This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json) Hash identifier: QvRe1zbEkK4Cs3KIgd72iGl8BVSwR6dkyC7n+r9kQbY= Subject key identifier: 3A:A7:62:48:BC:9F:07:33:EB:69:D6:46:13:79:59:F9:67:FF:2F:1A Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58 Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558 Certificate serial: 019AF208B37BC1862D4B5C68EEA15CD5F2A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft Manifest number: 1615 Signing time: Sat 06 Dec 2025 05:00:47 +0000 Manifest this update: Sat 06 Dec 2025 05:00:47 +0000 Manifest next update: Sun 07 Dec 2025 05:00:47 +0000 Files and hashes: 1: 53yfdczv1so3h7m6p_kJKapwYb0.roa (hash: 8fm3UETmOMmwp3oE4jpSkcDNkIYvAEXotF2eKRsyjLw=) 2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: Z5nW6tC2RnbzXdELWIogKNG4vD2Hrjzx2MGk3ecxQVE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:b3:7b:c1:86:2d:4b:5c:68:ee:a1:5c:d5:f2:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558 Validity Not Before: Dec 6 05:00:47 2025 GMT Not After : Dec 7 05:00:47 2025 GMT Subject: CN=3aa76248bc9f0733eb69d646137959f967ff2f1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5e:26:5b:e8:82:89:4f:05:78:82:66:f9:5d: e0:37:53:40:ca:5d:ce:da:4b:c0:98:36:bb:f4:c0: ae:8b:4e:ea:c0:56:46:ed:0b:f4:32:5e:63:9d:e8: 0a:0f:7e:5e:65:a7:6a:90:01:3f:74:77:8f:2f:78: 43:d0:c6:3b:9d:9a:2c:42:fa:48:06:8f:a6:a1:91: 12:88:2f:9b:71:f2:f9:bf:89:77:58:2d:5b:df:4e: f9:a7:ee:0b:00:63:df:4a:e9:e6:b5:d7:0a:b8:d2: 75:5e:28:7f:5b:d3:85:b5:54:a5:9e:76:5b:09:f0: 2c:47:a9:68:4d:8f:e4:a3:cb:c1:8d:74:b2:a4:20: 87:96:19:7a:39:9e:a9:d8:5d:ce:c5:66:46:9e:38: 55:cc:f2:46:76:0c:f1:0d:79:fa:31:7a:25:75:b9: d6:32:54:46:59:73:66:4b:90:b8:4f:ed:f4:3f:69: 19:e6:1b:b0:c0:71:08:e7:53:21:4a:2a:3e:eb:87: dc:67:86:11:ec:92:d7:f9:1a:85:31:55:ed:5c:d0: 3a:3d:9e:20:95:6a:5d:6d:d0:11:ac:9f:d2:ce:9b: d7:04:7a:6b:5b:03:a8:2a:20:cb:38:11:77:24:c4: a3:5c:bf:50:19:6b:15:e6:8c:7f:a1:54:b5:34:ff: 2d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A7:62:48:BC:9F:07:33:EB:69:D6:46:13:79:59:F9:67:FF:2F:1A X509v3 Authority Key Identifier: keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:46:fd:12:d5:18:1d:8d:b2:7a:17:02:e6:eb:bb:58:05:f1: 10:e7:71:3d:a7:ac:4e:3e:15:e2:1f:ca:6f:0b:5a:21:7c:ef: 3e:94:8c:ce:36:f8:88:26:80:b8:1e:ee:2f:5e:7c:cd:b9:1b: 03:cd:34:8e:50:3d:a9:cd:a8:bb:be:82:33:01:7b:d7:5a:c3: b6:80:21:a1:7b:28:d9:12:a1:b0:dd:f7:46:8a:89:74:71:9e: c2:9d:98:00:64:be:31:2c:b2:3b:c0:30:93:d7:f5:c8:1f:e6: a7:6a:55:c7:fa:46:6a:1d:d9:52:ce:56:3c:09:88:55:5e:e2: 77:29:e9:e7:e6:6c:b7:df:d3:bc:07:fc:31:ba:9e:1a:dd:bd: 1c:53:32:6f:32:7f:ef:bf:44:ef:34:41:b2:93:38:3b:d3:1a: b2:ab:3b:8c:f7:8e:59:8a:28:43:fe:07:e2:41:04:1b:02:fb: ca:20:8a:db:07:b6:38:d1:f8:dc:f8:49:d3:64:93:b9:83:c8: cf:48:b3:36:29:c3:e2:94:08:3a:7a:16:91:5e:55:30:5b:37: 3a:4c:32:be:61:79:04:b0:0c:fa:99:00:97:80:78:9c:57:15: f8:a4:23:8c:8d:56:37:ef:c9:d8:7e:61:d2:82:f8:a1:b0:86: 78:63:a0:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCLN7wYYtS1xo7qFc1fKlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkZjBkZjc3MTE0NzQxZTEzYTE3ZDcyMTNlNjk1NmJmOTYy N2I1NTgwHhcNMjUxMjA2MDUwMDQ3WhcNMjUxMjA3MDUwMDQ3WjAzMTEwLwYDVQQD EygzYWE3NjI0OGJjOWYwNzMzZWI2OWQ2NDYxMzc5NTlmOTY3ZmYyZjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApl4mW+iCiU8FeIJm+V3gN1NAyl3O 2kvAmDa79MCui07qwFZG7Qv0Ml5jnegKD35eZadqkAE/dHePL3hD0MY7nZosQvpI Bo+moZESiC+bcfL5v4l3WC1b3075p+4LAGPfSunmtdcKuNJ1Xih/W9OFtVSlnnZb CfAsR6loTY/ko8vBjXSypCCHlhl6OZ6p2F3OxWZGnjhVzPJGdgzxDXn6MXoldbnW MlRGWXNmS5C4T+30P2kZ5huwwHEI51MhSio+64fcZ4YR7JLX+RqFMVXtXNA6PZ4g lWpdbdARrJ/SzpvXBHprWwOoKiDLOBF3JMSjXL9QGWsV5ox/oVS1NP8t0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDqnYki8nwcz62nWRhN5Wfln/y8aMB8GA1UdIwQY MBaAFK3w33cRR0HhOhfXIT5pVr+WJ7VYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEt ZTFlZjI3NzcyZWFmLzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEtZTFlZjI3NzcyZWFm LzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE0b9EtUY HY2yehcC5uu7WAXxEOdxPaesTj4V4h/KbwtaIXzvPpSMzjb4iCaAuB7uL158zbkb A800jlA9qc2ou76CMwF711rDtoAhoXso2RKhsN33RoqJdHGewp2YAGS+MSyyO8Aw k9f1yB/mp2pVx/pGah3ZUs5WPAmIVV7idynp5+Zst9/TvAf8MbqeGt29HFMybzJ/ 779E7zRBspM4O9Masqs7jPeOWYooQ/4H4kEEGwL7yiCK2we2ONH43PhJ02STuYPI z0izNinD4pQIOnoWkV5VMFs3OkwyvmF5BLAM+pkAl4B4nFcV+KQjjI1WN+/J2H5h 0oL4obCGeGOgsg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:09:14 2025 by rpki-client