This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json) Hash identifier: kaunlF9OTKxAHheZGNNFnIK9i+/62ZC7XY/AS4yG5aI= Subject key identifier: 26:ED:E2:68:8A:65:DD:52:97:79:DD:D0:74:72:6B:23:6B:64:57:6F Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30 Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130 Certificate serial: 019B330D4045BFA358FC518654B98507A279 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft Manifest number: 03F2 Signing time: Thu 18 Dec 2025 20:01:04 +0000 Manifest this update: Thu 18 Dec 2025 20:01:04 +0000 Manifest next update: Fri 19 Dec 2025 20:01:04 +0000 Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: Vr2v8p7VecjQFFZxjfdU0R+qOOFvGMt9RACgEecqLrg=) 2: _O0LKSVD2FWQH20B8h-W2BSyf7E.roa (hash: /osVaD1xwsZSvzrjM1Npx7gTyOHOWobbSsuEq9U9lZY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:40:45:bf:a3:58:fc:51:86:54:b9:85:07:a2:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d248185956e443b55b062200f964537bc10bc130 Validity Not Before: Dec 18 20:01:04 2025 GMT Not After : Dec 19 20:01:04 2025 GMT Subject: CN=26ede2688a65dd529779ddd074726b236b64576f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f9:16:d5:f4:98:3f:ce:78:ad:0a:4c:47:83: 9b:b9:09:29:ee:40:b2:c2:06:82:1f:84:38:e8:a3: 84:b9:4d:e2:ef:78:80:50:9b:72:30:42:f4:e8:00: 67:f8:a6:8d:54:0e:3f:78:d6:de:df:09:91:e8:b2: c0:a7:e6:ad:ca:3b:c9:71:0a:45:d1:94:ee:0f:66: c5:da:50:8d:e1:a7:0b:c8:b8:f6:10:85:4f:b1:04: 34:41:33:b0:7a:45:81:cc:f7:39:c0:45:52:bb:50: da:aa:99:b6:3e:c0:87:cb:e7:f9:94:b7:50:bf:7e: 84:c6:e0:08:f3:b0:b0:28:84:2a:cd:43:3a:28:f2: 1e:22:55:41:5b:38:6a:35:ec:48:a6:95:dc:29:af: 3a:de:40:cb:62:ff:cb:34:09:81:a6:3f:0b:a0:d9: dc:26:d3:f8:5a:cd:ca:36:57:49:ea:d6:24:69:6c: a3:04:a5:40:92:4c:25:55:f1:87:2d:48:cd:c2:c9: a3:23:e2:64:6c:d4:cc:94:ef:06:a0:8a:8f:a1:ef: 27:b1:14:a0:e3:9e:eb:39:d9:67:ec:dc:18:3d:49: 6d:ad:98:78:7b:8a:69:74:cf:af:f8:6f:29:48:e8: d5:b1:1a:5f:7e:ff:31:b4:a8:c7:52:d2:c1:45:44: c5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:ED:E2:68:8A:65:DD:52:97:79:DD:D0:74:72:6B:23:6B:64:57:6F X509v3 Authority Key Identifier: keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:06:c8:69:32:60:14:be:6a:18:a5:b6:cf:0a:04:87:33:30: f4:63:c2:ee:32:61:8c:c3:e8:75:2d:a8:2d:50:80:be:8f:4b: 0a:e1:4b:a1:73:14:8a:4b:34:00:9c:85:73:bd:a0:46:78:e5: cb:23:c8:ab:90:98:b7:0d:66:90:11:25:d3:56:8c:0e:28:1a: 1a:35:44:f7:c6:ac:ad:10:12:6d:56:88:81:56:df:56:d1:87: 47:d1:e6:dc:9c:7b:07:7a:be:91:77:47:1e:b2:f2:7c:41:93: 0b:5f:a4:d4:0e:11:3d:3c:79:f4:91:7a:0c:09:25:9d:ba:a9: 96:9f:9d:e6:aa:f9:a2:9b:e7:69:32:ca:d4:8a:70:80:9e:32: 01:b0:a5:a9:3d:92:9b:ec:2c:fe:f0:d6:4d:5e:90:e3:d8:53: a2:90:4a:73:82:9f:73:e4:87:a8:4d:d2:d8:f6:4d:56:92:4d: 59:3a:b7:26:2b:94:85:c1:e5:fb:4d:ea:fb:b1:23:3b:3f:38: de:81:aa:67:e0:cc:0d:48:7f:6d:69:e8:d4:59:50:03:c1:bd: 0a:89:46:f4:ca:eb:e5:43:6b:71:82:06:45:e5:fe:9e:4e:10: de:b8:7e:ab:a1:ad:8b:8d:43:f6:25:83:e8:8b:4e:e3:a2:4e: 5d:52:a9:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDUBFv6NY/FGGVLmFB6J5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNDgxODU5NTZlNDQzYjU1YjA2MjIwMGY5NjQ1MzdiYzEw YmMxMzAwHhcNMjUxMjE4MjAwMTA0WhcNMjUxMjE5MjAwMTA0WjAzMTEwLwYDVQQD EygyNmVkZTI2ODhhNjVkZDUyOTc3OWRkZDA3NDcyNmIyMzZiNjQ1NzZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2fkW1fSYP854rQpMR4ObuQkp7kCy wgaCH4Q46KOEuU3i73iAUJtyMEL06ABn+KaNVA4/eNbe3wmR6LLAp+atyjvJcQpF 0ZTuD2bF2lCN4acLyLj2EIVPsQQ0QTOwekWBzPc5wEVSu1Daqpm2PsCHy+f5lLdQ v36ExuAI87CwKIQqzUM6KPIeIlVBWzhqNexIppXcKa863kDLYv/LNAmBpj8LoNnc JtP4Ws3KNldJ6tYkaWyjBKVAkkwlVfGHLUjNwsmjI+JkbNTMlO8GoIqPoe8nsRSg 457rOdln7NwYPUltrZh4e4ppdM+v+G8pSOjVsRpffv8xtKjHUtLBRUTFFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCbt4miKZd1Sl3nd0HRyayNrZFdvMB8GA1UdIwQY MBaAFNJIGFlW5EO1WwYiAPlkU3vBC8EwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZTg3NWEtMDU3Ni00YTE1LWJlMjMt YWVhMDU0Y2Y0M2JiLzEvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9kZTg3NWEtMDU3Ni00YTE1LWJlMjMtYWVhMDU0Y2Y0M2Ji LzEvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOgbIaTJg FL5qGKW2zwoEhzMw9GPC7jJhjMPodS2oLVCAvo9LCuFLoXMUiks0AJyFc72gRnjl yyPIq5CYtw1mkBEl01aMDigaGjVE98asrRASbVaIgVbfVtGHR9Hm3Jx7B3q+kXdH HrLyfEGTC1+k1A4RPTx59JF6DAklnbqplp+d5qr5opvnaTLK1IpwgJ4yAbClqT2S m+ws/vDWTV6Q49hTopBKc4Kfc+SHqE3S2PZNVpJNWTq3JiuUhcHl+03q+7EjOz84 3oGqZ+DMDUh/bWno1FlQA8G9ColG9Mrr5UNrcYIGReX+nk4Q3rh+q6Gti41D9iWD 6ItO46JOXVKpBw== -----END CERTIFICATE-----Generated at Thu Dec 18 23:44:32 2025 by rpki-client