This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft File: FoYA36ydPRp15mMNaXEC8vITLEg.mft (raw, json) Hash identifier: TpsZuXgH6h+Oy0ByqVtL0Hlx5YVZFmks4weV//gsCC0= Subject key identifier: F6:0D:95:5F:38:52:A5:3D:D0:EE:5B:00:2D:DC:B7:38:55:0C:F3:AB Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48 Certificate issuer: /CN=168600dfac9d3d1a75e6630d697102f2f2132c48 Certificate serial: 019AF2AD62C7BD224534621F599A74D8A97B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft Manifest number: 1771 Signing time: Sat 06 Dec 2025 08:00:40 +0000 Manifest this update: Sat 06 Dec 2025 08:00:40 +0000 Manifest next update: Sun 07 Dec 2025 08:00:40 +0000 Files and hashes: 1: FoYA36ydPRp15mMNaXEC8vITLEg.crl (hash: lpzEyWeM/Tei7c/Ylzvk7TYVFwu6CLNQCt7k6zHqXw8=) 2: MNlQF5nG0eeT7QS_s8UJC2BbGl4.roa (hash: msf9qspTIOl4MPPSDjXBam+bCbkt7kvUjAGSdIfDP0c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:62:c7:bd:22:45:34:62:1f:59:9a:74:d8:a9:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48 Validity Not Before: Dec 6 08:00:40 2025 GMT Not After : Dec 7 08:00:40 2025 GMT Subject: CN=f60d955f3852a53dd0ee5b002ddcb738550cf3ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:89:77:74:ef:83:73:2e:b5:2a:a0:0e:67:c8: e8:b2:58:3a:de:57:83:c6:50:fa:84:b1:37:32:73: d0:1d:47:96:ea:b6:05:1b:83:1e:3f:e5:77:06:24: b5:80:d0:1d:22:be:c9:8d:0e:7b:c9:ed:e2:56:d0: c9:ce:a6:55:a6:8f:cd:c0:df:88:6e:f0:9e:7a:45: 33:af:3e:2c:44:f3:46:7e:39:35:05:be:9e:58:39: 5e:af:ca:68:a8:3d:1f:1a:07:20:e6:39:68:fb:c2: d5:e3:23:77:3a:f5:0b:a2:88:5b:d7:76:8a:04:0f: df:f0:8a:1a:4d:f3:0c:4d:c8:24:c5:e5:91:67:a1: af:fe:89:01:62:9a:87:f6:09:d2:68:2a:6f:c6:d3: 28:ce:1e:e2:c9:55:44:32:14:b2:ae:18:89:cb:25: 3e:d7:90:d9:e1:a4:67:b5:4e:85:3e:64:af:b5:c2: 64:d8:35:fc:41:c0:26:17:39:83:95:fc:45:fe:1c: 46:ae:31:31:ac:a1:6d:68:93:af:24:1e:a5:d0:bb: 5d:22:46:79:f1:37:df:02:ef:f4:2d:78:ae:0c:8a: b1:3f:8e:95:60:f5:12:71:b0:6d:7c:3b:cc:3f:de: 47:76:a9:60:02:d1:31:71:aa:48:aa:14:0b:d7:98: 46:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:0D:95:5F:38:52:A5:3D:D0:EE:5B:00:2D:DC:B7:38:55:0C:F3:AB X509v3 Authority Key Identifier: keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:f7:55:17:26:19:3d:93:d9:19:be:af:84:25:b7:10:46:98: 7e:a2:0a:d5:36:18:20:8f:53:ef:04:f6:c6:a9:6b:48:d1:f3: 22:40:d8:71:9e:a8:22:66:cd:9f:a4:78:40:a1:0b:52:14:ca: 7c:f4:bd:5a:76:be:9b:6a:da:dd:2a:e4:05:c6:ec:8a:c8:b9: c5:df:96:2c:8e:c7:b0:81:70:87:76:ac:df:bc:17:19:49:7b: 7c:aa:b7:4e:99:0a:6d:29:a4:6c:dd:11:de:5c:87:13:4e:81: b8:cc:1d:97:d1:6b:0d:57:d6:a7:32:e2:af:e9:0a:83:4e:cb: 18:f9:6e:ae:ef:ae:74:e3:de:83:f8:2f:87:15:ab:19:89:d4: f4:4a:ac:c9:37:4e:3b:ab:8c:b5:43:10:c0:c2:87:3f:93:b3: f9:e1:1d:6b:f2:28:b3:62:7d:96:2a:ae:57:8d:be:e6:be:e6: 35:f8:63:b5:0e:32:30:fc:e3:6a:fc:c7:9f:20:4e:5a:fe:81: 37:9d:04:65:22:72:ce:06:04:be:16:a3:b5:49:03:b9:ab:3c: e4:96:e4:5c:4e:14:e4:62:66:d0:cc:ba:c2:ea:32:fd:9d:cf: 1f:3e:87:87:1e:e4:83:5f:c3:64:a5:49:bb:ba:c8:27:67:30: af:b6:29:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrWLHvSJFNGIfWZp02Kl7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2ODYwMGRmYWM5ZDNkMWE3NWU2NjMwZDY5NzEwMmYyZjIx MzJjNDgwHhcNMjUxMjA2MDgwMDQwWhcNMjUxMjA3MDgwMDQwWjAzMTEwLwYDVQQD EyhmNjBkOTU1ZjM4NTJhNTNkZDBlZTViMDAyZGRjYjczODU1MGNmM2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzol3dO+Dcy61KqAOZ8joslg63leD xlD6hLE3MnPQHUeW6rYFG4MeP+V3BiS1gNAdIr7JjQ57ye3iVtDJzqZVpo/NwN+I bvCeekUzrz4sRPNGfjk1Bb6eWDler8poqD0fGgcg5jlo+8LV4yN3OvULoohb13aK BA/f8IoaTfMMTcgkxeWRZ6Gv/okBYpqH9gnSaCpvxtMozh7iyVVEMhSyrhiJyyU+ 15DZ4aRntU6FPmSvtcJk2DX8QcAmFzmDlfxF/hxGrjExrKFtaJOvJB6l0LtdIkZ5 8TffAu/0LXiuDIqxP46VYPUScbBtfDvMP95HdqlgAtExcapIqhQL15hGXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPYNlV84UqU90O5bAC3ctzhVDPOrMB8GA1UdIwQY MBaAFBaGAN+snT0adeZjDWlxAvLyEyxIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRm9ZQTM2eWRQUnAxNW1NTmFYRUM4dklUTEVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9hZjM1YzMtN2Y4MS00ODI5LThkYmEt MThkYmU2NTA0YmI0LzEvRm9ZQTM2eWRQUnAxNW1NTmFYRUM4dklUTEVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni9hZjM1YzMtN2Y4MS00ODI5LThkYmEtMThkYmU2NTA0YmI0 LzEvRm9ZQTM2eWRQUnAxNW1NTmFYRUM4dklUTEVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANfdVFyYZ PZPZGb6vhCW3EEaYfqIK1TYYII9T7wT2xqlrSNHzIkDYcZ6oImbNn6R4QKELUhTK fPS9Wna+m2ra3SrkBcbsisi5xd+WLI7HsIFwh3as37wXGUl7fKq3TpkKbSmkbN0R 3lyHE06BuMwdl9FrDVfWpzLir+kKg07LGPluru+udOPeg/gvhxWrGYnU9EqsyTdO O6uMtUMQwMKHP5Oz+eEda/Ios2J9liquV42+5r7mNfhjtQ4yMPzjavzHnyBOWv6B N50EZSJyzgYEvhajtUkDuas85JbkXE4U5GJm0My6wuoy/Z3PHz6Hhx7kg1/DZKVJ u7rIJ2cwr7YppQ== -----END CERTIFICATE-----Generated at Sat Dec 6 15:45:16 2025 by rpki-client