This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json) Hash identifier: owoiOF0Wg0Y5DhCXbAkPMwaXcj43+XbYgjxDPJMPPVo= Subject key identifier: ED:DC:F7:80:10:CA:7F:7D:22:16:2E:A4:BD:1B:13:BD:B6:BF:CD:5B Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a Certificate serial: 019B45B8619ABAA94E4BF54F397DD48DD493 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft Manifest number: 03F3 Signing time: Mon 22 Dec 2025 11:01:10 +0000 Manifest this update: Mon 22 Dec 2025 11:01:10 +0000 Manifest next update: Tue 23 Dec 2025 11:01:10 +0000 Files and hashes: 1: 1-PJ8uFT3vIGcdh8Ryvstj5V11gs.roa (hash: flh68N5wBml9poaLXGZmGeNQ/HSV3CHvsWwwddNW1dc=) 2: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: d6CDC0EQKQbBKM0WywB95h/TCAGS7XqAQ2ZvqcYH8d8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 11:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:45:b8:61:9a:ba:a9:4e:4b:f5:4f:39:7d:d4:8d:d4:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a Validity Not Before: Dec 22 11:01:10 2025 GMT Not After : Dec 23 11:01:10 2025 GMT Subject: CN=eddcf78010ca7f7d22162ea4bd1b13bdb6bfcd5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6c:bb:73:19:7e:b6:07:b6:e0:aa:5d:46:98: 70:88:4f:eb:4b:e3:bc:49:2a:7d:f5:eb:8e:50:1c: f6:a4:9a:57:e5:7d:71:ed:86:21:c6:01:a6:92:2c: 1d:d5:58:e9:3f:03:39:c7:3f:ba:ba:e9:0c:8b:db: 52:e5:0c:94:79:9e:05:9c:f5:df:91:2a:64:2c:b3: 6a:f4:18:4a:d5:1f:dd:c6:75:89:f3:b0:6f:d3:0d: af:64:ec:24:21:0f:16:28:76:99:b7:8c:86:01:b6: e2:95:aa:ca:d5:7c:bf:4a:c1:ce:55:d9:68:c7:54: f9:a1:0d:30:cd:07:f7:02:fa:11:b0:bb:c5:8c:73: b4:0a:3c:1d:90:4f:7d:e3:9a:96:2a:b1:57:bf:91: 4a:cc:3d:24:a2:3a:e0:3b:a0:9d:60:a1:fb:0a:28: 0e:9a:f3:04:3e:37:ed:18:37:51:1e:9a:fa:ad:44: 07:16:2e:ec:3c:d4:78:55:8c:df:57:0c:6e:62:a3: 39:6d:cf:29:75:c1:c8:44:da:0e:7d:0b:87:b9:dd: 38:f7:e1:ea:b4:aa:f5:f0:36:7a:8d:68:b3:7b:51: 9d:77:06:20:bd:46:b2:df:bd:be:8e:f9:e2:79:75: fb:a9:73:c0:93:62:ef:9e:84:f0:83:86:af:88:9d: 91:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:DC:F7:80:10:CA:7F:7D:22:16:2E:A4:BD:1B:13:BD:B6:BF:CD:5B X509v3 Authority Key Identifier: keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:b5:a5:50:3b:b0:2b:ae:66:1c:a1:78:ef:1e:e3:1b:c8:97: ab:d0:cd:60:be:24:07:ae:0f:4c:f4:46:21:b1:3c:8e:80:71: 93:78:f3:f2:18:66:22:ed:f1:92:fe:43:cd:0a:42:67:46:b8: 89:63:46:ff:43:b3:7c:52:b8:6c:5a:a9:5b:9d:9d:c4:70:ee: 32:4f:77:45:58:65:c1:e5:bd:fb:dd:59:21:03:88:6e:7c:d5: 02:ef:d5:d3:dd:40:10:e8:e5:1e:6d:6b:55:7b:ad:1d:00:dd: 40:1b:46:fd:90:fb:27:4d:dd:53:25:d1:70:af:8f:c4:19:1c: a7:f0:85:0d:94:3c:ab:01:54:3f:37:83:42:2e:b1:17:99:94: 81:4e:c5:77:32:a5:56:ff:a0:7e:0b:20:b9:69:6c:26:1c:67: 76:38:ed:d9:cb:c5:eb:89:84:55:9d:f6:ea:31:30:04:cf:5d: 87:fc:9d:f2:df:af:04:d8:91:b3:74:d9:81:80:3f:40:5e:1b: 2f:e6:ed:f1:b4:fd:a1:68:f3:ed:fc:84:19:7e:d1:27:5a:05: 06:ba:08:11:75:59:ce:87:ab:8e:af:8f:89:f4:0e:45:ac:46: 4d:aa:53:17:fc:9f:b1:09:94:1b:5c:30:f0:cb:2b:2b:54:ab: 09:21:86:51 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZtFuGGauqlOS/VPOX3UjdSTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5ODY2OWQzMWExNGRiZGM1MDc3MTU5Y2YwYTY1MzUzYmZi ZmEyMGEwHhcNMjUxMjIyMTEwMTEwWhcNMjUxMjIzMTEwMTEwWjAzMTEwLwYDVQQD EyhlZGRjZjc4MDEwY2E3ZjdkMjIxNjJlYTRiZDFiMTNiZGI2YmZjZDViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWy7cxl+tge24KpdRphwiE/rS+O8 SSp99euOUBz2pJpX5X1x7YYhxgGmkiwd1VjpPwM5xz+6uukMi9tS5QyUeZ4FnPXf kSpkLLNq9BhK1R/dxnWJ87Bv0w2vZOwkIQ8WKHaZt4yGAbbilarK1Xy/SsHOVdlo x1T5oQ0wzQf3AvoRsLvFjHO0CjwdkE9945qWKrFXv5FKzD0kojrgO6CdYKH7CigO mvMEPjftGDdRHpr6rUQHFi7sPNR4VYzfVwxuYqM5bc8pdcHIRNoOfQuHud049+Hq tKr18DZ6jWize1GddwYgvUay372+jvnieXX7qXPAk2LvnoTwg4aviJ2RlQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFO3c94AQyn99IhYupL0bE722v81bMB8GA1UdIwQY MBaAFPmGadMaFNvcUHcVnPCmU1O/v6IKMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1ZWnAweG9VMjl4UWR4V2M4S1pUVTctX29nby5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvMmI0MTdkLTI4NjktNDExZi1hZWRh LTRhMDViYWM1MjY1Zi8xLzEtWVpwMHhvVTI5eFFkeFdjOEtaVFU3LV9vZ28ubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxULzA3LzJiNDE3ZC0yODY5LTQxMWYtYWVkYS00YTA1YmFjNTI2 NWYvMS8xLVlacDB4b1UyOXhRZHhXYzhLWlRVNy1fb2dvLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV7Wl UDuwK65mHKF47x7jG8iXq9DNYL4kB64PTPRGIbE8joBxk3jz8hhmIu3xkv5DzQpC Z0a4iWNG/0OzfFK4bFqpW52dxHDuMk93RVhlweW9+91ZIQOIbnzVAu/V091AEOjl Hm1rVXutHQDdQBtG/ZD7J03dUyXRcK+PxBkcp/CFDZQ8qwFUPzeDQi6xF5mUgU7F dzKlVv+gfgsguWlsJhxndjjt2cvF64mEVZ326jEwBM9dh/yd8t+vBNiRs3TZgYA/ QF4bL+bt8bT9oWjz7fyEGX7RJ1oFBroIEXVZzoerjq+PifQORaxGTapTF/yfsQmU G1ww8MsrK1SrCSGGUQ== -----END CERTIFICATE-----Generated at Mon Dec 22 20:47:05 2025 by rpki-client