This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft File: aM73Itq-WXXKT5uoYWOI7GxlaiA.mft (raw, json) Hash identifier: HUxQVpk0RQJovvgkNsfSMEf24XJRTp5oDDmghzjhwpE= Subject key identifier: 2C:FE:87:44:53:69:03:F4:FE:A8:04:D3:07:CB:54:39:AC:FE:90:57 Authority key identifier: 68:CE:F7:22:DA:BE:59:75:CA:4F:9B:A8:61:63:88:EC:6C:65:6A:20 Certificate issuer: /CN=68cef722dabe5975ca4f9ba8616388ec6c656a20 Certificate serial: 019AF2ADD55EB01FD1A1081ED175C240FB92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft Manifest number: 0C4B Signing time: Sat 06 Dec 2025 08:01:09 +0000 Manifest this update: Sat 06 Dec 2025 08:01:09 +0000 Manifest next update: Sun 07 Dec 2025 08:01:09 +0000 Files and hashes: 1: F66nmw_9gnfRz1vGxzlxmQMgQys.roa (hash: V2QUSY1nIUt0LG1yVgyvdzAwGo/lvS6oHhY3urqyJbE=) 2: IdMP5mSXjXy5RCG7h8iUYBC-7wU.roa (hash: Ak+0cLrZuuXp8cAQmKH4z3k18zZ0o3zgplicC1IedBk=) 3: aM73Itq-WXXKT5uoYWOI7GxlaiA.crl (hash: 4ipxctK+4DLnBlg6IAkEgkKjvUHDWRAyrXSBeiRnfBQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:d5:5e:b0:1f:d1:a1:08:1e:d1:75:c2:40:fb:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68cef722dabe5975ca4f9ba8616388ec6c656a20 Validity Not Before: Dec 6 08:01:09 2025 GMT Not After : Dec 7 08:01:09 2025 GMT Subject: CN=2cfe8744536903f4fea804d307cb5439acfe9057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5d:4c:0a:b4:4f:8b:92:27:ea:54:4d:37:5b: 1b:13:cc:bd:42:36:be:08:b2:c8:71:dd:1a:44:89: f3:af:7e:92:a4:15:d1:33:8b:97:67:1d:eb:44:f4: 23:58:da:b0:cd:93:f6:f9:85:8a:33:ab:99:dc:e3: fe:2e:3b:2b:2b:c3:56:4a:7b:10:e8:b5:37:31:ba: 4c:59:26:f9:cc:78:55:9e:1f:78:d9:ac:08:7a:e6: 37:eb:04:f5:9e:10:ed:c1:a0:74:cd:18:ff:c8:47: 12:5f:9f:ef:65:3c:d5:d0:81:98:35:10:e9:d6:02: 79:e7:dd:8d:4d:d5:2d:99:87:b3:d4:80:bd:c3:15: 7e:2e:b5:6a:d0:a8:3a:18:c3:f9:4c:57:cf:bc:fd: 80:ba:74:eb:31:b3:70:ba:14:b0:04:a5:4b:db:dc: af:1a:4b:59:91:0a:1e:92:b7:2b:92:03:50:19:1f: f6:b1:86:dd:a3:f3:c7:e4:3e:44:b1:a6:a2:c7:10: 7a:48:42:f6:d9:56:22:d7:a2:96:88:9e:73:1d:54: bf:b6:8c:42:b8:cc:20:87:fd:f3:1d:66:23:ae:3c: 5c:a6:f8:8a:f5:80:07:fe:3c:75:7c:34:44:4c:a2: 6c:08:b7:17:f2:37:44:33:a3:c0:7e:63:26:3f:ab: fa:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:FE:87:44:53:69:03:F4:FE:A8:04:D3:07:CB:54:39:AC:FE:90:57 X509v3 Authority Key Identifier: keyid:68:CE:F7:22:DA:BE:59:75:CA:4F:9B:A8:61:63:88:EC:6C:65:6A:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:96:bd:77:95:df:bd:d8:10:6a:63:11:84:21:23:ab:20:6c: 8f:9c:dd:f2:52:89:7c:e6:a2:82:38:0e:a7:ff:16:dd:45:9e: 84:b9:f4:1b:8a:94:7b:ee:2a:ff:71:63:3b:7c:45:27:61:93: 68:08:4c:78:de:a7:1b:7c:22:30:89:6c:f7:4e:f8:1a:a6:ea: ae:c7:51:20:13:fb:0c:fd:26:a8:46:d8:00:be:01:13:9a:e9: 52:3a:85:46:57:6a:cb:e5:0f:83:33:41:99:33:dd:5f:1a:88: 73:95:8c:db:db:f5:33:6f:24:0f:82:c1:f6:fb:ae:4a:1f:e0: 4d:62:73:5c:20:76:ad:6a:e5:0e:b5:6b:62:5b:0a:25:96:23: ff:ae:ee:e1:cf:7c:ce:fe:27:99:89:6d:c0:6b:e5:c2:f8:ef: 02:e0:81:12:4a:a0:8b:e3:b1:81:70:1c:1e:f7:57:7a:96:ff: 22:b3:37:2f:43:bc:f8:b5:9c:79:59:83:9d:89:31:e6:81:14: 24:e1:4a:61:ff:3d:79:b9:06:f5:99:78:14:b7:47:9b:01:0d: fa:86:65:fd:de:e9:6c:f9:20:71:ef:c5:c9:e7:3b:0d:d9:13: f7:f5:16:5c:b4:1b:06:32:e1:9b:22:4d:ca:5f:50:9d:d1:d7: a7:6a:9c:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrdVesB/RoQge0XXCQPuSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4Y2VmNzIyZGFiZTU5NzVjYTRmOWJhODYxNjM4OGVjNmM2 NTZhMjAwHhcNMjUxMjA2MDgwMTA5WhcNMjUxMjA3MDgwMTA5WjAzMTEwLwYDVQQD EygyY2ZlODc0NDUzNjkwM2Y0ZmVhODA0ZDMwN2NiNTQzOWFjZmU5MDU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3V1MCrRPi5In6lRNN1sbE8y9Qja+ CLLIcd0aRInzr36SpBXRM4uXZx3rRPQjWNqwzZP2+YWKM6uZ3OP+LjsrK8NWSnsQ 6LU3MbpMWSb5zHhVnh942awIeuY36wT1nhDtwaB0zRj/yEcSX5/vZTzV0IGYNRDp 1gJ5592NTdUtmYez1IC9wxV+LrVq0Kg6GMP5TFfPvP2AunTrMbNwuhSwBKVL29yv GktZkQoekrcrkgNQGR/2sYbdo/PH5D5EsaaixxB6SEL22VYi16KWiJ5zHVS/toxC uMwgh/3zHWYjrjxcpviK9YAH/jx1fDRETKJsCLcX8jdEM6PAfmMmP6v6CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCz+h0RTaQP0/qgE0wfLVDms/pBXMB8GA1UdIwQY MBaAFGjO9yLavll1yk+bqGFjiOxsZWogMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU03M0l0cS1XWFhLVDV1b1lXT0k3R3hsYWlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi83OTBjMTUtMjA1OC00YzM5LTkwY2It Y2Q2NzdhYjQzMWFhLzEvYU03M0l0cS1XWFhLVDV1b1lXT0k3R3hsYWlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi83OTBjMTUtMjA1OC00YzM5LTkwY2ItY2Q2NzdhYjQzMWFh LzEvYU03M0l0cS1XWFhLVDV1b1lXT0k3R3hsYWlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVpa9d5Xf vdgQamMRhCEjqyBsj5zd8lKJfOaigjgOp/8W3UWehLn0G4qUe+4q/3FjO3xFJ2GT aAhMeN6nG3wiMIls9074GqbqrsdRIBP7DP0mqEbYAL4BE5rpUjqFRldqy+UPgzNB mTPdXxqIc5WM29v1M28kD4LB9vuuSh/gTWJzXCB2rWrlDrVrYlsKJZYj/67u4c98 zv4nmYltwGvlwvjvAuCBEkqgi+OxgXAcHvdXepb/IrM3L0O8+LWceVmDnYkx5oEU JOFKYf89ebkG9Zl4FLdHmwEN+oZl/d7pbPkgce/Fyec7DdkT9/UWXLQbBjLhmyJN yl9QndHXp2qcOA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:38:02 2025 by rpki-client