This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json) Hash identifier: JSEShevL4rQJvrrPJk9FPrSFp94QVFcchDS7uenS5yg= Subject key identifier: 45:DA:1B:EB:1A:1A:07:B4:B8:E0:F0:B0:09:D4:E5:AE:02:DD:AA:32 Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d Certificate serial: 019AF31C0ECA760FE7B3D7E61F5FE7C42085 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft Manifest number: 0E48 Signing time: Sat 06 Dec 2025 10:01:33 +0000 Manifest this update: Sat 06 Dec 2025 10:01:33 +0000 Manifest next update: Sun 07 Dec 2025 10:01:33 +0000 Files and hashes: 1: 1-boXqKY_Hyoe19Z5JIZ3K6AJj94.roa (hash: a5qc0h3BhqmeqSpAZh7GFmd10hjtqvPl4/lqfepgblo=) 2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: KFfd8RAN2pAp1eiONs1j3A99ZUvNYMVmDqWVKLwnskg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:0e:ca:76:0f:e7:b3:d7:e6:1f:5f:e7:c4:20:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d Validity Not Before: Dec 6 10:01:33 2025 GMT Not After : Dec 7 10:01:33 2025 GMT Subject: CN=45da1beb1a1a07b4b8e0f0b009d4e5ae02ddaa32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:b6:67:b1:fd:c0:15:ed:eb:65:00:7a:fb: 77:e5:da:a2:5a:e0:1b:ef:05:9d:27:96:09:ac:7b: f3:85:bd:8e:a5:f5:76:01:70:6d:d5:3e:58:82:47: bd:54:2d:52:b8:2b:45:64:e4:5a:41:52:33:be:71: 7b:44:fb:6d:4e:f4:d9:aa:c0:c9:c9:2b:de:90:53: cd:b7:13:d8:f4:ff:26:dc:0c:da:f6:0e:13:53:01: 28:b1:50:75:55:e1:32:82:97:3d:f4:1f:04:d7:d4: 79:51:3c:a4:f6:6c:48:d8:95:15:81:d2:2e:98:bd: 78:3a:58:aa:a0:74:96:cf:47:fd:e8:e9:be:91:b5: 73:8e:67:80:59:0f:98:47:25:b9:52:f2:99:a4:2f: 72:d8:96:6e:bd:1b:e2:5d:ad:79:fb:75:ac:dd:bc: c7:dd:42:69:a2:b9:7f:24:8e:31:e6:20:fb:06:f9: 65:98:f8:64:b4:08:fb:2e:5b:c4:ce:a2:72:e9:f2: f4:92:29:1c:82:ed:d0:5b:e0:21:a4:95:03:86:4a: 02:d6:e4:ba:98:9d:c4:a3:b6:7d:a2:37:d3:51:6f: 12:f5:c5:45:42:4e:5f:a7:2f:45:ae:d7:5d:ea:dd: 18:d3:b9:3d:07:0b:f7:37:e4:4b:af:cd:fb:1b:6e: 79:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:DA:1B:EB:1A:1A:07:B4:B8:E0:F0:B0:09:D4:E5:AE:02:DD:AA:32 X509v3 Authority Key Identifier: keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:6b:be:97:aa:d2:92:f0:9c:4c:96:21:1f:e9:de:2d:4e:89: 4f:eb:3f:65:ec:40:29:2e:48:1a:4f:72:0d:ac:21:40:fc:ed: 40:68:e7:c1:d6:4d:49:a0:5a:97:63:92:af:96:2b:f9:b8:0d: 35:2e:44:6a:9e:ac:7f:35:49:64:fd:51:d4:de:6b:36:c1:5d: f2:0e:e4:cb:65:1f:f7:2f:9a:be:e9:08:33:57:af:08:da:3b: b9:cf:21:4f:1e:a8:7a:29:a5:77:77:f7:cb:c5:10:dc:33:89: 14:73:9c:9f:da:5c:4c:ff:df:bf:6f:6f:27:09:98:b3:5a:59: d2:a1:17:27:d4:20:e5:36:20:20:82:22:4f:46:32:64:c4:fe: 9b:72:80:4d:f6:e3:ee:4d:f5:27:d0:6a:0e:57:19:ef:02:48: e1:33:5e:8a:c7:62:ef:ef:01:e8:ba:d3:a2:50:f6:49:d4:10: 54:1b:1e:67:5c:a4:4a:26:bd:56:57:31:6d:76:22:fe:ec:53: 0c:96:2f:a6:54:67:2d:5e:f6:01:d1:52:0a:42:5b:76:dd:34: fc:32:46:8d:ce:ce:00:f3:d3:7d:15:3f:f3:72:a9:fb:54:2a: 42:ec:2f:38:1f:6c:fc:45:6d:14:63:ff:5d:cd:af:9f:46:d5: d2:7a:26:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHA7Kdg/ns9fmH1/nxCCFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNmYxODQxNmQ3ZDQ3MGFhMDRhZDAwYmNhNTc2ODNjNzg5 ZDg1NGQwHhcNMjUxMjA2MTAwMTMzWhcNMjUxMjA3MTAwMTMzWjAzMTEwLwYDVQQD Eyg0NWRhMWJlYjFhMWEwN2I0YjhlMGYwYjAwOWQ0ZTVhZTAyZGRhYTMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw522Z7H9wBXt62UAevt35dqiWuAb 7wWdJ5YJrHvzhb2OpfV2AXBt1T5Ygke9VC1SuCtFZORaQVIzvnF7RPttTvTZqsDJ ySvekFPNtxPY9P8m3Aza9g4TUwEosVB1VeEygpc99B8E19R5UTyk9mxI2JUVgdIu mL14OliqoHSWz0f96Om+kbVzjmeAWQ+YRyW5UvKZpC9y2JZuvRviXa15+3Ws3bzH 3UJporl/JI4x5iD7BvllmPhktAj7LlvEzqJy6fL0kikcgu3QW+AhpJUDhkoC1uS6 mJ3Eo7Z9ojfTUW8S9cVFQk5fpy9Frtdd6t0Y07k9Bwv3N+RLr837G2559wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEXaG+saGge0uODwsAnU5a4C3aoyMB8GA1UdIwQY MBaAFK5vGEFtfUcKoErQC8pXaDx4nYVNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYt MDZlNTRkZDkyMTcxLzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYtMDZlNTRkZDkyMTcx LzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxmu+l6rS kvCcTJYhH+neLU6JT+s/ZexAKS5IGk9yDawhQPztQGjnwdZNSaBal2OSr5Yr+bgN NS5Eap6sfzVJZP1R1N5rNsFd8g7ky2Uf9y+avukIM1evCNo7uc8hTx6oeimld3f3 y8UQ3DOJFHOcn9pcTP/fv29vJwmYs1pZ0qEXJ9Qg5TYgIIIiT0YyZMT+m3KATfbj 7k31J9BqDlcZ7wJI4TNeisdi7+8B6LrTolD2SdQQVBseZ1ykSia9VlcxbXYi/uxT DJYvplRnLV72AdFSCkJbdt00/DJGjc7OAPPTfRU/83Kp+1QqQuwvOB9s/EVtFGP/ Xc2vn0bV0nomEA== -----END CERTIFICATE-----Generated at Sat Dec 6 20:45:01 2025 by rpki-client