This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json) Hash identifier: BbF/T+0CZyp8tO4lMTVCkqO1GSGulm+lhg3YBoxRpCI= Subject key identifier: 2C:9E:12:5A:C8:88:4B:6B:EC:2C:3B:A2:22:39:B3:A2:79:38:30:26 Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8 Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8 Certificate serial: 019AF1645CE2CA4788C8CDBD270341E4FC6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 02:01:17 +0000 Manifest this update: Sat 06 Dec 2025 02:01:17 +0000 Manifest next update: Sun 07 Dec 2025 02:01:17 +0000 Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: /0D3fG9yAAAiCKgeDwrsjJoqbXysbzhmoexP7sPdZDM=) 2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:5c:e2:ca:47:88:c8:cd:bd:27:03:41:e4:fc:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8 Validity Not Before: Dec 6 02:01:17 2025 GMT Not After : Dec 7 02:01:17 2025 GMT Subject: CN=2c9e125ac8884b6bec2c3ba22239b3a279383026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:97:51:9d:15:ea:c3:11:7b:ee:10:68:52:5f: 9a:ea:62:e5:8e:2f:ec:72:8d:20:a4:8e:88:93:ed: 74:61:a6:54:30:0d:8d:20:5b:c8:22:ed:37:c0:d1: 2a:9f:e6:64:82:11:b1:98:30:27:30:db:57:8c:16: d5:be:7a:4f:04:9a:77:04:3a:df:3f:62:38:c4:1f: 59:8d:15:44:aa:1c:ea:6e:78:ac:df:23:db:8e:b2: 41:50:2a:2b:a7:5e:03:72:eb:7f:e3:1f:97:1e:8f: d4:c5:ad:65:0a:85:ec:de:a0:0a:e3:cf:2d:bf:e8: 34:19:75:44:cd:8d:fd:b5:b5:d2:49:8a:41:46:db: 48:40:9e:f4:ba:33:33:53:73:1b:1d:47:05:43:c0: 56:38:25:9a:16:dd:e4:ea:0a:d7:02:73:ff:8d:2f: 25:6d:f8:ca:07:f9:bb:3b:f1:a5:62:0e:1f:1f:81: 0e:36:06:08:7c:26:e4:33:36:ea:2f:49:ef:a5:bf: 6b:85:1a:b1:97:21:9b:43:6c:99:e0:a9:ab:82:d4: 9d:7c:24:4a:2f:5a:b7:a1:80:66:bc:54:84:92:97: 7f:a9:e9:ef:ed:69:da:da:63:1a:24:1e:b5:01:ec: ef:35:72:ea:74:42:36:2e:9f:dd:13:76:79:20:1e: 0f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:9E:12:5A:C8:88:4B:6B:EC:2C:3B:A2:22:39:B3:A2:79:38:30:26 X509v3 Authority Key Identifier: keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:34:f7:23:6d:51:d7:9f:52:11:c6:6d:59:ec:c4:7c:ef:e5: 6d:a4:c6:75:44:10:e6:0e:ce:15:49:be:a2:d3:aa:21:54:ab: d7:73:d3:2e:4b:d2:5b:22:4c:9c:38:58:71:68:fc:12:3d:c4: c7:3c:83:8f:67:41:c5:78:45:77:4a:d9:ac:7f:8f:1c:f0:46: 6b:4f:a2:be:11:79:4c:f5:55:55:22:8b:96:a5:5f:03:bd:71: dc:59:15:ab:be:57:ac:42:d9:9b:05:b1:6d:a4:1f:71:3b:ea: 6e:68:4b:7c:44:91:54:35:c0:7e:77:58:54:99:5b:a3:fe:0e: 77:f3:f6:2a:fd:33:6f:56:8d:3a:c5:7e:30:ae:31:a4:ae:27: 2e:0e:f2:a8:58:2b:b1:93:6f:1b:42:80:86:36:68:81:9b:2f: b0:e5:50:eb:46:a9:fa:a7:a0:61:42:dd:aa:db:4e:2c:9a:4e: b4:77:1b:59:f8:f0:88:5c:ee:5a:af:b9:dd:1c:c0:af:1b:01: cd:fb:fb:71:33:e6:19:0b:10:ed:d3:41:6d:c5:9b:89:17:8f: 8e:23:12:d8:5c:c5:bb:1f:7b:43:7c:b8:a5:f2:0b:b0:74:59: 78:eb:92:b9:8e:06:3c:00:06:42:e8:4b:e8:81:cc:ee:45:d0: 05:78:84:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZFziykeIyM29JwNB5PxrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZGRhODMyNzY5YzMxNjgxZjgyNTY4NTE0NzM2OGFmM2Ex MWY2ZjgwHhcNMjUxMjA2MDIwMTE3WhcNMjUxMjA3MDIwMTE3WjAzMTEwLwYDVQQD EygyYzllMTI1YWM4ODg0YjZiZWMyYzNiYTIyMjM5YjNhMjc5MzgzMDI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpdRnRXqwxF77hBoUl+a6mLlji/s co0gpI6Ik+10YaZUMA2NIFvIIu03wNEqn+ZkghGxmDAnMNtXjBbVvnpPBJp3BDrf P2I4xB9ZjRVEqhzqbnis3yPbjrJBUCorp14Dcut/4x+XHo/Uxa1lCoXs3qAK488t v+g0GXVEzY39tbXSSYpBRttIQJ70ujMzU3MbHUcFQ8BWOCWaFt3k6grXAnP/jS8l bfjKB/m7O/GlYg4fH4EONgYIfCbkMzbqL0nvpb9rhRqxlyGbQ2yZ4KmrgtSdfCRK L1q3oYBmvFSEkpd/qenv7Wna2mMaJB61AezvNXLqdEI2Lp/dE3Z5IB4PfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCyeElrIiEtr7Cw7oiI5s6J5ODAmMB8GA1UdIwQY MBaAFNHdqDJ2nDFoH4JWhRRzaK86Efb4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDIt ODYyMzZiYWMxMzA4LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDItODYyMzZiYWMxMzA4 LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEDT3I21R 159SEcZtWezEfO/lbaTGdUQQ5g7OFUm+otOqIVSr13PTLkvSWyJMnDhYcWj8Ej3E xzyDj2dBxXhFd0rZrH+PHPBGa0+ivhF5TPVVVSKLlqVfA71x3FkVq75XrELZmwWx baQfcTvqbmhLfESRVDXAfndYVJlbo/4Od/P2Kv0zb1aNOsV+MK4xpK4nLg7yqFgr sZNvG0KAhjZogZsvsOVQ60ap+qegYULdqttOLJpOtHcbWfjwiFzuWq+53RzArxsB zfv7cTPmGQsQ7dNBbcWbiRePjiMS2FzFux97Q3y4pfILsHRZeOuSuY4GPAAGQuhL 6IHM7kXQBXiEWA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:02:52 2025 by rpki-client