This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft File: RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft (raw, json) Hash identifier: vmKogf98YwSugpvnyC2wJjN6/0Hjx/WxeLqQbHg171c= Subject key identifier: FE:01:25:D7:4C:23:38:12:BA:8B:19:02:D6:E6:D0:8F:4F:48:F5:4F Authority key identifier: 44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33 Certificate issuer: /CN=44814ea7e83b4019bfd5797eba989da06dd90e33 Certificate serial: 019AF20956D73395A1FC6618CD26D12810EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft Manifest number: 0F28 Signing time: Sat 06 Dec 2025 05:01:29 +0000 Manifest this update: Sat 06 Dec 2025 05:01:29 +0000 Manifest next update: Sun 07 Dec 2025 05:01:29 +0000 Files and hashes: 1: RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl (hash: e4+lbWxvheLD3eBDSjKt/gTF/DkCh8zmt3SnHIiWYPc=) 2: UjkL1yTwH0Ugfy2br2JpH0C8VqU.roa (hash: byfiFTAulr+F8qmR9o1/fYHwOTE6vMHjzS05/tD7xBQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:56:d7:33:95:a1:fc:66:18:cd:26:d1:28:10:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44814ea7e83b4019bfd5797eba989da06dd90e33 Validity Not Before: Dec 6 05:01:29 2025 GMT Not After : Dec 7 05:01:29 2025 GMT Subject: CN=fe0125d74c233812ba8b1902d6e6d08f4f48f54f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:22:57:c4:cf:11:87:73:31:ce:a9:79:7c:fb: 5d:20:c9:1a:88:cc:73:1d:ab:67:ec:b0:62:7d:67: 94:fa:87:5c:e3:79:c7:59:66:4d:05:17:50:e5:67: 5e:e2:ab:56:32:f4:f6:08:5c:58:ab:71:f2:80:7d: e8:89:6d:40:31:23:a3:36:b2:16:e6:5f:02:65:b5: 77:ef:4f:53:cf:ff:3c:ff:e4:86:ee:fe:41:51:38: 9c:b0:af:e9:fd:95:f3:df:29:a7:c5:f3:43:0e:12: c6:ef:d7:30:0f:fb:3c:19:08:5f:44:fa:09:f0:65: 73:06:1e:af:e7:c2:e6:4c:cd:23:85:28:68:f5:f4: 64:3f:5b:9b:27:fb:11:d5:c3:07:a4:17:cc:24:6b: 12:a5:69:08:d7:c4:33:9d:ee:78:99:ae:f9:d4:e1: a9:10:5d:6f:17:7f:c6:25:78:eb:4e:c5:03:84:f4: 5f:d2:a5:7e:65:b5:3a:94:ad:d9:09:9e:98:17:c0: 37:6d:e3:6d:ea:09:c3:9d:d8:bd:76:41:2c:88:9a: 16:1c:36:10:62:45:a7:1b:95:ec:b5:c0:f5:f9:c1: 80:cd:4d:c6:1b:93:85:ec:ab:64:a1:18:51:aa:f7: 81:a1:c1:60:df:e2:d3:99:e3:48:36:1d:b0:b9:85: 2a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:01:25:D7:4C:23:38:12:BA:8B:19:02:D6:E6:D0:8F:4F:48:F5:4F X509v3 Authority Key Identifier: keyid:44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:cf:2f:0e:ca:84:b1:eb:ce:00:0c:9f:c5:d9:bf:20:76:59: 5e:fc:a9:ac:a7:4e:bf:c2:2f:7c:50:49:cf:e3:d9:23:4b:23: 13:05:6e:b5:12:7e:36:91:f1:ad:f1:69:19:12:f5:34:15:18: 78:60:f7:3f:0f:c7:55:a7:ca:17:61:eb:c1:1f:2d:fe:b8:19: b1:a6:f4:3f:3b:f8:83:85:0e:4c:a0:0c:83:dc:6d:53:63:a8: da:f1:d7:58:89:f7:d2:2f:d3:87:6c:ad:ae:10:ea:fe:c8:c0: cb:4f:ae:7a:dc:d7:de:b6:42:bf:e5:44:67:08:d1:93:e0:6c: 7f:6c:86:78:48:b1:ad:5a:22:31:5f:4b:09:cc:c0:3d:e7:7c: 7b:d5:60:9e:d6:fc:86:14:95:65:19:f9:47:8c:da:1a:f4:6b: 69:33:a6:c0:59:56:dc:1e:a7:9a:a9:05:a1:61:2e:50:fd:55: 2b:b1:44:df:6b:d5:04:9d:33:62:ca:ae:27:e6:09:88:a6:df: d6:48:c2:bd:87:64:5d:27:38:8d:7a:0a:00:20:59:b4:9a:c7: c9:e4:44:7d:26:02:ad:6b:b6:05:aa:13:48:60:5e:eb:41:4d: b3:83:4d:32:63:6c:91:36:d7:bf:ca:b6:ed:12:ab:66:86:89: cb:f2:7b:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCVbXM5Wh/GYYzSbRKBDsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0ODE0ZWE3ZTgzYjQwMTliZmQ1Nzk3ZWJhOTg5ZGEwNmRk OTBlMzMwHhcNMjUxMjA2MDUwMTI5WhcNMjUxMjA3MDUwMTI5WjAzMTEwLwYDVQQD EyhmZTAxMjVkNzRjMjMzODEyYmE4YjE5MDJkNmU2ZDA4ZjRmNDhmNTRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyJXxM8Rh3Mxzql5fPtdIMkaiMxz Hatn7LBifWeU+odc43nHWWZNBRdQ5Wde4qtWMvT2CFxYq3HygH3oiW1AMSOjNrIW 5l8CZbV3709Tz/88/+SG7v5BUTicsK/p/ZXz3ymnxfNDDhLG79cwD/s8GQhfRPoJ 8GVzBh6v58LmTM0jhSho9fRkP1ubJ/sR1cMHpBfMJGsSpWkI18Qzne54ma751OGp EF1vF3/GJXjrTsUDhPRf0qV+ZbU6lK3ZCZ6YF8A3beNt6gnDndi9dkEsiJoWHDYQ YkWnG5XstcD1+cGAzU3GG5OF7KtkoRhRqveBocFg3+LTmeNINh2wuYUqVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP4BJddMIzgSuosZAtbm0I9PSPVPMB8GA1UdIwQY MBaAFESBTqfoO0AZv9V5frqYnaBt2Q4zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUklGT3AtZzdRQm1fMVhsLXVwaWRvRzNaRGpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8zYWM0NGItNTY1YS00Mjg2LWE0MGMt ZDdlMDFhYzAyYTc1LzEvUklGT3AtZzdRQm1fMVhsLXVwaWRvRzNaRGpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC8zYWM0NGItNTY1YS00Mjg2LWE0MGMtZDdlMDFhYzAyYTc1 LzEvUklGT3AtZzdRQm1fMVhsLXVwaWRvRzNaRGpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAds8vDsqE sevOAAyfxdm/IHZZXvyprKdOv8IvfFBJz+PZI0sjEwVutRJ+NpHxrfFpGRL1NBUY eGD3Pw/HVafKF2HrwR8t/rgZsab0Pzv4g4UOTKAMg9xtU2Oo2vHXWIn30i/Th2yt rhDq/sjAy0+uetzX3rZCv+VEZwjRk+Bsf2yGeEixrVoiMV9LCczAPed8e9Vgntb8 hhSVZRn5R4zaGvRraTOmwFlW3B6nmqkFoWEuUP1VK7FE32vVBJ0zYsquJ+YJiKbf 1kjCvYdkXSc4jXoKACBZtJrHyeREfSYCrWu2BaoTSGBe60FNs4NNMmNskTbXv8q2 7RKrZoaJy/J7mA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:09:48 2025 by rpki-client