This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json) Hash identifier: 6oU9+UCo69FHIf6IQw2ynSRfhHtZRW/TZ48KTlOBhKI= Subject key identifier: 46:04:C3:86:C6:4F:8C:2C:F0:94:26:C5:CE:96:DB:2A:08:5E:E2:2A Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d Certificate serial: 019B416DA89FB325C0B9F260F429ED23AF22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft Manifest number: 0A04 Signing time: Sun 21 Dec 2025 15:01:04 +0000 Manifest this update: Sun 21 Dec 2025 15:01:04 +0000 Manifest next update: Mon 22 Dec 2025 15:01:04 +0000 Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: JJAtkDOO8wlxMz0n1nR8wPOgXDgkeq8S8aZCc5v8If8=) 2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=) 3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=) 4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:a8:9f:b3:25:c0:b9:f2:60:f4:29:ed:23:af:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d Validity Not Before: Dec 21 15:01:04 2025 GMT Not After : Dec 22 15:01:04 2025 GMT Subject: CN=4604c386c64f8c2cf09426c5ce96db2a085ee22a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:30:de:f4:5b:ed:bc:6f:c4:0c:bb:dd:81:2e: 54:e5:7a:d9:84:f5:ba:d9:16:17:9a:47:25:29:1d: 6a:90:21:b5:06:51:bf:d7:f7:37:fa:b6:19:75:9d: c9:9f:73:6d:b1:b9:c8:f8:79:ad:d2:ce:76:e5:24: d6:af:fa:d3:95:06:cb:56:52:a5:26:53:2b:ad:eb: 82:3f:09:b8:00:18:7d:b8:8d:0b:e0:97:02:53:0c: 3e:41:bf:3c:75:7e:3f:41:89:b2:25:be:b4:e6:e3: 8f:67:6a:0b:02:db:be:bf:4d:d9:4a:65:7c:36:f5: d7:5e:64:b6:08:a4:c1:e3:c7:42:54:b4:13:e9:57: ca:51:ef:c4:9c:29:cf:4a:4a:ea:7a:29:18:c6:e0: 8a:a1:84:da:ad:91:93:92:57:27:99:0f:30:4c:4c: 37:bb:a1:d9:55:c7:3a:f7:28:74:2e:60:31:2e:05: 4a:2c:12:61:a0:47:07:2d:11:51:18:8f:7b:5d:ac: 7a:cc:79:f8:f7:4d:ac:da:ba:3c:eb:1c:46:60:3f: f9:ea:07:b6:3c:ae:56:8e:12:b2:56:10:7c:8d:2c: 66:31:ac:57:0e:b2:04:62:f7:35:ab:65:03:3e:66: 2e:ab:b1:29:21:1c:e8:38:16:77:ab:64:90:03:c2: ef:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:04:C3:86:C6:4F:8C:2C:F0:94:26:C5:CE:96:DB:2A:08:5E:E2:2A X509v3 Authority Key Identifier: keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:2d:ed:6a:96:fb:ee:35:05:eb:3a:0a:fc:a2:a6:b7:d6:2d: af:63:a8:55:93:d1:9e:05:ef:72:c7:7f:97:9b:c5:a0:a5:c3: 7c:f2:11:56:fd:63:ca:7b:ee:c1:ec:ec:d1:1e:1c:1d:15:2c: eb:56:d1:ee:7e:9a:6b:1a:d6:3b:f6:ff:2c:8d:4e:b5:9f:2a: c0:5f:49:0b:a0:f8:bd:02:9c:a7:25:4f:71:33:2e:10:af:c8: ef:9c:4f:12:99:a9:aa:a4:fa:89:b1:21:6b:bb:24:08:e7:bf: 26:11:a2:9b:03:1a:9e:85:4b:9a:68:59:a0:7e:75:1e:3d:c0: 6c:da:79:2e:b1:44:17:15:64:0b:a8:4b:fb:ca:18:17:2c:81: 6f:c3:58:0c:aa:fe:01:51:8f:1b:34:57:f2:f4:b7:4a:1b:71: 4c:88:60:e1:ab:78:37:c6:8a:63:df:9b:db:9a:de:33:e6:01: 4c:c1:b7:75:38:e5:a6:9f:29:ad:7a:46:46:46:2d:1a:3b:24: dd:83:03:4e:8f:85:ae:b5:88:ca:57:27:c2:92:f6:8a:3a:6d: 73:5e:1b:16:3f:5d:11:43:22:58:4a:30:22:1e:2c:7f:e7:61: 07:26:52:aa:3b:b5:04:f6:e8:2f:9d:8e:0f:48:28:44:1c:41: bf:e9:66:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBbaifsyXAufJg9CntI68iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZjY4Y2RlZDM5ZTNlYzU0Y2VlMjIzMzI1MmVmMzkzN2Jh OTgyOGQwHhcNMjUxMjIxMTUwMTA0WhcNMjUxMjIyMTUwMTA0WjAzMTEwLwYDVQQD Eyg0NjA0YzM4NmM2NGY4YzJjZjA5NDI2YzVjZTk2ZGIyYTA4NWVlMjJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3jDe9FvtvG/EDLvdgS5U5XrZhPW6 2RYXmkclKR1qkCG1BlG/1/c3+rYZdZ3Jn3NtsbnI+Hmt0s525STWr/rTlQbLVlKl JlMrreuCPwm4ABh9uI0L4JcCUww+Qb88dX4/QYmyJb605uOPZ2oLAtu+v03ZSmV8 NvXXXmS2CKTB48dCVLQT6VfKUe/EnCnPSkrqeikYxuCKoYTarZGTklcnmQ8wTEw3 u6HZVcc69yh0LmAxLgVKLBJhoEcHLRFRGI97Xax6zHn4902s2ro86xxGYD/56ge2 PK5WjhKyVhB8jSxmMaxXDrIEYvc1q2UDPmYuq7EpIRzoOBZ3q2SQA8LvGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEYEw4bGT4ws8JQmxc6W2yoIXuIqMB8GA1UdIwQY MBaAFHD2jN7Tnj7FTO4iMyUu85N7qYKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYt MjlkZjRlMjYxMWYxLzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYtMjlkZjRlMjYxMWYx LzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYy3tapb7 7jUF6zoK/KKmt9Ytr2OoVZPRngXvcsd/l5vFoKXDfPIRVv1jynvuwezs0R4cHRUs 61bR7n6aaxrWO/b/LI1OtZ8qwF9JC6D4vQKcpyVPcTMuEK/I75xPEpmpqqT6ibEh a7skCOe/JhGimwManoVLmmhZoH51Hj3AbNp5LrFEFxVkC6hL+8oYFyyBb8NYDKr+ AVGPGzRX8vS3ShtxTIhg4at4N8aKY9+b25reM+YBTMG3dTjlpp8prXpGRkYtGjsk 3YMDTo+FrrWIylcnwpL2ijptc14bFj9dEUMiWEowIh4sf+dhByZSqju1BPboL52O D0goRBxBv+lmfQ== -----END CERTIFICATE-----Generated at Sun Dec 21 22:26:25 2025 by rpki-client