N7K656Wn2LEa8kIPAwOL1g6d1zn/nMw66tm9qKdH EMgn+eFK3bUh0sfAxvEhT9HF8aRT7gJmw2b+ynqgFeAZdXRNltFK10jiDjk1I3jr bEyK3jXm4XfyWxT4fejIwkSCMLMYDUS0EFcEsgPNYBS4jtOvJDMI+xbmPjb/wBG7 HfN4fJMQccF8T2LcOJks2OnOSvnRD/dacmB2i7SCINfC8PODNww2p6Ra53UZdEnn 60Ej7lUaX+CV2J/kG3zhYP+Cb1xK2mI/B3yVlehPSr01kKKzcL4C4jigUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLzjjzCzU4IyTTh0urz2XO6X/crEMB8GA1UdIwQY MBaAFEQ07b4bQQGyir4jLyvPKgFIl4JaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDkt MTBjYWY1NDk4NmZmLzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDktMTBjYWY1NDk4NmZm LzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfqnfCtvT vk6USsHEKkoBViGAwGivXeak0XC0HfN2iFJ0dYokZaxfuWfUZ8gQjg3H6iUUOGYr Aw/M31UM8bKWND5C0NL7Syxx/cRsCSA3/tSxSYUv/OOGtmcwuiQmImHERjxS5PdY YJz00l59lSAxPIe7FZOtAZUR7gYq+JZwj76MRlf4kh7C1zY+O3odxHgStE997QOf zb/VbiaGqFYhBjgESckn7hSQMKTACSZB7gIxWtSfzwjMFMW6V4b5K8FAK7ogSZdK XpTqu5haXgHB0YYE/Zd9xY1nYOwwrGmtOZK/J5f2u61QC80lVIeipNZ7NBa1mA1U /iOzCxpY4tGj4Q== -----END CERTIFICATE-----Generated at Thu Dec 18 11:27:40 2025 by rpki-client