This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft File: 0f00NtehmnND-oANh6Aa8YPaMYs.mft (raw, json) Hash identifier: s9K2tK4ZhVtna2WJBf1aWWoQJY/uYv4WEDNUuA53SYg= Subject key identifier: 5F:BE:D8:9B:A9:07:06:0A:3D:EB:9E:D3:3C:26:54:A3:40:E4:F1:D3 Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b Certificate serial: 019AF088CA480F2C99F103B60C56012DE58C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft Manifest number: 0D6D Signing time: Fri 05 Dec 2025 22:01:27 +0000 Manifest this update: Fri 05 Dec 2025 22:01:27 +0000 Manifest next update: Sat 06 Dec 2025 22:01:27 +0000 Files and hashes: 1: 0f00NtehmnND-oANh6Aa8YPaMYs.crl (hash: 9DPo3yWnrEWrbZRN2/e+B/rEsZxhYJPSWngIrMG1xn8=) 2: 289E-Jj1-_NHnfIspmJ6dDyJHMo.roa (hash: WdW5apU9mzQj50OlelJWc6bz8hGD+pm8qBunEBj3yw4=) 3: Cs1qBn4VjrBIRHmPJXLiE1xFxCY.roa (hash: MWgCuKpBS+l+AyVioTFlRoxqt43GEYXQ/PHcMYuFOog=) 4: h6nXa6s8OWHMrQG1DSMZKlfJDE8.roa (hash: oPs+na6jf/GLFYpEpQKvloInu3ZuLoam22sOPdiiyEs=) 5: iW93Iii_wpRaBJx4UitIZE8Hirs.roa (hash: nFhRjV7MRzVZ4mQI/ZjUoZj1OD4mh/1+uDWJfZv9Rc0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:ca:48:0f:2c:99:f1:03:b6:0c:56:01:2d:e5:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b Validity Not Before: Dec 5 22:01:27 2025 GMT Not After : Dec 6 22:01:27 2025 GMT Subject: CN=5fbed89ba907060a3deb9ed33c2654a340e4f1d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:dc:84:a7:02:50:85:7c:c3:38:2f:6e:5e:bb: 48:b4:79:76:aa:3f:a3:a8:5a:71:e1:e5:e8:68:8d: 89:39:21:42:48:78:d8:20:40:a2:e8:b6:fc:e4:90: 44:86:a4:85:70:d5:cf:1d:6f:61:af:f7:c2:ce:d3: a6:54:cd:12:58:29:fc:10:4a:f4:d8:b1:7c:fe:1f: 74:7c:f9:ca:a8:61:9a:f8:01:81:67:f2:e1:ef:e2: 6f:27:31:3e:7b:b4:7f:dc:5d:4d:b8:0a:db:bb:c7: b1:3c:be:59:99:38:2e:06:80:f9:6c:f8:fd:53:85: 80:c4:9b:60:7e:13:b9:0e:0c:4a:c9:2e:c6:84:cd: 88:c2:9c:c6:0a:06:97:d5:d9:cf:15:20:1e:2a:f6: e1:73:e2:30:cd:23:65:ed:30:7d:c5:2c:74:40:d4: 39:c5:72:d8:4a:74:ad:03:4c:ae:ff:97:79:24:65: cf:52:eb:f9:4d:ab:e8:e2:b4:bd:07:f3:15:cc:d0: a1:ea:b3:49:52:b3:ca:63:8f:17:93:cf:9b:dd:60: 67:f1:8b:58:15:d8:76:1b:e5:a3:c0:4d:bb:1d:c0: 76:2e:63:90:a3:2a:9e:7e:58:99:b0:00:06:7e:bf: d8:dd:cc:94:65:91:05:10:ed:63:9b:e0:36:90:29: 1f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:BE:D8:9B:A9:07:06:0A:3D:EB:9E:D3:3C:26:54:A3:40:E4:F1:D3 X509v3 Authority Key Identifier: keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:54:c9:b7:59:b0:17:78:c1:85:c4:29:9f:22:13:9d:4e:4a: 43:a3:fb:e2:99:5e:6f:e9:1a:90:37:e1:af:18:40:ab:b9:07: dc:e6:9f:25:bd:d9:ed:fe:7c:8f:92:29:84:b9:47:cb:a5:a5: 8b:e0:ea:df:ed:bf:28:54:3a:e0:ce:c0:d6:cb:d5:bc:60:fb: 05:5a:8a:d3:03:c4:d8:9d:6f:84:cb:92:87:23:88:1d:7e:f2: a8:12:dd:50:6f:39:d8:81:50:57:3c:88:9f:45:d9:c0:47:14: d3:ef:5f:ab:8a:f5:55:b4:ad:b5:2e:09:50:17:6a:3a:26:f3: ee:e4:80:39:93:b0:71:89:5e:79:fa:e7:03:74:e4:f1:a9:42: 23:55:e6:ac:7e:1e:b1:61:fd:cd:11:b5:04:e3:99:cb:16:97: 3b:7c:84:7c:50:3a:1c:b2:4c:2f:c5:3d:89:cb:31:f9:76:b5: f2:c8:c8:e7:64:0f:89:18:84:a0:ed:c4:1b:b0:ce:5e:57:b1: 64:a5:82:5b:62:24:17:8e:8e:9f:a3:f8:16:2f:d9:22:c5:81: 7f:ec:8a:63:98:bc:c6:23:b0:54:fd:b9:83:46:d4:dd:9c:da: d2:df:09:41:3e:d7:5f:12:67:b1:be:5d:d1:c1:e8:ab:1e:56: 0c:79:46:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiMpIDyyZ8QO2DFYBLeWMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZmQzNDM2ZDdhMTlhNzM0M2ZhODAwZDg3YTAxYWYxODNk YTMxOGIwHhcNMjUxMjA1MjIwMTI3WhcNMjUxMjA2MjIwMTI3WjAzMTEwLwYDVQQD Eyg1ZmJlZDg5YmE5MDcwNjBhM2RlYjllZDMzYzI2NTRhMzQwZTRmMWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNyEpwJQhXzDOC9uXrtItHl2qj+j qFpx4eXoaI2JOSFCSHjYIECi6Lb85JBEhqSFcNXPHW9hr/fCztOmVM0SWCn8EEr0 2LF8/h90fPnKqGGa+AGBZ/Lh7+JvJzE+e7R/3F1NuArbu8exPL5ZmTguBoD5bPj9 U4WAxJtgfhO5DgxKyS7GhM2IwpzGCgaX1dnPFSAeKvbhc+IwzSNl7TB9xSx0QNQ5 xXLYSnStA0yu/5d5JGXPUuv5Tavo4rS9B/MVzNCh6rNJUrPKY48Xk8+b3WBn8YtY Fdh2G+WjwE27HcB2LmOQoyqefliZsAAGfr/Y3cyUZZEFEO1jm+A2kCkfAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF++2JupBwYKPeue0zwmVKNA5PHTMB8GA1UdIwQY MBaAFNH9NDbXoZpzQ/qADYegGvGD2jGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMt MzlhNjZjYmUxZTRkLzEvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMtMzlhNjZjYmUxZTRk LzEvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd1TJt1mw F3jBhcQpnyITnU5KQ6P74pleb+kakDfhrxhAq7kH3OafJb3Z7f58j5IphLlHy6Wl i+Dq3+2/KFQ64M7A1svVvGD7BVqK0wPE2J1vhMuShyOIHX7yqBLdUG852IFQVzyI n0XZwEcU0+9fq4r1VbSttS4JUBdqOibz7uSAOZOwcYleefrnA3Tk8alCI1XmrH4e sWH9zRG1BOOZyxaXO3yEfFA6HLJML8U9icsx+Xa18sjI52QPiRiEoO3EG7DOXlex ZKWCW2IkF46On6P4Fi/ZIsWBf+yKY5i8xiOwVP25g0bU3Zza0t8JQT7XXxJnsb5d 0cHoqx5WDHlGYw== -----END CERTIFICATE-----Generated at Sat Dec 6 05:56:36 2025 by rpki-client