This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: CvjjYJ4VvJS7cjPssvwXnhKGqGgVQ9cKSsojU6Gntdo= Subject key identifier: 63:34:6D:D5:7D:70:35:53:FF:8E:5C:B7:67:DC:B0:61:B5:75:B5:5A Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019B32685F855BAA3AAB821F8412EDB19348 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 17CC Signing time: Thu 18 Dec 2025 17:00:59 +0000 Manifest this update: Thu 18 Dec 2025 17:00:59 +0000 Manifest next update: Fri 19 Dec 2025 17:00:59 +0000 Files and hashes: 1: 0ztpdIPZKD6tLdnP79sm1hMOXpI.roa (hash: V+undJDS0h8d8CYJ+c34sHP0OtxUuBa8a+o8Uohmb0E=) 2: 1oM3GP4XRi0mqDBcN0k0C4RTdHY.roa (hash: Eqko1gSCAK/Ec5hGsjBzpPB0Hmmto77uxcqKM6nkuos=) 3: 3PPf4Y_qIxC7RLvddn7XhPdaKJc.roa (hash: OFq30+iv/yFFA0xKQ9BO17H+DIvPQ0bkiTx0cNerIAg=) 4: 5s050sybnU_qDLTadTW4Cbc1oa4.roa (hash: ul22+y65UhFi/PV4KsevDJSKijOmKuUMMb7YcjmOBq0=) 5: AkuNATViTFoUsLRTBmxq5TZta1U.roa (hash: +ALe8BR6dBzO5s8AWGnd/n4M4kjwqZrGPKmd2bf8aB0=) 6: D-_QiVeAYymMyrqyEwwxZVlJ77w.roa (hash: pLHDIfQfn00HxVAd67SY9GUFCYPJH9fT0t4z495xhcU=) 7: I49sO32imbdn9nfJ0l-il2Ef_jY.roa (hash: k2Ksa8ZIkYwAdo7qnIBXutPiCFJfdjd5EjsrD8efaro=) 8: JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa (hash: q2mwtM0pyYItD49ctwOqLjVJYv5g0mJ64QH0B7oRSCM=) 9: SHESx2HqUfWZxboQ6jP2hImYKmU.roa (hash: OlCdziBdwRc0FY5ejIFVQ8Nt867ISEKKLNxKfPnLzFA=) 10: TevPA31zpqIvq6GeQSDxtNa30UQ.roa (hash: 2nDbpMbvjKPaiiXiHqb4sCzw1FXoCOAaM9XlGLGbhC8=) 11: U2a4Mi5anG6MoVx-kSkOlCHuZ9U.roa (hash: WzVg8UcZ00h0mbpXiGBDaneFB3IZyzn0LFRbQNJ9OXc=) 12: bXqGrtPxlanCwZBmfe1rRANABDc.roa (hash: t5k+i+kB+7zSE8mRV1cP/4Uq7WgvCEro2Yq0+7QQVJA=) 13: bicuo27VbekDKZ2baxGyIAeBOBw.roa (hash: SWEpCpnN+xzcUkxLs6Bt4xTFqOqzIoS1IpAm8o8Z7uw=) 14: cbX3FwOgi9rS1ENe_k5BLCxVdg4.roa (hash: 35j9cePlwM12en+EIoj2uwLnq2TReRAiO2SX/9vwgDk=) 15: icTWsoKn_xk3KExZZn417x-Qv84.roa (hash: o9OMiruJYKHV5Ad+C6iuA4/zkZ1aBjsbg8MEUFVbq0o=) 16: nwRRU278nZ-OoZkxunLEdDGvAcI.roa (hash: XtojZB9yoPUFiPBHYDNCJYd8iy1TyLCfmu2Ry8BmvwU=) 17: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: chD4hKdJcimUTWk+8YH0nTBo9tfJuurSfcJgGCzzHLY=) 18: ya7mSjgbQNkjSkwREdHvHfCPb0I.roa (hash: qGz6FzpRmDdb9Ho0LXX5sUlrsbd9atIt02hL0IbJ65M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 17:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:68:5f:85:5b:aa:3a:ab:82:1f:84:12:ed:b1:93:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Dec 18 17:00:59 2025 GMT Not After : Dec 19 17:00:59 2025 GMT Subject: CN=63346dd57d703553ff8e5cb767dcb061b575b55a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:12:0b:35:39:f5:5f:4d:90:ff:a5:5d:11:ae: 0d:16:a3:18:3c:42:28:5a:a9:5d:e8:de:72:2b:c4: 17:33:ea:82:a1:5c:2b:e3:48:35:35:36:fd:1d:40: cf:09:ad:6e:83:75:b8:37:97:66:d0:ab:9c:6e:5b: b1:4c:d9:61:42:73:2a:9c:54:77:a4:4c:c5:39:ae: bb:8b:5b:e5:d9:a1:9c:3f:b9:8d:83:f3:28:8e:26: 36:f4:3d:09:9e:88:30:54:a5:9b:6e:9d:eb:17:ca: 3b:0b:90:9f:6e:2b:b2:3d:d6:e5:c5:83:58:83:0b: 15:a0:4a:e9:b4:e1:a3:0a:32:ea:31:72:77:32:53: 4a:3d:69:fa:be:17:0f:7f:bb:32:7e:0f:75:b5:68: 35:cb:ef:ea:44:4d:4c:12:62:f3:3d:39:14:c7:e4: 8b:9e:02:d2:2a:6e:3b:95:d8:4d:28:90:60:3c:83: ab:2a:6c:95:fb:35:68:c3:3f:07:f9:64:6a:f5:9e: 3d:30:c7:19:70:eb:a6:8d:37:29:b7:80:02:9f:2d: a5:15:3e:30:7b:cd:6b:34:23:51:86:42:5f:c0:14: 6c:87:be:91:f6:f7:89:5f:f5:15:24:97:15:d3:8d: c2:c1:8d:5a:55:ea:78:93:fc:fb:64:46:94:4b:18: 93:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:34:6D:D5:7D:70:35:53:FF:8E:5C:B7:67:DC:B0:61:B5:75:B5:5A X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:6b:57:06:b2:a9:58:cd:f9:52:46:91:51:c3:14:cd:10:fb: 19:a1:b0:65:84:76:bd:02:a5:cc:39:b5:f8:18:c7:cf:89:4c: e2:1b:0c:f4:b4:ad:9a:a5:85:8c:01:18:13:d6:9f:88:56:f0: 6e:a3:c1:41:ea:b2:c7:e5:c4:26:ae:42:e9:f8:69:5c:1f:24: 92:5e:7d:c7:87:d4:4e:08:95:09:b2:fc:82:4b:04:89:8b:de: eb:8f:be:1a:52:ef:3e:7b:1a:05:b1:fe:1f:3c:bd:b3:a3:76: 74:b3:3f:0c:94:5d:f1:c8:cd:8b:64:43:ae:f5:07:39:9e:a9: 70:7f:37:ff:05:d8:6b:dc:03:d4:8b:93:6c:0f:86:c5:fe:ca: 78:7b:f1:09:da:b8:38:ea:53:be:b7:86:db:d4:34:e9:ee:b5: a0:e8:7a:20:b4:b8:4c:1d:21:c9:e7:55:8c:6b:d0:bf:93:49: bf:57:5c:af:c8:50:4a:c6:e8:7a:a9:de:52:81:83:ec:1c:09: 66:e3:f1:c3:03:41:bb:d1:f8:45:04:d4:19:55:6e:b4:59:95: fb:ca:3b:6b:cf:9c:66:d7:8c:9c:b2:01:d9:01:c5:8f:4e:41: 12:b1:7b:e6:48:74:c6:26:83:53:0c:bf:c3:3a:6e:de:23:0a: ba:f5:a1:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyaF+FW6o6q4IfhBLtsZNIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjUxMjE4MTcwMDU5WhcNMjUxMjE5MTcwMDU5WjAzMTEwLwYDVQQD Eyg2MzM0NmRkNTdkNzAzNTUzZmY4ZTVjYjc2N2RjYjA2MWI1NzViNTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihILNTn1X02Q/6VdEa4NFqMYPEIo Wqld6N5yK8QXM+qCoVwr40g1NTb9HUDPCa1ug3W4N5dm0KucbluxTNlhQnMqnFR3 pEzFOa67i1vl2aGcP7mNg/MojiY29D0JnogwVKWbbp3rF8o7C5CfbiuyPdblxYNY gwsVoErptOGjCjLqMXJ3MlNKPWn6vhcPf7syfg91tWg1y+/qRE1MEmLzPTkUx+SL ngLSKm47ldhNKJBgPIOrKmyV+zVowz8H+WRq9Z49MMcZcOumjTcpt4ACny2lFT4w e81rNCNRhkJfwBRsh76R9veJX/UVJJcV043CwY1aVep4k/z7ZEaUSxiTpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGM0bdV9cDVT/45ct2fcsGG1dbVaMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApmtXBrKp WM35UkaRUcMUzRD7GaGwZYR2vQKlzDm1+BjHz4lM4hsM9LStmqWFjAEYE9afiFbw bqPBQeqyx+XEJq5C6fhpXB8kkl59x4fUTgiVCbL8gksEiYve64++GlLvPnsaBbH+ Hzy9s6N2dLM/DJRd8cjNi2RDrvUHOZ6pcH83/wXYa9wD1IuTbA+Gxf7KeHvxCdq4 OOpTvreG29Q06e61oOh6ILS4TB0hyedVjGvQv5NJv1dcr8hQSsboeqneUoGD7BwJ ZuPxwwNBu9H4RQTUGVVutFmV+8o7a8+cZteMnLIB2QHFj05BErF75kh0xiaDUwy/ wzpu3iMKuvWhpA== -----END CERTIFICATE-----Generated at Fri Dec 19 00:54:40 2025 by rpki-client