This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft File: rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft (raw, json) Hash identifier: C/YbUkE4B32vOg+F7ntOJ4aGb8tQYOJwvPNFvprqx/w= Subject key identifier: 3C:5D:A8:29:BB:C7:2D:97:3E:F4:2F:71:06:C2:5B:58:BE:99:58:E9 Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00 Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900 Certificate serial: 019B251A59AC458D9BB6D86B0267B86E58F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft Manifest number: 1796 Signing time: Tue 16 Dec 2025 03:00:42 +0000 Manifest this update: Tue 16 Dec 2025 03:00:42 +0000 Manifest next update: Wed 17 Dec 2025 03:00:42 +0000 Files and hashes: 1: 1xef8JB14kgVdYbFNM-Oq6W7NWA.roa (hash: 2TgMpFsN8snCYIhnDbb3K1R/JLwOpv09B4vLRv33njY=) 2: ToMuWHyiRaajps4vDuhQJOslyAU.roa (hash: ke6Ja8Xs3dkfS5WPMbYkREYjZOPIsKYiNDdqbTUvm8g=) 3: mG-NGr5UJw8Bdsm31xr0LARp3LM.roa (hash: Ez+x2KZ41CLnIqO9c7EUA1U/u9pzX46TWaq6peZ65/4=) 4: nqdZW8VS3cJABsENIPnwko2Hihc.roa (hash: IhzETIut1wHzF58gkob1Irj0rHur1kgwouWb5+riuAI=) 5: nrBcJclJWWQmSFgHdkkN2rl4iMo.roa (hash: LHzeWYsmA5iX5RkIBuodpJrYuHeqFeRrX4/36Bp1azQ=) 6: rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl (hash: PVP98IhLaqwAnQGoM396sjVkdN6O5dPMsIReE2D4+AQ=) 7: s_aKE2fwvI0TlJb7EYHJTZWCW7w.roa (hash: fh6F14UFEi/72CmWgxdS2ArW4727YK4EYnZc6mj0zIE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:1a:59:ac:45:8d:9b:b6:d8:6b:02:67:b8:6e:58:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900 Validity Not Before: Dec 16 03:00:42 2025 GMT Not After : Dec 17 03:00:42 2025 GMT Subject: CN=3c5da829bbc72d973ef42f7106c25b58be9958e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bf:5c:4b:b0:4f:49:df:00:36:22:24:25:5a: 9a:db:7b:d4:6b:5e:80:aa:a2:8d:dc:77:88:f1:ed: 39:fa:2b:b5:d2:0b:ae:b5:47:6a:cc:4c:43:27:f7: 46:73:b9:60:e1:54:02:e9:67:23:72:a2:dc:99:0b: 0b:aa:00:d8:6f:e3:1d:b5:31:a3:e3:b8:16:d5:59: e4:3c:f3:68:ac:d6:26:fd:0f:d2:18:64:b8:6b:e1: 84:fe:39:f2:2e:26:cf:a9:65:72:8d:b8:e3:40:f2: 5e:e7:c3:6d:9f:32:53:99:c8:56:b0:4e:49:a5:86: 78:7a:09:69:68:ef:de:ed:e0:e7:c3:75:8c:f5:74: 0a:47:52:8c:19:c0:da:ff:5f:ea:cd:f4:e3:1c:ed: 2a:35:73:77:47:d2:38:a9:48:c7:44:7b:b8:3d:a4: d2:25:ab:b9:c2:62:0e:e6:60:57:a6:0b:77:de:61: b2:42:af:59:ab:d6:69:9b:ec:77:d0:c1:9a:14:28: 65:df:5d:45:09:8a:ac:c5:28:c1:79:57:90:0c:07: 13:03:6c:6f:6f:04:d7:4c:2b:be:e6:fb:07:2d:f2: 7c:49:71:7b:08:4c:18:41:c0:56:01:98:fd:c3:2f: 7f:65:51:ee:9f:8f:09:03:c1:a1:31:16:eb:92:ef: 03:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5D:A8:29:BB:C7:2D:97:3E:F4:2F:71:06:C2:5B:58:BE:99:58:E9 X509v3 Authority Key Identifier: keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ef:54:57:97:80:70:de:4d:a3:1a:90:b9:be:b2:74:ee:40: 7b:47:04:a5:0b:5e:5f:81:78:f7:33:f4:2b:be:02:10:4a:b9: b0:fb:87:a5:dd:04:5d:04:6e:f4:52:ed:fc:98:00:f7:06:ba: 12:88:6c:52:63:b7:e8:55:27:f1:1d:9a:f3:d8:de:d5:65:30: 5f:c1:3f:57:c4:74:57:36:9c:1e:1d:26:2a:9c:d7:a8:ff:23: ca:d1:65:0c:fa:64:72:89:fd:26:41:cf:4f:5b:aa:f5:7b:80: ee:21:97:4a:1c:c1:1a:68:96:87:49:a5:6b:7d:de:f1:7f:89: 44:5b:ea:a3:1a:01:e9:11:df:33:17:20:b4:cf:38:ae:65:21: b5:55:ee:87:73:ee:f2:97:bc:c0:43:eb:e3:24:72:5a:94:24: 6b:6f:0c:43:e9:a8:e8:e5:7c:e7:96:86:0c:ab:c8:40:cc:59: 28:b6:b1:0f:2d:d5:03:ff:8f:d7:cc:8f:ce:b6:77:cb:6a:d6: d8:7a:43:16:55:4c:3c:e2:75:e7:45:6b:9f:5b:b1:3f:2c:6a: 9a:b9:64:e3:31:8a:1e:db:ce:bd:fc:0d:2f:82:57:47:44:30: 51:dd:67:46:81:88:a7:4d:43:3b:6d:bd:08:d2:e5:09:b8:e1: 0b:94:71:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslGlmsRY2btthrAme4blj5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlN2Y3NDdkZjVmMjQzNTMxNTRkYzRkNGJmNzBkMmRkY2I1 M2U5MDAwHhcNMjUxMjE2MDMwMDQyWhcNMjUxMjE3MDMwMDQyWjAzMTEwLwYDVQQD EygzYzVkYTgyOWJiYzcyZDk3M2VmNDJmNzEwNmMyNWI1OGJlOTk1OGU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3r9cS7BPSd8ANiIkJVqa23vUa16A qqKN3HeI8e05+iu10guutUdqzExDJ/dGc7lg4VQC6WcjcqLcmQsLqgDYb+MdtTGj 47gW1VnkPPNorNYm/Q/SGGS4a+GE/jnyLibPqWVyjbjjQPJe58NtnzJTmchWsE5J pYZ4eglpaO/e7eDnw3WM9XQKR1KMGcDa/1/qzfTjHO0qNXN3R9I4qUjHRHu4PaTS Jau5wmIO5mBXpgt33mGyQq9Zq9Zpm+x30MGaFChl311FCYqsxSjBeVeQDAcTA2xv bwTXTCu+5vsHLfJ8SXF7CEwYQcBWAZj9wy9/ZVHun48JA8GhMRbrku8D0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDxdqCm7xy2XPvQvcQbCW1i+mVjpMB8GA1UdIwQY MBaAFK5/dH318kNTFU3E1L9w0t3LU+kAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2Et YzZmMWU2YWM5YmE5LzEvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2EtYzZmMWU2YWM5YmE5 LzEvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP+9UV5eA cN5NoxqQub6ydO5Ae0cEpQteX4F49zP0K74CEEq5sPuHpd0EXQRu9FLt/JgA9wa6 EohsUmO36FUn8R2a89je1WUwX8E/V8R0VzacHh0mKpzXqP8jytFlDPpkcon9JkHP T1uq9XuA7iGXShzBGmiWh0mla33e8X+JRFvqoxoB6RHfMxcgtM84rmUhtVXuh3Pu 8pe8wEPr4yRyWpQka28MQ+mo6OV855aGDKvIQMxZKLaxDy3VA/+P18yPzrZ3y2rW 2HpDFlVMPOJ150Vrn1uxPyxqmrlk4zGKHtvOvfwNL4JXR0QwUd1nRoGIp01DO229 CNLlCbjhC5RxzA== -----END CERTIFICATE-----Generated at Tue Dec 16 09:40:46 2025 by rpki-client