This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json) Hash identifier: qBtSSo7LIQppljFAoc/s4k3osKhk1ZDP04q0GQg8G2I= Subject key identifier: A9:65:2E:D8:18:49:C2:89:E1:2D:C7:DF:38:D1:F7:1D:65:A2:1D:AD Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f Certificate serial: 019AF42E2CD158F971B852D4A8FC2DB58519 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft Manifest number: 03EC Signing time: Sat 06 Dec 2025 15:00:57 +0000 Manifest this update: Sat 06 Dec 2025 15:00:57 +0000 Manifest next update: Sun 07 Dec 2025 15:00:57 +0000 Files and hashes: 1: 5jBhyCclhjBWCSh1O-0WT6aKzvs.roa (hash: MRjgNDdW46vQb+SgK5+muMmigtF72q9wmhV3HqxuIuc=) 2: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: gqHz6GWEl0LeCHupJLGHlL9Widd52F28A37Iixpj1Tc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:2c:d1:58:f9:71:b8:52:d4:a8:fc:2d:b5:85:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f Validity Not Before: Dec 6 15:00:57 2025 GMT Not After : Dec 7 15:00:57 2025 GMT Subject: CN=a9652ed81849c289e12dc7df38d1f71d65a21dad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0d:2a:9f:f0:fe:30:70:e3:49:51:f7:86:73: f2:4a:8e:63:99:07:b6:c2:af:87:de:09:87:c8:51: 91:21:86:6c:53:d7:aa:cb:50:d2:98:6e:4d:18:63: bc:09:29:d6:4e:91:ee:c1:f3:20:23:db:29:f5:e2: 85:61:4b:be:06:69:f1:e2:f1:b1:e3:95:95:8e:03: e7:98:d6:df:47:d8:b9:30:18:fd:ee:4f:9b:27:ef: ff:44:a1:af:13:d2:e4:52:8b:55:f4:df:a5:ed:c9: 49:b1:9a:24:d8:ff:f6:84:29:ed:b5:b2:fd:58:6f: be:16:cd:0b:47:97:10:f2:bd:aa:2a:b1:18:62:0c: b8:23:0a:33:29:4d:2d:a0:b6:b8:7c:c1:08:97:3c: 0d:6b:c4:3b:07:7a:8f:ec:ca:a2:77:aa:79:be:38: 16:20:58:a8:34:85:a9:fd:aa:d5:6f:bb:1d:1d:57: 05:c0:eb:5d:0e:d8:a7:94:7a:92:89:ef:e4:20:ad: a7:c2:4f:77:24:33:15:24:fd:82:c1:dd:eb:87:69: 72:67:b6:82:1c:90:0b:25:b0:1e:23:a0:7e:5d:8c: 92:7a:80:75:e4:0f:5c:74:23:db:7e:59:08:d9:2d: 42:7c:1e:f6:f7:f9:96:51:01:32:d0:b6:96:09:3a: 60:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:65:2E:D8:18:49:C2:89:E1:2D:C7:DF:38:D1:F7:1D:65:A2:1D:AD X509v3 Authority Key Identifier: keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:bc:45:3c:eb:8b:18:86:b2:a7:8b:aa:6b:47:db:fa:97:0e: 7a:f4:7d:fb:ab:a3:3f:e8:4b:13:71:5c:a0:73:64:e9:8a:9b: 3c:c9:f8:97:01:cf:f5:63:fe:f0:a3:d0:2f:31:2c:6e:ef:e3: a0:d0:34:5c:b4:18:aa:24:ac:45:75:c6:2d:f2:91:e2:05:fd: df:f9:8e:35:1b:0a:de:b6:cb:7a:dc:a9:10:2c:04:85:5f:75: 00:3c:80:71:e5:27:c5:3f:6d:a2:e7:d6:fa:bd:0c:dd:cc:70: 52:ae:3b:1c:11:00:d9:dc:41:1e:72:8e:ee:7d:4c:45:87:5d: 06:60:f7:75:e7:27:27:5e:3c:e0:70:41:83:76:1c:c6:55:3b: 08:fb:79:11:aa:a8:3f:6d:8e:0a:00:aa:a6:99:ee:f9:4e:59: 99:7c:31:2f:6a:5d:ab:00:d7:f7:6a:dc:fe:0b:22:a8:59:6d: a0:c8:d6:a3:0b:15:e7:a1:2c:da:f3:5d:de:a0:b8:69:26:f1: 1d:e8:3e:cc:36:43:40:26:3c:38:db:26:3e:89:28:f6:72:08: 49:0a:d2:2e:85:dd:e8:16:bd:ee:ab:f4:5a:e5:6d:52:d1:07: 0a:2c:d3:66:0c:e7:42:4f:e9:cc:76:81:5a:f6:c0:03:45:4f: c4:08:89:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LizRWPlxuFLUqPwttYUZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmYThmYjUzOTlhMjdhNDMwYWU3MjdjNTMyY2QyMjQ5OTll ODg2NGYwHhcNMjUxMjA2MTUwMDU3WhcNMjUxMjA3MTUwMDU3WjAzMTEwLwYDVQQD EyhhOTY1MmVkODE4NDljMjg5ZTEyZGM3ZGYzOGQxZjcxZDY1YTIxZGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsA0qn/D+MHDjSVH3hnPySo5jmQe2 wq+H3gmHyFGRIYZsU9eqy1DSmG5NGGO8CSnWTpHuwfMgI9sp9eKFYUu+Bmnx4vGx 45WVjgPnmNbfR9i5MBj97k+bJ+//RKGvE9LkUotV9N+l7clJsZok2P/2hCnttbL9 WG++Fs0LR5cQ8r2qKrEYYgy4IwozKU0toLa4fMEIlzwNa8Q7B3qP7Mqid6p5vjgW IFioNIWp/arVb7sdHVcFwOtdDtinlHqSie/kIK2nwk93JDMVJP2Cwd3rh2lyZ7aC HJALJbAeI6B+XYySeoB15A9cdCPbflkI2S1CfB729/mWUQEy0LaWCTpgDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKllLtgYScKJ4S3H3zjR9x1loh2tMB8GA1UdIwQY MBaAFA+o+1OZonpDCucnxTLNIkmZ6IZPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zODZmODEtYjEzOS00OGFmLWJjZWEt YTcxZmI0NjM1MDY1LzEvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8zODZmODEtYjEzOS00OGFmLWJjZWEtYTcxZmI0NjM1MDY1 LzEvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtrxFPOuL GIayp4uqa0fb+pcOevR9+6ujP+hLE3FcoHNk6YqbPMn4lwHP9WP+8KPQLzEsbu/j oNA0XLQYqiSsRXXGLfKR4gX93/mONRsK3rbLetypECwEhV91ADyAceUnxT9toufW +r0M3cxwUq47HBEA2dxBHnKO7n1MRYddBmD3decnJ1484HBBg3YcxlU7CPt5Eaqo P22OCgCqppnu+U5ZmXwxL2pdqwDX92rc/gsiqFltoMjWowsV56Es2vNd3qC4aSbx Heg+zDZDQCY8ONsmPoko9nIISQrSLoXd6Ba97qv0WuVtUtEHCizTZgznQk/pzHaB WvbAA0VPxAiJwg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:06:22 2025 by rpki-client