This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft File: rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft (raw, json) Hash identifier: l4m1omQ253FOGZpr+FjI+Ja2EtIrD2DrXESUvVVoplM= Subject key identifier: 42:E5:43:42:93:CA:42:CD:7A:66:88:B3:4B:EA:99:6B:17:9C:F2:1E Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00 Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900 Certificate serial: 019AF2E45410A5242122F23BF03EB858685E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft Manifest number: 177C Signing time: Sat 06 Dec 2025 09:00:41 +0000 Manifest this update: Sat 06 Dec 2025 09:00:41 +0000 Manifest next update: Sun 07 Dec 2025 09:00:41 +0000 Files and hashes: 1: 1xef8JB14kgVdYbFNM-Oq6W7NWA.roa (hash: 2TgMpFsN8snCYIhnDbb3K1R/JLwOpv09B4vLRv33njY=) 2: ToMuWHyiRaajps4vDuhQJOslyAU.roa (hash: ke6Ja8Xs3dkfS5WPMbYkREYjZOPIsKYiNDdqbTUvm8g=) 3: mG-NGr5UJw8Bdsm31xr0LARp3LM.roa (hash: Ez+x2KZ41CLnIqO9c7EUA1U/u9pzX46TWaq6peZ65/4=) 4: nqdZW8VS3cJABsENIPnwko2Hihc.roa (hash: IhzETIut1wHzF58gkob1Irj0rHur1kgwouWb5+riuAI=) 5: nrBcJclJWWQmSFgHdkkN2rl4iMo.roa (hash: LHzeWYsmA5iX5RkIBuodpJrYuHeqFeRrX4/36Bp1azQ=) 6: rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl (hash: u83pYRANjS8m7z2QxtmTmyY1lO2Hnc9gzbw/MTWaEj8=) 7: s_aKE2fwvI0TlJb7EYHJTZWCW7w.roa (hash: fh6F14UFEi/72CmWgxdS2ArW4727YK4EYnZc6mj0zIE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:e4:54:10:a5:24:21:22:f2:3b:f0:3e:b8:58:68:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900 Validity Not Before: Dec 6 09:00:41 2025 GMT Not After : Dec 7 09:00:41 2025 GMT Subject: CN=42e5434293ca42cd7a6688b34bea996b179cf21e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0b:b8:20:72:e1:c0:5b:4e:02:b4:b5:44:53: be:42:ce:b3:87:7f:3b:03:90:4c:3a:9d:2b:59:aa: 37:a7:52:00:5f:ee:de:c4:9e:fb:b6:98:19:f8:fa: e8:5f:82:4c:ad:9a:8f:08:7c:55:79:58:01:c9:c5: 70:07:09:94:e7:3c:ee:63:9f:7d:a9:dc:6d:9c:96: 75:57:4a:b7:52:4f:af:1b:93:85:0d:63:3a:7a:f3: 82:53:d0:20:77:0f:d6:40:a0:e8:6b:e0:df:eb:dc: d9:f7:89:b8:2f:d9:2b:87:6a:6f:b8:cd:25:d0:27: ea:1b:40:5b:aa:ac:99:9b:da:c8:5d:af:21:34:ab: 3a:5c:3d:48:da:4e:59:92:80:7b:3a:0a:ef:2f:d0: eb:59:ea:6d:f9:4d:4f:bd:c6:cf:9e:11:da:02:04: 72:08:ce:c0:d0:53:f1:42:f6:9a:9e:bb:7f:bb:d3: 32:68:cf:ce:c0:c2:f9:58:49:c4:09:dc:05:11:00: 59:e4:14:28:3d:93:b9:40:ab:8c:8b:01:49:56:e5: e7:71:c7:9c:7e:59:62:f3:29:df:08:83:10:ed:9a: 32:86:1a:1c:fa:47:11:88:96:76:f1:56:81:68:f7: 6e:14:68:0f:db:b0:c4:30:75:e6:89:b4:17:b4:42: 98:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E5:43:42:93:CA:42:CD:7A:66:88:B3:4B:EA:99:6B:17:9C:F2:1E X509v3 Authority Key Identifier: keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:d7:2c:23:40:b5:7c:f9:97:e6:0b:72:58:ad:f3:85:cc:f2: ba:d5:f8:81:e4:e7:ad:82:c1:21:e6:83:9c:10:0e:24:36:b6: a3:93:d8:c8:15:b8:6d:ca:66:7b:07:c6:b8:a9:c7:8a:1b:90: 62:a2:84:d9:23:73:91:8c:99:b9:d3:bf:82:91:32:5b:3a:92: 5c:90:fe:bc:80:8d:29:8b:f8:bc:9e:16:c4:2b:f0:9b:7f:66: ae:8b:d5:55:81:84:62:05:8f:57:bb:40:5a:cf:9a:ce:07:8f: ec:9a:4c:39:b1:40:12:21:5d:60:e0:fc:69:14:08:6c:4e:36: 83:a5:ca:ac:20:2e:ad:22:98:8c:27:8b:94:90:a0:3e:7d:49: b7:8d:6e:0d:85:f9:00:7c:f1:01:f8:c1:c0:02:a7:f8:8f:66: b7:08:8c:e6:c9:75:c0:b3:b8:7f:49:ca:76:b0:8f:7c:55:42: 4a:3f:29:1e:c9:fc:a8:ce:a4:e0:c0:c1:3d:e9:93:96:6c:d1: 42:43:84:ad:35:9a:52:fc:7c:58:18:a6:29:94:5c:4c:cd:9a: c6:02:c5:3f:15:b2:f4:1e:b7:31:cc:e3:5d:ed:a0:8a:a4:0e: 73:eb:46:db:5e:fc:6e:23:24:80:92:ee:e4:4f:69:92:70:cc: f4:53:39:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZry5FQQpSQhIvI78D64WGheMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlN2Y3NDdkZjVmMjQzNTMxNTRkYzRkNGJmNzBkMmRkY2I1 M2U5MDAwHhcNMjUxMjA2MDkwMDQxWhcNMjUxMjA3MDkwMDQxWjAzMTEwLwYDVQQD Eyg0MmU1NDM0MjkzY2E0MmNkN2E2Njg4YjM0YmVhOTk2YjE3OWNmMjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wu4IHLhwFtOArS1RFO+Qs6zh387 A5BMOp0rWao3p1IAX+7exJ77tpgZ+ProX4JMrZqPCHxVeVgBycVwBwmU5zzuY599 qdxtnJZ1V0q3Uk+vG5OFDWM6evOCU9Agdw/WQKDoa+Df69zZ94m4L9krh2pvuM0l 0CfqG0BbqqyZm9rIXa8hNKs6XD1I2k5ZkoB7OgrvL9DrWept+U1PvcbPnhHaAgRy CM7A0FPxQvaanrt/u9MyaM/OwML5WEnECdwFEQBZ5BQoPZO5QKuMiwFJVuXnccec flli8ynfCIMQ7Zoyhhoc+kcRiJZ28VaBaPduFGgP27DEMHXmibQXtEKYdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFELlQ0KTykLNemaIs0vqmWsXnPIeMB8GA1UdIwQY MBaAFK5/dH318kNTFU3E1L9w0t3LU+kAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2Et YzZmMWU2YWM5YmE5LzEvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2EtYzZmMWU2YWM5YmE5 LzEvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJdcsI0C1 fPmX5gtyWK3zhczyutX4geTnrYLBIeaDnBAOJDa2o5PYyBW4bcpmewfGuKnHihuQ YqKE2SNzkYyZudO/gpEyWzqSXJD+vICNKYv4vJ4WxCvwm39mrovVVYGEYgWPV7tA Ws+azgeP7JpMObFAEiFdYOD8aRQIbE42g6XKrCAurSKYjCeLlJCgPn1Jt41uDYX5 AHzxAfjBwAKn+I9mtwiM5sl1wLO4f0nKdrCPfFVCSj8pHsn8qM6k4MDBPemTlmzR QkOErTWaUvx8WBimKZRcTM2axgLFPxWy9B63MczjXe2giqQOc+tG2178biMkgJLu 5E9pknDM9FM5nA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:41:30 2025 by rpki-client