This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json) Hash identifier: RCdGHdk5f13WOoQ3KJFs6wyPBmf9joMXLqDRJ0gJiBw= Subject key identifier: 54:45:4E:B6:8A:60:D7:50:56:CF:CE:1D:C4:50:DA:D9:72:73:CD:E3 Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24 Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624 Certificate serial: 019AF208E97541C391E57E2AB1A9A4D1BC1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 05:01:01 +0000 Manifest this update: Sat 06 Dec 2025 05:01:01 +0000 Manifest next update: Sun 07 Dec 2025 05:01:01 +0000 Files and hashes: 1: G9mF37Fb91r0jC33-YcK9r4IAmk.roa (hash: MaEVR8Nlqavgaakwb2T4C4sUXoGT+mVODKAXw14Vucs=) 2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: qLIdVqC99AihG9fzJHeBjz4vHxAsp10h6PlgZOw/lcg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:e9:75:41:c3:91:e5:7e:2a:b1:a9:a4:d1:bc:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624 Validity Not Before: Dec 6 05:01:01 2025 GMT Not After : Dec 7 05:01:01 2025 GMT Subject: CN=54454eb68a60d75056cfce1dc450dad97273cde3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5c:dc:4b:27:d7:b4:79:d2:14:38:4d:fe:94: 1f:7c:9d:6c:c2:75:7c:b7:74:6b:9e:ce:d1:18:29: 3b:72:ce:8f:e4:69:b4:b9:06:0c:3d:20:8a:b4:3a: a1:1c:15:60:5f:0c:b1:36:1c:0c:91:8c:6c:ca:6e: 26:54:ff:b1:fd:d3:eb:30:0a:a2:60:37:eb:b8:e5: e8:60:2f:27:5e:43:a9:34:69:19:18:21:1a:d8:9a: 40:0a:b3:2a:c4:b6:c1:d9:04:f5:b0:b6:46:d9:b6: 77:2d:6d:64:a8:00:b2:28:1c:74:ee:f1:2e:9a:9c: c4:56:81:88:3f:b7:fb:cc:b0:21:91:68:ea:fa:71: 0f:d5:11:ea:f7:73:60:ff:7a:c7:0a:68:7d:ed:27: 99:b8:17:de:52:aa:9f:b0:4e:20:76:33:6c:66:de: 21:71:2e:5d:41:c7:99:b7:84:78:71:6a:78:dc:e8: af:d4:27:31:f2:62:02:0e:1f:82:e0:6b:38:e5:aa: 39:e0:bd:9d:59:8f:7d:f6:f2:9c:ac:51:6b:c9:0b: 5a:f4:de:4f:be:98:b5:06:2c:c4:71:6e:b5:e8:1d: 64:04:9e:a4:75:18:c2:d2:f7:0b:8d:a2:3b:05:a2: cc:7e:71:78:81:3e:bb:7a:b8:fa:13:f6:2a:33:bc: 5e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:45:4E:B6:8A:60:D7:50:56:CF:CE:1D:C4:50:DA:D9:72:73:CD:E3 X509v3 Authority Key Identifier: keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:e0:33:96:6d:71:2f:e3:58:36:5c:cd:8a:61:6c:53:0d:94: 11:9f:b8:65:18:10:00:30:b2:e2:b1:fd:29:3a:49:25:d4:61: b3:1c:71:59:eb:3a:b5:e3:eb:8a:66:8e:21:56:fc:7c:79:9b: a2:69:29:29:e8:37:fd:5d:26:aa:c9:0b:1e:d1:ce:a2:ee:79: 25:63:93:1f:f2:af:bf:19:1f:c3:63:c0:9e:47:0c:a0:5c:96: 96:4c:30:c1:b3:f6:dc:33:3c:ea:b4:0d:64:27:06:5a:06:bd: c7:a4:54:52:da:65:b7:7e:1d:3f:44:b5:d3:7d:cd:35:2b:18: 7c:90:d6:69:58:e9:50:52:6a:a4:de:76:92:00:a0:09:a8:6e: 27:7c:6e:c4:a0:04:9b:7e:cc:0d:fc:58:28:c6:d4:57:ef:f5: c7:09:9d:03:4c:85:3a:b3:32:5e:eb:45:d9:87:f4:65:98:38: e4:45:51:a5:a9:70:07:34:39:30:8f:98:fa:9b:56:08:e0:59: 3e:ae:8c:93:a2:01:e4:a8:da:d6:5a:8c:e9:89:a2:52:b7:83: 01:fd:a9:9b:49:0b:44:59:27:27:e5:5a:9a:85:e4:83:a3:c4: bb:42:02:f3:d8:2e:a2:7e:28:2a:14:3c:df:a2:e2:20:6c:14: ba:d0:b3:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCOl1QcOR5X4qsamk0bweMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5ZGViMmUxZjg1YTE3ZGEyNDBjZmM4MTZkOTcyYzg1ZTQx MWU2MjQwHhcNMjUxMjA2MDUwMTAxWhcNMjUxMjA3MDUwMTAxWjAzMTEwLwYDVQQD Eyg1NDQ1NGViNjhhNjBkNzUwNTZjZmNlMWRjNDUwZGFkOTcyNzNjZGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFzcSyfXtHnSFDhN/pQffJ1swnV8 t3Rrns7RGCk7cs6P5Gm0uQYMPSCKtDqhHBVgXwyxNhwMkYxsym4mVP+x/dPrMAqi YDfruOXoYC8nXkOpNGkZGCEa2JpACrMqxLbB2QT1sLZG2bZ3LW1kqACyKBx07vEu mpzEVoGIP7f7zLAhkWjq+nEP1RHq93Ng/3rHCmh97SeZuBfeUqqfsE4gdjNsZt4h cS5dQceZt4R4cWp43Oiv1Ccx8mICDh+C4Gs45ao54L2dWY999vKcrFFryQta9N5P vpi1BizEcW616B1kBJ6kdRjC0vcLjaI7BaLMfnF4gT67erj6E/YqM7xeewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFRFTraKYNdQVs/OHcRQ2tlyc83jMB8GA1UdIwQY MBaAFJnesuH4WhfaJAz8gW2XLIXkEeYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWQ2eTRmaGFGOW9rRFB5QmJaY3NoZVFSNWlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy83YzkxY2EtNTVmNy00M2E0LWI5NTAt OGRjOTRlODliZjAzLzEvbWQ2eTRmaGFGOW9rRFB5QmJaY3NoZVFSNWlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy83YzkxY2EtNTVmNy00M2E0LWI5NTAtOGRjOTRlODliZjAz LzEvbWQ2eTRmaGFGOW9rRFB5QmJaY3NoZVFSNWlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe+Azlm1x L+NYNlzNimFsUw2UEZ+4ZRgQADCy4rH9KTpJJdRhsxxxWes6tePrimaOIVb8fHmb omkpKeg3/V0mqskLHtHOou55JWOTH/Kvvxkfw2PAnkcMoFyWlkwwwbP23DM86rQN ZCcGWga9x6RUUtplt34dP0S1033NNSsYfJDWaVjpUFJqpN52kgCgCahuJ3xuxKAE m37MDfxYKMbUV+/1xwmdA0yFOrMyXutF2Yf0ZZg45EVRpalwBzQ5MI+Y+ptWCOBZ Pq6Mk6IB5Kja1lqM6YmiUreDAf2pm0kLRFknJ+VamoXkg6PEu0IC89guon4oKhQ8 36LiIGwUutCzag== -----END CERTIFICATE-----Generated at Sat Dec 6 09:59:12 2025 by rpki-client