This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json) Hash identifier: 9rAmpy5PEXFWM/hYpEZ/XDa7mH+EowGZpM23sOEwb9s= Subject key identifier: 55:F3:9B:2E:6D:09:23:66:3A:ED:95:54:6A:63:73:E8:F7:72:4A:FA Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70 Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670 Certificate serial: 019AF2AD748D78E58D9A384114D7423693E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft Manifest number: 0446 Signing time: Sat 06 Dec 2025 08:00:44 +0000 Manifest this update: Sat 06 Dec 2025 08:00:44 +0000 Manifest next update: Sun 07 Dec 2025 08:00:44 +0000 Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: f9eVS3yDxcA/Ur3+t+vnZ+gJzICLKdimf7ts5XYzxrI=) 2: DhPaCGROVzc_RyLkimAXvuteooA.roa (hash: 7GJwuhnVTvbxl3b1/oKcnOg3a/h9WeQA7faf/qH9pFA=) 3: WtuPQAz22oEnCEx3Rc-9J0U0Qbk.roa (hash: LqsVaHB6US9lWput6TNuWvOyM8xnvQFU16n5uBdiSPM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:74:8d:78:e5:8d:9a:38:41:14:d7:42:36:93:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670 Validity Not Before: Dec 6 08:00:44 2025 GMT Not After : Dec 7 08:00:44 2025 GMT Subject: CN=55f39b2e6d0923663aed95546a6373e8f7724afa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:47:de:24:b1:ac:a0:ec:59:56:e7:a1:a9:99: 9c:a1:a2:2b:47:c7:0c:9f:2e:b3:09:b8:28:36:7a: 03:c7:34:4c:c9:bb:41:3a:be:93:81:36:07:f9:88: fd:e2:85:a0:63:88:d8:76:d0:8b:fc:81:97:e6:ef: 37:91:cf:94:27:90:76:07:8a:fc:fe:48:9e:16:a9: af:14:f7:37:f9:03:ae:92:e2:49:bf:a0:de:9c:e7: 6a:ed:c1:5c:d8:58:3d:b5:b4:a8:a2:71:dc:c0:b6: b1:51:7a:67:69:be:7b:f0:26:ec:8d:dd:70:a7:14: 42:10:82:41:83:c1:ce:14:a0:80:e0:d5:6e:16:3e: 91:be:96:47:ca:57:e3:50:30:2d:9e:d5:21:c7:da: e4:fd:ac:3e:cb:1a:0d:79:16:75:d2:7f:e7:ff:f3: 23:2e:d1:ce:9d:7a:73:eb:02:89:f0:79:fe:4d:b8: 2d:e8:e0:b5:c6:4a:65:45:58:a1:93:66:b1:6d:3c: bf:76:a8:84:98:1e:b8:72:72:35:6a:61:2a:8b:19: 0f:78:3f:a1:3b:ea:87:c5:9b:03:ac:65:c0:39:ec: b8:6a:6c:a7:3f:9e:df:53:63:a3:11:6b:cd:ce:ad: 97:2c:94:7e:4d:b0:67:65:b8:ce:43:98:f0:04:51: 3a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F3:9B:2E:6D:09:23:66:3A:ED:95:54:6A:63:73:E8:F7:72:4A:FA X509v3 Authority Key Identifier: keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:35:3c:2e:9e:f9:21:84:5e:ac:02:99:b5:30:d3:6d:cb:f6: bc:c4:67:73:57:0f:d4:ac:b6:cf:23:0c:46:eb:0b:8d:3c:68: 39:72:92:25:ce:2a:54:05:a7:a8:64:65:f9:a6:56:e6:88:53: 67:10:6d:25:52:f5:34:72:6a:6f:0c:ff:13:ed:32:36:82:e4: 22:fd:38:0e:3e:8a:1e:6f:59:e4:92:ce:d0:5c:18:f6:50:85: 99:62:46:4c:e0:ce:70:77:71:ac:8e:f8:7c:54:fa:b1:fc:01: 4f:9a:4c:b1:70:c3:c9:54:f6:de:c7:e9:46:3b:0c:7f:aa:87: 24:e0:7c:fa:3b:b3:db:e7:c8:1c:65:51:2a:a9:12:bb:a4:3b: 3b:96:e7:8c:de:46:69:89:11:2d:d1:45:1e:a8:9b:b8:9d:49: 68:de:c3:c8:93:87:f1:94:37:4d:3d:de:bc:f6:cd:bb:56:ed: d7:c8:ef:d6:a6:7b:22:62:ab:e1:40:94:24:d0:b3:61:e3:94: e5:51:76:b5:64:84:08:2a:83:bc:22:db:ab:18:6b:55:e0:89: 34:db:66:2e:39:2f:e4:2a:0b:56:2e:21:de:fa:9c:fe:06:c9: 58:fe:d9:04:d1:9b:3a:4e:1d:50:31:0f:a3:15:7b:e1:a1:e3: be:8f:fd:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrXSNeOWNmjhBFNdCNpPhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYjYxZDFmMWQ5Y2NkYWI2YjZkOGUxNDUwYzJjOTM2ZDM5 N2U2NzAwHhcNMjUxMjA2MDgwMDQ0WhcNMjUxMjA3MDgwMDQ0WjAzMTEwLwYDVQQD Eyg1NWYzOWIyZTZkMDkyMzY2M2FlZDk1NTQ2YTYzNzNlOGY3NzI0YWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0feJLGsoOxZVuehqZmcoaIrR8cM ny6zCbgoNnoDxzRMybtBOr6TgTYH+Yj94oWgY4jYdtCL/IGX5u83kc+UJ5B2B4r8 /kieFqmvFPc3+QOukuJJv6DenOdq7cFc2Fg9tbSoonHcwLaxUXpnab578Cbsjd1w pxRCEIJBg8HOFKCA4NVuFj6RvpZHylfjUDAtntUhx9rk/aw+yxoNeRZ10n/n//Mj LtHOnXpz6wKJ8Hn+Tbgt6OC1xkplRVihk2axbTy/dqiEmB64cnI1amEqixkPeD+h O+qHxZsDrGXAOey4amynP57fU2OjEWvNzq2XLJR+TbBnZbjOQ5jwBFE6hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFXzmy5tCSNmOu2VVGpjc+j3ckr6MB8GA1UdIwQY MBaAFNC2HR8dnM2ra22OFFDCyTbTl+ZwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzIt MTVmNjJjODkwYWY4LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzItMTVmNjJjODkwYWY4 LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARjU8Lp75 IYRerAKZtTDTbcv2vMRnc1cP1Ky2zyMMRusLjTxoOXKSJc4qVAWnqGRl+aZW5ohT ZxBtJVL1NHJqbwz/E+0yNoLkIv04Dj6KHm9Z5JLO0FwY9lCFmWJGTODOcHdxrI74 fFT6sfwBT5pMsXDDyVT23sfpRjsMf6qHJOB8+juz2+fIHGVRKqkSu6Q7O5bnjN5G aYkRLdFFHqibuJ1JaN7DyJOH8ZQ3TT3evPbNu1bt18jv1qZ7ImKr4UCUJNCzYeOU 5VF2tWSECCqDvCLbqxhrVeCJNNtmLjkv5CoLVi4h3vqc/gbJWP7ZBNGbOk4dUDEP oxV74aHjvo/90g== -----END CERTIFICATE-----Generated at Sat Dec 6 09:30:14 2025 by rpki-client