This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft File: 9iZUZY9nKqzzcTO1xxz0sRwYado.mft (raw, json) Hash identifier: VSM4Jljd+4corVY0FgM47M3C8y13ojG0JaALtEEbHrU= Subject key identifier: 0C:E0:75:91:48:37:9D:7E:2E:80:55:FE:D6:33:F6:D4:BA:42:A9:3F Authority key identifier: F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA Certificate issuer: /CN=f62654658f672aacf37133b5c71cf4b11c1869da Certificate serial: 019AF35297623A21F9E329BBBDD555876E86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft Manifest number: 026C Signing time: Sat 06 Dec 2025 11:01:07 +0000 Manifest this update: Sat 06 Dec 2025 11:01:07 +0000 Manifest next update: Sun 07 Dec 2025 11:01:07 +0000 Files and hashes: 1: 9iZUZY9nKqzzcTO1xxz0sRwYado.crl (hash: fI1icpShbDP2p2e2PxDIA99xHCUr7/pSvH5DBRuth/M=) 2: XtP9uPkBbHpNbcrbfiapaGNstI0.roa (hash: RHc/YYxPI6eAj3ZZsuy3p2bKIUCYpGJbMLwSSRkfsBM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:97:62:3a:21:f9:e3:29:bb:bd:d5:55:87:6e:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f62654658f672aacf37133b5c71cf4b11c1869da Validity Not Before: Dec 6 11:01:07 2025 GMT Not After : Dec 7 11:01:07 2025 GMT Subject: CN=0ce0759148379d7e2e8055fed633f6d4ba42a93f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fd:40:3a:2d:38:56:e9:4f:6e:62:09:ca:31: 80:66:04:9b:fc:33:b5:06:22:8a:bf:f9:f3:f6:94: bc:be:ee:cd:48:cb:25:4e:59:69:df:0e:70:7e:01: 19:fe:8f:26:4f:2d:1a:df:23:1e:72:0a:df:07:35: 04:92:b7:ec:16:50:c8:37:5f:9b:ef:d7:b2:24:2b: 75:df:1a:5a:a5:b0:c7:db:4d:80:fe:54:fc:93:6e: f6:b1:fc:f8:9f:71:22:12:5e:49:80:b7:53:dc:c4: 1d:39:bd:e5:06:22:a9:bf:ae:62:a5:d2:da:bf:2c: 2f:5e:23:22:40:40:8c:04:c4:2d:4b:9e:a1:bd:62: e8:5d:dd:83:d7:15:bd:df:98:12:ef:3e:3d:ca:99: 92:35:52:92:b4:39:35:73:29:69:ca:1a:2b:48:35: 84:c0:c7:a1:99:5d:52:a9:fd:45:9c:96:c7:1d:79: d7:24:fc:c9:de:f6:7d:93:68:99:70:2d:f9:d6:c3: 2a:a2:a8:a5:ae:f6:14:97:20:b5:fe:1b:96:d1:39: 08:e4:ff:b7:d4:e4:4b:03:e0:33:83:85:71:7e:f3: 34:d2:25:b2:6d:75:6e:a3:4b:e5:38:3f:25:2c:a5: 9b:43:1b:98:58:69:60:c2:5b:88:c3:62:a2:30:73: d4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E0:75:91:48:37:9D:7E:2E:80:55:FE:D6:33:F6:D4:BA:42:A9:3F X509v3 Authority Key Identifier: keyid:F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:66:9b:a0:aa:8a:80:05:0e:3b:cb:2f:bc:0e:ea:8d:7e:75: 93:1a:14:0e:eb:ef:22:f6:df:06:a7:22:5a:66:bf:7f:cc:63: 9e:9b:c4:f8:41:3c:38:a2:eb:a6:df:53:93:89:08:2f:a8:61: a1:12:09:54:67:0c:2b:be:35:17:59:5f:0c:c9:c5:85:b0:81: ae:ac:fb:15:d3:be:2a:86:06:a7:b6:b5:69:be:9e:40:87:15: 16:46:6f:16:57:79:d8:23:87:b8:20:66:14:76:22:e2:f4:73: 80:62:3c:59:18:db:9c:42:f2:1a:04:8f:76:2b:f4:4c:e7:c2: 7c:ab:04:9c:ea:2c:b1:0e:78:bd:20:61:93:a4:dd:c9:52:ad: 40:2a:1e:95:65:c4:19:9e:a4:3a:5b:b3:61:34:6d:54:6c:7c: aa:ab:60:b9:39:45:14:7b:68:e6:e5:94:99:c4:36:c7:79:24: ae:fb:58:2e:1a:3f:8b:4f:5a:3b:80:72:a0:92:42:07:f7:e6: a7:04:d0:ac:b5:a3:69:9a:4c:83:e2:f4:58:96:c1:a1:6d:b1: 41:99:2e:2f:da:b5:c9:60:9c:41:89:a7:c6:9d:4f:6d:b7:19: fa:58:4a:99:94:eb:6a:a0:fa:f0:0f:5c:1a:25:87:43:a1:a3: d1:b0:68:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUpdiOiH54ym7vdVVh26GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2MjY1NDY1OGY2NzJhYWNmMzcxMzNiNWM3MWNmNGIxMWMx ODY5ZGEwHhcNMjUxMjA2MTEwMTA3WhcNMjUxMjA3MTEwMTA3WjAzMTEwLwYDVQQD EygwY2UwNzU5MTQ4Mzc5ZDdlMmU4MDU1ZmVkNjMzZjZkNGJhNDJhOTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4f1AOi04VulPbmIJyjGAZgSb/DO1 BiKKv/nz9pS8vu7NSMslTllp3w5wfgEZ/o8mTy0a3yMecgrfBzUEkrfsFlDIN1+b 79eyJCt13xpapbDH202A/lT8k272sfz4n3EiEl5JgLdT3MQdOb3lBiKpv65ipdLa vywvXiMiQECMBMQtS56hvWLoXd2D1xW935gS7z49ypmSNVKStDk1cylpyhorSDWE wMehmV1Sqf1FnJbHHXnXJPzJ3vZ9k2iZcC351sMqoqilrvYUlyC1/huW0TkI5P+3 1ORLA+Azg4VxfvM00iWybXVuo0vlOD8lLKWbQxuYWGlgwluIw2KiMHPUDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAzgdZFIN51+LoBV/tYz9tS6Qqk/MB8GA1UdIwQY MBaAFPYmVGWPZyqs83Eztccc9LEcGGnaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWlaVVpZOW5LcXp6Y1RPMXh4ejBzUndZYWRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9hNjhlMjYtOTJlNS00ZjQ5LWFkYjgt NjY0Nzc4ODQ1YjE2LzEvOWlaVVpZOW5LcXp6Y1RPMXh4ejBzUndZYWRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9hNjhlMjYtOTJlNS00ZjQ5LWFkYjgtNjY0Nzc4ODQ1YjE2 LzEvOWlaVVpZOW5LcXp6Y1RPMXh4ejBzUndZYWRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZWaboKqK gAUOO8svvA7qjX51kxoUDuvvIvbfBqciWma/f8xjnpvE+EE8OKLrpt9Tk4kIL6hh oRIJVGcMK741F1lfDMnFhbCBrqz7FdO+KoYGp7a1ab6eQIcVFkZvFld52COHuCBm FHYi4vRzgGI8WRjbnELyGgSPdiv0TOfCfKsEnOossQ54vSBhk6TdyVKtQCoelWXE GZ6kOluzYTRtVGx8qqtguTlFFHto5uWUmcQ2x3kkrvtYLho/i09aO4ByoJJCB/fm pwTQrLWjaZpMg+L0WJbBoW2xQZkuL9q1yWCcQYmnxp1PbbcZ+lhKmZTraqD68A9c GiWHQ6Gj0bBo/w== -----END CERTIFICATE-----Generated at Sat Dec 6 15:16:35 2025 by rpki-client