This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft File: 0mHPvAfsMGN33LFql6EWDHptgsw.mft (raw, json) Hash identifier: jfWsQsFtzg8ZtqvOTT6PVyFBi1I0uwCpsTgyRMLBbGk= Subject key identifier: 91:58:26:30:DF:79:70:7E:5E:1B:3E:4D:85:0B:79:B7:13:04:32:76 Authority key identifier: D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC Certificate issuer: /CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc Certificate serial: 019AF2094DE380B4BFAF1877AC36FE9F34FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft Manifest number: 03A2 Signing time: Sat 06 Dec 2025 05:01:27 +0000 Manifest this update: Sat 06 Dec 2025 05:01:27 +0000 Manifest next update: Sun 07 Dec 2025 05:01:27 +0000 Files and hashes: 1: 0mHPvAfsMGN33LFql6EWDHptgsw.crl (hash: UIMpjGHQnlFmkG240a1FuPHNhEQKkGXYDX+G70tgG78=) 2: 1-242YNLxFtHiZKrZjOTCTUI_hX4.roa (hash: Zl/0hNDNG1rQGa8HsGyytZ4/ZO9Krs9kfipHSTu8iZs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:4d:e3:80:b4:bf:af:18:77:ac:36:fe:9f:34:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc Validity Not Before: Dec 6 05:01:27 2025 GMT Not After : Dec 7 05:01:27 2025 GMT Subject: CN=91582630df79707e5e1b3e4d850b79b713043276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2f:60:07:9d:91:06:c2:0d:c9:a8:57:f8:bb: fa:ef:54:c0:b7:2d:7c:e0:60:a0:d9:3f:72:ba:3f: 0d:eb:8e:14:e0:a4:c6:0f:fa:c5:be:91:e9:3b:af: 64:d2:ea:bf:68:21:73:44:9d:19:df:e6:a2:30:0a: 42:5c:83:8d:b7:17:df:d0:39:4c:44:59:c8:fd:4c: 63:80:8c:03:91:8d:d4:2b:46:a1:f0:64:d3:32:dc: 05:ea:df:28:c5:50:f4:c9:e5:2b:80:f4:c3:b3:c2: 6d:0f:16:10:8e:7f:35:e7:e0:21:4f:43:de:21:24: 6e:15:a2:12:ef:8b:2a:d0:98:59:7a:fc:2b:97:82: 56:31:e2:3d:8d:98:1f:f9:a7:e1:2e:43:41:01:45: c0:29:f1:d3:dd:cf:ee:4c:89:e5:5e:b3:f1:1b:04: ea:8c:06:fc:db:8f:33:43:51:70:4d:5e:07:81:bd: 7f:5a:4a:1b:2e:8c:cd:d0:35:80:c4:04:4c:0d:ab: b7:1a:bf:b4:f5:37:e7:56:1d:2e:bd:61:76:42:94: a3:15:f3:00:71:28:98:39:e1:f1:18:56:0b:b5:99: 2e:26:c0:c4:0a:c9:a1:8d:71:af:53:96:9f:87:71: c7:54:a1:6d:04:ac:3f:9e:29:93:d4:e0:b5:5d:43: be:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:58:26:30:DF:79:70:7E:5E:1B:3E:4D:85:0B:79:B7:13:04:32:76 X509v3 Authority Key Identifier: keyid:D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:a7:7d:86:f6:10:8b:cd:f9:81:21:66:ce:f8:88:2a:bb:ea: 7d:71:fd:52:26:88:c3:6e:67:25:41:e7:4a:88:61:c4:c9:f7: 6b:a2:7f:cb:90:93:80:ba:5d:76:22:bf:b7:a6:b3:88:59:78: 97:46:53:b4:2a:62:49:32:e9:c8:64:5a:44:b5:c7:2f:32:0a: cf:e7:58:6a:b7:df:0f:36:56:1b:ba:a3:69:17:ae:ea:cf:d3: 3b:e9:fd:89:bb:da:2d:4b:42:53:ab:f6:97:54:d1:41:b8:f8: dc:2d:64:2e:86:b7:0a:86:b5:36:40:3a:74:47:5d:81:9b:bf: 20:3d:f5:6c:23:61:f2:20:c2:95:6e:70:95:ad:f9:98:b4:11: d4:f5:c4:e2:09:31:8d:fa:44:c7:8e:c9:9a:cd:38:c7:ed:9c: 1a:d2:14:d4:d4:b9:fd:b6:94:55:9b:74:89:2e:67:c2:6f:17: 52:d3:86:ba:b9:16:f6:f6:13:ee:bc:0b:39:ac:df:b0:4a:6d: 83:b6:41:43:bc:f8:27:60:79:7a:61:d4:ee:1b:80:6e:9b:36: 40:0b:40:e5:ae:92:25:63:ad:e3:20:f8:19:2a:b2:91:77:02: b2:a1:b3:e5:f5:2d:0c:46:cd:f5:e9:0c:de:98:93:0b:43:d0: b0:6c:bf:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCU3jgLS/rxh3rDb+nzT7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNjFjZmJjMDdlYzMwNjM3N2RjYjE2YTk3YTExNjBjN2E2 ZDgyY2MwHhcNMjUxMjA2MDUwMTI3WhcNMjUxMjA3MDUwMTI3WjAzMTEwLwYDVQQD Eyg5MTU4MjYzMGRmNzk3MDdlNWUxYjNlNGQ4NTBiNzliNzEzMDQzMjc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqy9gB52RBsINyahX+Lv671TAty18 4GCg2T9yuj8N644U4KTGD/rFvpHpO69k0uq/aCFzRJ0Z3+aiMApCXIONtxff0DlM RFnI/UxjgIwDkY3UK0ah8GTTMtwF6t8oxVD0yeUrgPTDs8JtDxYQjn815+AhT0Pe ISRuFaIS74sq0JhZevwrl4JWMeI9jZgf+afhLkNBAUXAKfHT3c/uTInlXrPxGwTq jAb8248zQ1FwTV4Hgb1/WkobLozN0DWAxARMDau3Gr+09TfnVh0uvWF2QpSjFfMA cSiYOeHxGFYLtZkuJsDECsmhjXGvU5afh3HHVKFtBKw/nimT1OC1XUO+ZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJFYJjDfeXB+Xhs+TYULebcTBDJ2MB8GA1UdIwQY MBaAFNJhz7wH7DBjd9yxapehFgx6bYLMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG1IUHZBZnNNR04zM0xGcWw2RVdESHB0Z3N3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS80ZWFmYzktNTQ3My00NjAyLWExNDkt OTIyYTE2ZDExN2RkLzEvMG1IUHZBZnNNR04zM0xGcWw2RVdESHB0Z3N3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS80ZWFmYzktNTQ3My00NjAyLWExNDktOTIyYTE2ZDExN2Rk LzEvMG1IUHZBZnNNR04zM0xGcWw2RVdESHB0Z3N3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOqd9hvYQ i835gSFmzviIKrvqfXH9UiaIw25nJUHnSohhxMn3a6J/y5CTgLpddiK/t6aziFl4 l0ZTtCpiSTLpyGRaRLXHLzIKz+dYarffDzZWG7qjaReu6s/TO+n9ibvaLUtCU6v2 l1TRQbj43C1kLoa3Coa1NkA6dEddgZu/ID31bCNh8iDClW5wla35mLQR1PXE4gkx jfpEx47Jms04x+2cGtIU1NS5/baUVZt0iS5nwm8XUtOGurkW9vYT7rwLOazfsEpt g7ZBQ7z4J2B5emHU7huAbps2QAtA5a6SJWOt4yD4GSqykXcCsqGz5fUtDEbN9ekM 3piTC0PQsGy/Rg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:24:29 2025 by rpki-client