This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft File: m0FaAwWfspWkuWyc5erbWP6Y-oY.mft (raw, json) Hash identifier: a6FqxqoCD2oRZ6qE66kqwCCQShjsWfY2BstyEwqhIUk= Subject key identifier: 97:B7:C6:CE:7D:AF:47:12:E4:FC:68:01:D2:5B:66:48:18:D9:D9:AE Authority key identifier: 9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86 Certificate issuer: /CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86 Certificate serial: 019AF19B30C9DF3DDEA45BC91C0E2D1FD9D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft Manifest number: 09A4 Signing time: Sat 06 Dec 2025 03:01:10 +0000 Manifest this update: Sat 06 Dec 2025 03:01:10 +0000 Manifest next update: Sun 07 Dec 2025 03:01:10 +0000 Files and hashes: 1: 00e-JENKJtNxBi-As1sYUq5EX18.roa (hash: YsSrS2JJTX4eWuRZQoJnhVIIQfCJDpSvv/nCINRxU3I=) 2: m0FaAwWfspWkuWyc5erbWP6Y-oY.crl (hash: Uesyflu7X8lmMoZC/K232TH+Deb1Qgw0OphvurUzLh0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:30:c9:df:3d:de:a4:5b:c9:1c:0e:2d:1f:d9:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86 Validity Not Before: Dec 6 03:01:10 2025 GMT Not After : Dec 7 03:01:10 2025 GMT Subject: CN=97b7c6ce7daf4712e4fc6801d25b664818d9d9ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ac:0a:14:77:65:24:66:8f:91:e5:f2:fc:da: fb:8b:c6:ce:0f:c7:3d:aa:8e:1a:41:0c:e9:1a:f9: 92:97:6b:df:0a:d3:83:25:81:49:05:27:84:20:bc: b5:b8:a2:0f:c0:52:4b:28:f0:25:6d:34:2c:29:49: 76:08:2a:15:f2:6a:71:7c:77:8c:12:de:cf:06:f0: 5e:d6:b4:ab:d8:fe:f5:1d:b7:98:d4:83:16:8a:c4: 60:5c:19:49:6c:43:14:c3:d9:21:e4:a8:e3:2e:59: 28:73:43:35:4f:69:28:8c:67:fb:de:63:65:69:28: 16:41:1f:5e:df:e7:2f:6b:b9:9b:74:44:06:27:23: 27:6b:83:15:55:1d:13:3e:bd:7f:61:87:94:f2:00: 37:c9:77:ba:2f:a7:34:69:41:91:09:c0:f3:79:83: bb:b7:ab:af:e3:f9:2c:d3:3c:61:d1:28:d9:a7:13: ba:19:3c:53:f3:11:a8:aa:a0:c2:40:c5:35:c7:28: 72:74:ab:a3:5d:0a:df:04:31:99:ba:62:9c:01:0b: 8d:76:d9:a2:cb:9f:e9:80:2c:74:16:95:09:4d:2d: 6d:7c:94:4a:5b:fe:d9:1c:e0:75:56:6a:d8:c9:13: 68:8c:54:c3:3d:9f:a8:b2:e8:6c:4f:21:98:a7:23: 60:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B7:C6:CE:7D:AF:47:12:E4:FC:68:01:D2:5B:66:48:18:D9:D9:AE X509v3 Authority Key Identifier: keyid:9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:f0:55:d1:f3:59:44:32:2f:03:fa:fa:52:1f:71:cf:8a:b3: 27:0b:f0:ba:a0:8b:25:b9:e0:63:87:08:2d:24:1f:4b:61:fe: 0d:3b:ed:77:b7:e1:c1:5b:35:61:ae:8e:08:cb:b5:1a:01:f5: 0e:6f:95:5a:4f:76:86:9c:31:d6:54:96:30:e5:3a:ef:ca:75: c0:cd:9f:1e:bf:d1:7c:40:fa:9d:62:af:80:0a:03:48:7b:45: fd:12:c1:da:a8:7b:65:bb:07:5e:eb:01:1b:4a:f4:11:68:93: 5c:a5:d0:35:a4:58:bb:f5:18:be:fa:0f:27:a1:99:2e:bc:6e: e1:40:29:0d:37:09:54:6f:a6:89:aa:5f:8c:7e:5b:2c:a6:b1: bd:71:de:bf:43:05:59:1f:5f:86:0a:06:66:2a:b9:41:d5:38: c4:c0:a3:3d:f6:8e:93:64:b3:9a:89:8f:a7:9d:f3:83:04:14: 57:41:93:dc:e3:a1:ce:e7:23:ea:0c:25:6d:86:f4:64:0a:53: 22:87:c4:e9:50:c4:9b:91:98:60:69:ce:14:cd:06:b0:57:fb: c7:36:06:cb:92:64:0f:e6:6c:78:63:fc:f6:29:af:27:81:b7: 27:f1:b6:b3:cf:5f:13:01:f5:15:d3:fb:36:c3:7a:20:c4:e9: 72:ce:e9:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmzDJ3z3epFvJHA4tH9nZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliNDE1YTAzMDU5ZmIyOTVhNGI5NmM5Y2U1ZWFkYjU4ZmU5 OGZhODYwHhcNMjUxMjA2MDMwMTEwWhcNMjUxMjA3MDMwMTEwWjAzMTEwLwYDVQQD Eyg5N2I3YzZjZTdkYWY0NzEyZTRmYzY4MDFkMjViNjY0ODE4ZDlkOWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqwKFHdlJGaPkeXy/Nr7i8bOD8c9 qo4aQQzpGvmSl2vfCtODJYFJBSeEILy1uKIPwFJLKPAlbTQsKUl2CCoV8mpxfHeM Et7PBvBe1rSr2P71HbeY1IMWisRgXBlJbEMUw9kh5KjjLlkoc0M1T2kojGf73mNl aSgWQR9e3+cva7mbdEQGJyMna4MVVR0TPr1/YYeU8gA3yXe6L6c0aUGRCcDzeYO7 t6uv4/ks0zxh0SjZpxO6GTxT8xGoqqDCQMU1xyhydKujXQrfBDGZumKcAQuNdtmi y5/pgCx0FpUJTS1tfJRKW/7ZHOB1VmrYyRNojFTDPZ+osuhsTyGYpyNgtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJe3xs59r0cS5PxoAdJbZkgY2dmuMB8GA1UdIwQY MBaAFJtBWgMFn7KVpLlsnOXq21j+mPqGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84NTYxMmEtZGUzMy00MzRiLTg0NzEt MTgwMWI1NDRiOWZlLzEvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy84NTYxMmEtZGUzMy00MzRiLTg0NzEtMTgwMWI1NDRiOWZl LzEvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh/BV0fNZ RDIvA/r6Uh9xz4qzJwvwuqCLJbngY4cILSQfS2H+DTvtd7fhwVs1Ya6OCMu1GgH1 Dm+VWk92hpwx1lSWMOU678p1wM2fHr/RfED6nWKvgAoDSHtF/RLB2qh7ZbsHXusB G0r0EWiTXKXQNaRYu/UYvvoPJ6GZLrxu4UApDTcJVG+miapfjH5bLKaxvXHev0MF WR9fhgoGZiq5QdU4xMCjPfaOk2SzmomPp53zgwQUV0GT3OOhzucj6gwlbYb0ZApT IofE6VDEm5GYYGnOFM0GsFf7xzYGy5JkD+ZseGP89imvJ4G3J/G2s89fEwH1FdP7 NsN6IMTpcs7pVQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:14:58 2025 by rpki-client