This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft File: MNWOQMbZHzcp5X4zRNMItZkv5G4.mft (raw, json) Hash identifier: wdiQua7Gn4u1nbcQz2XuSUd7GOV3MNYV0bPwlBWACyY= Subject key identifier: 6C:00:0E:60:39:2B:09:3E:7E:B7:7A:7E:9D:EA:AE:1F:4E:4B:65:73 Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e Certificate serial: 019AAC4BDA958CE723E7006456565D5214AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft Manifest number: 0C36 Signing time: Sat 22 Nov 2025 16:00:43 +0000 Manifest this update: Sat 22 Nov 2025 16:00:43 +0000 Manifest next update: Sun 23 Nov 2025 16:00:43 +0000 Files and hashes: 1: AEr7526r87jMmzyFU6AhzO2yzJs.roa (hash: FaU9GigNrTflXT80XzjmUalvFoH7j0+xf5GqgvZ8viI=) 2: BhR4gh6niMuAg5TJ32ur0BjKaqs.roa (hash: Zv2rwkQ5zJHX1INCUgBx9oQ77dKwpoY1KIJrtlNZemo=) 3: MNWOQMbZHzcp5X4zRNMItZkv5G4.crl (hash: H5F8tMuiUtcQPmuJp2D/cQxuxnXVbQAO1tSRfs0TlUg=) 4: RJMA_6CErPsb2WgfyOY8q7SE2Xw.roa (hash: rLvL5r3qJKV7IPp00VA8CfU8H3FqWwBRZyYhz2cuvnI=) 5: Xp6Av0k8Jw85tGpea19kV0rC7zU.roa (hash: HoTKGzCgPJaXTFRgn8HDd9Uw/rl7lFS8MklAEJByUKE=) 6: uaxf2AGptn0k5nSChIQ5U9I-OzM.roa (hash: bH20ytgUK7nqS56x69xVlTEkEDFzbypHFv+jFwf5Z1I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ac:4b:da:95:8c:e7:23:e7:00:64:56:56:5d:52:14:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e Validity Not Before: Nov 22 16:00:43 2025 GMT Not After : Nov 23 16:00:43 2025 GMT Subject: CN=6c000e60392b093e7eb77a7e9deaae1f4e4b6573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:87:da:4a:80:e4:2b:a1:26:25:16:46:89:db: c2:dc:2d:d8:94:f1:f3:68:3a:01:ba:3c:7b:b9:d1: d3:a5:fc:9e:c5:c7:a8:f1:93:e5:b2:84:7e:a0:9d: 76:65:e7:b5:5f:9a:83:d0:cc:7a:9e:86:3c:e4:31: 53:26:45:64:42:56:5f:c9:86:07:9b:54:33:8c:3e: 07:b9:dc:96:c3:47:93:10:38:d0:24:0f:5c:c4:99: fd:4b:c7:12:be:8e:80:23:a7:7a:f3:ec:45:ec:e6: 7f:af:45:bc:06:e9:0a:2f:5f:2a:67:26:08:c2:86: 12:f5:d8:2f:1a:1c:99:f3:81:cd:64:3b:70:14:98: d1:1f:20:af:4d:0e:1a:fc:96:2c:83:c0:62:62:64: 50:67:53:fe:2e:de:ee:bb:c6:bc:e5:87:af:c1:34: 67:1a:5c:db:86:63:f1:9c:d4:32:bc:c8:2e:d3:4c: b0:e4:04:c1:4f:b7:d7:94:33:6e:d9:bd:c2:14:87: 4b:a7:f1:05:78:d6:5d:68:d6:ec:ce:c1:be:ab:43: e0:8c:fa:da:ad:f1:fc:95:34:e6:ec:39:3d:84:51: 83:c0:c2:4b:d3:64:f7:35:5a:55:5f:c2:61:51:6d: 41:e1:dd:4f:3b:72:0f:49:98:ae:08:2f:2f:32:31: 46:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:00:0E:60:39:2B:09:3E:7E:B7:7A:7E:9D:EA:AE:1F:4E:4B:65:73 X509v3 Authority Key Identifier: keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:da:30:17:8b:c1:c7:6e:b6:9e:0b:cd:93:8e:4a:6d:5a:72: 8c:73:55:52:59:06:3b:b4:ab:bb:8b:55:8d:b1:94:07:d2:fa: 35:72:c6:ca:48:65:a5:ec:b4:9d:29:9e:76:70:61:04:62:ed: f0:71:04:d7:22:e6:3b:90:f9:b2:03:b0:e6:cb:73:64:0c:bf: 9f:dd:03:e4:19:e7:86:de:4c:33:bd:92:47:a5:35:93:5b:75: 89:dc:bb:19:f2:09:25:71:25:4b:df:ca:51:e7:a7:25:44:5c: c4:89:b4:8a:e7:2d:6d:17:77:cd:62:0e:a1:88:74:5b:54:8f: b8:8a:8e:6c:42:7a:47:14:7a:5c:eb:77:12:67:32:fb:6f:73: 3c:c7:04:5c:94:b3:95:e4:91:76:30:73:e5:70:49:8f:63:47: 3e:57:08:35:cc:ae:4f:15:37:c6:44:b4:34:43:7e:9f:c7:51: b4:b3:25:04:3b:d2:10:73:d9:11:6f:59:62:ea:b0:e1:5a:8c: f7:ec:2a:d4:f5:1c:ba:a2:dc:aa:e6:69:fb:c1:73:09:c3:88: 6a:4d:12:c1:43:58:6d:34:06:df:8e:2f:ee:ab:5e:53:02:df: 06:1e:06:c8:cf:92:b0:df:66:a8:a8:74:39:9a:9f:1e:67:1e: af:62:8f:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqsS9qVjOcj5wBkVlZdUhSrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwZDU4ZTQwYzZkOTFmMzcyOWU1N2UzMzQ0ZDMwOGI1OTky ZmU0NmUwHhcNMjUxMTIyMTYwMDQzWhcNMjUxMTIzMTYwMDQzWjAzMTEwLwYDVQQD Eyg2YzAwMGU2MDM5MmIwOTNlN2ViNzdhN2U5ZGVhYWUxZjRlNGI2NTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0IfaSoDkK6EmJRZGidvC3C3YlPHz aDoBujx7udHTpfyexceo8ZPlsoR+oJ12Zee1X5qD0Mx6noY85DFTJkVkQlZfyYYH m1QzjD4HudyWw0eTEDjQJA9cxJn9S8cSvo6AI6d68+xF7OZ/r0W8BukKL18qZyYI woYS9dgvGhyZ84HNZDtwFJjRHyCvTQ4a/JYsg8BiYmRQZ1P+Lt7uu8a85YevwTRn GlzbhmPxnNQyvMgu00yw5ATBT7fXlDNu2b3CFIdLp/EFeNZdaNbszsG+q0PgjPra rfH8lTTm7Dk9hFGDwMJL02T3NVpVX8JhUW1B4d1PO3IPSZiuCC8vMjFGDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGwADmA5Kwk+frd6fp3qrh9OS2VzMB8GA1UdIwQY MBaAFDDVjkDG2R83KeV+M0TTCLWZL+RuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy82MjVhMzAtM2E2Yi00NjYxLTg0MGEt ZjgyYjcwZDhhMGE3LzEvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy82MjVhMzAtM2E2Yi00NjYxLTg0MGEtZjgyYjcwZDhhMGE3 LzEvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR9owF4vB x262ngvNk45KbVpyjHNVUlkGO7Sru4tVjbGUB9L6NXLGykhlpey0nSmednBhBGLt 8HEE1yLmO5D5sgOw5stzZAy/n90D5Bnnht5MM72SR6U1k1t1idy7GfIJJXElS9/K UeenJURcxIm0iuctbRd3zWIOoYh0W1SPuIqObEJ6RxR6XOt3Emcy+29zPMcEXJSz leSRdjBz5XBJj2NHPlcINcyuTxU3xkS0NEN+n8dRtLMlBDvSEHPZEW9ZYuqw4VqM 9+wq1PUcuqLcquZp+8FzCcOIak0SwUNYbTQG344v7qteUwLfBh4GyM+SsN9mqKh0 OZqfHmcer2KPJw== -----END CERTIFICATE-----Generated at Sat Nov 22 21:45:29 2025 by rpki-client