This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft File: FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft (raw, json) Hash identifier: IkgTJtBwIDiFG4jSM4Ch65KCBPgXfTbiZB8X8YQqzbQ= Subject key identifier: F7:5F:9B:6C:5C:31:F4:FE:28:89:96:1E:25:2E:13:98:AE:3A:42:36 Authority key identifier: 16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE Certificate issuer: /CN=168a919a4a463f3ca2bba5442550fc247da90cae Certificate serial: 019B36E9CFEC3AAB60F6CE032EA98BCC13CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft Manifest number: 02A5 Signing time: Fri 19 Dec 2025 14:00:50 +0000 Manifest this update: Fri 19 Dec 2025 14:00:50 +0000 Manifest next update: Sat 20 Dec 2025 14:00:50 +0000 Files and hashes: 1: FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl (hash: SKePmygUafcULCrtcWr/QgR0PI9cf0XFnfhqqiTvCx4=) 2: ve2iEFS7yneK4NHtoTNszVB8cZo.roa (hash: g/XvhTcgORHoQzc25n1ZqGUd92LVhhds69w5ITmpr4Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 14:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:e9:cf:ec:3a:ab:60:f6:ce:03:2e:a9:8b:cc:13:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=168a919a4a463f3ca2bba5442550fc247da90cae Validity Not Before: Dec 19 14:00:50 2025 GMT Not After : Dec 20 14:00:50 2025 GMT Subject: CN=f75f9b6c5c31f4fe2889961e252e1398ae3a4236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:06:0f:32:bb:9d:53:71:5f:1f:31:f0:5c:da: f2:1b:35:cf:3f:06:a5:ad:9c:a7:21:b7:c2:23:f2: db:e3:54:6d:42:51:23:83:ef:79:68:71:03:7d:72: 1b:50:de:7d:d0:b4:a9:58:3e:8f:b1:31:b0:d1:a3: 11:89:3b:fd:c2:bd:02:d2:c0:a0:ca:83:28:96:93: 0f:90:19:39:4b:e4:9f:68:0b:94:9e:00:6b:0d:47: 75:18:9c:40:ce:4b:58:66:a9:1e:8d:d9:92:29:41: a3:b5:c7:c6:a9:ed:d9:b5:71:ab:c2:1c:0a:4c:46: 72:9a:01:1a:57:9c:8d:17:28:6d:11:a9:26:6c:73: 3b:61:8d:89:9e:ce:17:5e:88:e9:5d:0a:c7:ad:1b: 78:80:2b:53:0f:24:cd:1e:40:8e:db:a1:cb:83:4b: 84:14:ee:95:81:50:36:4c:ea:49:c7:98:45:8d:b4: b7:4b:f2:c4:d8:9a:9e:81:44:1d:74:ca:93:ab:00: f7:d9:5d:e2:3a:9d:64:5b:16:52:49:36:d2:66:3a: 2c:a8:50:0f:51:3f:48:51:9d:f4:64:77:2d:0b:e4: 63:bc:f1:ce:d6:17:67:63:74:d5:8e:9a:0b:b7:89: f6:58:98:85:93:a4:56:0f:3e:73:e2:7a:d8:b3:12: aa:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:5F:9B:6C:5C:31:F4:FE:28:89:96:1E:25:2E:13:98:AE:3A:42:36 X509v3 Authority Key Identifier: keyid:16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:99:2d:14:b3:66:d8:ec:47:2f:f0:bb:83:52:9a:60:70:09: e0:1d:6d:45:de:78:5d:7e:30:96:8a:d7:cc:7c:fe:5e:31:b3: 1e:fc:e9:d1:e5:fe:6d:53:cb:20:b3:33:52:b3:27:a2:3d:d1: 1d:4c:e3:85:27:b7:7f:05:2e:85:f7:98:73:d3:c8:a1:54:bf: d2:65:9a:cb:ab:e7:3b:99:84:f2:f1:32:1b:ff:8b:30:5a:df: 88:2f:4f:28:db:10:89:f2:a8:60:75:3c:0d:40:53:b8:d5:a2: 62:e8:1a:f9:10:34:4c:ad:51:07:05:6e:df:49:36:1a:c4:4e: 7f:f4:af:3f:7e:f7:5b:be:f4:c3:d7:97:7a:b9:94:bd:14:06: 98:05:56:c3:95:06:e5:e7:2a:f4:d6:11:ff:fc:e9:bc:27:8a: bf:e4:7e:81:de:24:ff:c1:4b:94:fe:72:cf:4b:c8:25:15:dc: ea:a6:09:bc:ef:ac:08:66:e5:97:18:a6:75:0d:8d:29:7d:5b: 6a:7b:c2:14:b5:df:d6:88:30:e8:61:86:0d:76:a6:a4:dd:c4: c1:e5:0a:6d:f2:cb:7a:f9:aa:b6:5a:f9:ed:12:a1:4e:bd:d7: 61:ca:4e:75:0a:a7:15:37:e7:3f:7d:ed:cd:d9:09:e9:2c:6e: 9a:68:76:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs26c/sOqtg9s4DLqmLzBPOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2OGE5MTlhNGE0NjNmM2NhMmJiYTU0NDI1NTBmYzI0N2Rh OTBjYWUwHhcNMjUxMjE5MTQwMDUwWhcNMjUxMjIwMTQwMDUwWjAzMTEwLwYDVQQD EyhmNzVmOWI2YzVjMzFmNGZlMjg4OTk2MWUyNTJlMTM5OGFlM2E0MjM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygYPMrudU3FfHzHwXNryGzXPPwal rZynIbfCI/Lb41RtQlEjg+95aHEDfXIbUN590LSpWD6PsTGw0aMRiTv9wr0C0sCg yoMolpMPkBk5S+SfaAuUngBrDUd1GJxAzktYZqkejdmSKUGjtcfGqe3ZtXGrwhwK TEZymgEaV5yNFyhtEakmbHM7YY2Jns4XXojpXQrHrRt4gCtTDyTNHkCO26HLg0uE FO6VgVA2TOpJx5hFjbS3S/LE2JqegUQddMqTqwD32V3iOp1kWxZSSTbSZjosqFAP UT9IUZ30ZHctC+RjvPHO1hdnY3TVjpoLt4n2WJiFk6RWDz5z4nrYsxKqUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPdfm2xcMfT+KImWHiUuE5iuOkI2MB8GA1UdIwQY MBaAFBaKkZpKRj88orulRCVQ/CR9qQyuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRm9xUm1rcEdQenlpdTZWRUpWRDhKSDJwREs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9mYzBiZDYtOTg2OC00YjQ5LTk4ODgt ZGNkNmEzOWY4MGRmLzEvRm9xUm1rcEdQenlpdTZWRUpWRDhKSDJwREs0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9mYzBiZDYtOTg2OC00YjQ5LTk4ODgtZGNkNmEzOWY4MGRm LzEvRm9xUm1rcEdQenlpdTZWRUpWRDhKSDJwREs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjpktFLNm 2OxHL/C7g1KaYHAJ4B1tRd54XX4wlorXzHz+XjGzHvzp0eX+bVPLILMzUrMnoj3R HUzjhSe3fwUuhfeYc9PIoVS/0mWay6vnO5mE8vEyG/+LMFrfiC9PKNsQifKoYHU8 DUBTuNWiYuga+RA0TK1RBwVu30k2GsROf/SvP373W770w9eXermUvRQGmAVWw5UG 5ecq9NYR//zpvCeKv+R+gd4k/8FLlP5yz0vIJRXc6qYJvO+sCGbllximdQ2NKX1b anvCFLXf1ogw6GGGDXampN3EweUKbfLLevmqtlr57RKhTr3XYcpOdQqnFTfnP33t zdkJ6Sxummh2/A== -----END CERTIFICATE-----Generated at Fri Dec 19 20:12:09 2025 by rpki-client