This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: USDZiHqlBVz2LgNwZYHLnfFUlV1Pn9WfYUHAEvDKBwg= Subject key identifier: 64:67:C5:AB:41:64:9A:90:48:62:54:31:53:89:30:08:EE:15:D0:01 Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019AF2AD68F3DD535CE7E6DEFA8F6BA0CF85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 17AB Signing time: Sat 06 Dec 2025 08:00:42 +0000 Manifest this update: Sat 06 Dec 2025 08:00:42 +0000 Manifest next update: Sun 07 Dec 2025 08:00:42 +0000 Files and hashes: 1: 0ztpdIPZKD6tLdnP79sm1hMOXpI.roa (hash: V+undJDS0h8d8CYJ+c34sHP0OtxUuBa8a+o8Uohmb0E=) 2: 1oM3GP4XRi0mqDBcN0k0C4RTdHY.roa (hash: Eqko1gSCAK/Ec5hGsjBzpPB0Hmmto77uxcqKM6nkuos=) 3: 3PPf4Y_qIxC7RLvddn7XhPdaKJc.roa (hash: OFq30+iv/yFFA0xKQ9BO17H+DIvPQ0bkiTx0cNerIAg=) 4: 5s050sybnU_qDLTadTW4Cbc1oa4.roa (hash: ul22+y65UhFi/PV4KsevDJSKijOmKuUMMb7YcjmOBq0=) 5: AkuNATViTFoUsLRTBmxq5TZta1U.roa (hash: +ALe8BR6dBzO5s8AWGnd/n4M4kjwqZrGPKmd2bf8aB0=) 6: D-_QiVeAYymMyrqyEwwxZVlJ77w.roa (hash: pLHDIfQfn00HxVAd67SY9GUFCYPJH9fT0t4z495xhcU=) 7: I49sO32imbdn9nfJ0l-il2Ef_jY.roa (hash: k2Ksa8ZIkYwAdo7qnIBXutPiCFJfdjd5EjsrD8efaro=) 8: JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa (hash: q2mwtM0pyYItD49ctwOqLjVJYv5g0mJ64QH0B7oRSCM=) 9: SHESx2HqUfWZxboQ6jP2hImYKmU.roa (hash: OlCdziBdwRc0FY5ejIFVQ8Nt867ISEKKLNxKfPnLzFA=) 10: TevPA31zpqIvq6GeQSDxtNa30UQ.roa (hash: 2nDbpMbvjKPaiiXiHqb4sCzw1FXoCOAaM9XlGLGbhC8=) 11: U2a4Mi5anG6MoVx-kSkOlCHuZ9U.roa (hash: WzVg8UcZ00h0mbpXiGBDaneFB3IZyzn0LFRbQNJ9OXc=) 12: bXqGrtPxlanCwZBmfe1rRANABDc.roa (hash: t5k+i+kB+7zSE8mRV1cP/4Uq7WgvCEro2Yq0+7QQVJA=) 13: bicuo27VbekDKZ2baxGyIAeBOBw.roa (hash: SWEpCpnN+xzcUkxLs6Bt4xTFqOqzIoS1IpAm8o8Z7uw=) 14: cbX3FwOgi9rS1ENe_k5BLCxVdg4.roa (hash: 35j9cePlwM12en+EIoj2uwLnq2TReRAiO2SX/9vwgDk=) 15: icTWsoKn_xk3KExZZn417x-Qv84.roa (hash: o9OMiruJYKHV5Ad+C6iuA4/zkZ1aBjsbg8MEUFVbq0o=) 16: nwRRU278nZ-OoZkxunLEdDGvAcI.roa (hash: XtojZB9yoPUFiPBHYDNCJYd8iy1TyLCfmu2Ry8BmvwU=) 17: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: KBeD90fSszg6uh/LGkXIoPYCK6jCdM6RyLsHA4Cq8n0=) 18: ya7mSjgbQNkjSkwREdHvHfCPb0I.roa (hash: qGz6FzpRmDdb9Ho0LXX5sUlrsbd9atIt02hL0IbJ65M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:68:f3:dd:53:5c:e7:e6:de:fa:8f:6b:a0:cf:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Dec 6 08:00:42 2025 GMT Not After : Dec 7 08:00:42 2025 GMT Subject: CN=6467c5ab41649a904862543153893008ee15d001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a1:6d:bd:12:28:63:55:2a:c9:aa:38:8d:3f: 55:42:d0:89:dc:7a:ae:05:2a:31:e3:24:45:ab:db: 94:c3:de:ba:75:ca:8a:74:72:d9:b0:e4:87:10:20: bd:fc:01:c3:02:f3:ef:70:66:2d:be:e5:b6:be:ef: 17:58:d4:83:56:14:d7:1c:6d:25:bd:38:af:19:cb: ea:4d:c3:26:a9:b9:5b:4e:2b:11:2b:05:74:f8:c0: 38:07:48:8b:4e:7e:30:85:80:82:c1:ff:05:59:49: 5a:de:10:d4:48:8b:fb:d7:43:0b:75:1a:e4:04:66: f5:82:f7:f1:4c:dd:51:30:57:5d:cb:c3:3d:f5:8d: 65:bf:2b:08:2b:dc:1b:36:37:09:d7:6f:a2:c4:60: 51:cb:75:46:4b:d9:a2:02:92:58:8a:8d:17:04:26: b6:5b:4d:d9:52:08:9c:60:cd:69:48:a2:04:d9:41: e9:5b:46:69:07:4b:df:76:09:42:f0:5f:4d:0e:46: cb:bd:3b:7f:ba:a5:52:24:b5:84:8e:84:c2:02:51: 46:5e:e3:ed:7c:92:4b:d3:c7:ad:db:c7:7b:e4:38: ae:89:cd:ac:2f:d5:df:85:a8:94:0b:6b:2f:82:87: b7:36:ad:a6:4c:04:39:17:cd:ef:42:0c:78:19:3d: a1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:67:C5:AB:41:64:9A:90:48:62:54:31:53:89:30:08:EE:15:D0:01 X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:ba:bb:6f:ce:82:60:40:88:72:d9:86:23:4f:fa:98:e7:54: b5:e9:31:ea:3a:81:c5:c6:19:a4:91:b3:fb:09:8a:b1:ef:0a: 1f:b3:68:dd:7e:6c:ce:ba:01:f1:f5:05:3f:f6:62:5c:cd:96: 03:1e:4b:29:9f:eb:4f:a2:72:fd:2b:a6:27:51:ed:2b:49:e0: d4:4b:d1:dd:0c:fa:62:55:04:99:b0:9f:c3:a2:c5:c0:3e:b5: f4:10:e4:bd:64:68:6d:a2:ad:d1:a7:27:8a:fc:b1:dc:28:2e: 67:9d:e7:9f:fb:9d:77:94:74:b5:25:e0:6e:75:53:57:46:35: 59:3a:8e:57:21:3e:99:eb:db:ea:df:b6:5c:b9:68:76:41:96: 25:7d:dd:90:12:63:80:bb:54:2c:00:4a:ee:83:c3:f0:12:64: 70:29:a2:f0:49:7a:34:fa:41:e7:38:f0:bc:15:7d:a6:31:f9: 8e:3b:45:25:30:75:80:e5:16:98:ef:14:1e:a5:a2:5c:3b:f9: 9b:c0:7f:d0:38:05:77:c0:6b:72:06:e5:cd:31:df:71:bd:68: be:38:2e:20:83:1c:8c:91:f6:2c:20:44:88:3a:6e:fc:0f:6a: 64:8f:ea:e5:82:fa:9f:57:f4:97:34:22:0a:7e:56:32:b3:cf: 4c:54:3d:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrWjz3VNc5+be+o9roM+FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjUxMjA2MDgwMDQyWhcNMjUxMjA3MDgwMDQyWjAzMTEwLwYDVQQD Eyg2NDY3YzVhYjQxNjQ5YTkwNDg2MjU0MzE1Mzg5MzAwOGVlMTVkMDAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKFtvRIoY1Uqyao4jT9VQtCJ3Hqu BSox4yRFq9uUw966dcqKdHLZsOSHECC9/AHDAvPvcGYtvuW2vu8XWNSDVhTXHG0l vTivGcvqTcMmqblbTisRKwV0+MA4B0iLTn4whYCCwf8FWUla3hDUSIv710MLdRrk BGb1gvfxTN1RMFddy8M99Y1lvysIK9wbNjcJ12+ixGBRy3VGS9miApJYio0XBCa2 W03ZUgicYM1pSKIE2UHpW0ZpB0vfdglC8F9NDkbLvTt/uqVSJLWEjoTCAlFGXuPt fJJL08et28d75Diuic2sL9XfhaiUC2svgoe3Nq2mTAQ5F83vQgx4GT2hewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGRnxatBZJqQSGJUMVOJMAjuFdABMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw7q7b86C YECIctmGI0/6mOdUtekx6jqBxcYZpJGz+wmKse8KH7No3X5szroB8fUFP/ZiXM2W Ax5LKZ/rT6Jy/SumJ1HtK0ng1EvR3Qz6YlUEmbCfw6LFwD619BDkvWRobaKt0acn ivyx3CguZ53nn/udd5R0tSXgbnVTV0Y1WTqOVyE+mevb6t+2XLlodkGWJX3dkBJj gLtULABK7oPD8BJkcCmi8El6NPpB5zjwvBV9pjH5jjtFJTB1gOUWmO8UHqWiXDv5 m8B/0DgFd8BrcgblzTHfcb1ovjguIIMcjJH2LCBEiDpu/A9qZI/q5YL6n1f0lzQi Cn5WMrPPTFQ9EA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:22:37 2025 by rpki-client