This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json) Hash identifier: HhNVgMpW/KfKyAJnafxSOLvY7B6ELJRXBRAwd9EHToA= Subject key identifier: C5:AC:76:CC:F6:80:06:05:E5:00:F7:D6:C7:1F:EE:9C:4A:E0:C0:C7 Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45 Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45 Certificate serial: 019AF9F8F60FFEFCC3C675CC736430F42F85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft Manifest number: 024F Signing time: Sun 07 Dec 2025 18:00:33 +0000 Manifest this update: Sun 07 Dec 2025 18:00:33 +0000 Manifest next update: Mon 08 Dec 2025 18:00:33 +0000 Files and hashes: 1: NymzbNZBsKNd-Q-QLvAahyZY8zY.roa (hash: 4tm9+O5MAP6uU3Q2HGQCNAKZry1kf/X+Xwuo3WltB+8=) 2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: 8QGOLqubaNb8oXNH8JqbZN3HlsZxYFVJFZZtw1D23QA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 17:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f9:f8:f6:0f:fe:fc:c3:c6:75:cc:73:64:30:f4:2f:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45 Validity Not Before: Dec 7 18:00:33 2025 GMT Not After : Dec 8 18:00:33 2025 GMT Subject: CN=c5ac76ccf6800605e500f7d6c71fee9c4ae0c0c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5e:cf:c7:8e:08:95:dd:30:3e:23:ed:8a:29: 8e:3d:95:dc:54:d4:41:5e:ca:da:cb:95:ab:6c:a2: 18:c8:5b:1c:ef:e7:b3:b4:b7:72:fb:6c:73:ca:4f: 54:84:83:69:c6:b4:6d:44:50:0e:9b:ec:14:a5:4b: a2:83:82:c3:90:ed:fc:bb:a9:30:7e:80:97:04:08: d7:1a:11:82:1d:81:aa:14:ed:8e:fb:bf:59:9c:ce: b7:c2:1b:40:33:12:db:30:64:31:51:98:1f:3a:ff: 96:9d:41:2a:f4:8b:64:69:ee:2b:d6:e0:7a:25:3e: 35:c1:dd:49:98:74:d7:fb:59:d9:b6:98:d6:d1:f1: de:ae:96:df:ec:34:79:52:e5:3d:5f:2e:99:e9:15: e3:92:8d:22:03:9a:48:d8:93:0a:dd:cc:1e:59:8f: 21:c8:c9:50:07:74:dd:2f:d8:d0:bc:f6:e9:09:cf: bc:fe:47:21:12:d1:56:b9:ad:da:3a:62:e2:11:ab: 85:43:3d:b0:a3:33:dd:8f:ea:87:6b:62:f2:e9:4b: 81:4d:62:b1:76:52:90:2d:84:a2:d3:34:3f:3d:1c: d9:90:d4:9c:f1:61:21:8a:1c:a1:4b:b8:0c:89:01: 0e:75:3d:ca:a8:8a:ce:a2:7f:69:63:2f:1f:02:1a: d7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:AC:76:CC:F6:80:06:05:E5:00:F7:D6:C7:1F:EE:9C:4A:E0:C0:C7 X509v3 Authority Key Identifier: keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:87:e7:1d:91:83:df:44:9a:8d:ec:e7:a8:7a:96:4d:78:02: a8:54:e7:04:3f:01:2d:f1:b6:c3:bf:4d:3a:1e:45:b1:58:f8: 98:33:aa:01:c7:f9:58:bb:70:cc:e7:84:ec:0c:54:e2:fc:bc: 74:18:c1:77:b5:c9:50:e1:d2:cb:9b:5e:42:ad:c7:1b:df:80: cc:83:d1:eb:3b:0a:bb:3f:1e:e8:e0:a6:ce:50:26:44:24:f4: 32:8b:a6:0f:93:41:20:ee:2d:de:5f:58:50:4a:e2:bb:34:fc: 6f:a4:ed:26:db:c2:8d:a9:26:ba:d3:3f:15:22:1b:bb:e6:95: e2:e5:3e:d9:8c:bd:bb:e2:7a:a8:9c:ea:23:46:1d:6f:09:d6: e4:06:7c:74:5e:15:9f:f9:98:0a:72:c5:5d:71:7f:6e:7f:8e: 2c:71:43:8d:7e:58:4e:f1:86:90:ea:fc:f6:4f:b4:9b:af:90: bd:84:c5:1a:3f:4e:3c:d8:4d:54:68:df:7b:e0:d8:7b:1e:7e: ef:a8:bb:7e:02:7f:bd:d4:eb:9e:2f:48:3d:ad:28:1f:8f:25: 1b:9f:89:e8:62:67:db:bb:4b:cc:25:3c:9a:fd:b3:14:52:dc: 68:31:ba:19:b8:2f:77:ab:57:00:f1:ca:c8:d0:f2:29:eb:d9: ec:dc:6a:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr5+PYP/vzDxnXMc2Qw9C+FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NTViODBjNDVkZmI1ZWE3YWFhN2RkMWQ4ZWQ4YjE0Zjlj MWRjNDUwHhcNMjUxMjA3MTgwMDMzWhcNMjUxMjA4MTgwMDMzWjAzMTEwLwYDVQQD EyhjNWFjNzZjY2Y2ODAwNjA1ZTUwMGY3ZDZjNzFmZWU5YzRhZTBjMGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyl7Px44Ild0wPiPtiimOPZXcVNRB Xsray5WrbKIYyFsc7+eztLdy+2xzyk9UhINpxrRtRFAOm+wUpUuig4LDkO38u6kw foCXBAjXGhGCHYGqFO2O+79ZnM63whtAMxLbMGQxUZgfOv+WnUEq9Itkae4r1uB6 JT41wd1JmHTX+1nZtpjW0fHerpbf7DR5UuU9Xy6Z6RXjko0iA5pI2JMK3cweWY8h yMlQB3TdL9jQvPbpCc+8/kchEtFWua3aOmLiEauFQz2wozPdj+qHa2Ly6UuBTWKx dlKQLYSi0zQ/PRzZkNSc8WEhihyhS7gMiQEOdT3KqIrOon9pYy8fAhrX+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMWsdsz2gAYF5QD31scf7pxK4MDHMB8GA1UdIwQY MBaAFJhVuAxF37Xqeqp90djtixT5wdxFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQt ZWU2YzUwOWI2MjIxLzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQtZWU2YzUwOWI2MjIx LzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg4fnHZGD 30SajeznqHqWTXgCqFTnBD8BLfG2w79NOh5FsVj4mDOqAcf5WLtwzOeE7AxU4vy8 dBjBd7XJUOHSy5teQq3HG9+AzIPR6zsKuz8e6OCmzlAmRCT0MoumD5NBIO4t3l9Y UEriuzT8b6TtJtvCjakmutM/FSIbu+aV4uU+2Yy9u+J6qJzqI0YdbwnW5AZ8dF4V n/mYCnLFXXF/bn+OLHFDjX5YTvGGkOr89k+0m6+QvYTFGj9OPNhNVGjfe+DYex5+ 76i7fgJ/vdTrni9IPa0oH48lG5+J6GJn27tLzCU8mv2zFFLcaDG6Gbgvd6tXAPHK yNDyKevZ7Nxq9w== -----END CERTIFICATE-----Generated at Sun Dec 7 23:15:42 2025 by rpki-client