This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft File: rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft (raw, json) Hash identifier: pD00k6FxkHeJPOVHohDGddt8Ht4PMJzDZ7auiXDL09s= Subject key identifier: C9:BC:89:06:CE:99:E4:68:98:FE:2C:41:B4:10:8F:30:B2:3B:A9:51 Authority key identifier: AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8 Certificate issuer: /CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8 Certificate serial: 019AF38A1BC59030EF0337167853F5409F70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft Manifest number: 13DC Signing time: Sat 06 Dec 2025 12:01:45 +0000 Manifest this update: Sat 06 Dec 2025 12:01:45 +0000 Manifest next update: Sun 07 Dec 2025 12:01:45 +0000 Files and hashes: 1: r6C99vK2TllFCTWcqpJRSg5MRPM.roa (hash: 3+br3Wh/zPJPiW24ubp7XOxLj4qW7AeahE4kU9GEl1U=) 2: rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl (hash: QU97Y9Geiq5Sicijpeb/q9NZW59YHdtBSW2R1TM7Gmc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:8a:1b:c5:90:30:ef:03:37:16:78:53:f5:40:9f:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8 Validity Not Before: Dec 6 12:01:45 2025 GMT Not After : Dec 7 12:01:45 2025 GMT Subject: CN=c9bc8906ce99e46898fe2c41b4108f30b23ba951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:45:b6:7e:bd:ae:5f:81:72:e5:e1:ac:29:54: a9:9a:15:04:3d:2d:b9:1b:10:b2:08:ce:2c:52:3f: 9a:5a:13:a5:2a:f6:72:82:17:25:86:cc:3f:3a:97: 64:5b:2a:3d:af:93:e8:67:85:0b:b5:4f:24:cb:41: c6:a2:d2:13:52:5c:63:9a:2d:1b:42:65:59:f6:e5: 69:d2:6f:48:b7:02:90:9e:e0:27:6a:eb:a4:5f:b2: 75:5a:cb:b8:d0:c9:d4:de:dc:e9:fe:cf:fa:b1:2e: ca:fd:34:92:20:ac:38:ef:42:77:dd:bf:19:81:0b: fb:cb:f3:36:42:ac:66:b5:1f:e9:e2:37:5c:4f:05: 59:6b:60:fa:b2:72:99:33:3b:9b:e5:32:96:8d:ea: c5:6a:11:b9:56:1e:f0:6c:c6:80:c2:9c:11:05:23: 0c:18:7b:94:48:53:64:f7:19:2a:50:3d:3a:f9:61: 14:45:9d:cc:83:5e:11:ee:db:d3:0e:c8:01:2a:08: 2c:94:46:62:c9:71:2c:b6:bb:fe:61:0d:c5:a2:3d: 00:18:a2:76:17:09:3a:6f:c7:04:28:a3:14:f8:52: d0:50:9b:ff:28:4e:7c:2b:18:15:72:da:2c:b7:2e: d8:31:d8:e5:5a:8a:ad:31:c0:fe:8f:2c:5f:df:c3: 2b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BC:89:06:CE:99:E4:68:98:FE:2C:41:B4:10:8F:30:B2:3B:A9:51 X509v3 Authority Key Identifier: keyid:AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:7b:84:c3:ec:b0:a5:7a:ee:d9:a8:b7:12:9f:cd:ec:d1:5e: 4f:56:53:a0:86:0b:ca:05:e5:d9:00:d4:2b:23:85:28:18:3a: bb:68:28:c7:73:7d:0e:15:3f:c0:33:b3:08:05:87:83:be:51: ee:6a:3a:6e:18:91:9c:e0:5c:d8:67:ef:55:6b:91:ac:03:d1: e3:e0:ee:90:2d:d6:bf:47:11:71:f3:7b:c1:e4:97:52:55:22: 08:c1:0d:5c:8f:bc:f6:4f:22:83:20:b0:21:1f:56:b8:62:f5: 9f:2f:28:9f:3d:f5:61:83:3f:0a:bb:6d:7b:20:4e:bd:71:d7: 44:aa:c2:99:0b:46:85:d3:42:b7:71:06:f8:d4:99:b8:56:a0: 83:50:38:1d:a4:ae:da:21:46:f5:e0:76:fb:32:2b:e2:35:52: 75:71:3d:2b:59:6b:63:97:de:4f:19:be:c4:c4:23:21:00:47: 91:d3:08:d0:b6:14:e5:59:93:97:54:ac:28:d3:f9:a0:8a:05: b7:4a:7b:38:d9:d5:24:df:05:ca:54:bc:eb:16:e3:72:d5:92: 78:a9:9f:1d:21:4d:7a:88:92:3f:19:66:b8:08:ac:0a:b7:d5: 07:07:7a:40:72:ec:94:87:b8:ef:2a:08:a3:c5:c1:b9:3f:d0: 9c:37:7b:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzihvFkDDvAzcWeFP1QJ9wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkOGRkMTdhNzY4ZTNiNmZiZmE3YTcwMDlhNzAwN2ViZTY1 YjQ1YzgwHhcNMjUxMjA2MTIwMTQ1WhcNMjUxMjA3MTIwMTQ1WjAzMTEwLwYDVQQD EyhjOWJjODkwNmNlOTllNDY4OThmZTJjNDFiNDEwOGYzMGIyM2JhOTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkW2fr2uX4Fy5eGsKVSpmhUEPS25 GxCyCM4sUj+aWhOlKvZyghclhsw/OpdkWyo9r5PoZ4ULtU8ky0HGotITUlxjmi0b QmVZ9uVp0m9ItwKQnuAnauukX7J1Wsu40MnU3tzp/s/6sS7K/TSSIKw470J33b8Z gQv7y/M2QqxmtR/p4jdcTwVZa2D6snKZMzub5TKWjerFahG5Vh7wbMaAwpwRBSMM GHuUSFNk9xkqUD06+WEURZ3Mg14R7tvTDsgBKggslEZiyXEstrv+YQ3Foj0AGKJ2 Fwk6b8cEKKMU+FLQUJv/KE58KxgVctosty7YMdjlWoqtMcD+jyxf38Mr/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMm8iQbOmeRomP4sQbQQjzCyO6lRMB8GA1UdIwQY MBaAFK2N0Xp2jjtvv6enAJpwB+vmW0XIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclkzUmVuYU9PMi1fcDZjQW1uQUg2LVpiUmNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy85OGIzNWItOTQ1ZS00MGM1LWJiOTUt OWVhZGQzNTFmYzc5LzEvclkzUmVuYU9PMi1fcDZjQW1uQUg2LVpiUmNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy85OGIzNWItOTQ1ZS00MGM1LWJiOTUtOWVhZGQzNTFmYzc5 LzEvclkzUmVuYU9PMi1fcDZjQW1uQUg2LVpiUmNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFXuEw+yw pXru2ai3Ep/N7NFeT1ZToIYLygXl2QDUKyOFKBg6u2gox3N9DhU/wDOzCAWHg75R 7mo6bhiRnOBc2GfvVWuRrAPR4+DukC3Wv0cRcfN7weSXUlUiCMENXI+89k8igyCw IR9WuGL1ny8onz31YYM/CrtteyBOvXHXRKrCmQtGhdNCt3EG+NSZuFagg1A4HaSu 2iFG9eB2+zIr4jVSdXE9K1lrY5feTxm+xMQjIQBHkdMI0LYU5VmTl1SsKNP5oIoF t0p7ONnVJN8FylS86xbjctWSeKmfHSFNeoiSPxlmuAisCrfVBwd6QHLslIe47yoI o8XBuT/QnDd7Ng== -----END CERTIFICATE-----Generated at Sat Dec 6 14:21:37 2025 by rpki-client