This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json) Hash identifier: osz1qCLFuMQdneChA6/1RxOLH/zHHwC1MwHA0ji5WHg= Subject key identifier: 98:95:BA:06:0B:9C:27:30:1E:43:81:1F:FE:C8:4D:C7:2F:1E:47:0E Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08 Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808 Certificate serial: 019B3079B827FF6C02141BABCA61BDD9BBE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft Manifest number: 14D3 Signing time: Thu 18 Dec 2025 08:00:41 +0000 Manifest this update: Thu 18 Dec 2025 08:00:41 +0000 Manifest next update: Fri 19 Dec 2025 08:00:41 +0000 Files and hashes: 1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=) 2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: xt7IodHa6rm01PrrTo/SPcDZeCM+AoIQhyF5/KDMjog=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 08:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:79:b8:27:ff:6c:02:14:1b:ab:ca:61:bd:d9:bb:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808 Validity Not Before: Dec 18 08:00:41 2025 GMT Not After : Dec 19 08:00:41 2025 GMT Subject: CN=9895ba060b9c27301e43811ffec84dc72f1e470e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:53:99:d0:90:ac:61:ac:97:e5:45:05:f6:fb: 01:59:8d:7e:7b:a0:78:72:be:48:b7:ac:ca:b3:31: 4c:5b:25:12:43:74:85:04:2b:44:9d:2d:b6:5a:74: 90:7f:5a:59:72:18:ef:eb:48:f9:d1:55:d1:d3:42: 11:4b:ab:48:3e:2f:c4:59:51:48:65:66:68:fe:ae: ec:c4:d4:ae:4b:d7:28:99:01:5f:9a:de:f0:c9:7d: 60:4f:bf:f5:4a:87:a2:2e:29:f3:a7:02:12:d1:18: 34:5b:7f:98:ab:0b:96:cd:fa:7f:6d:eb:5d:af:46: aa:63:b8:e5:37:ae:38:88:80:64:63:64:79:05:dc: 79:09:f9:73:39:22:6c:c7:ba:f4:15:32:cc:61:7a: db:eb:a4:c7:0d:d7:a4:e4:b9:45:f3:57:96:5b:b1: 03:e5:7e:5b:2b:9a:9f:aa:3a:19:b1:b4:0e:f2:7c: d6:f9:58:b0:f5:9e:b7:08:f0:3c:3f:8a:35:a1:cc: ee:0b:28:a0:de:54:13:2f:f9:7e:f8:86:a9:70:cd: 6e:7d:c7:1b:d1:01:f5:f4:4e:c2:ea:08:43:7e:4e: 91:6f:80:7b:0c:1b:3b:37:b4:b3:0c:35:52:33:16: 92:5a:d6:59:84:ea:bc:62:63:18:d7:f6:f0:e2:40: 6c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:95:BA:06:0B:9C:27:30:1E:43:81:1F:FE:C8:4D:C7:2F:1E:47:0E X509v3 Authority Key Identifier: keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:7d:8e:7a:f7:aa:e0:40:ab:a7:aa:76:6d:3f:de:2d:1a:59: ff:ed:4c:9f:35:fa:c1:50:01:a7:67:54:52:51:d5:16:4a:10: f1:74:14:c2:2b:8c:62:99:a8:ec:9d:2e:1d:8b:83:f1:8b:78: a5:4e:8d:a5:f8:2a:46:81:df:7e:87:9e:b1:74:a6:39:71:83: 21:97:a4:45:bf:ee:15:33:4f:63:66:78:3f:b9:0a:ba:d7:be: 72:7f:3e:57:f0:ca:da:ff:b2:fb:1b:af:94:1d:11:98:5c:bf: 68:df:9c:21:5e:31:a5:59:70:80:59:9f:85:ad:c8:33:c8:d7: 1d:26:53:17:8c:63:42:03:ce:b4:d4:a0:82:9a:ec:d8:89:d5: 0f:a2:4c:2b:53:92:f6:77:2e:46:27:0a:cc:f7:1d:34:66:15: 67:49:fa:12:0f:b9:d5:c6:69:eb:a4:24:33:77:37:2c:b2:84: 9d:6d:6a:a8:d1:5a:82:2e:ea:94:5a:0e:99:44:70:25:2d:0e: 9b:55:e6:55:ed:33:cb:fa:10:bf:79:3d:99:90:71:71:a9:da: 9a:2b:62:86:76:47:96:0b:1b:26:d4:81:cc:78:fe:bf:44:06: 28:3e:e4:f1:f4:f0:2b:55:21:2f:7c:69:f4:6d:72:c5:a7:d0: 13:d0:bc:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZswebgn/2wCFBurymG92bvnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxZDZiYWVjYjYzYWU0NmZlZWEzMGNhYjg2MjFkNDZjNTlm NzI4MDgwHhcNMjUxMjE4MDgwMDQxWhcNMjUxMjE5MDgwMDQxWjAzMTEwLwYDVQQD Eyg5ODk1YmEwNjBiOWMyNzMwMWU0MzgxMWZmZWM4NGRjNzJmMWU0NzBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlOZ0JCsYayX5UUF9vsBWY1+e6B4 cr5It6zKszFMWyUSQ3SFBCtEnS22WnSQf1pZchjv60j50VXR00IRS6tIPi/EWVFI ZWZo/q7sxNSuS9comQFfmt7wyX1gT7/1SoeiLinzpwIS0Rg0W3+YqwuWzfp/betd r0aqY7jlN644iIBkY2R5Bdx5CflzOSJsx7r0FTLMYXrb66THDdek5LlF81eWW7ED 5X5bK5qfqjoZsbQO8nzW+Viw9Z63CPA8P4o1oczuCyig3lQTL/l++IapcM1ufccb 0QH19E7C6ghDfk6Rb4B7DBs7N7SzDDVSMxaSWtZZhOq8YmMY1/bw4kBs6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJiVugYLnCcwHkOBH/7ITccvHkcOMB8GA1UdIwQY MBaAFLHWuuy2OuRv7qMMq4Yh1GxZ9ygIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMt N2FmNzlkYWE2OWI5LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMtN2FmNzlkYWE2OWI5 LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcH2Oeveq 4ECrp6p2bT/eLRpZ/+1MnzX6wVABp2dUUlHVFkoQ8XQUwiuMYpmo7J0uHYuD8Yt4 pU6NpfgqRoHffoeesXSmOXGDIZekRb/uFTNPY2Z4P7kKute+cn8+V/DK2v+y+xuv lB0RmFy/aN+cIV4xpVlwgFmfha3IM8jXHSZTF4xjQgPOtNSggprs2InVD6JMK1OS 9ncuRicKzPcdNGYVZ0n6Eg+51cZp66QkM3c3LLKEnW1qqNFagi7qlFoOmURwJS0O m1XmVe0zy/oQv3k9mZBxcanamitihnZHlgsbJtSBzHj+v0QGKD7k8fTwK1UhL3xp 9G1yxafQE9C8Ng== -----END CERTIFICATE-----Generated at Thu Dec 18 18:29:23 2025 by rpki-client