This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft File: aDjbfmmRJ9pMHFpek_RPMCtihjs.mft (raw, json) Hash identifier: HST3YQYmFQmCBTQVUci9rDVyyGLCMX6/rxlRz/YwZ8k= Subject key identifier: 3D:D6:29:7C:D2:1C:B3:83:28:B7:75:1C:91:AB:D8:71:B7:E1:8D:C7 Authority key identifier: 68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B Certificate issuer: /CN=6838db7e699127da4c1c5a5e93f44f302b62863b Certificate serial: 019AF38939DDC8BBFD6B8CD5518397528339 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 12:00:47 +0000 Manifest this update: Sat 06 Dec 2025 12:00:47 +0000 Manifest next update: Sun 07 Dec 2025 12:00:47 +0000 Files and hashes: 1: aDjbfmmRJ9pMHFpek_RPMCtihjs.crl (hash: A6JuDKXkFcd3wg8CYNO66Im2eXtIR19Hemt2b3rypnc=) 2: ndozZxXsqqvoYlnvn2R8eG6q9WM.roa (hash: J/bxB2F1VD9ABMhf1I4cZo/1cjeHrt4Cto7ZdYkPM28=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:39:dd:c8:bb:fd:6b:8c:d5:51:83:97:52:83:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6838db7e699127da4c1c5a5e93f44f302b62863b Validity Not Before: Dec 6 12:00:47 2025 GMT Not After : Dec 7 12:00:47 2025 GMT Subject: CN=3dd6297cd21cb38328b7751c91abd871b7e18dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:20:e2:a8:ec:3b:f7:be:78:0a:a2:22:f9:fd: c9:40:09:6a:cd:9a:87:e4:e7:1a:86:9e:a4:22:c6: da:78:e4:65:55:e0:f1:62:96:a0:9c:37:59:b3:28: 5b:26:1f:e5:21:82:28:69:3d:0e:b0:7e:40:ab:1e: a3:46:24:47:1b:ba:1a:10:05:15:64:34:c6:6b:2c: 11:0a:d8:1e:8e:6b:bd:67:77:23:17:37:82:e7:04: c7:ad:6f:48:b6:dc:95:cf:1b:ce:56:eb:23:28:ed: 87:b1:81:ff:30:c2:0d:ba:4d:af:45:61:57:5d:57: b5:c6:ab:f3:a9:39:9e:5e:01:33:49:20:4d:57:c5: 59:7c:f1:a4:a1:d3:b4:aa:08:ac:95:d5:b8:6a:cd: 7a:09:59:9c:ec:d3:61:65:97:6b:f8:4a:56:67:7f: 62:47:9d:0c:f7:55:04:c5:20:02:f5:f8:95:e4:5e: 30:e7:59:6a:ee:6c:31:0c:eb:cc:43:29:f6:7a:00: f7:e5:b6:6a:69:1b:ea:6e:e3:7e:e2:97:3d:c0:c4: 4a:e5:bf:fe:02:68:a8:40:2e:15:56:4e:2d:0b:1d: d2:ac:02:72:17:e4:57:c2:59:bc:f4:7b:35:68:a6: d1:cb:86:f4:16:14:23:c8:fb:6d:7e:ab:54:3f:50: d9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D6:29:7C:D2:1C:B3:83:28:B7:75:1C:91:AB:D8:71:B7:E1:8D:C7 X509v3 Authority Key Identifier: keyid:68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption df:07:8a:19:49:b9:70:25:ce:5d:bd:75:83:4c:bd:48:06:25: 44:6e:0e:b4:f9:19:09:20:ff:e6:0f:b1:90:95:25:7b:5f:0f: 07:98:cf:02:d9:aa:b6:0b:ff:c6:66:da:22:84:68:d4:ce:03: bd:2b:a8:68:01:ad:45:a4:a2:c6:ef:49:c8:38:79:28:6a:7f: 6b:08:96:8d:0d:46:5e:73:8d:0f:39:69:34:15:19:8d:91:13: b0:13:f1:2a:e3:e5:88:91:75:a9:9d:0b:08:bd:39:00:11:5c: 5d:4d:d9:f5:27:ac:44:62:f9:34:c3:17:30:ed:47:76:64:d5: 7e:e3:29:17:2a:7e:3a:97:a6:e0:0f:0d:9b:2d:fd:b1:79:13: 04:df:6f:8d:b0:9c:84:84:39:bc:19:27:94:6b:ca:ec:d8:59: 85:34:dc:0f:9f:b9:01:ed:86:fd:6e:ff:78:e4:fb:b0:13:38: df:c2:01:16:4c:da:28:0b:a3:74:7d:78:26:e6:ea:f9:a0:8b: 0a:da:09:fe:20:88:c8:81:97:01:36:86:60:40:c2:f0:3c:51: c9:cf:b9:fe:65:fc:86:8b:92:f8:e5:35:3a:37:b1:52:f4:84: 37:5b:ba:a9:9c:d7:b7:e2:97:e0:89:93:5c:59:d7:6b:5a:02: 56:ce:3b:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziTndyLv9a4zVUYOXUoM5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MzhkYjdlNjk5MTI3ZGE0YzFjNWE1ZTkzZjQ0ZjMwMmI2 Mjg2M2IwHhcNMjUxMjA2MTIwMDQ3WhcNMjUxMjA3MTIwMDQ3WjAzMTEwLwYDVQQD EygzZGQ2Mjk3Y2QyMWNiMzgzMjhiNzc1MWM5MWFiZDg3MWI3ZTE4ZGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyDiqOw79754CqIi+f3JQAlqzZqH 5Ocahp6kIsbaeORlVeDxYpagnDdZsyhbJh/lIYIoaT0OsH5Aqx6jRiRHG7oaEAUV ZDTGaywRCtgejmu9Z3cjFzeC5wTHrW9IttyVzxvOVusjKO2HsYH/MMINuk2vRWFX XVe1xqvzqTmeXgEzSSBNV8VZfPGkodO0qgisldW4as16CVmc7NNhZZdr+EpWZ39i R50M91UExSAC9fiV5F4w51lq7mwxDOvMQyn2egD35bZqaRvqbuN+4pc9wMRK5b/+ AmioQC4VVk4tCx3SrAJyF+RXwlm89Hs1aKbRy4b0FhQjyPttfqtUP1DZBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD3WKXzSHLODKLd1HJGr2HG34Y3HMB8GA1UdIwQY MBaAFGg4235pkSfaTBxaXpP0TzArYoY7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQt MmY5Y2FjNzAwZmE1LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQtMmY5Y2FjNzAwZmE1 LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3weKGUm5 cCXOXb11g0y9SAYlRG4OtPkZCSD/5g+xkJUle18PB5jPAtmqtgv/xmbaIoRo1M4D vSuoaAGtRaSixu9JyDh5KGp/awiWjQ1GXnONDzlpNBUZjZETsBPxKuPliJF1qZ0L CL05ABFcXU3Z9SesRGL5NMMXMO1HdmTVfuMpFyp+Opem4A8Nmy39sXkTBN9vjbCc hIQ5vBknlGvK7NhZhTTcD5+5Ae2G/W7/eOT7sBM438IBFkzaKAujdH14Jubq+aCL CtoJ/iCIyIGXATaGYEDC8DxRyc+5/mX8houS+OU1OjexUvSEN1u6qZzXt+KX4ImT XFnXa1oCVs47sw== -----END CERTIFICATE-----Generated at Sat Dec 6 20:36:35 2025 by rpki-client