This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft File: mRQlj7nTZXszdhQr_GPazk-CEcQ.mft (raw, json) Hash identifier: Bx92j5/IKQY6+OFKte1NB1ob9YkcUu6+gbVkJ5htJHI= Subject key identifier: 0A:EA:AD:AA:CF:49:FC:12:43:99:9C:B2:E5:B6:97:1E:D2:E8:D9:15 Authority key identifier: 99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4 Certificate issuer: /CN=9914258fb9d3657b3376142bfc63dace4f8211c4 Certificate serial: 019AF0BF2B86BD50EB25F9FB26469C1DBF8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft Manifest number: 1760 Signing time: Fri 05 Dec 2025 23:00:51 +0000 Manifest this update: Fri 05 Dec 2025 23:00:51 +0000 Manifest next update: Sat 06 Dec 2025 23:00:51 +0000 Files and hashes: 1: 2JXcaA80r7d-EIDaMijpbBPasoc.roa (hash: gf95/nywAYIZdNJbfxynwrtY4coqSX3R7aiF8YJONgo=) 2: mRQlj7nTZXszdhQr_GPazk-CEcQ.crl (hash: HYwTbeUgKctTLWmF7PwxVovlcU+mAiwjrjbsa9tDp/c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:2b:86:bd:50:eb:25:f9:fb:26:46:9c:1d:bf:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9914258fb9d3657b3376142bfc63dace4f8211c4 Validity Not Before: Dec 5 23:00:51 2025 GMT Not After : Dec 6 23:00:51 2025 GMT Subject: CN=0aeaadaacf49fc1243999cb2e5b6971ed2e8d915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5d:65:26:12:6f:d8:1d:25:10:dd:9f:34:ad: fe:64:93:4b:fa:ad:7e:5a:8d:32:1d:05:0d:c2:6e: 61:41:70:5d:49:51:e5:98:e6:7b:3d:0b:b6:67:8e: ed:40:f6:06:3f:73:3a:30:89:4f:37:69:fa:1f:3a: 5c:31:44:6a:1c:20:39:94:aa:f5:33:f7:9e:a5:c0: d8:06:8e:85:86:ff:b6:0f:21:eb:12:bd:7e:b7:26: 3a:4b:dc:ad:27:61:c9:a1:a7:c8:79:83:a2:64:f2: ae:79:f4:fa:49:c2:e5:79:fb:f4:10:d2:37:18:9d: ea:15:18:6a:82:ee:42:00:86:d2:f6:49:9a:12:0b: da:0f:e3:14:0e:cc:f7:1b:4e:1f:b0:61:a7:02:25: 60:74:d7:9c:24:51:2a:a0:a9:7a:bc:f8:a9:ce:52: 99:84:98:02:61:28:9d:39:3f:3e:31:14:94:1b:ea: 0f:b5:3b:96:92:38:c3:0a:cb:85:ed:62:6f:21:89: 74:10:cc:30:48:11:a5:e3:61:61:55:9d:ca:79:fc: 81:3e:77:4d:eb:c0:02:e0:41:5b:f4:ed:f0:53:08: 7f:02:b4:8a:da:cb:55:de:25:f6:8f:29:75:6a:4e: a0:62:9c:35:e0:60:49:18:e6:56:3b:13:98:18:a1: 55:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:EA:AD:AA:CF:49:FC:12:43:99:9C:B2:E5:B6:97:1E:D2:E8:D9:15 X509v3 Authority Key Identifier: keyid:99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:27:d2:af:ac:ee:25:9f:ce:15:e7:f2:93:f6:de:26:31:31: 90:f3:54:ba:c2:0c:e8:cd:87:41:4b:d7:7c:eb:95:55:b0:42: 59:bd:f2:93:4d:a2:f6:60:c2:db:4c:58:de:6b:3a:93:c5:a3: f9:33:46:09:b4:43:59:62:c9:43:2b:6f:49:fc:59:3e:49:3e: f0:c9:c0:44:34:ac:ed:e5:b3:79:44:a2:2e:1a:d0:62:6c:b0: 13:0c:c7:2b:90:b5:b2:9e:a1:61:1e:e7:a3:49:7c:66:58:0a: a5:2c:1f:f5:7b:89:1b:c5:85:fe:c7:c0:d1:8f:7a:ef:2d:75: ac:22:9c:83:00:64:d3:08:c0:8a:89:f5:52:6f:7e:3d:78:15: d8:c8:f3:a9:7b:61:6e:63:f2:f7:30:b5:60:9c:97:cf:e8:77: 6d:90:bd:cb:cf:11:f3:51:08:be:8f:e1:34:49:0b:ce:a9:a7: 79:ff:5e:cf:af:e6:ff:b2:a4:e0:5c:32:16:6d:db:82:cd:a1: db:f8:a6:5f:c2:bc:08:ba:fb:02:78:84:b6:bf:d6:76:db:0d: 47:1a:ed:8d:59:90:6e:20:38:00:b6:3f:74:02:99:9a:ca:72: 4a:60:7b:e8:42:09:b8:25:14:4c:57:bc:e7:68:cb:0b:6e:57: cf:31:af:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvyuGvVDrJfn7JkacHb+KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5MTQyNThmYjlkMzY1N2IzMzc2MTQyYmZjNjNkYWNlNGY4 MjExYzQwHhcNMjUxMjA1MjMwMDUxWhcNMjUxMjA2MjMwMDUxWjAzMTEwLwYDVQQD EygwYWVhYWRhYWNmNDlmYzEyNDM5OTljYjJlNWI2OTcxZWQyZThkOTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu11lJhJv2B0lEN2fNK3+ZJNL+q1+ Wo0yHQUNwm5hQXBdSVHlmOZ7PQu2Z47tQPYGP3M6MIlPN2n6HzpcMURqHCA5lKr1 M/eepcDYBo6Fhv+2DyHrEr1+tyY6S9ytJ2HJoafIeYOiZPKuefT6ScLlefv0ENI3 GJ3qFRhqgu5CAIbS9kmaEgvaD+MUDsz3G04fsGGnAiVgdNecJFEqoKl6vPipzlKZ hJgCYSidOT8+MRSUG+oPtTuWkjjDCsuF7WJvIYl0EMwwSBGl42FhVZ3KefyBPndN 68AC4EFb9O3wUwh/ArSK2stV3iX2jyl1ak6gYpw14GBJGOZWOxOYGKFVXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFArqrarPSfwSQ5mcsuW2lx7S6NkVMB8GA1UdIwQY MBaAFJkUJY+502V7M3YUK/xj2s5PghHEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVJRbGo3blRaWHN6ZGhRcl9HUGF6ay1DRWNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS84NjY0MWUtNjY5Yy00YThkLWFlMGIt ZmUzNDFiMzAwNWUzLzEvbVJRbGo3blRaWHN6ZGhRcl9HUGF6ay1DRWNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS84NjY0MWUtNjY5Yy00YThkLWFlMGItZmUzNDFiMzAwNWUz LzEvbVJRbGo3blRaWHN6ZGhRcl9HUGF6ay1DRWNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASyfSr6zu JZ/OFefyk/beJjExkPNUusIM6M2HQUvXfOuVVbBCWb3yk02i9mDC20xY3ms6k8Wj +TNGCbRDWWLJQytvSfxZPkk+8MnARDSs7eWzeUSiLhrQYmywEwzHK5C1sp6hYR7n o0l8ZlgKpSwf9XuJG8WF/sfA0Y967y11rCKcgwBk0wjAion1Um9+PXgV2MjzqXth bmPy9zC1YJyXz+h3bZC9y88R81EIvo/hNEkLzqmnef9ez6/m/7Kk4FwyFm3bgs2h 2/imX8K8CLr7AniEtr/WdtsNRxrtjVmQbiA4ALY/dAKZmspySmB76EIJuCUUTFe8 52jLC25XzzGvaA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:19 2025 by rpki-client