This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json) Hash identifier: 61FkshfzBKqYWoWgMedZCtGjIXoSty+YB0dHLFyrRPM= Subject key identifier: 7D:64:AD:68:D4:32:A7:77:2C:C3:15:97:B7:83:FD:6F:72:27:47:0F Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Certificate serial: 019AF3892D997549C8C7916F05C45A49E0C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft Manifest number: 1782 Signing time: Sat 06 Dec 2025 12:00:44 +0000 Manifest this update: Sat 06 Dec 2025 12:00:44 +0000 Manifest next update: Sun 07 Dec 2025 12:00:44 +0000 Files and hashes: 1: 22MFoiE6iwEXKG4ff-0g9Nk9e6k.roa (hash: 8ZAHeiN8JfpnEbf0xNsrPzSUL91MdaXwePhbLZYQBGY=) 2: 63R1CqkRJzCBTqXm_kqr_6UGOC4.roa (hash: QovmpL/thOh4yKhjTn4FNfnRr6OXEgupogya3Oy9KUE=) 3: AqlAoh2mHTGBQZiQ4Qu8bU198w8.roa (hash: QPQqaQ0W7/zxzqNuDuEf1YEVzGuiOziERZ9FXquvCOY=) 4: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: KC72lTnSWnLKGUbeV/qJvXFrHA4veA82T76JSUiG/gY=) 5: F7mREJo49yqaKx4zxXBCYESlNos.roa (hash: 56dqndcexLz8vvjaPdedW02jbU8L03kO2wjQRwiBDN0=) 6: JaRJ0VkgZY-pAOHUpfAksmRNPT4.roa (hash: uuAowSkk49o7aPUMDMEAR0rCVXNjJkNtV+Ttn8WfvGo=) 7: kGkGzImsb5Dv_nGgCWEXgWNc7do.roa (hash: x9SmJ5GmGF/t3I5NSMgnwkUR+oRC+nVpi/mDc40npw4=) 8: mpy8rjwhUPGfrwU4aNyK-9x9FBA.roa (hash: LExOCoVzbGwBygx3rcSIfApEZE8wTyOT0YOXpiy9v1U=) 9: qF-2BgBNvB9Rp0K_VFhuwpTNLrY.roa (hash: h4z+iViHaDAdXrYk5TZebHBt4+M5KGpzETHGgdp4Ztc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:2d:99:75:49:c8:c7:91:6f:05:c4:5a:49:e0:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Validity Not Before: Dec 6 12:00:44 2025 GMT Not After : Dec 7 12:00:44 2025 GMT Subject: CN=7d64ad68d432a7772cc31597b783fd6f7227470f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ee:eb:fd:0c:53:9b:e5:ce:a0:1b:bf:1d:65: 5e:77:19:32:47:4a:be:25:52:5f:41:ea:23:e5:81: 22:97:86:09:6d:8c:bc:e9:66:e9:86:e3:3f:0e:a5: d6:86:b9:61:3e:d8:0f:21:2e:ea:63:00:45:28:0e: a6:47:99:7c:c3:8d:1b:5a:df:64:cf:76:c4:ea:68: 79:ce:dd:5d:dc:24:d6:5d:49:a6:89:1a:e7:e5:50: d8:09:bd:ea:ee:ef:06:1d:f4:d5:1f:f6:14:1f:39: 87:c3:45:3b:e6:d9:27:de:f8:1f:91:ed:5d:60:12: bd:a9:98:32:91:9d:2f:2b:d2:95:26:2b:91:0a:d2: 9b:8b:91:a2:00:fa:e7:4a:a1:9a:93:bf:04:b8:3d: 5c:80:ff:52:2e:f6:18:84:ff:0f:83:3d:c2:13:68: 16:f5:d0:78:af:f3:91:5e:e3:18:b4:52:d3:2f:fb: 66:c1:81:6c:be:88:26:9a:1d:ae:b9:9b:55:e7:49: e8:77:99:9d:5e:8a:ba:e9:f4:60:09:34:3e:b7:6c: 01:91:a3:22:89:ea:1a:18:bd:d0:63:0f:99:15:a7: f9:2d:d8:77:d2:07:55:b6:18:5b:a4:f2:ac:29:63: 59:89:68:a4:46:da:52:12:a3:8c:2f:2e:8f:8f:40: 7b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:64:AD:68:D4:32:A7:77:2C:C3:15:97:B7:83:FD:6F:72:27:47:0F X509v3 Authority Key Identifier: keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:39:7a:78:2c:6f:7a:d5:96:8e:eb:44:9b:4d:45:d3:80:81: 5a:a2:31:d2:e5:1f:ac:99:d8:a7:73:47:15:43:93:f6:03:2b: ec:8f:00:01:f7:2c:12:01:27:a0:b7:79:ce:ed:a9:a1:7d:0d: 57:e4:29:2c:13:14:c4:7a:55:ce:61:8b:0b:05:b5:bc:47:8c: de:9e:0c:3f:c9:3d:93:fb:b6:d7:05:89:35:dd:fa:d3:3a:e4: c6:4e:24:76:45:a1:2b:ab:a3:b3:39:0c:5f:86:0e:47:2c:18: 63:67:f0:82:12:55:c8:9b:ce:98:63:7c:82:35:fa:93:0f:be: 75:a4:12:d5:de:1d:42:17:cb:9b:b4:ad:ec:73:38:96:18:89: 00:be:30:60:f4:de:3c:ab:a4:42:3e:d5:70:88:81:43:7e:b5: f6:24:f8:31:f8:25:eb:01:99:07:f8:80:15:0d:f9:8f:47:5f: 64:62:16:23:ed:1a:3c:bc:5e:f7:b0:7a:62:bb:85:de:ad:1a: a0:15:71:d6:93:0c:8d:87:11:c6:7f:91:e6:e3:22:f3:ef:fa: e5:ac:9a:cd:b6:a2:45:54:12:7d:e5:cd:74:73:f1:9f:d6:99: a5:5d:e1:b3:fb:44:1a:27:a5:33:7f:4f:a6:c6:13:0f:08:24: 78:86:e2:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziS2ZdUnIx5FvBcRaSeDCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNjM2M2Q0MjhiNzkxNWMxMDg4MjVmMDk3MDYwMDRiOGVh M2Q0YjUwHhcNMjUxMjA2MTIwMDQ0WhcNMjUxMjA3MTIwMDQ0WjAzMTEwLwYDVQQD Eyg3ZDY0YWQ2OGQ0MzJhNzc3MmNjMzE1OTdiNzgzZmQ2ZjcyMjc0NzBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+7r/QxTm+XOoBu/HWVedxkyR0q+ JVJfQeoj5YEil4YJbYy86WbphuM/DqXWhrlhPtgPIS7qYwBFKA6mR5l8w40bWt9k z3bE6mh5zt1d3CTWXUmmiRrn5VDYCb3q7u8GHfTVH/YUHzmHw0U75tkn3vgfke1d YBK9qZgykZ0vK9KVJiuRCtKbi5GiAPrnSqGak78EuD1cgP9SLvYYhP8Pgz3CE2gW 9dB4r/ORXuMYtFLTL/tmwYFsvogmmh2uuZtV50nod5mdXoq66fRgCTQ+t2wBkaMi ieoaGL3QYw+ZFaf5Ldh30gdVthhbpPKsKWNZiWikRtpSEqOMLy6Pj0B7jwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH1krWjUMqd3LMMVl7eD/W9yJ0cPMB8GA1UdIwQY MBaAFA9jY9Qot5FcEIgl8JcGAEuOo9S1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEt MmUxYzBhZjRmYWE0LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEtMmUxYzBhZjRmYWE0 LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0Dl6eCxv etWWjutEm01F04CBWqIx0uUfrJnYp3NHFUOT9gMr7I8AAfcsEgEnoLd5zu2poX0N V+QpLBMUxHpVzmGLCwW1vEeM3p4MP8k9k/u21wWJNd360zrkxk4kdkWhK6ujszkM X4YORywYY2fwghJVyJvOmGN8gjX6kw++daQS1d4dQhfLm7St7HM4lhiJAL4wYPTe PKukQj7VcIiBQ3619iT4Mfgl6wGZB/iAFQ35j0dfZGIWI+0aPLxe97B6YruF3q0a oBVx1pMMjYcRxn+R5uMi8+/65ayazbaiRVQSfeXNdHPxn9aZpV3hs/tEGielM39P psYTDwgkeIbiLA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:38:56 2025 by rpki-client