This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft File: 9H0DN3zBCPRAkSa5oMIBYyQhxko.mft (raw, json) Hash identifier: wPnEqaSvUI0UMp6VALEvdo43xuR1WMy/tZsz2R7AdBs= Subject key identifier: 80:93:42:4B:AB:E8:3D:73:42:93:6F:42:38:B0:A3:32:79:31:E2:E8 Authority key identifier: F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A Certificate issuer: /CN=f47d03377cc108f4409126b9a0c201632421c64a Certificate serial: 019AF12D37F53AD86D2D39219597362375F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft Manifest number: 175C Signing time: Sat 06 Dec 2025 01:01:03 +0000 Manifest this update: Sat 06 Dec 2025 01:01:03 +0000 Manifest next update: Sun 07 Dec 2025 01:01:03 +0000 Files and hashes: 1: 9H0DN3zBCPRAkSa5oMIBYyQhxko.crl (hash: WE0MeWU1ZLnb9nmgeNpEBLjzO8ssl/6dZzwQqrjsqY8=) 2: yhhMqOayivlP0HqWgBqkxI1f14U.roa (hash: w/NNRo63VlTAmPeepIG4fNxKMWjZVte8F0Xs65Wc7u4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:37:f5:3a:d8:6d:2d:39:21:95:97:36:23:75:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f47d03377cc108f4409126b9a0c201632421c64a Validity Not Before: Dec 6 01:01:03 2025 GMT Not After : Dec 7 01:01:03 2025 GMT Subject: CN=8093424babe83d7342936f4238b0a3327931e2e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:79:c7:76:9a:bb:fe:b6:6e:4a:bf:96:4e:01: 50:e0:38:a4:fd:28:22:bf:33:c9:1f:6b:c8:55:6d: f5:2d:19:e3:ab:4b:6c:74:1a:83:cb:0b:5e:a8:7c: 8d:b8:f0:4e:e3:5f:fe:f6:6f:21:e3:17:85:2a:c4: 42:32:45:a9:b0:e1:ee:18:16:15:6c:28:eb:9c:d1: 71:de:51:a4:f2:25:34:43:45:ca:f4:b5:45:fb:0d: 1f:c9:92:79:ce:ee:99:4c:09:71:c1:0c:c6:b8:3d: 1b:c2:9b:15:a2:10:7f:6d:ed:e6:fa:d9:fa:0e:19: 31:8b:f5:83:ae:38:d1:df:14:e9:e6:68:8d:c1:f6: d3:4f:53:78:1f:7f:63:db:bf:d8:c2:1f:81:55:7d: 24:7f:2d:07:c3:e2:91:01:68:4d:dd:41:b8:02:d2: e1:39:46:f7:06:ee:39:08:59:ac:8b:f1:03:34:9d: 1f:f5:58:76:c9:09:6b:33:a3:85:fd:e1:8d:a9:46: d0:fe:7b:6e:1d:84:fd:f5:2d:86:cc:fa:2f:45:d6: 15:6d:f4:2f:96:a8:f1:f1:e3:f4:2c:68:27:3b:ff: 45:0e:48:b1:3a:32:0f:c8:ec:92:2b:27:94:c4:ad: b1:e0:f7:c4:ec:00:05:b5:da:f9:e2:fc:f8:92:ee: 13:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:93:42:4B:AB:E8:3D:73:42:93:6F:42:38:B0:A3:32:79:31:E2:E8 X509v3 Authority Key Identifier: keyid:F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:61:8c:47:3b:0f:02:37:e1:1c:c9:bb:db:80:d2:df:be:1c: 54:49:79:a0:b3:04:bb:7e:70:88:d1:db:65:32:f3:fa:f0:5a: e7:a5:ac:a8:a2:8f:e0:3f:e8:cd:58:da:f4:47:42:5a:6c:d1: 8b:75:1f:c9:55:a1:a1:80:80:a8:f0:04:64:ad:12:f3:d6:9d: 64:55:28:7b:5f:3b:c0:e4:33:6f:8c:87:0a:62:af:08:64:89: a2:0c:22:21:01:eb:c9:ba:18:43:68:07:c6:2c:20:76:35:7e: e0:a4:8d:f8:19:81:58:e4:ed:d0:b5:97:3d:21:8f:0b:8e:91: 0f:9f:7a:ff:76:18:b9:37:fa:4c:12:e5:0b:d6:2f:d2:97:65: 43:b0:c9:ed:6c:92:65:22:29:1a:bb:17:56:68:7d:c8:db:28: 2f:be:29:e2:a2:be:9d:5c:54:a7:a4:63:d5:1f:16:1d:f0:da: 54:ec:98:00:46:04:5c:7b:c8:f2:7d:5b:3d:11:4f:17:21:ed: 78:70:c4:db:ba:33:b1:53:32:b6:cb:ad:34:cb:98:ed:74:92: f3:95:94:84:7a:18:02:d8:82:b0:9c:ad:7c:be:d9:46:80:39: 38:fe:32:1c:4a:bc:01:51:c1:7c:ea:dd:e8:7b:4d:56:31:e0: a7:24:aa:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLTf1OthtLTkhlZc2I3XzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0N2QwMzM3N2NjMTA4ZjQ0MDkxMjZiOWEwYzIwMTYzMjQy MWM2NGEwHhcNMjUxMjA2MDEwMTAzWhcNMjUxMjA3MDEwMTAzWjAzMTEwLwYDVQQD Eyg4MDkzNDI0YmFiZTgzZDczNDI5MzZmNDIzOGIwYTMzMjc5MzFlMmU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHnHdpq7/rZuSr+WTgFQ4Dik/Sgi vzPJH2vIVW31LRnjq0tsdBqDywteqHyNuPBO41/+9m8h4xeFKsRCMkWpsOHuGBYV bCjrnNFx3lGk8iU0Q0XK9LVF+w0fyZJ5zu6ZTAlxwQzGuD0bwpsVohB/be3m+tn6 Dhkxi/WDrjjR3xTp5miNwfbTT1N4H39j27/Ywh+BVX0kfy0Hw+KRAWhN3UG4AtLh OUb3Bu45CFmsi/EDNJ0f9Vh2yQlrM6OF/eGNqUbQ/ntuHYT99S2GzPovRdYVbfQv lqjx8eP0LGgnO/9FDkixOjIPyOySKyeUxK2x4PfE7AAFtdr54vz4ku4TbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFICTQkur6D1zQpNvQjiwozJ5MeLoMB8GA1UdIwQY MBaAFPR9Azd8wQj0QJEmuaDCAWMkIcZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUgwRE4zekJDUFJBa1NhNW9NSUJZeVFoeGtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84YmM0NjktZjdlMy00MGM0LWFmYzgt ZTFkMGZkZDViZmY1LzEvOUgwRE4zekJDUFJBa1NhNW9NSUJZeVFoeGtvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS84YmM0NjktZjdlMy00MGM0LWFmYzgtZTFkMGZkZDViZmY1 LzEvOUgwRE4zekJDUFJBa1NhNW9NSUJZeVFoeGtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoWGMRzsP AjfhHMm724DS374cVEl5oLMEu35wiNHbZTLz+vBa56WsqKKP4D/ozVja9EdCWmzR i3UfyVWhoYCAqPAEZK0S89adZFUoe187wOQzb4yHCmKvCGSJogwiIQHryboYQ2gH xiwgdjV+4KSN+BmBWOTt0LWXPSGPC46RD596/3YYuTf6TBLlC9Yv0pdlQ7DJ7WyS ZSIpGrsXVmh9yNsoL74p4qK+nVxUp6Rj1R8WHfDaVOyYAEYEXHvI8n1bPRFPFyHt eHDE27ozsVMytsutNMuY7XSS85WUhHoYAtiCsJytfL7ZRoA5OP4yHEq8AVHBfOrd 6HtNVjHgpySqNQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:22:06 2025 by rpki-client