This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft File: maykAWr4XVlpVITNYTzxiW39WaE.mft (raw, json) Hash identifier: B5Lp1zHhpoH8mMepmKhzz8chcRvyvm4agpXUW6EO0Ow= Subject key identifier: 76:C5:3E:CE:2E:A2:E7:E5:D4:74:AE:53:8F:3A:30:88:77:B5:A8:C6 Authority key identifier: 99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1 Certificate issuer: /CN=99aca4016af85d59695484cd613cf1896dfd59a1 Certificate serial: 019AF2AD806E5A8789F4CC4037CE5B834F5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft Manifest number: 0576 Signing time: Sat 06 Dec 2025 08:00:47 +0000 Manifest this update: Sat 06 Dec 2025 08:00:47 +0000 Manifest next update: Sun 07 Dec 2025 08:00:47 +0000 Files and hashes: 1: ZpEam4JrA75W3vKeb-kb3n0W0y0.roa (hash: kYGb95Bh9aZOERP/x6nIdXNnyuRNyDQM9q/MQE4pooE=) 2: maykAWr4XVlpVITNYTzxiW39WaE.crl (hash: Hp2lDqr/Ts/vNusyJUigRsjpQv1AcMOBQ4uTu6+KnG8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:80:6e:5a:87:89:f4:cc:40:37:ce:5b:83:4f:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99aca4016af85d59695484cd613cf1896dfd59a1 Validity Not Before: Dec 6 08:00:47 2025 GMT Not After : Dec 7 08:00:47 2025 GMT Subject: CN=76c53ece2ea2e7e5d474ae538f3a308877b5a8c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:75:67:15:c6:b1:a0:93:6c:30:c3:d3:45:a3: 4f:41:75:32:0e:4e:89:b3:3d:0b:59:50:10:e8:a8: f8:2f:80:98:cd:14:a9:d4:38:2a:a4:bd:16:ed:e4: 44:d3:14:bb:cf:05:29:2f:76:22:34:74:e5:61:95: 25:49:a9:03:2b:e5:06:13:62:1c:68:18:48:4c:8e: 92:57:48:56:89:e3:37:f0:32:ed:07:d1:cb:a5:6b: fc:eb:eb:06:29:e5:86:aa:32:f6:cb:e5:fc:3d:19: e1:24:19:68:7f:96:c3:ec:d1:45:e0:50:db:03:a4: 0a:a0:63:ca:55:54:03:0d:b4:f8:72:d6:7a:70:6b: cf:95:97:70:87:cc:58:b1:6e:56:45:57:18:d2:1a: e4:60:39:3c:5e:6f:c4:17:50:6c:05:02:2b:f7:7f: d6:3b:ab:a5:00:46:fe:a2:ad:3b:e8:b7:76:90:c9: f3:be:6c:d5:ce:d9:24:7f:03:83:a3:ce:94:b0:ef: b7:93:bb:61:e5:7b:95:22:67:95:6d:10:74:a1:23: 40:1c:30:c1:24:d6:2f:0e:2e:a4:5c:65:f1:a5:58: 05:a6:06:ac:54:52:4a:28:b7:0b:2b:81:ea:fe:4b: 3c:7f:61:92:1e:0a:7c:0f:80:84:67:5b:d1:ed:c9: 88:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C5:3E:CE:2E:A2:E7:E5:D4:74:AE:53:8F:3A:30:88:77:B5:A8:C6 X509v3 Authority Key Identifier: keyid:99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:71:a2:29:ab:42:1b:fb:44:1b:0f:28:5f:36:fb:a6:ac:4e: a4:cd:2b:fd:52:3f:1b:f0:72:de:5a:aa:42:64:0b:10:01:5e: 94:16:b2:f9:d7:77:07:43:23:0c:c1:f6:3f:17:58:9a:20:c0: a7:96:be:30:e2:ba:a6:b4:62:81:20:d4:88:8c:27:37:f1:8e: 3e:ac:ea:f7:4d:88:45:04:65:c8:e5:6a:54:5d:44:f7:b4:d0: b0:cf:ac:df:b5:16:d6:b4:12:4d:4d:58:b4:08:c2:50:65:41: 7e:00:b3:07:75:ff:42:9b:e9:4b:18:7c:d0:3d:c9:98:d7:d8: f7:e1:fe:0a:73:0b:48:1e:d8:a4:97:69:76:18:ae:2d:d6:b9: 34:08:97:4d:14:5e:65:b1:b9:72:eb:ee:66:49:c5:a6:5e:3f: 10:d6:6d:8c:2d:ae:82:66:5b:ee:5c:94:ba:ef:1e:60:7b:69: 4d:cb:fe:8f:7b:5e:30:6c:87:a1:f4:cc:dd:e8:fa:18:6b:2d: 5d:af:0f:b1:4c:80:5e:70:c5:44:2b:af:66:d4:1a:e7:55:c2: f5:19:1d:11:77:de:bf:db:52:fc:ec:1a:a9:1e:df:e3:ad:7a: 2b:a9:a6:5e:70:05:7f:6f:08:ba:35:be:18:11:75:a5:25:64: 6b:d2:3a:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrYBuWoeJ9MxAN85bg09bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5YWNhNDAxNmFmODVkNTk2OTU0ODRjZDYxM2NmMTg5NmRm ZDU5YTEwHhcNMjUxMjA2MDgwMDQ3WhcNMjUxMjA3MDgwMDQ3WjAzMTEwLwYDVQQD Eyg3NmM1M2VjZTJlYTJlN2U1ZDQ3NGFlNTM4ZjNhMzA4ODc3YjVhOGM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3VnFcaxoJNsMMPTRaNPQXUyDk6J sz0LWVAQ6Kj4L4CYzRSp1DgqpL0W7eRE0xS7zwUpL3YiNHTlYZUlSakDK+UGE2Ic aBhITI6SV0hWieM38DLtB9HLpWv86+sGKeWGqjL2y+X8PRnhJBlof5bD7NFF4FDb A6QKoGPKVVQDDbT4ctZ6cGvPlZdwh8xYsW5WRVcY0hrkYDk8Xm/EF1BsBQIr93/W O6ulAEb+oq076Ld2kMnzvmzVztkkfwODo86UsO+3k7th5XuVImeVbRB0oSNAHDDB JNYvDi6kXGXxpVgFpgasVFJKKLcLK4Hq/ks8f2GSHgp8D4CEZ1vR7cmIKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHbFPs4uoufl1HSuU486MIh3tajGMB8GA1UdIwQY MBaAFJmspAFq+F1ZaVSEzWE88Ylt/VmhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWF5a0FXcjRYVmxwVklUTllUenhpVzM5V2FFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lMGMxZDQtOGIzMy00MzYwLTlmNTAt Y2JiYWM2ZTRhZDcxLzEvbWF5a0FXcjRYVmxwVklUTllUenhpVzM5V2FFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9lMGMxZDQtOGIzMy00MzYwLTlmNTAtY2JiYWM2ZTRhZDcx LzEvbWF5a0FXcjRYVmxwVklUTllUenhpVzM5V2FFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGHGiKatC G/tEGw8oXzb7pqxOpM0r/VI/G/By3lqqQmQLEAFelBay+dd3B0MjDMH2PxdYmiDA p5a+MOK6prRigSDUiIwnN/GOPqzq902IRQRlyOVqVF1E97TQsM+s37UW1rQSTU1Y tAjCUGVBfgCzB3X/QpvpSxh80D3JmNfY9+H+CnMLSB7YpJdpdhiuLda5NAiXTRRe ZbG5cuvuZknFpl4/ENZtjC2ugmZb7lyUuu8eYHtpTcv+j3teMGyHofTM3ej6GGst Xa8PsUyAXnDFRCuvZtQa51XC9RkdEXfev9tS/OwaqR7f4616K6mmXnAFf28IujW+ GBF1pSVka9I6lw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:11:24 2025 by rpki-client