This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft File: 9aUA85diOrHVYASDVGf8zz0KOw8.mft (raw, json) Hash identifier: IYS4M4NQpM/lmtbPC7M2/KkfDVVv12gc2G+72sjGXqA= Subject key identifier: B4:3C:30:DA:2D:A5:E8:A2:93:6C:C2:22:D5:8C:96:3C:CD:4B:FE:A8 Authority key identifier: F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F Certificate issuer: /CN=f5a500f397623ab1d56004835467fccf3d0a3b0f Certificate serial: 019AF2ADCF46F383F10E4853900DBBE9DCE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft Manifest number: 0DFB Signing time: Sat 06 Dec 2025 08:01:08 +0000 Manifest this update: Sat 06 Dec 2025 08:01:08 +0000 Manifest next update: Sun 07 Dec 2025 08:01:08 +0000 Files and hashes: 1: 9aUA85diOrHVYASDVGf8zz0KOw8.crl (hash: 27lUK66esXZwdEvXMe4gqgkQGD70HHQ4mVHIhUAutto=) 2: QcGmgONWTyq5Fz8rEzipqonOAWw.roa (hash: 22mskH997ckztTLrFVqkKSOahK8av0gX4PoZWQuu36A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:cf:46:f3:83:f1:0e:48:53:90:0d:bb:e9:dc:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5a500f397623ab1d56004835467fccf3d0a3b0f Validity Not Before: Dec 6 08:01:08 2025 GMT Not After : Dec 7 08:01:08 2025 GMT Subject: CN=b43c30da2da5e8a2936cc222d58c963ccd4bfea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:02:83:62:19:d5:99:ad:2b:f1:b7:92:78:d6: eb:e9:20:d9:69:52:54:20:78:7c:65:6e:c0:84:26: f6:92:e0:14:b8:16:a6:10:ec:d6:d1:16:51:a3:a6: c6:ec:f1:2f:80:9b:9e:fe:22:6a:4e:9d:92:c0:88: 78:7d:d2:c1:6f:46:73:b5:7a:fb:48:08:3f:aa:d5: 36:70:6b:9b:9f:23:3a:47:5d:d0:56:cf:bd:7e:11: d0:c7:fd:0c:ff:97:ec:3b:09:31:06:9a:9c:83:09: 3c:b5:a0:9a:8d:98:2f:a9:f2:8b:f9:97:34:1a:95: d1:8f:82:f2:71:63:0a:1a:5b:01:9e:68:d8:f7:7a: c7:46:26:ed:ed:df:06:80:ba:d3:e6:0f:a5:48:d3: e8:8b:6b:46:18:49:1b:93:ed:58:fc:c7:41:25:76: 1a:12:64:af:32:a4:fc:33:ae:8a:36:4e:ad:0e:d0: 75:e4:c6:85:16:48:b2:c7:98:eb:43:27:e0:eb:4c: f4:db:ac:f2:d5:76:fa:00:a3:27:af:ed:b8:59:1c: 83:65:c4:72:ba:85:48:bf:9a:be:bf:7e:4c:28:ee: 50:2f:54:7e:ee:13:59:6c:71:0b:70:f0:89:54:8d: fe:e3:85:13:73:c9:a6:08:43:93:0d:1b:cf:12:f5: c6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3C:30:DA:2D:A5:E8:A2:93:6C:C2:22:D5:8C:96:3C:CD:4B:FE:A8 X509v3 Authority Key Identifier: keyid:F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:bf:0e:27:63:d4:30:b5:24:62:1b:40:12:4e:a9:3d:a2:33: 72:86:33:af:72:d4:aa:96:c5:cd:aa:75:45:60:ac:63:67:1b: 00:53:7c:21:64:8e:fc:25:aa:53:1c:db:4c:0c:f7:c7:c8:de: 3b:91:e9:9c:31:14:9d:2e:9e:83:6b:a3:f7:29:ff:43:47:88: ad:5a:99:26:24:0c:81:89:39:c3:24:1f:c6:bd:59:cb:43:e8: 7f:b3:d0:29:84:c2:bc:00:79:2e:51:3c:62:03:6f:67:7a:f8: f0:0b:71:aa:7a:b8:89:f5:fe:a7:35:b5:de:7d:e6:b3:8f:8f: 30:b7:3f:02:fc:7c:3b:35:75:88:6e:31:41:23:2a:ee:9b:ee: 8a:67:90:b7:67:50:90:b0:71:fc:26:11:f4:59:00:43:c9:84: 7d:52:dd:0e:0e:ee:b5:54:4c:19:4d:47:73:ec:aa:4a:4a:71: 03:b7:73:b3:0d:ed:b8:96:7c:48:22:df:01:4e:05:c0:c5:99: c2:33:78:dd:19:18:8c:3e:62:1c:a7:89:d1:f0:6e:50:cc:4b: cb:fb:39:33:76:b8:8a:5b:a6:e1:c4:d7:32:bb:b6:bf:e3:42: 3e:07:83:e8:2f:f9:22:ba:96:bb:bd:55:17:a9:9a:58:d4:bf: 6d:84:ef:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrc9G84PxDkhTkA276dzjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1YTUwMGYzOTc2MjNhYjFkNTYwMDQ4MzU0NjdmY2NmM2Qw YTNiMGYwHhcNMjUxMjA2MDgwMTA4WhcNMjUxMjA3MDgwMTA4WjAzMTEwLwYDVQQD EyhiNDNjMzBkYTJkYTVlOGEyOTM2Y2MyMjJkNThjOTYzY2NkNGJmZWE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3gKDYhnVma0r8beSeNbr6SDZaVJU IHh8ZW7AhCb2kuAUuBamEOzW0RZRo6bG7PEvgJue/iJqTp2SwIh4fdLBb0ZztXr7 SAg/qtU2cGubnyM6R13QVs+9fhHQx/0M/5fsOwkxBpqcgwk8taCajZgvqfKL+Zc0 GpXRj4LycWMKGlsBnmjY93rHRibt7d8GgLrT5g+lSNPoi2tGGEkbk+1Y/MdBJXYa EmSvMqT8M66KNk6tDtB15MaFFkiyx5jrQyfg60z026zy1Xb6AKMnr+24WRyDZcRy uoVIv5q+v35MKO5QL1R+7hNZbHELcPCJVI3+44UTc8mmCEOTDRvPEvXG/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLQ8MNotpeiik2zCItWMljzNS/6oMB8GA1UdIwQY MBaAFPWlAPOXYjqx1WAEg1Rn/M89CjsPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWFVQTg1ZGlPckhWWUFTRFZHZjh6ejBLT3c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9hNzYwZjMtMDA2Mi00Mzc0LTgyOTAt ZTc2ZmQ5YzlkYzhjLzEvOWFVQTg1ZGlPckhWWUFTRFZHZjh6ejBLT3c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9hNzYwZjMtMDA2Mi00Mzc0LTgyOTAtZTc2ZmQ5YzlkYzhj LzEvOWFVQTg1ZGlPckhWWUFTRFZHZjh6ejBLT3c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVL8OJ2PU MLUkYhtAEk6pPaIzcoYzr3LUqpbFzap1RWCsY2cbAFN8IWSO/CWqUxzbTAz3x8je O5HpnDEUnS6eg2uj9yn/Q0eIrVqZJiQMgYk5wyQfxr1Zy0Pof7PQKYTCvAB5LlE8 YgNvZ3r48Atxqnq4ifX+pzW13n3ms4+PMLc/Avx8OzV1iG4xQSMq7pvuimeQt2dQ kLBx/CYR9FkAQ8mEfVLdDg7utVRMGU1Hc+yqSkpxA7dzsw3tuJZ8SCLfAU4FwMWZ wjN43RkYjD5iHKeJ0fBuUMxLy/s5M3a4ilum4cTXMru2v+NCPgeD6C/5IrqWu71V F6maWNS/bYTvqQ== -----END CERTIFICATE-----Generated at Sat Dec 6 15:55:49 2025 by rpki-client