This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft File: 309yD7vOaxVdc1fb5xJspWwevnU.mft (raw, json) Hash identifier: yrk09i7dbZYkqmqqk/w0lFr7C2S4aB/gs2wlfJdvxy8= Subject key identifier: 94:08:BD:E7:29:B0:95:C0:4A:23:74:B0:61:E2:C8:C8:4A:58:98:69 Authority key identifier: DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75 Certificate issuer: /CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75 Certificate serial: 019AF24032A838CD2ED1AA448B51546B4971 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft Manifest number: 030A Signing time: Sat 06 Dec 2025 06:01:24 +0000 Manifest this update: Sat 06 Dec 2025 06:01:24 +0000 Manifest next update: Sun 07 Dec 2025 06:01:24 +0000 Files and hashes: 1: 309yD7vOaxVdc1fb5xJspWwevnU.crl (hash: 54dKVwwKJNw5kg6aIx+ABPZessBai4Rq9LC6UDlxBpw=) 2: qjdo-2hELWfZ5X3xR6fmxm2tvRM.roa (hash: KdwciiToM5teWCqBbT0OWprvk5ot6XdBmfBuE2JH8Q4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:32:a8:38:cd:2e:d1:aa:44:8b:51:54:6b:49:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75 Validity Not Before: Dec 6 06:01:24 2025 GMT Not After : Dec 7 06:01:24 2025 GMT Subject: CN=9408bde729b095c04a2374b061e2c8c84a589869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:85:47:39:35:82:21:61:10:37:aa:97:89:45: 4e:36:ae:dd:de:81:37:6e:70:9d:13:22:75:10:59: 1a:3b:1f:b4:98:a1:a4:56:75:be:61:da:4f:98:f2: 29:b7:f0:8d:0a:c0:54:bb:4a:da:89:c4:52:10:86: b2:f4:41:a2:29:ca:94:fb:34:fe:95:3d:3b:ae:59: fc:21:b4:29:bd:e9:7b:4a:81:c1:2d:9b:ec:6b:90: cc:ac:33:26:39:29:be:64:83:f1:a4:84:0b:cc:22: 01:84:fe:2c:3d:78:7b:91:7c:29:dd:85:1a:77:ee: 2a:6d:a5:0f:94:c2:32:46:79:77:97:57:7a:ea:eb: ec:41:46:6f:3d:c7:57:a0:86:d6:1b:92:b0:9d:b4: 52:20:6e:b2:fb:12:63:3e:81:07:fc:a4:92:83:9c: 74:6b:a8:1a:47:98:87:10:61:40:b3:29:8d:81:cf: fd:b8:11:16:76:6a:5b:ba:a7:26:94:56:27:f9:2c: 06:5a:36:e8:63:03:75:1a:49:c7:da:5f:99:74:4d: ae:ee:d3:e2:75:58:c8:b6:89:8f:b6:d1:10:14:42: 73:56:3b:0f:6a:05:7a:8e:c9:d4:ab:9e:2e:b2:06: a8:1f:ee:1f:9d:f4:8e:08:94:c1:45:6d:04:8e:5f: 1f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:08:BD:E7:29:B0:95:C0:4A:23:74:B0:61:E2:C8:C8:4A:58:98:69 X509v3 Authority Key Identifier: keyid:DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:29:d7:3a:e7:f2:a9:62:b0:ce:83:83:e2:de:30:e7:7c:b6: ee:94:93:94:b4:f9:33:8a:56:51:c6:b1:19:86:ef:9a:fa:54: a5:c4:b2:9d:ae:32:80:b3:4e:2a:fa:51:f8:19:2d:12:2b:7c: d2:50:56:7b:07:72:87:c6:4e:31:e6:69:c8:02:76:3d:28:d9: fc:65:09:d7:ef:7d:2e:6d:35:9e:cb:21:fb:60:cc:a7:61:30: 86:b0:f5:82:2b:d4:f7:d7:93:a6:3e:12:b4:60:29:bc:89:47: a0:b4:02:36:79:de:3d:3e:db:2f:f9:fe:a7:58:2b:95:9d:5e: 8b:d2:bc:30:c1:90:2b:4c:c2:79:48:8c:f1:19:63:75:50:ee: aa:a6:8b:ea:71:71:1b:2b:9c:44:74:db:09:af:f7:4f:52:03: 4e:69:c3:9e:9c:f0:ed:99:0b:c7:d1:fa:74:11:0a:d5:67:a5: 40:d8:88:ec:7f:bc:81:a9:32:2c:3e:8c:46:24:b8:48:12:4d: 6b:eb:03:c6:1c:a7:7c:f9:7c:26:80:2a:97:25:f7:03:6a:99: 12:47:b5:3b:4a:d8:6c:fd:2e:ce:93:3d:c5:3f:c9:4a:aa:63: d5:ac:d0:fa:d5:89:5b:68:f4:d8:55:00:f7:fe:f2:8e:6d:2e: cc:19:9a:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQDKoOM0u0apEi1FUa0lxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmNGY3MjBmYmJjZTZiMTU1ZDczNTdkYmU3MTI2Y2E1NmMx ZWJlNzUwHhcNMjUxMjA2MDYwMTI0WhcNMjUxMjA3MDYwMTI0WjAzMTEwLwYDVQQD Eyg5NDA4YmRlNzI5YjA5NWMwNGEyMzc0YjA2MWUyYzhjODRhNTg5ODY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8YVHOTWCIWEQN6qXiUVONq7d3oE3 bnCdEyJ1EFkaOx+0mKGkVnW+YdpPmPIpt/CNCsBUu0raicRSEIay9EGiKcqU+zT+ lT07rln8IbQpvel7SoHBLZvsa5DMrDMmOSm+ZIPxpIQLzCIBhP4sPXh7kXwp3YUa d+4qbaUPlMIyRnl3l1d66uvsQUZvPcdXoIbWG5KwnbRSIG6y+xJjPoEH/KSSg5x0 a6gaR5iHEGFAsymNgc/9uBEWdmpbuqcmlFYn+SwGWjboYwN1GknH2l+ZdE2u7tPi dVjItomPttEQFEJzVjsPagV6jsnUq54usgaoH+4fnfSOCJTBRW0Ejl8fvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJQIvecpsJXASiN0sGHiyMhKWJhpMB8GA1UdIwQY MBaAFN9Pcg+7zmsVXXNX2+cSbKVsHr51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzA5eUQ3dk9heFZkYzFmYjV4SnNwV3dldm5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS82ZmE1MWItODEyZS00Mjg0LTlkMTct YWQ1MWJhMjE2NTMxLzEvMzA5eUQ3dk9heFZkYzFmYjV4SnNwV3dldm5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS82ZmE1MWItODEyZS00Mjg0LTlkMTctYWQ1MWJhMjE2NTMx LzEvMzA5eUQ3dk9heFZkYzFmYjV4SnNwV3dldm5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbynXOufy qWKwzoOD4t4w53y27pSTlLT5M4pWUcaxGYbvmvpUpcSyna4ygLNOKvpR+BktEit8 0lBWewdyh8ZOMeZpyAJ2PSjZ/GUJ1+99Lm01nssh+2DMp2EwhrD1givU99eTpj4S tGApvIlHoLQCNnnePT7bL/n+p1grlZ1ei9K8MMGQK0zCeUiM8RljdVDuqqaL6nFx GyucRHTbCa/3T1IDTmnDnpzw7ZkLx9H6dBEK1WelQNiI7H+8gakyLD6MRiS4SBJN a+sDxhynfPl8JoAqlyX3A2qZEke1O0rYbP0uzpM9xT/JSqpj1azQ+tWJW2j02FUA 9/7yjm0uzBmaFA== -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:29 2025 by rpki-client