This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft File: Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft (raw, json) Hash identifier: qfvZKFSMvmN5vfrGPFqAZ1mBkq3Eh6pp5Vp9Oqmmbr0= Subject key identifier: FC:BA:56:90:56:23:EC:9A:3B:AB:92:12:CD:BC:B1:95:E3:B5:F1:9F Authority key identifier: 32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84 Certificate issuer: /CN=329dbb46a4eb7645d994a0e4b984fcdac204a484 Certificate serial: 019AF12D9147F1E961662DE111FCFF0E4C2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft Manifest number: 0441 Signing time: Sat 06 Dec 2025 01:01:26 +0000 Manifest this update: Sat 06 Dec 2025 01:01:26 +0000 Manifest next update: Sun 07 Dec 2025 01:01:26 +0000 Files and hashes: 1: Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl (hash: aUD4v42ybjSAyBC61sdgys61QkPqqzUwXRWcWsYk19o=) 2: ZyPIESuaSWPIuQmq_le4sKOKISE.roa (hash: ZskQdIcp36rlr+2ORbgrG1PrwisAu9ueRcvHTkIY4YM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:91:47:f1:e9:61:66:2d:e1:11:fc:ff:0e:4c:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=329dbb46a4eb7645d994a0e4b984fcdac204a484 Validity Not Before: Dec 6 01:01:26 2025 GMT Not After : Dec 7 01:01:26 2025 GMT Subject: CN=fcba56905623ec9a3bab9212cdbcb195e3b5f19f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9b:03:09:a6:3e:06:80:89:36:36:b8:6e:0c: 59:79:e7:a3:d7:56:01:8e:d8:70:44:9c:34:0d:31: 5c:85:2b:e1:80:ba:08:d0:ce:e5:67:88:fe:16:76: 0c:fa:a3:f8:70:7c:6b:5a:21:5d:ab:f9:c6:b9:dd: cf:76:3c:53:d1:68:0e:12:b4:c3:3e:f9:69:ea:79: b0:7f:40:80:67:55:f1:31:7d:b4:3d:af:c3:5e:83: e5:8a:3e:a9:35:68:1c:b0:18:f3:e4:94:c5:af:ae: da:d0:eb:ca:10:ba:36:4f:a6:fa:17:4d:16:d3:9a: 47:40:bb:b4:f9:57:2d:8f:4b:ba:e1:7d:af:07:fc: b6:18:77:41:67:05:a1:e8:ae:3c:8c:3d:67:1a:c0: 35:5d:d0:e3:1c:a8:a5:7a:40:42:42:77:9d:7c:5a: 96:54:66:c8:0d:bc:7b:32:d5:a5:5d:f6:94:28:e9: 12:73:86:be:8a:3f:18:09:91:f0:78:01:ae:db:82: fd:f2:c9:2f:0e:9c:c9:cf:e4:1a:b7:ea:fb:1d:49: 0c:86:5e:7a:19:3b:c2:e8:f9:b5:9c:04:8c:31:ba: 04:a4:f6:ff:13:1e:bc:c3:2a:9d:1a:18:a7:b2:22: 6e:7e:c9:7b:ff:4a:0a:c0:bf:5a:3c:9d:00:43:e9: d6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:BA:56:90:56:23:EC:9A:3B:AB:92:12:CD:BC:B1:95:E3:B5:F1:9F X509v3 Authority Key Identifier: keyid:32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d5:3c:83:06:4c:3e:02:d0:7b:a2:1b:4d:88:98:28:25:99:78: 1f:9d:7d:c1:d1:72:d6:77:ff:58:78:c2:7f:b3:f8:ce:87:24: c2:6c:63:98:20:07:8d:75:69:65:aa:be:b0:1a:8e:98:8f:92: d9:fc:75:65:d1:2d:43:4b:0d:22:4b:7e:58:48:56:29:2d:f5: a1:52:d3:2a:93:eb:fb:d5:b8:ab:32:88:8f:27:2a:84:7f:24: 03:81:a1:db:e8:2c:39:b3:c3:ca:83:20:4e:d3:b2:d7:3a:11: bb:17:40:fa:9d:50:4e:55:e3:04:cb:3b:42:b7:05:6e:f2:f3: b7:2a:08:dc:6a:c5:ad:6a:28:0e:e8:11:08:ab:ec:57:16:1a: de:6a:52:e6:82:80:69:3e:11:32:95:24:95:5a:67:49:87:a9: 8e:5d:95:53:1a:f5:bd:6e:14:05:e5:b3:84:58:dc:ba:1b:6f: 0e:c0:dd:4c:3b:24:e4:25:a4:a2:03:5c:88:20:ab:dd:d4:77: 35:68:89:15:bb:33:ba:9d:5e:72:84:3b:89:a9:6e:bb:e9:f9: 50:a0:f2:7c:c8:df:4f:a9:6e:a4:8b:76:fc:fb:48:7d:a3:11: 63:b0:cf:67:6d:b8:dc:49:29:08:1c:af:d3:4d:d2:7c:97:74: bf:30:bc:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLZFH8elhZi3hEfz/DkwqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyOWRiYjQ2YTRlYjc2NDVkOTk0YTBlNGI5ODRmY2RhYzIw NGE0ODQwHhcNMjUxMjA2MDEwMTI2WhcNMjUxMjA3MDEwMTI2WjAzMTEwLwYDVQQD EyhmY2JhNTY5MDU2MjNlYzlhM2JhYjkyMTJjZGJjYjE5NWUzYjVmMTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5sDCaY+BoCJNja4bgxZeeej11YB jthwRJw0DTFchSvhgLoI0M7lZ4j+FnYM+qP4cHxrWiFdq/nGud3PdjxT0WgOErTD Pvlp6nmwf0CAZ1XxMX20Pa/DXoPlij6pNWgcsBjz5JTFr67a0OvKELo2T6b6F00W 05pHQLu0+Vctj0u64X2vB/y2GHdBZwWh6K48jD1nGsA1XdDjHKilekBCQnedfFqW VGbIDbx7MtWlXfaUKOkSc4a+ij8YCZHweAGu24L98skvDpzJz+Qat+r7HUkMhl56 GTvC6Pm1nASMMboEpPb/Ex68wyqdGhinsiJufsl7/0oKwL9aPJ0AQ+nWLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPy6VpBWI+yaO6uSEs28sZXjtfGfMB8GA1UdIwQY MBaAFDKdu0ak63ZF2ZSg5LmE/NrCBKSEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXAyN1JxVHJka1habEtEa3VZVDgyc0lFcElRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9mMTcxYmUtOTY1My00MWQ4LWEzNDQt ZmVjMTVhYjg0MTM1LzEvTXAyN1JxVHJka1habEtEa3VZVDgyc0lFcElRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9mMTcxYmUtOTY1My00MWQ4LWEzNDQtZmVjMTVhYjg0MTM1 LzEvTXAyN1JxVHJka1habEtEa3VZVDgyc0lFcElRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1TyDBkw+ AtB7ohtNiJgoJZl4H519wdFy1nf/WHjCf7P4zockwmxjmCAHjXVpZaq+sBqOmI+S 2fx1ZdEtQ0sNIkt+WEhWKS31oVLTKpPr+9W4qzKIjycqhH8kA4Gh2+gsObPDyoMg TtOy1zoRuxdA+p1QTlXjBMs7QrcFbvLztyoI3GrFrWooDugRCKvsVxYa3mpS5oKA aT4RMpUklVpnSYepjl2VUxr1vW4UBeWzhFjcuhtvDsDdTDsk5CWkogNciCCr3dR3 NWiJFbszup1ecoQ7ialuu+n5UKDyfMjfT6lupIt2/PtIfaMRY7DPZ2243EkpCByv 003SfJd0vzC8SQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:37:24 2025 by rpki-client