This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: C/aYKo4OHZOGxuVS0iJADUxUjShQZJKWlqCTL4xMYmM= Subject key identifier: 8F:E8:58:06:92:ED:E0:CD:65:92:3D:60:07:37:9F:65:9B:13:F2:DD Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019AF68A33094A879141DE0C8EF57FF92FB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 17AD Signing time: Sun 07 Dec 2025 02:00:43 +0000 Manifest this update: Sun 07 Dec 2025 02:00:43 +0000 Manifest next update: Mon 08 Dec 2025 02:00:43 +0000 Files and hashes: 1: 0ztpdIPZKD6tLdnP79sm1hMOXpI.roa (hash: V+undJDS0h8d8CYJ+c34sHP0OtxUuBa8a+o8Uohmb0E=) 2: 1oM3GP4XRi0mqDBcN0k0C4RTdHY.roa (hash: Eqko1gSCAK/Ec5hGsjBzpPB0Hmmto77uxcqKM6nkuos=) 3: 3PPf4Y_qIxC7RLvddn7XhPdaKJc.roa (hash: OFq30+iv/yFFA0xKQ9BO17H+DIvPQ0bkiTx0cNerIAg=) 4: 5s050sybnU_qDLTadTW4Cbc1oa4.roa (hash: ul22+y65UhFi/PV4KsevDJSKijOmKuUMMb7YcjmOBq0=) 5: AkuNATViTFoUsLRTBmxq5TZta1U.roa (hash: +ALe8BR6dBzO5s8AWGnd/n4M4kjwqZrGPKmd2bf8aB0=) 6: D-_QiVeAYymMyrqyEwwxZVlJ77w.roa (hash: pLHDIfQfn00HxVAd67SY9GUFCYPJH9fT0t4z495xhcU=) 7: I49sO32imbdn9nfJ0l-il2Ef_jY.roa (hash: k2Ksa8ZIkYwAdo7qnIBXutPiCFJfdjd5EjsrD8efaro=) 8: JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa (hash: q2mwtM0pyYItD49ctwOqLjVJYv5g0mJ64QH0B7oRSCM=) 9: SHESx2HqUfWZxboQ6jP2hImYKmU.roa (hash: OlCdziBdwRc0FY5ejIFVQ8Nt867ISEKKLNxKfPnLzFA=) 10: TevPA31zpqIvq6GeQSDxtNa30UQ.roa (hash: 2nDbpMbvjKPaiiXiHqb4sCzw1FXoCOAaM9XlGLGbhC8=) 11: U2a4Mi5anG6MoVx-kSkOlCHuZ9U.roa (hash: WzVg8UcZ00h0mbpXiGBDaneFB3IZyzn0LFRbQNJ9OXc=) 12: bXqGrtPxlanCwZBmfe1rRANABDc.roa (hash: t5k+i+kB+7zSE8mRV1cP/4Uq7WgvCEro2Yq0+7QQVJA=) 13: bicuo27VbekDKZ2baxGyIAeBOBw.roa (hash: SWEpCpnN+xzcUkxLs6Bt4xTFqOqzIoS1IpAm8o8Z7uw=) 14: cbX3FwOgi9rS1ENe_k5BLCxVdg4.roa (hash: 35j9cePlwM12en+EIoj2uwLnq2TReRAiO2SX/9vwgDk=) 15: icTWsoKn_xk3KExZZn417x-Qv84.roa (hash: o9OMiruJYKHV5Ad+C6iuA4/zkZ1aBjsbg8MEUFVbq0o=) 16: nwRRU278nZ-OoZkxunLEdDGvAcI.roa (hash: XtojZB9yoPUFiPBHYDNCJYd8iy1TyLCfmu2Ry8BmvwU=) 17: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: OebgbrvxvWLcUKs+s5nSdxXWYUsIMhEvstgEfLn1HMo=) 18: ya7mSjgbQNkjSkwREdHvHfCPb0I.roa (hash: qGz6FzpRmDdb9Ho0LXX5sUlrsbd9atIt02hL0IbJ65M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:8a:33:09:4a:87:91:41:de:0c:8e:f5:7f:f9:2f:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Dec 7 02:00:43 2025 GMT Not After : Dec 8 02:00:43 2025 GMT Subject: CN=8fe8580692ede0cd65923d6007379f659b13f2dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:25:01:2b:a7:ef:34:91:ef:5a:00:b2:b2:a2: b4:0a:86:ce:12:96:4e:41:96:f3:c9:64:43:a3:7d: 91:7b:33:3e:f7:50:49:d7:7e:4a:e2:3a:37:bf:d9: a3:90:ca:15:1a:93:ac:37:bf:ac:46:3f:36:5b:c5: 7e:fc:b0:97:1d:6b:2b:f4:62:f4:69:19:f6:e3:24: 20:a3:d1:9e:a7:d6:c0:ca:1e:85:3f:d0:75:b7:61: a1:53:f0:25:8f:7d:42:f0:5d:f5:d8:79:20:48:65: 86:86:7d:2d:31:d6:99:84:f4:fa:23:39:8a:4b:89: d2:62:df:e9:bc:26:59:24:bf:72:e1:9e:8f:d7:03: 65:3d:36:91:19:6f:79:db:e9:33:04:32:ea:14:f7: 72:d1:9d:d0:14:77:9c:e8:4a:ca:99:d4:4b:1c:20: 9b:ad:36:fe:0c:46:cc:51:e3:83:51:47:ad:51:51: 4e:f1:ac:83:61:39:31:ad:0f:fb:81:64:ba:d2:6d: 63:89:c8:a8:cf:d4:46:3c:27:62:d0:ea:84:e2:df: 5f:c0:e4:d0:f8:6d:2c:e1:24:55:f9:c9:f8:f5:7c: f4:28:ab:8b:7f:55:e1:e6:fb:55:65:bf:27:15:c7: 01:24:fa:fd:5c:ef:73:64:35:2b:28:f4:c1:43:69: 08:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E8:58:06:92:ED:E0:CD:65:92:3D:60:07:37:9F:65:9B:13:F2:DD X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:2d:38:f3:f1:34:14:a0:e7:75:4b:b8:f4:d8:b6:1a:ae:49: 56:2a:d6:70:b1:7c:dd:ce:f4:81:4b:cd:76:17:ac:39:39:40: 97:b6:07:60:e0:49:27:4a:71:66:d6:c1:c3:77:48:5e:0a:47: d6:39:01:8c:7a:ce:03:bc:35:b4:7e:98:f6:13:24:1f:aa:a3: 44:7c:3a:91:19:95:9e:96:51:db:49:c6:35:e0:db:eb:58:4c: de:23:5f:c3:09:90:b2:af:eb:84:b6:74:82:4f:c2:a1:00:e3: 8a:ac:52:83:1a:5b:0c:d0:93:a4:c8:e1:09:72:b8:cb:a5:92: e6:6f:c5:b7:c6:5f:53:aa:a9:5a:f3:37:1a:38:90:b3:ea:12: c9:61:e0:f9:0b:72:e4:be:b1:9e:2e:99:40:23:ae:53:53:8c: 2e:d7:45:e1:b4:64:3b:50:cd:c0:f7:5c:5e:b2:e1:60:0e:78: 47:b6:70:74:8f:cf:e9:27:29:f3:a7:39:51:26:28:cd:d2:1d: 3e:b6:50:f9:6f:da:75:ee:e4:da:97:4a:d8:9d:43:d1:0e:ad: ea:e3:b5:b4:1a:fd:6d:5b:dd:f3:c4:41:a3:d5:db:85:47:9b: 34:3f:dc:38:7b:00:b0:c8:a1:3c:e6:45:27:3c:d7:00:4c:57: ae:97:e6:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2ijMJSoeRQd4MjvV/+S+4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjUxMjA3MDIwMDQzWhcNMjUxMjA4MDIwMDQzWjAzMTEwLwYDVQQD Eyg4ZmU4NTgwNjkyZWRlMGNkNjU5MjNkNjAwNzM3OWY2NTliMTNmMmRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCUBK6fvNJHvWgCysqK0CobOEpZO QZbzyWRDo32RezM+91BJ135K4jo3v9mjkMoVGpOsN7+sRj82W8V+/LCXHWsr9GL0 aRn24yQgo9Gep9bAyh6FP9B1t2GhU/Alj31C8F312HkgSGWGhn0tMdaZhPT6IzmK S4nSYt/pvCZZJL9y4Z6P1wNlPTaRGW952+kzBDLqFPdy0Z3QFHec6ErKmdRLHCCb rTb+DEbMUeODUUetUVFO8ayDYTkxrQ/7gWS60m1jicioz9RGPCdi0OqE4t9fwOTQ +G0s4SRV+cn49Xz0KKuLf1Xh5vtVZb8nFccBJPr9XO9zZDUrKPTBQ2kI/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI/oWAaS7eDNZZI9YAc3n2WbE/LdMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwS048/E0 FKDndUu49Ni2Gq5JVirWcLF83c70gUvNdhesOTlAl7YHYOBJJ0pxZtbBw3dIXgpH 1jkBjHrOA7w1tH6Y9hMkH6qjRHw6kRmVnpZR20nGNeDb61hM3iNfwwmQsq/rhLZ0 gk/CoQDjiqxSgxpbDNCTpMjhCXK4y6WS5m/Ft8ZfU6qpWvM3GjiQs+oSyWHg+Qty 5L6xni6ZQCOuU1OMLtdF4bRkO1DNwPdcXrLhYA54R7ZwdI/P6Scp86c5USYozdId PrZQ+W/ade7k2pdK2J1D0Q6t6uO1tBr9bVvd88RBo9XbhUebND/cOHsAsMihPOZF JzzXAExXrpfmlA== -----END CERTIFICATE-----Generated at Sun Dec 7 06:35:21 2025 by rpki-client