This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft File: d_u84sIID4H1oPmPJ5Ipgm3khQs.mft (raw, json) Hash identifier: u21ONDEuG2sySz71zDsUZBUVWEukkWUE0MXf5EepOiU= Subject key identifier: 42:DD:06:9F:11:D2:20:E6:A6:4F:0C:41:39:2F:2B:84:BD:08:28:AE Authority key identifier: 77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B Certificate issuer: /CN=77fbbce2c2080f81f5a0f98f279229826de4850b Certificate serial: 019AF208B9E21FC764EFD5CE5F3F93952F0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft Manifest number: 0E86 Signing time: Sat 06 Dec 2025 05:00:49 +0000 Manifest this update: Sat 06 Dec 2025 05:00:49 +0000 Manifest next update: Sun 07 Dec 2025 05:00:49 +0000 Files and hashes: 1: AOhn7xhM2kSUfRAFFhvDCxU-O20.roa (hash: 1VAhBGtFhGjWFmWSsORfWNgJJ1LUT2F54ZQ/3ep5zho=) 2: d_u84sIID4H1oPmPJ5Ipgm3khQs.crl (hash: c1DeKu/Kw5j5mJWutpENitx62DwyEfqSjYC917Ym3oM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:b9:e2:1f:c7:64:ef:d5:ce:5f:3f:93:95:2f:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77fbbce2c2080f81f5a0f98f279229826de4850b Validity Not Before: Dec 6 05:00:49 2025 GMT Not After : Dec 7 05:00:49 2025 GMT Subject: CN=42dd069f11d220e6a64f0c41392f2b84bd0828ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3d:fe:70:09:ef:1d:64:a8:90:15:07:00:0f: 1c:a0:e5:d5:73:91:6a:47:e1:96:d0:0c:a4:5f:32: f5:fa:1b:16:2a:f0:b3:cd:f3:f6:4f:e5:9c:6a:8d: ce:61:35:65:17:ce:b4:ea:32:0f:dc:98:c7:f2:e2: 67:74:59:a1:7f:44:4e:51:35:8d:68:27:6a:0c:27: dc:dc:c8:99:5d:52:63:65:00:a0:98:5a:33:19:21: 24:37:a7:61:ba:57:29:26:81:ec:ab:5a:8a:f4:0e: d3:02:aa:32:7b:84:97:d8:7c:00:1a:00:60:65:81: 12:86:f4:8d:55:b9:fa:59:71:ef:6b:5d:4c:de:8f: 51:3b:33:96:06:ce:5f:be:99:e9:b9:5b:fc:60:4b: af:85:af:79:7c:17:f5:7b:7e:2a:6f:8d:df:87:e2: 2f:d2:74:4e:b0:ad:f3:f3:37:d4:52:20:5e:61:07: c9:3f:51:06:6f:26:c9:3a:a9:8f:b2:ec:b0:39:c0: 67:a5:b9:db:f8:57:9c:af:bb:a6:9a:c7:c3:a0:6f: e1:99:2c:29:a6:5d:f8:3f:1d:fe:30:e0:c3:7e:a5: 51:fe:95:aa:e2:89:58:b7:08:fd:66:bb:ba:ef:e0: 65:b0:89:69:9c:0e:8b:16:25:fe:5e:1d:ca:41:fb: 04:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DD:06:9F:11:D2:20:E6:A6:4F:0C:41:39:2F:2B:84:BD:08:28:AE X509v3 Authority Key Identifier: keyid:77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:7f:51:4f:dc:9d:24:d4:7e:c5:7c:4e:f8:d5:b8:9b:fd:9b: 76:14:8d:d3:66:29:fd:dd:9b:c6:1d:ca:ed:5f:bd:77:f4:9f: 37:60:64:1b:23:d6:d4:53:ab:9d:48:08:3b:c8:cb:3b:ab:b7: 28:d9:45:e2:6f:91:bb:ed:94:e3:37:f6:99:e2:03:0e:a2:4f: 0e:1c:2c:2e:9b:dd:ac:3e:1a:3c:ff:dc:9c:80:1a:46:52:a5: fa:38:6d:a7:11:6f:4d:15:5d:8a:27:2a:5b:06:a2:94:c4:51: 78:cf:50:d4:6d:e3:79:a1:b9:d4:29:c6:ee:b3:80:04:0b:3b: 11:6a:cc:71:1f:ca:d5:cd:f9:a1:1f:58:fa:aa:65:cf:84:33: c0:aa:2a:cc:6e:ec:66:f8:95:45:1f:bc:ad:18:e8:e1:85:2d: 75:61:7e:70:f9:91:6a:b3:e9:fd:57:e5:a4:31:e8:8d:a8:22: bf:1f:5a:dc:66:64:0d:b1:55:d4:7d:bb:79:7e:ed:fb:15:c8: 52:b6:7e:a8:96:20:4b:3e:53:9a:bd:7e:51:56:3f:1f:5c:97: 22:0f:31:d0:31:8e:aa:0e:d6:5d:a7:e7:7f:ff:d4:24:80:e1: c4:87:8a:11:5a:33:e0:46:03:3f:2e:1c:aa:e2:85:26:fd:4a: 8d:f3:c2:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCLniH8dk79XOXz+TlS8MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3ZmJiY2UyYzIwODBmODFmNWEwZjk4ZjI3OTIyOTgyNmRl NDg1MGIwHhcNMjUxMjA2MDUwMDQ5WhcNMjUxMjA3MDUwMDQ5WjAzMTEwLwYDVQQD Eyg0MmRkMDY5ZjExZDIyMGU2YTY0ZjBjNDEzOTJmMmI4NGJkMDgyOGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzD3+cAnvHWSokBUHAA8coOXVc5Fq R+GW0AykXzL1+hsWKvCzzfP2T+Wcao3OYTVlF8606jIP3JjH8uJndFmhf0ROUTWN aCdqDCfc3MiZXVJjZQCgmFozGSEkN6dhulcpJoHsq1qK9A7TAqoye4SX2HwAGgBg ZYEShvSNVbn6WXHva11M3o9ROzOWBs5fvpnpuVv8YEuvha95fBf1e34qb43fh+Iv 0nROsK3z8zfUUiBeYQfJP1EGbybJOqmPsuywOcBnpbnb+Fecr7ummsfDoG/hmSwp pl34Px3+MODDfqVR/pWq4olYtwj9Zru67+BlsIlpnA6LFiX+Xh3KQfsEwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFELdBp8R0iDmpk8MQTkvK4S9CCiuMB8GA1UdIwQY MBaAFHf7vOLCCA+B9aD5jyeSKYJt5IULMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZF91ODRzSUlENEgxb1BtUEo1SXBnbTNraFFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8xZWQ3MzktMjc1NC00NDBmLTk1NDYt M2FhMjdkZjQ3NTIxLzEvZF91ODRzSUlENEgxb1BtUEo1SXBnbTNraFFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8xZWQ3MzktMjc1NC00NDBmLTk1NDYtM2FhMjdkZjQ3NTIx LzEvZF91ODRzSUlENEgxb1BtUEo1SXBnbTNraFFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALX9RT9yd JNR+xXxO+NW4m/2bdhSN02Yp/d2bxh3K7V+9d/SfN2BkGyPW1FOrnUgIO8jLO6u3 KNlF4m+Ru+2U4zf2meIDDqJPDhwsLpvdrD4aPP/cnIAaRlKl+jhtpxFvTRVdiicq WwailMRReM9Q1G3jeaG51CnG7rOABAs7EWrMcR/K1c35oR9Y+qplz4QzwKoqzG7s ZviVRR+8rRjo4YUtdWF+cPmRarPp/VflpDHojagivx9a3GZkDbFV1H27eX7t+xXI UrZ+qJYgSz5Tmr1+UVY/H1yXIg8x0DGOqg7WXafnf//UJIDhxIeKEVoz4EYDPy4c quKFJv1KjfPCjg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:09:01 2025 by rpki-client