This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft File: cd9sdT6ghb7zcrOSYw90uldpbuU.mft (raw, json) Hash identifier: 1UypMlQV+w0VDdCxUKvxd6e936lWhQrivaQ6E6TzVwA= Subject key identifier: C9:77:2F:68:B0:67:33:5E:7B:FC:2F:44:3A:E6:C7:50:5F:16:45:36 Authority key identifier: 71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5 Certificate issuer: /CN=71df6c753ea085bef372b392630f74ba57696ee5 Certificate serial: 019AF31B7D787E3C832637871EE4076BC96C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft Manifest number: 1473 Signing time: Sat 06 Dec 2025 10:00:56 +0000 Manifest this update: Sat 06 Dec 2025 10:00:56 +0000 Manifest next update: Sun 07 Dec 2025 10:00:56 +0000 Files and hashes: 1: 26OroNSilLDsLnRmS90OawnRg8M.roa (hash: 2vZiL1ss373Q0TX+B8Q8SMDZKCr1m9fpyjjeqgVg0rI=) 2: cd9sdT6ghb7zcrOSYw90uldpbuU.crl (hash: S73OfQFkW+PjNSPwRjf/g8hagLkHk2MOB1k+mpo6ZZU=) 3: yFq0JfOaNjdhRiNZMahKgBz5pBs.roa (hash: HLvs21UJM8ndMu/vC6YjvpshtGffGUPV1RHDv0ERCAc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:7d:78:7e:3c:83:26:37:87:1e:e4:07:6b:c9:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71df6c753ea085bef372b392630f74ba57696ee5 Validity Not Before: Dec 6 10:00:56 2025 GMT Not After : Dec 7 10:00:56 2025 GMT Subject: CN=c9772f68b067335e7bfc2f443ae6c7505f164536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4f:ba:94:8e:7e:80:35:93:be:53:c4:e1:b0: 3a:26:f5:d8:04:c1:59:ee:46:fe:e1:69:a2:02:99: af:5a:3a:5e:17:b1:5c:5e:e9:70:c0:5c:35:1b:cd: 93:34:17:4b:ea:f7:5e:46:3e:44:ab:78:c1:20:e4: 78:65:67:da:da:b0:73:d5:f9:4d:e4:07:7e:2a:4f: 19:1f:4f:19:cc:63:a6:c0:6a:87:89:00:8b:e6:0d: c5:98:e5:5d:1e:2c:89:7c:2e:45:bb:1f:45:c2:fd: ed:79:db:f1:dd:98:82:8e:6e:98:ab:ed:25:19:78: 6a:dd:b4:cd:11:78:42:c1:0f:0b:f0:d8:32:22:ea: c0:7b:e4:a8:ed:30:05:cc:f7:38:28:c2:40:2b:ef: e1:1c:68:3e:3c:a2:e9:89:7c:9f:26:4f:a9:64:75: 15:d7:dd:0f:f9:3e:c6:84:45:43:4e:c5:60:55:1b: 9a:e7:1e:ee:8b:1d:5c:d8:5b:6f:49:73:7f:0d:1e: aa:f3:eb:bf:67:86:dc:75:3a:60:d4:a1:85:5a:2c: 07:8f:a0:fd:af:ff:ac:a4:3c:a1:e4:6b:2c:4c:93: 62:14:0f:a9:ea:5f:e7:fa:6f:64:0f:b3:08:70:2b: ee:bb:18:5d:6f:4e:13:c8:2a:b7:6d:03:54:8a:34: 52:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:77:2F:68:B0:67:33:5E:7B:FC:2F:44:3A:E6:C7:50:5F:16:45:36 X509v3 Authority Key Identifier: keyid:71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:f5:48:ab:81:c9:e4:14:dd:af:12:0f:97:a9:7b:1b:08:55: cf:15:80:3d:d2:0d:85:4e:a3:c3:0e:e5:07:5f:5b:84:d8:2f: 8e:fc:72:60:e5:34:51:6e:ab:69:c7:fa:72:8b:fa:a8:69:05: ac:32:08:8e:0b:85:a8:5a:d5:19:87:af:58:d8:1f:e4:ab:a5: de:63:2b:b2:1b:c2:ff:f5:d3:21:57:94:3c:d4:db:e8:dc:c8: 15:d8:a8:9b:37:b8:fb:d9:ea:92:89:ef:fc:e5:c7:f2:2a:1f: 53:f7:10:de:64:b0:77:f4:18:8c:99:21:16:50:af:69:cb:e3: 2b:b8:28:a6:e7:0d:d2:69:5d:c7:ae:2a:4f:19:df:54:0d:6b: 0d:2f:60:8d:8f:97:99:ff:b7:97:ce:0a:71:1a:7b:85:87:7c: c0:04:59:c3:02:a3:7e:c8:d0:ec:1d:87:e8:5c:ea:b8:7a:32: f5:62:a1:97:89:68:8d:55:cf:25:9b:13:21:bc:a0:4a:58:a1: 3d:57:06:c0:99:61:1f:ad:c7:2f:80:92:e6:04:c1:ec:62:01: 65:a7:5e:c2:29:bc:7f:58:89:20:5d:19:f8:97:8a:23:16:82: 4b:4d:38:5e:f6:0a:8c:be:4a:09:59:eb:f9:eb:e1:3b:86:ac: e3:dd:5c:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG314fjyDJjeHHuQHa8lsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZGY2Yzc1M2VhMDg1YmVmMzcyYjM5MjYzMGY3NGJhNTc2 OTZlZTUwHhcNMjUxMjA2MTAwMDU2WhcNMjUxMjA3MTAwMDU2WjAzMTEwLwYDVQQD EyhjOTc3MmY2OGIwNjczMzVlN2JmYzJmNDQzYWU2Yzc1MDVmMTY0NTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0+6lI5+gDWTvlPE4bA6JvXYBMFZ 7kb+4WmiApmvWjpeF7FcXulwwFw1G82TNBdL6vdeRj5Eq3jBIOR4ZWfa2rBz1flN 5Ad+Kk8ZH08ZzGOmwGqHiQCL5g3FmOVdHiyJfC5Fux9Fwv3tedvx3ZiCjm6Yq+0l GXhq3bTNEXhCwQ8L8NgyIurAe+So7TAFzPc4KMJAK+/hHGg+PKLpiXyfJk+pZHUV 190P+T7GhEVDTsVgVRua5x7uix1c2FtvSXN/DR6q8+u/Z4bcdTpg1KGFWiwHj6D9 r/+spDyh5GssTJNiFA+p6l/n+m9kD7MIcCvuuxhdb04TyCq3bQNUijRSuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMl3L2iwZzNee/wvRDrmx1BfFkU2MB8GA1UdIwQY MBaAFHHfbHU+oIW+83KzkmMPdLpXaW7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2Qt YTgzODQ1Y2FhYzIxLzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2QtYTgzODQ1Y2FhYzIx LzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW/VIq4HJ 5BTdrxIPl6l7GwhVzxWAPdINhU6jww7lB19bhNgvjvxyYOU0UW6racf6cov6qGkF rDIIjguFqFrVGYevWNgf5Kul3mMrshvC//XTIVeUPNTb6NzIFdiomze4+9nqkonv /OXH8iofU/cQ3mSwd/QYjJkhFlCvacvjK7gopucN0mldx64qTxnfVA1rDS9gjY+X mf+3l84KcRp7hYd8wARZwwKjfsjQ7B2H6FzquHoy9WKhl4lojVXPJZsTIbygSlih PVcGwJlhH63HL4CS5gTB7GIBZadewim8f1iJIF0Z+JeKIxaCS004XvYKjL5KCVnr +evhO4as491cgw== -----END CERTIFICATE-----Generated at Sat Dec 6 14:02:53 2025 by rpki-client