This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft File: _a9B0EvGh9D_mK19QHaEdRxGyj4.mft (raw, json) Hash identifier: u6P/wqOTR72EkvzESaqq76GfngFTl9nxkf5aGFeA6k4= Subject key identifier: D1:B7:B8:E5:3E:02:07:B1:48:D9:41:AD:6D:9F:88:28:60:65:BD:6F Authority key identifier: FD:AF:41:D0:4B:C6:87:D0:FF:98:AD:7D:40:76:84:75:1C:46:CA:3E Certificate issuer: /CN=fdaf41d04bc687d0ff98ad7d407684751c46ca3e Certificate serial: 019AF3523CBC72D94AC62B7462B50943F280 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_a9B0EvGh9D_mK19QHaEdRxGyj4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft Manifest number: 01F7 Signing time: Sat 06 Dec 2025 11:00:44 +0000 Manifest this update: Sat 06 Dec 2025 11:00:44 +0000 Manifest next update: Sun 07 Dec 2025 11:00:44 +0000 Files and hashes: 1: Z_12fyPWjJvCb6FBNMUkeSsk2Qk.roa (hash: a0cw7dhkqyFjfij3KupwibkS70jrF4XOR8zbXlfILTw=) 2: _a9B0EvGh9D_mK19QHaEdRxGyj4.crl (hash: 1h6763x5Y2/Xnb6rFoC8ZdzWkWV0W28anqLHbLW/ibk=) 3: kRViFV84QiCQrgo4yYmWKRh5CzU.roa (hash: 6PeAm40biQyAtXjJ6bGkrq1TCpNcQvYYhMRNmz/ZkGo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft rsync://rpki.ripe.net/repository/DEFAULT/_a9B0EvGh9D_mK19QHaEdRxGyj4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:3c:bc:72:d9:4a:c6:2b:74:62:b5:09:43:f2:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fdaf41d04bc687d0ff98ad7d407684751c46ca3e Validity Not Before: Dec 6 11:00:44 2025 GMT Not After : Dec 7 11:00:44 2025 GMT Subject: CN=d1b7b8e53e0207b148d941ad6d9f88286065bd6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:2c:88:88:51:84:5e:9d:09:41:3b:47:f5:0f: f4:b7:7b:f4:7f:b7:81:da:97:35:d3:d9:31:f0:a8: c5:76:3e:3f:5a:57:73:62:54:8b:88:32:0a:1a:47: b5:8d:a4:92:44:70:1e:41:60:dc:d6:51:9e:86:72: 21:14:27:c3:0f:8f:20:8f:ca:e1:a6:cd:d5:2d:16: e0:92:8e:a1:3c:b7:72:8e:07:a9:1b:e6:3b:02:bc: 9d:35:96:b6:38:c3:6e:1e:6e:11:3a:c0:02:0b:2f: 5e:49:a6:72:60:38:c9:39:a3:b5:e6:be:e2:ad:37: d6:ff:b8:e1:83:3b:44:f3:96:d9:ba:a8:8a:37:f0: 69:f6:82:7d:49:c7:92:44:21:59:ea:c4:28:52:c8: 46:ca:e9:98:9e:d4:12:69:74:b0:72:0e:ee:0d:f9: 03:7f:54:08:d7:7e:5a:2f:4e:a2:6c:67:7a:84:32: 53:31:56:47:60:af:24:4f:a1:74:a3:9a:fd:b7:69: 61:8e:e4:c1:05:0a:1e:35:9e:47:4d:76:a5:4f:48: fe:45:6e:7d:5e:2d:89:35:cb:f9:19:97:bf:48:a4: 51:49:e2:24:f1:6a:7a:5a:69:93:2d:fb:3e:56:5e: a4:f3:7b:50:97:2d:b4:6d:3f:9d:93:21:82:f2:34: 31:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B7:B8:E5:3E:02:07:B1:48:D9:41:AD:6D:9F:88:28:60:65:BD:6F X509v3 Authority Key Identifier: keyid:FD:AF:41:D0:4B:C6:87:D0:FF:98:AD:7D:40:76:84:75:1C:46:CA:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_a9B0EvGh9D_mK19QHaEdRxGyj4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:c0:49:e7:a4:67:fb:25:7b:66:d5:d9:11:ea:59:e9:3e:59: 2a:2b:a2:df:94:30:e5:2a:84:9d:c9:5c:3d:2c:de:88:a8:de: 1c:7a:73:51:45:8d:f8:93:ac:1f:62:e7:d2:4e:ab:d2:98:43: 82:8d:ae:31:fe:df:df:c4:4c:4a:f7:28:0e:90:9d:23:52:e6: 73:62:6c:f5:e9:f6:3f:dd:1d:f2:79:34:40:7c:f0:b6:fb:9c: 8a:9e:81:c8:63:1a:c4:ea:d0:75:91:fa:5a:e9:18:c6:83:37: 7d:11:3a:04:9f:5f:25:ea:7a:c5:44:19:a0:d8:5e:a6:2e:a1: 6d:a3:d2:46:f5:11:ad:c7:6d:76:1d:7c:31:26:b5:8e:51:c5: 94:f1:74:5c:20:a1:ba:cc:cb:5f:f4:1c:33:b0:17:71:36:b7: 41:3e:5a:97:9a:e0:0f:5b:c7:23:47:7f:37:90:5e:12:bc:89: 9a:ad:46:8c:9b:70:0b:4e:8f:25:14:1e:6a:39:1b:c7:ab:c8: 27:4f:8d:75:c9:a7:5f:69:cc:44:5e:ef:1d:5e:af:63:30:f2: ae:40:d5:91:48:4a:ac:68:3b:07:b8:0f:33:c9:20:c2:46:93: e9:5a:27:16:fd:d6:0e:b3:ec:b9:e7:c9:47:8e:c9:77:5a:72: 5b:6f:fd:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUjy8ctlKxit0YrUJQ/KAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkYWY0MWQwNGJjNjg3ZDBmZjk4YWQ3ZDQwNzY4NDc1MWM0 NmNhM2UwHhcNMjUxMjA2MTEwMDQ0WhcNMjUxMjA3MTEwMDQ0WjAzMTEwLwYDVQQD EyhkMWI3YjhlNTNlMDIwN2IxNDhkOTQxYWQ2ZDlmODgyODYwNjViZDZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiiyIiFGEXp0JQTtH9Q/0t3v0f7eB 2pc109kx8KjFdj4/WldzYlSLiDIKGke1jaSSRHAeQWDc1lGehnIhFCfDD48gj8rh ps3VLRbgko6hPLdyjgepG+Y7ArydNZa2OMNuHm4ROsACCy9eSaZyYDjJOaO15r7i rTfW/7jhgztE85bZuqiKN/Bp9oJ9SceSRCFZ6sQoUshGyumYntQSaXSwcg7uDfkD f1QI135aL06ibGd6hDJTMVZHYK8kT6F0o5r9t2lhjuTBBQoeNZ5HTXalT0j+RW59 Xi2JNcv5GZe/SKRRSeIk8Wp6WmmTLfs+Vl6k83tQly20bT+dkyGC8jQxBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNG3uOU+AgexSNlBrW2fiChgZb1vMB8GA1UdIwQY MBaAFP2vQdBLxofQ/5itfUB2hHUcRso+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2E5QjBFdkdoOURfbUsxOVFIYUVkUnhHeWo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8xNmNkZmEtNmFiOS00N2ZhLWI4NzEt ZWEyMDIxODAwMzQyLzEvX2E5QjBFdkdoOURfbUsxOVFIYUVkUnhHeWo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8xNmNkZmEtNmFiOS00N2ZhLWI4NzEtZWEyMDIxODAwMzQy LzEvX2E5QjBFdkdoOURfbUsxOVFIYUVkUnhHeWo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxMBJ56Rn +yV7ZtXZEepZ6T5ZKiui35Qw5SqEnclcPSzeiKjeHHpzUUWN+JOsH2Ln0k6r0phD go2uMf7f38RMSvcoDpCdI1Lmc2Js9en2P90d8nk0QHzwtvucip6ByGMaxOrQdZH6 WukYxoM3fRE6BJ9fJep6xUQZoNhepi6hbaPSRvURrcdtdh18MSa1jlHFlPF0XCCh uszLX/QcM7AXcTa3QT5al5rgD1vHI0d/N5BeEryJmq1GjJtwC06PJRQeajkbx6vI J0+NdcmnX2nMRF7vHV6vYzDyrkDVkUhKrGg7B7gPM8kgwkaT6VonFv3WDrPsuefJ R47Jd1pyW2/9Fg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:06:25 2025 by rpki-client