This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json) Hash identifier: 5FzADnRXmOartLyaQ3kjBDLg2TDwfuZIA9jpOq0G0Iw= Subject key identifier: 16:68:13:7C:4D:4E:7C:B3:01:77:24:93:0F:78:A4:EF:68:04:A6:47 Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d Certificate serial: 019B435C100DDF41D32D6F04D364840D3EF9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft Manifest number: 0A05 Signing time: Mon 22 Dec 2025 00:01:05 +0000 Manifest this update: Mon 22 Dec 2025 00:01:05 +0000 Manifest next update: Tue 23 Dec 2025 00:01:05 +0000 Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: GOQlMCHArYSjbqWD30FOzR55ACS5bBiqJ+rFmi3H38g=) 2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=) 3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=) 4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:5c:10:0d:df:41:d3:2d:6f:04:d3:64:84:0d:3e:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d Validity Not Before: Dec 22 00:01:05 2025 GMT Not After : Dec 23 00:01:05 2025 GMT Subject: CN=1668137c4d4e7cb3017724930f78a4ef6804a647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:01:4e:c4:f4:07:a0:23:67:54:dd:38:6f:a2: 54:19:16:61:27:3c:67:62:d5:19:eb:3b:0c:9c:ce: 61:68:fa:bb:83:f6:43:2e:62:ae:ab:9a:fb:ac:8a: ab:eb:f9:0f:40:97:40:f4:47:51:7b:f0:80:a1:70: df:c2:0c:63:83:1e:63:21:0c:cc:32:1f:e8:9b:b8: 6a:f9:ee:8f:0b:6d:42:ba:f3:0b:0b:e9:7c:76:21: 2c:3f:08:13:e2:87:77:e5:26:32:7a:d1:81:0e:21: 87:33:9b:15:48:25:2f:e8:29:a3:78:e2:e2:2c:9b: 5b:f3:66:8b:08:84:3c:8c:5a:c2:54:5e:fd:6b:1d: 91:c3:4b:fc:67:5a:9e:0e:a4:e9:a4:bf:fc:1c:51: bc:84:07:9e:7f:ab:30:09:61:60:84:27:a3:31:a4: f9:44:0a:69:3d:19:3c:69:13:03:84:bd:84:12:22: d8:ba:04:87:db:78:3b:59:9e:b4:0d:06:0e:c1:74: b1:65:3b:99:e0:5a:b3:af:8b:3c:df:08:5e:08:7d: 85:3b:93:56:fd:85:f6:49:5d:a5:f8:11:9a:ff:0a: 7d:47:24:26:90:06:bf:02:9e:2d:7c:9b:85:5d:df: 15:c0:f7:fa:99:44:c9:2a:1e:84:3c:fc:68:43:29: ba:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:68:13:7C:4D:4E:7C:B3:01:77:24:93:0F:78:A4:EF:68:04:A6:47 X509v3 Authority Key Identifier: keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:19:98:51:49:81:ca:75:88:60:41:3d:4d:d3:9c:04:16:c9: f6:ba:c1:e0:73:bb:22:2e:a1:db:d9:10:d5:d8:d6:8c:7f:5a: 81:7f:5e:81:8e:eb:cf:43:9d:d0:73:12:5d:db:41:d2:d5:02: 94:f8:42:96:92:f5:ce:c4:8e:45:4a:f1:eb:84:01:b7:e6:67: cb:a5:b8:05:70:c7:64:ff:6d:7d:5b:c9:34:e5:26:44:f7:f7: ec:99:dd:7d:ec:f0:99:54:40:75:06:3b:2d:20:ae:34:07:40: ba:fa:3d:28:bb:1b:87:8a:fa:bd:7d:2c:ce:c2:02:09:2d:ac: f6:51:9c:53:b6:5c:a0:d2:ed:33:a5:65:ce:2a:18:ba:96:35: 0c:b2:ab:a6:0e:d2:86:f7:47:b2:23:27:c9:aa:82:4d:12:7e: 7f:b1:08:2f:aa:96:a0:b1:f2:1b:42:00:15:03:17:3e:ef:4f: 6f:1c:cf:19:c3:8b:88:f3:cd:5f:10:ac:73:da:08:9d:c6:a3: d8:2c:07:35:02:50:68:03:08:66:f0:b5:50:cd:1d:28:e9:ef: 6b:6a:04:a8:92:4b:98:e5:3c:8f:51:e9:e7:d4:63:6d:0c:5a: a5:10:2f:14:0b:dd:19:43:1a:8c:a2:64:29:36:b6:8f:40:31: ad:57:a0:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDXBAN30HTLW8E02SEDT75MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZjY4Y2RlZDM5ZTNlYzU0Y2VlMjIzMzI1MmVmMzkzN2Jh OTgyOGQwHhcNMjUxMjIyMDAwMTA1WhcNMjUxMjIzMDAwMTA1WjAzMTEwLwYDVQQD EygxNjY4MTM3YzRkNGU3Y2IzMDE3NzI0OTMwZjc4YTRlZjY4MDRhNjQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwFOxPQHoCNnVN04b6JUGRZhJzxn YtUZ6zsMnM5haPq7g/ZDLmKuq5r7rIqr6/kPQJdA9EdRe/CAoXDfwgxjgx5jIQzM Mh/om7hq+e6PC21CuvMLC+l8diEsPwgT4od35SYyetGBDiGHM5sVSCUv6CmjeOLi LJtb82aLCIQ8jFrCVF79ax2Rw0v8Z1qeDqTppL/8HFG8hAeef6swCWFghCejMaT5 RAppPRk8aRMDhL2EEiLYugSH23g7WZ60DQYOwXSxZTuZ4Fqzr4s83wheCH2FO5NW /YX2SV2l+BGa/wp9RyQmkAa/Ap4tfJuFXd8VwPf6mUTJKh6EPPxoQym6dQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBZoE3xNTnyzAXckkw94pO9oBKZHMB8GA1UdIwQY MBaAFHD2jN7Tnj7FTO4iMyUu85N7qYKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYt MjlkZjRlMjYxMWYxLzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYtMjlkZjRlMjYxMWYx LzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIhmYUUmB ynWIYEE9TdOcBBbJ9rrB4HO7Ii6h29kQ1djWjH9agX9egY7rz0Od0HMSXdtB0tUC lPhClpL1zsSORUrx64QBt+Zny6W4BXDHZP9tfVvJNOUmRPf37JndfezwmVRAdQY7 LSCuNAdAuvo9KLsbh4r6vX0szsICCS2s9lGcU7ZcoNLtM6VlzioYupY1DLKrpg7S hvdHsiMnyaqCTRJ+f7EIL6qWoLHyG0IAFQMXPu9PbxzPGcOLiPPNXxCsc9oIncaj 2CwHNQJQaAMIZvC1UM0dKOnva2oEqJJLmOU8j1Hp59RjbQxapRAvFAvdGUMajKJk KTa2j0AxrVegkg== -----END CERTIFICATE-----Generated at Mon Dec 22 01:48:58 2025 by rpki-client