This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json) Hash identifier: FdgpQvzigTyEpSs68+rusvsSaqIAHb8cSk0nTtA/gWw= Subject key identifier: 0C:FD:D6:31:9E:17:68:51:5A:F4:A8:1D:06:2C:82:AF:65:D0:B6:61 Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a Certificate serial: 019AF208C7CF18379546CDBB8EC2FB58398F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft Manifest number: 0384 Signing time: Sat 06 Dec 2025 05:00:52 +0000 Manifest this update: Sat 06 Dec 2025 05:00:52 +0000 Manifest next update: Sun 07 Dec 2025 05:00:52 +0000 Files and hashes: 1: 5ZRHOA8DDg_XhJ8JjCvhTOGiC1w.roa (hash: eWpgjaoVJC0L+xFRvzTJa/HrtM2zzM7SykfE1sq9g2I=) 2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: jgkE3ubOA6wmhp4F3b1iKcRHl7Daa9vVXodR75YUbbc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:c7:cf:18:37:95:46:cd:bb:8e:c2:fb:58:39:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a Validity Not Before: Dec 6 05:00:52 2025 GMT Not After : Dec 7 05:00:52 2025 GMT Subject: CN=0cfdd6319e1768515af4a81d062c82af65d0b661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:47:d6:fd:2d:d5:ba:66:e0:24:5e:9c:07: 78:83:b0:33:3c:6b:a5:9e:05:25:7c:b9:11:2c:f4: c4:ad:58:de:46:7b:b4:31:89:7d:9e:5a:ad:08:b9: fe:20:b7:3d:ca:0c:0f:d8:db:ad:30:a3:5a:d3:f8: fc:4a:28:21:9e:24:cb:66:7c:7f:75:ba:44:0d:f1: dc:d1:92:15:ec:ea:fd:10:04:a6:94:01:4a:e8:c7: 7f:a7:29:83:46:fa:ad:32:4f:db:87:3a:51:70:d4: 3b:4a:ba:b0:07:39:79:4f:f5:86:06:92:75:e0:c4: af:69:b2:83:71:ff:1f:a9:21:26:4e:76:ae:32:ae: d5:05:ad:10:f1:62:48:56:1d:25:6e:6d:04:bd:32: 1b:15:9f:fb:35:1b:08:02:9e:e4:da:7d:f4:7e:7a: 45:c8:45:bd:a2:ce:08:a3:6a:ee:77:5a:a7:f9:0f: ca:70:ec:07:8b:e3:14:97:cf:2e:e2:23:cf:f2:14: b3:5b:63:bd:a6:7f:55:3d:d2:33:79:c1:f4:16:21: 16:43:85:2c:12:cc:7a:be:3b:de:b4:3e:9e:3b:ae: 01:13:5c:3d:8c:cf:1d:dd:35:23:b6:01:c4:cc:07: 63:2c:08:3c:7a:59:f4:89:bd:f4:35:a6:35:78:4f: 86:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:FD:D6:31:9E:17:68:51:5A:F4:A8:1D:06:2C:82:AF:65:D0:B6:61 X509v3 Authority Key Identifier: keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:d0:58:75:e7:c4:55:91:03:ad:be:a4:0f:fa:86:01:34:ae: 8a:56:6d:fb:de:32:d8:c0:ba:7e:c3:72:ac:f8:8d:e9:ca:be: 3e:ff:e5:26:88:2f:02:38:87:a2:21:01:80:15:88:23:44:01: a9:08:80:4b:be:08:34:e5:4a:c5:93:ed:60:3d:88:e8:bf:cf: 61:6f:c2:94:e0:3a:90:23:fe:e6:9b:72:40:a4:df:d5:ce:8d: 86:33:3a:ca:d2:84:54:e8:00:44:1b:74:5a:fc:82:24:6a:7c: f9:66:cc:8a:e0:09:89:97:37:ea:ff:00:87:48:eb:19:a5:a7: 7c:a8:0f:13:f6:c9:47:3f:ff:45:4f:12:24:3d:d9:00:59:6d: a2:44:12:c0:e7:39:af:c6:3e:5e:ee:ed:5d:09:15:08:88:9b: f1:aa:65:1b:11:6a:74:08:43:e3:96:8a:cd:d9:5d:03:be:5e: 99:f1:28:93:a1:83:5e:ca:6f:d6:94:f3:bf:95:20:de:25:af: 7c:a7:7f:e6:16:a2:cf:2d:59:9e:e8:01:c3:25:c6:b1:55:dc: 33:59:f6:9d:17:2e:6c:74:cb:f4:c2:6c:66:bf:48:12:02:93: 85:08:a4:ee:6d:33:e6:c2:ff:cd:15:dd:24:c4:33:2a:71:33: 77:ba:01:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCMfPGDeVRs27jsL7WDmPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmZGY1NzI4ZWNhYmQ1NmVmNDYzNzM1Njk1NTg2NmNhNTQ2 ODY5MWEwHhcNMjUxMjA2MDUwMDUyWhcNMjUxMjA3MDUwMDUyWjAzMTEwLwYDVQQD EygwY2ZkZDYzMTllMTc2ODUxNWFmNGE4MWQwNjJjODJhZjY1ZDBiNjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq01H1v0t1bpm4CRenAd4g7AzPGul ngUlfLkRLPTErVjeRnu0MYl9nlqtCLn+ILc9ygwP2NutMKNa0/j8SighniTLZnx/ dbpEDfHc0ZIV7Or9EASmlAFK6Md/pymDRvqtMk/bhzpRcNQ7SrqwBzl5T/WGBpJ1 4MSvabKDcf8fqSEmTnauMq7VBa0Q8WJIVh0lbm0EvTIbFZ/7NRsIAp7k2n30fnpF yEW9os4Io2rud1qn+Q/KcOwHi+MUl88u4iPP8hSzW2O9pn9VPdIzecH0FiEWQ4Us Esx6vjvetD6eO64BE1w9jM8d3TUjtgHEzAdjLAg8eln0ib30NaY1eE+GrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAz91jGeF2hRWvSoHQYsgq9l0LZhMB8GA1UdIwQY MBaAFL/fVyjsq9Vu9GNzVpVYZspUaGkaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjk5WEtPeXIxVzcwWTNOV2xWaG15bFJvYVJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9mY2YzMjItMTdjMS00ZjQwLWE2MTgt YmQxNGQzNDRiYmYyLzEvdjk5WEtPeXIxVzcwWTNOV2xWaG15bFJvYVJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi9mY2YzMjItMTdjMS00ZjQwLWE2MTgtYmQxNGQzNDRiYmYy LzEvdjk5WEtPeXIxVzcwWTNOV2xWaG15bFJvYVJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATdBYdefE VZEDrb6kD/qGATSuilZt+94y2MC6fsNyrPiN6cq+Pv/lJogvAjiHoiEBgBWII0QB qQiAS74INOVKxZPtYD2I6L/PYW/ClOA6kCP+5ptyQKTf1c6NhjM6ytKEVOgARBt0 WvyCJGp8+WbMiuAJiZc36v8Ah0jrGaWnfKgPE/bJRz//RU8SJD3ZAFltokQSwOc5 r8Y+Xu7tXQkVCIib8aplGxFqdAhD45aKzdldA75emfEok6GDXspv1pTzv5Ug3iWv fKd/5haizy1ZnugBwyXGsVXcM1n2nRcubHTL9MJsZr9IEgKThQik7m0z5sL/zRXd JMQzKnEzd7oBHg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:34:15 2025 by rpki-client