This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft File: MGwIZtwlII5sB9SiHX2AULUI1qI.mft (raw, json) Hash identifier: qmworxFtkgjUS9oVS/KDCLvbCa11Cf6RsjUrpZo/h2Q= Subject key identifier: A2:7F:DF:67:30:C2:DC:9F:7C:11:62:76:15:32:7C:C5:91:35:F9:9F Authority key identifier: 30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2 Certificate issuer: /CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2 Certificate serial: 019AF0BF0985512FAF1D66994B55739CDCB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft Manifest number: 15D9 Signing time: Fri 05 Dec 2025 23:00:42 +0000 Manifest this update: Fri 05 Dec 2025 23:00:42 +0000 Manifest next update: Sat 06 Dec 2025 23:00:42 +0000 Files and hashes: 1: DhdGK18Qr8BfEi425qb4XqU3Df0.roa (hash: zUZN1xRmcwh2/G+LSnUGvmnpV/nEFzaIhdcZknHnKqM=) 2: HdR6Ah0Qe32r7472JEBtQ7R-uic.roa (hash: 9q8qH00PICKWGR7GNHvqSbuGck7QEOPOmn1zpnijT28=) 3: MGwIZtwlII5sB9SiHX2AULUI1qI.crl (hash: WcFKX6ld5Te1P/aMXNDvzcQTydl7CIaYSjN1DpDpMPc=) 4: fijUe6qDGFgvjf20rKDx3KsLKhg.roa (hash: foZAP48xDa0sL73147a0de2CyfWzFAaIZ8oA6qYD28M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:09:85:51:2f:af:1d:66:99:4b:55:73:9c:dc:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2 Validity Not Before: Dec 5 23:00:42 2025 GMT Not After : Dec 6 23:00:42 2025 GMT Subject: CN=a27fdf6730c2dc9f7c11627615327cc59135f99f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:22:fa:03:08:67:ae:0d:f5:0c:81:ed:aa:aa: 9b:c6:60:45:6d:24:4b:e8:88:c5:d0:1f:87:62:0b: 08:83:26:9b:e2:42:84:2e:fb:e1:d5:52:e9:d1:eb: d3:20:e1:23:60:4f:b9:1c:57:69:b2:ce:16:6f:b4: 3e:79:ac:77:8c:e8:76:1b:00:be:2d:5d:a1:97:4d: 85:e0:b9:98:3c:e5:b4:c9:02:a1:50:ea:42:c1:b8: 4d:5c:38:67:cb:cf:50:20:8a:19:74:62:36:98:c5: 7f:4d:4d:0f:ef:19:fc:a5:a8:95:f9:66:c1:17:02: 0a:91:c9:39:d0:2d:f5:eb:d8:75:57:cc:83:8f:b5: a7:8e:7f:3d:10:4f:ab:01:62:69:5d:99:1f:44:b9: 09:0a:59:b9:44:0b:74:86:81:12:40:6a:5b:ae:13: 04:5e:51:6d:ea:16:cd:c2:12:8d:d3:04:b3:aa:29: 60:a3:25:d2:ef:cb:e4:83:b7:13:02:32:8b:ba:2f: e7:6f:2d:4d:ec:27:11:ce:2b:13:5d:90:5f:85:6b: db:14:99:9b:ac:67:85:1c:fa:1d:fd:7a:1b:44:88: dd:0f:7d:ad:9b:a0:9c:fb:4b:04:b5:31:2f:6b:2e: d2:44:ac:fd:b2:86:44:3e:75:0d:5a:48:97:35:83: 77:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:7F:DF:67:30:C2:DC:9F:7C:11:62:76:15:32:7C:C5:91:35:F9:9F X509v3 Authority Key Identifier: keyid:30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:a7:d9:d4:90:38:97:cc:c8:80:80:a1:3a:6c:1e:a8:71:91: a0:04:71:8e:f9:76:84:de:90:72:f2:53:a3:3d:f0:dd:42:bd: c9:21:b3:7f:0b:57:22:fc:d0:34:9d:c9:30:d9:22:7e:45:01: 7d:44:fe:6d:e1:3d:91:26:50:0a:15:bc:01:48:58:f3:70:7c: 3f:b1:bc:27:fa:de:6e:e2:8c:e6:cf:3a:e8:15:fa:ce:a8:9a: 8b:93:1d:0c:52:36:74:f8:c0:a7:61:00:28:f4:26:18:e1:d2: 54:cb:47:b0:e3:e2:34:ae:ea:e2:d8:9d:fa:23:4d:d0:75:77: 2c:e7:c3:37:ca:17:ab:c2:c8:4c:2e:c2:f3:af:e4:ff:37:19: 80:8a:57:1a:ca:d4:c9:ba:ab:fe:49:fa:8b:7b:54:9e:e3:e6: ed:34:22:64:09:06:77:73:01:41:8f:ba:e2:eb:6e:81:c8:d7: c4:b4:58:80:c8:94:93:bb:85:15:83:e8:bd:85:a4:80:d2:4b: 33:b8:0e:19:01:ef:ba:bc:05:36:37:87:a1:99:70:bc:fd:be: 8a:a7:93:47:84:87:65:5f:ff:89:ff:5f:b7:14:a7:dd:82:a4: 44:c8:8d:f3:a3:90:9c:36:3e:55:41:93:0f:d0:b4:ca:39:9c: a2:44:da:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvwmFUS+vHWaZS1VznNy4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNmMwODY2ZGMyNTIwOGU2YzA3ZDRhMjFkN2Q4MDUwYjUw OGQ2YTIwHhcNMjUxMjA1MjMwMDQyWhcNMjUxMjA2MjMwMDQyWjAzMTEwLwYDVQQD EyhhMjdmZGY2NzMwYzJkYzlmN2MxMTYyNzYxNTMyN2NjNTkxMzVmOTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCL6Awhnrg31DIHtqqqbxmBFbSRL 6IjF0B+HYgsIgyab4kKELvvh1VLp0evTIOEjYE+5HFdpss4Wb7Q+eax3jOh2GwC+ LV2hl02F4LmYPOW0yQKhUOpCwbhNXDhny89QIIoZdGI2mMV/TU0P7xn8paiV+WbB FwIKkck50C3169h1V8yDj7Wnjn89EE+rAWJpXZkfRLkJClm5RAt0hoESQGpbrhME XlFt6hbNwhKN0wSzqilgoyXS78vkg7cTAjKLui/nby1N7CcRzisTXZBfhWvbFJmb rGeFHPod/XobRIjdD32tm6Cc+0sEtTEvay7SRKz9soZEPnUNWkiXNYN3AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKJ/32cwwtyffBFidhUyfMWRNfmfMB8GA1UdIwQY MBaAFDBsCGbcJSCObAfUoh19gFC1CNaiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUd3SVp0d2xJSTVzQjlTaUhYMkFVTFVJMXFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9iYWRlZGYtZDBlOS00NWE5LWFmNzUt MTBlZGI1NDFlNmZmLzEvTUd3SVp0d2xJSTVzQjlTaUhYMkFVTFVJMXFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9iYWRlZGYtZDBlOS00NWE5LWFmNzUtMTBlZGI1NDFlNmZm LzEvTUd3SVp0d2xJSTVzQjlTaUhYMkFVTFVJMXFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA6fZ1JA4 l8zIgIChOmweqHGRoARxjvl2hN6QcvJToz3w3UK9ySGzfwtXIvzQNJ3JMNkifkUB fUT+beE9kSZQChW8AUhY83B8P7G8J/rebuKM5s866BX6zqiai5MdDFI2dPjAp2EA KPQmGOHSVMtHsOPiNK7q4tid+iNN0HV3LOfDN8oXq8LITC7C86/k/zcZgIpXGsrU ybqr/kn6i3tUnuPm7TQiZAkGd3MBQY+64utugcjXxLRYgMiUk7uFFYPovYWkgNJL M7gOGQHvurwFNjeHoZlwvP2+iqeTR4SHZV//if9ftxSn3YKkRMiN86OQnDY+VUGT D9C0yjmcokTa2w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:23 2025 by rpki-client