This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft File: rnLkfVZpJJmnJr-ADqg4A2Letr4.mft (raw, json) Hash identifier: M9Oi5lCL+/zydFTPsp6PT4YsIGZcxdHyQXpm0te7SNI= Subject key identifier: 46:B2:FF:E6:D2:E8:AA:19:A0:95:28:EB:22:B8:A0:54:7B:98:0C:5A Authority key identifier: AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE Certificate issuer: /CN=ae72e47d56692499a726bf800ea8380362deb6be Certificate serial: 019AF12DF3BC2D4B7E40C63B6053C41F19DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft Manifest number: 1771 Signing time: Sat 06 Dec 2025 01:01:51 +0000 Manifest this update: Sat 06 Dec 2025 01:01:51 +0000 Manifest next update: Sun 07 Dec 2025 01:01:51 +0000 Files and hashes: 1: ETv26zxQcsr8JhZ4MeGRkRkjDDY.roa (hash: V/KbOS0vpdDJobu1pDGY/r9sUVjvdSgLOWgc2BMLZzY=) 2: jNjUfwqgx7FxjC22ZM2tNJxUovE.roa (hash: CYjABvddLBiX5OMQlguXfrahjaGdNxRrjgGTFThsYz4=) 3: rnLkfVZpJJmnJr-ADqg4A2Letr4.crl (hash: S3Qs6v8YKeONaUh5/3KvbPTQNJtsfkwZCeED3xd504M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:f3:bc:2d:4b:7e:40:c6:3b:60:53:c4:1f:19:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae72e47d56692499a726bf800ea8380362deb6be Validity Not Before: Dec 6 01:01:51 2025 GMT Not After : Dec 7 01:01:51 2025 GMT Subject: CN=46b2ffe6d2e8aa19a09528eb22b8a0547b980c5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5f:00:bb:72:e8:e2:53:a1:f3:af:58:82:34: 08:88:91:a7:0e:45:aa:36:e3:82:d9:ad:06:f8:71: 44:ae:d7:d9:46:50:c9:18:11:c3:43:03:17:cf:4e: 62:8a:ea:c6:c2:f6:93:7d:1c:2c:8e:ec:18:4f:c1: dc:45:09:91:e6:53:49:2f:e4:59:6d:df:e4:62:d5: 43:c9:d3:25:99:f4:96:83:fa:52:d0:5f:c5:57:da: 8a:18:76:6b:8f:bf:5a:d5:a6:85:db:95:d6:4e:75: 2b:43:e7:6b:1e:84:9f:18:12:b6:1e:cc:c1:d6:ce: 0a:2c:0d:d9:f5:68:a9:a0:88:ab:85:a3:ac:82:ba: 2f:1a:21:0c:e9:11:0b:51:df:d7:65:4d:45:f4:f5: 4a:3f:6c:b1:2e:0d:70:8f:33:2f:71:6c:ef:e2:87: 0a:1a:bc:34:13:de:df:de:c6:e4:0a:c6:a6:9e:c7: 39:09:e9:84:3f:f9:e3:b7:80:82:c4:ff:24:62:d4: 93:d4:12:34:5a:ac:b2:0f:63:ee:79:5b:87:a8:b4: be:9b:03:c0:e8:04:44:36:3c:78:da:d4:4d:b6:8b: 1b:73:4f:3e:ac:53:13:a5:61:66:36:ba:6d:da:12: b5:a1:1d:da:89:bb:56:d9:d4:c8:ab:ac:cd:f4:a7: 3b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B2:FF:E6:D2:E8:AA:19:A0:95:28:EB:22:B8:A0:54:7B:98:0C:5A X509v3 Authority Key Identifier: keyid:AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ea:6d:3a:9e:3a:64:97:53:5c:f4:f3:24:38:25:d9:b4:77: f6:ad:8f:5d:ca:f4:4d:62:7a:16:f7:11:f3:56:ae:11:5b:19: aa:7c:eb:17:62:e1:40:03:c3:8a:a2:e6:65:13:15:19:30:f6: a0:ac:35:d5:e5:4b:26:df:9c:d0:c4:47:96:b1:86:7d:4a:04: 47:e7:3e:74:53:29:6b:c6:56:87:03:c4:90:f7:7d:38:07:66: a8:29:d5:a7:18:10:83:a6:35:d7:c6:97:10:c3:68:68:1f:e0: 79:f4:b3:10:b3:d9:ea:3b:c2:78:d5:2c:d9:e1:02:89:d3:44: c3:a1:23:db:0e:96:28:64:b2:9e:1d:05:2e:92:31:32:c8:9e: 69:21:f7:37:a3:0f:c3:b0:3d:5a:a4:2f:aa:e1:27:52:31:bb: c0:a4:6b:70:0a:be:a9:1b:0a:ac:49:a0:42:81:28:cb:9e:42: 8d:42:de:e1:93:ca:27:5d:bf:27:3d:c4:ba:f3:d5:62:55:de: 61:64:5e:0a:fe:7e:63:97:01:e7:11:56:fb:34:97:a0:12:4e: 8c:b5:5f:5b:78:7e:b2:c9:ec:5f:2b:60:29:d7:eb:3b:42:75: 7c:33:40:13:47:81:dc:63:df:be:24:81:ae:fd:04:55:ed:e3: b3:99:c8:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLfO8LUt+QMY7YFPEHxneMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNzJlNDdkNTY2OTI0OTlhNzI2YmY4MDBlYTgzODAzNjJk ZWI2YmUwHhcNMjUxMjA2MDEwMTUxWhcNMjUxMjA3MDEwMTUxWjAzMTEwLwYDVQQD Eyg0NmIyZmZlNmQyZThhYTE5YTA5NTI4ZWIyMmI4YTA1NDdiOTgwYzVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvV8Au3Lo4lOh869YgjQIiJGnDkWq NuOC2a0G+HFErtfZRlDJGBHDQwMXz05iiurGwvaTfRwsjuwYT8HcRQmR5lNJL+RZ bd/kYtVDydMlmfSWg/pS0F/FV9qKGHZrj79a1aaF25XWTnUrQ+drHoSfGBK2HszB 1s4KLA3Z9WipoIirhaOsgrovGiEM6RELUd/XZU1F9PVKP2yxLg1wjzMvcWzv4ocK Grw0E97f3sbkCsamnsc5CemEP/njt4CCxP8kYtST1BI0WqyyD2PueVuHqLS+mwPA 6ARENjx42tRNtosbc08+rFMTpWFmNrpt2hK1oR3aibtW2dTIq6zN9Kc7+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEay/+bS6KoZoJUo6yK4oFR7mAxaMB8GA1UdIwQY MBaAFK5y5H1WaSSZpya/gA6oOANi3ra+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm5Ma2ZWWnBKSm1uSnItQURxZzRBMkxldHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS82YmI0NzEtNGEzZS00ODhkLWI4OGMt ZmUxMmM3NWJmNGFiLzEvcm5Ma2ZWWnBKSm1uSnItQURxZzRBMkxldHI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS82YmI0NzEtNGEzZS00ODhkLWI4OGMtZmUxMmM3NWJmNGFi LzEvcm5Ma2ZWWnBKSm1uSnItQURxZzRBMkxldHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALOptOp46 ZJdTXPTzJDgl2bR39q2PXcr0TWJ6FvcR81auEVsZqnzrF2LhQAPDiqLmZRMVGTD2 oKw11eVLJt+c0MRHlrGGfUoER+c+dFMpa8ZWhwPEkPd9OAdmqCnVpxgQg6Y118aX EMNoaB/gefSzELPZ6jvCeNUs2eECidNEw6Ej2w6WKGSynh0FLpIxMsieaSH3N6MP w7A9WqQvquEnUjG7wKRrcAq+qRsKrEmgQoEoy55CjULe4ZPKJ12/Jz3EuvPVYlXe YWReCv5+Y5cB5xFW+zSXoBJOjLVfW3h+ssnsXytgKdfrO0J1fDNAE0eB3GPfviSB rv0EVe3js5nIOQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:21 2025 by rpki-client