This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft File: MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft (raw, json) Hash identifier: XoQMeHNCR7QQMmtIzjPM1JdM0eEUdR1DedQFkVW4RXQ= Subject key identifier: 92:5C:9B:86:90:4C:97:C1:A0:E4:2F:B4:1B:D8:05:BE:E6:18:6C:DE Authority key identifier: 30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14 Certificate issuer: /CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14 Certificate serial: 019B2EF9103D84DEBEE12A7D48CEA3D867C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft Manifest number: 1781 Signing time: Thu 18 Dec 2025 01:00:32 +0000 Manifest this update: Thu 18 Dec 2025 01:00:32 +0000 Manifest next update: Fri 19 Dec 2025 01:00:32 +0000 Files and hashes: 1: 9iuKUiRNNk0yJqP9x1MG2I_7d9s.roa (hash: OJC+CIaFp/mpbSmO0wI1lGEv8Ek7U6QE2MP4Wm3PDaM=) 2: MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl (hash: oL9T/3lKfwwkt4wNDWF4zicCfh87EFfwel+NClXJoiI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:f9:10:3d:84:de:be:e1:2a:7d:48:ce:a3:d8:67:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14 Validity Not Before: Dec 18 01:00:32 2025 GMT Not After : Dec 19 01:00:32 2025 GMT Subject: CN=925c9b86904c97c1a0e42fb41bd805bee6186cde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8d:a2:40:41:3b:01:6d:6e:b4:7b:94:80:4e: 9a:e4:87:3e:5d:46:d8:39:86:d1:68:39:24:40:a3: 00:26:e6:4e:7f:a1:6e:54:3a:b8:1d:92:a6:da:8d: ad:5d:87:aa:7f:1e:23:74:b1:9a:39:7a:e6:93:8a: f9:08:52:64:93:4b:9a:52:00:ee:16:ff:2a:5d:b8: 9f:a4:b8:da:a7:d9:40:32:27:b5:06:2f:e0:3e:9e: 02:ad:78:51:2d:51:a8:24:61:99:cf:27:84:43:fd: 35:0c:9d:39:f9:ec:1b:95:77:32:18:12:14:75:e6: 67:4f:e5:67:e3:16:cd:c4:a5:d2:49:1b:12:ec:98: cf:66:64:29:32:a7:eb:a6:a5:47:85:83:65:c9:59: c9:00:75:1a:a1:79:35:dd:ce:72:4d:4b:ba:1b:64: 6e:09:50:1c:aa:2f:b9:72:07:68:07:c2:35:1c:ee: 9c:f4:48:b7:22:99:80:60:17:03:42:c7:a3:dd:c8: 9b:cf:ae:a5:fc:83:7c:e1:2f:1b:f2:d1:21:c0:2f: 5b:31:1a:c4:11:a5:8d:d2:ad:66:3e:4e:d8:ce:db: fb:33:b0:c5:16:28:30:74:a6:cb:c5:53:b1:f7:72: fb:2f:6d:5e:e2:5d:58:cf:81:01:06:b3:45:6c:a1: 1c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:5C:9B:86:90:4C:97:C1:A0:E4:2F:B4:1B:D8:05:BE:E6:18:6C:DE X509v3 Authority Key Identifier: keyid:30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:af:e9:89:7a:7c:2d:70:52:10:93:57:c4:cb:0c:65:4f:8b: 8b:95:40:cf:be:c3:20:ae:5c:91:59:cb:e0:e4:4b:cd:07:61: 2b:32:df:f8:72:a0:66:99:21:d0:51:9e:82:a7:61:9c:e8:c4: 2e:c2:0a:11:79:cb:8f:f3:d9:65:87:d1:ef:05:5b:12:91:0c: 44:cc:8e:b6:6c:23:4d:84:7f:71:46:aa:85:22:6a:b1:19:7e: 07:00:e9:b8:33:f3:3b:59:ed:80:88:2f:b4:98:2f:90:b2:03: 5c:96:3a:30:79:9e:82:da:8c:5e:74:3a:7e:14:b4:bb:dc:43: 18:6a:72:44:6b:ab:57:a0:9e:f2:7b:39:99:a8:4e:b8:63:7e: 6e:8c:52:9a:1c:5e:d9:b5:82:59:46:05:43:05:31:ff:13:20: 1d:f7:ca:34:4a:dd:a8:17:19:94:d8:d6:ab:ce:1b:ba:3d:c4: 4f:d4:a1:89:ac:c5:6d:ae:be:46:5a:a6:d7:8f:f5:c7:e4:0e: 49:50:dd:9b:af:62:49:30:62:84:02:57:ab:49:d1:9c:f9:97: 84:54:60:0a:66:e4:91:fa:60:1d:b2:49:5f:78:84:c5:d8:2e: d3:b8:43:74:1f:74:69:7f:e8:6c:80:f0:e3:dd:e8:4c:30:28: bd:81:c2:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+RA9hN6+4Sp9SM6j2GfJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwZjkwZDI1MjBhZDYxOWFjMzA2MGIzOWZiZDJjMjA0ZTI5 YTJhMTQwHhcNMjUxMjE4MDEwMDMyWhcNMjUxMjE5MDEwMDMyWjAzMTEwLwYDVQQD Eyg5MjVjOWI4NjkwNGM5N2MxYTBlNDJmYjQxYmQ4MDViZWU2MTg2Y2RlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvY2iQEE7AW1utHuUgE6a5Ic+XUbY OYbRaDkkQKMAJuZOf6FuVDq4HZKm2o2tXYeqfx4jdLGaOXrmk4r5CFJkk0uaUgDu Fv8qXbifpLjap9lAMie1Bi/gPp4CrXhRLVGoJGGZzyeEQ/01DJ05+ewblXcyGBIU deZnT+Vn4xbNxKXSSRsS7JjPZmQpMqfrpqVHhYNlyVnJAHUaoXk13c5yTUu6G2Ru CVAcqi+5cgdoB8I1HO6c9Ei3IpmAYBcDQsej3cibz66l/IN84S8b8tEhwC9bMRrE EaWN0q1mPk7Yztv7M7DFFigwdKbLxVOx93L7L21e4l1Yz4EBBrNFbKEc2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJJcm4aQTJfBoOQvtBvYBb7mGGzeMB8GA1UdIwQY MBaAFDD5DSUgrWGawwYLOfvSwgTimioUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVBrTkpTQ3RZWnJEQmdzNS05TENCT0thS2hRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9kYjUxMDEtMDE1Yy00MGM1LTkwNWIt NjU3YjNhN2Q5Njc2LzEvTVBrTkpTQ3RZWnJEQmdzNS05TENCT0thS2hRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9kYjUxMDEtMDE1Yy00MGM1LTkwNWItNjU3YjNhN2Q5Njc2 LzEvTVBrTkpTQ3RZWnJEQmdzNS05TENCT0thS2hRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADq/piXp8 LXBSEJNXxMsMZU+Li5VAz77DIK5ckVnL4ORLzQdhKzLf+HKgZpkh0FGegqdhnOjE LsIKEXnLj/PZZYfR7wVbEpEMRMyOtmwjTYR/cUaqhSJqsRl+BwDpuDPzO1ntgIgv tJgvkLIDXJY6MHmegtqMXnQ6fhS0u9xDGGpyRGurV6Ce8ns5mahOuGN+boxSmhxe 2bWCWUYFQwUx/xMgHffKNErdqBcZlNjWq84buj3ET9ShiazFba6+Rlqm14/1x+QO SVDdm69iSTBihAJXq0nRnPmXhFRgCmbkkfpgHbJJX3iExdgu07hDdB90aX/obIDw 493oTDAovYHCwA== -----END CERTIFICATE-----Generated at Thu Dec 18 09:28:21 2025 by rpki-client