This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft File: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft (raw, json) Hash identifier: 54cKDeDZDgM8Vf3XCE9EB7IgSJvFKuaV9tV40vN+z3E= Subject key identifier: 5D:CE:F9:A4:F5:E0:9B:EC:AA:EE:9E:18:D5:12:55:8F:B2:52:04:A0 Authority key identifier: D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD Certificate issuer: /CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd Certificate serial: 019AF2AD78A2BFF755AE4E20A129A265033F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft Manifest number: 0CA9 Signing time: Sat 06 Dec 2025 08:00:46 +0000 Manifest this update: Sat 06 Dec 2025 08:00:46 +0000 Manifest next update: Sun 07 Dec 2025 08:00:46 +0000 Files and hashes: 1: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl (hash: bHJOJ/EliW+NoSrkxHV1Xi1Fl3+AjRLqdDej9PeQd1g=) 2: It-Yns2Nwvw18OgbQ81pWbtQZ7M.roa (hash: 7H+X0erT0owXhcTltBjLEsiIIl6BxhT41pVVMePz04w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:78:a2:bf:f7:55:ae:4e:20:a1:29:a2:65:03:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd Validity Not Before: Dec 6 08:00:46 2025 GMT Not After : Dec 7 08:00:46 2025 GMT Subject: CN=5dcef9a4f5e09becaaee9e18d512558fb25204a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8f:d3:47:45:39:0e:80:3b:57:c7:39:59:09: 90:0b:02:cd:03:6f:b5:70:c6:7f:46:0c:1f:91:d5: 8c:2c:cb:c6:a2:90:f8:02:42:7e:30:8e:2f:5f:cf: 02:d7:50:6e:12:1c:04:cb:8e:34:a5:7c:84:d7:1e: 66:fc:1f:d8:fb:d3:b2:9f:b2:39:f5:8e:09:9a:4a: ff:8d:bc:7b:fe:9e:8a:12:a5:b5:79:e3:45:b9:d0: 71:3c:5e:8d:bd:8a:6b:46:6c:bd:d1:b2:9f:dc:b6: eb:8a:14:9b:99:f9:4f:91:1c:e4:90:ec:00:98:e4: 8c:ec:d0:31:d4:82:9c:09:b0:cb:87:e4:4c:cf:27: 14:99:26:18:17:1b:54:5a:25:f8:c2:90:cb:af:fd: ad:da:6b:13:7c:23:ba:45:a2:b2:b1:88:f3:29:c1: 02:c2:d9:52:12:d0:1d:6f:97:e9:31:1f:cd:a1:4e: 3d:96:c2:6c:e5:53:e7:62:fb:62:ae:f7:f9:81:fa: 2b:9f:f3:c1:b1:2c:b1:0b:44:49:6c:3d:59:e5:ea: e8:05:bf:7d:2d:e0:1e:a6:35:eb:c9:8e:17:05:78: 21:34:75:f3:5f:15:73:1c:d8:04:58:8b:7b:a7:85: d8:41:92:6f:c8:db:de:9b:58:14:f1:3e:33:11:4a: fc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:CE:F9:A4:F5:E0:9B:EC:AA:EE:9E:18:D5:12:55:8F:B2:52:04:A0 X509v3 Authority Key Identifier: keyid:D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:18:ce:7b:c8:cb:e7:30:e8:18:6e:ad:09:17:3b:a8:33:3c: 56:f8:10:d5:6a:f6:69:1f:88:00:ed:ae:f7:f4:c3:a4:64:cd: 74:19:1e:3c:01:2d:63:45:01:74:9b:2d:80:4b:c6:94:b1:70: 70:9b:80:bc:f8:f6:c7:2d:12:ed:98:f6:be:3e:ba:0e:d8:fe: bc:c9:82:35:f9:78:d8:bf:d4:8c:99:7b:be:0f:45:4b:e5:d0: 5e:0e:32:8e:f4:e3:5e:7a:5c:b2:57:6f:df:65:38:4d:62:07: 89:ec:b3:7b:4b:b7:f3:68:f3:a3:3c:1e:2a:a2:48:c3:76:5b: 1a:bc:a4:dc:50:f1:45:f4:70:e9:38:7e:01:e0:39:e7:e1:45: c0:5b:86:0d:21:98:86:73:96:0e:20:6e:5e:85:c4:b1:d5:8e: bd:8d:42:9c:9b:6b:63:41:d4:32:6c:92:e8:dc:f0:49:a7:6c: 81:fb:04:66:1a:2b:d9:72:3b:30:8b:89:66:53:fd:4d:6a:5c: 26:97:83:43:d8:4e:8b:39:ed:88:f7:d0:8f:ed:64:8a:75:f7: c0:e0:51:f0:e5:7b:17:91:ec:f5:15:f5:cb:9c:5e:84:8b:d3: 5d:f1:4b:6b:95:2d:fe:89:c5:ba:39:ea:39:6f:7d:02:2c:64: d4:c3:73:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrXiiv/dVrk4goSmiZQM/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0YzBkNjk0ZDU5ZDdkMzZiYTQyMWEzMDUwZjRlYzdkZDM3 ODFlZmQwHhcNMjUxMjA2MDgwMDQ2WhcNMjUxMjA3MDgwMDQ2WjAzMTEwLwYDVQQD Eyg1ZGNlZjlhNGY1ZTA5YmVjYWFlZTllMThkNTEyNTU4ZmIyNTIwNGEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA24/TR0U5DoA7V8c5WQmQCwLNA2+1 cMZ/RgwfkdWMLMvGopD4AkJ+MI4vX88C11BuEhwEy440pXyE1x5m/B/Y+9Oyn7I5 9Y4Jmkr/jbx7/p6KEqW1eeNFudBxPF6NvYprRmy90bKf3LbrihSbmflPkRzkkOwA mOSM7NAx1IKcCbDLh+RMzycUmSYYFxtUWiX4wpDLr/2t2msTfCO6RaKysYjzKcEC wtlSEtAdb5fpMR/NoU49lsJs5VPnYvtirvf5gforn/PBsSyxC0RJbD1Z5eroBb99 LeAepjXryY4XBXghNHXzXxVzHNgEWIt7p4XYQZJvyNvem1gU8T4zEUr8LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF3O+aT14Jvsqu6eGNUSVY+yUgSgMB8GA1UdIwQY MBaAFNTA1pTVnX02ukIaMFD07H3TeB79MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80MWNjY2UtYWNkOC00ZmI4LWIxNDgt YTc5NTEwZTYxM2U4LzEvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS80MWNjY2UtYWNkOC00ZmI4LWIxNDgtYTc5NTEwZTYxM2U4 LzEvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHxjOe8jL 5zDoGG6tCRc7qDM8VvgQ1Wr2aR+IAO2u9/TDpGTNdBkePAEtY0UBdJstgEvGlLFw cJuAvPj2xy0S7Zj2vj66Dtj+vMmCNfl42L/UjJl7vg9FS+XQXg4yjvTjXnpcsldv 32U4TWIHieyze0u382jzozweKqJIw3ZbGryk3FDxRfRw6Th+AeA55+FFwFuGDSGY hnOWDiBuXoXEsdWOvY1CnJtrY0HUMmyS6NzwSadsgfsEZhor2XI7MIuJZlP9TWpc JpeDQ9hOizntiPfQj+1kinX3wOBR8OV7F5Hs9RX1y5xehIvTXfFLa5Ut/onFujnq OW99Aixk1MNzbw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:47 2025 by rpki-client