This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft File: 9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft (raw, json) Hash identifier: zbuyFTNZ4atvkarWlCkXAxV4dAFBQPswD5SA2zF4dBs= Subject key identifier: DF:42:07:61:3E:08:38:C8:20:0D:BE:E5:F9:D0:34:54:2E:33:CD:C3 Authority key identifier: F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3 Certificate issuer: /CN=f43bf90808ae7eca063f746a8f1d88865734c8a3 Certificate serial: 019B34202B1054735ED1EAE1EF870FABEFDE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft Manifest number: 179D Signing time: Fri 19 Dec 2025 01:01:21 +0000 Manifest this update: Fri 19 Dec 2025 01:01:21 +0000 Manifest next update: Sat 20 Dec 2025 01:01:21 +0000 Files and hashes: 1: 9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl (hash: IfoFgWvYC+kfdzDFxX1z4Pg96k4S09S/asl5pARnbx8=) 2: ROD80653_T-MkjTmqYTdP5M1LUg.roa (hash: lOnwVxDIfeJwEQvoT4QPCm3NmWmOEk6KMpexVgqv54Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:20:2b:10:54:73:5e:d1:ea:e1:ef:87:0f:ab:ef:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f43bf90808ae7eca063f746a8f1d88865734c8a3 Validity Not Before: Dec 19 01:01:21 2025 GMT Not After : Dec 20 01:01:21 2025 GMT Subject: CN=df4207613e0838c8200dbee5f9d034542e33cdc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:41:59:9f:5c:cd:0f:d0:27:fd:b9:cc:fc:cf: 19:8c:9d:cc:b6:2a:ad:f5:bf:2d:0e:45:4a:f2:8b: cb:c6:49:51:6a:54:5d:ee:a3:0d:28:20:8e:46:76: 20:1c:ed:f2:e8:02:9d:c3:0a:80:53:d9:a8:46:4b: 2a:3e:71:d1:26:e8:e2:c8:7d:65:ab:00:67:4f:9e: 4b:14:40:a8:bd:21:99:47:89:1c:88:8e:8c:a3:37: 13:1d:65:1c:b2:73:48:1f:7f:ec:96:d4:2d:2a:a9: 94:5a:9c:5a:c3:13:1a:40:f5:3d:d4:e9:c9:35:65: d2:89:50:9d:e9:05:a2:61:9a:22:4f:6d:05:5c:b5: 75:1c:b6:9d:61:4d:e9:49:50:c4:a9:f2:44:27:79: 8b:59:f3:db:81:d5:e0:0f:5a:75:55:e2:aa:5b:e1: d2:29:ff:71:16:43:43:43:e0:5f:ad:a7:9e:7a:a4: 6b:b2:14:e3:ae:e2:a6:9f:07:19:92:67:19:5c:db: 79:5a:21:04:7a:36:d3:72:ca:af:2f:8e:bf:36:d1: 42:4d:8a:31:48:17:b6:1c:7e:f0:47:65:3d:4d:f4: de:bd:89:27:1d:a5:13:ca:eb:f6:28:b2:62:cb:3b: c8:c7:2a:dc:28:81:54:a6:44:f0:93:17:c6:7e:8c: 60:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:42:07:61:3E:08:38:C8:20:0D:BE:E5:F9:D0:34:54:2E:33:CD:C3 X509v3 Authority Key Identifier: keyid:F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:24:fc:30:fa:e2:0e:f6:58:bb:52:41:c0:89:b0:8e:14:72: 90:7b:eb:97:4e:f7:2f:dc:49:56:b3:2f:09:11:da:79:90:bb: 40:fd:bb:16:65:e2:77:55:5d:79:af:b6:73:f2:13:ea:c6:25: bb:f6:c7:76:1d:c5:64:53:e3:72:69:6a:f4:cc:a9:fa:86:74: d1:c0:24:1c:83:09:84:3b:6c:74:9a:7b:20:5f:fd:fd:07:5c: c8:a7:3f:f1:14:88:89:23:35:f6:bc:63:8d:64:06:90:45:a4: cb:64:11:87:46:cf:2b:6a:0c:93:78:29:b0:35:3d:d3:53:26: 0d:ec:f6:d2:86:5d:c5:fc:cf:45:57:42:ed:9e:10:cd:ed:3a: ea:69:8e:d0:0a:f6:ba:42:9b:f3:ba:a3:34:48:6e:13:bb:04: d4:8d:40:3e:a6:26:d3:72:93:df:25:ea:bb:17:37:7a:c2:f3: c2:61:1a:69:b1:1d:8f:35:5a:36:af:38:f8:07:5a:6b:3b:2c: d6:b5:a3:d4:80:35:1b:6b:08:15:72:f1:26:54:e4:cc:7b:3e: ac:27:78:e4:0a:f7:37:ad:21:f8:69:b9:23:22:07:8c:47:58: b9:70:4c:72:1c:9e:b5:9c:57:a4:1f:ca:f4:06:05:aa:d1:ca: d3:15:f1:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0ICsQVHNe0erh74cPq+/eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0M2JmOTA4MDhhZTdlY2EwNjNmNzQ2YThmMWQ4ODg2NTcz NGM4YTMwHhcNMjUxMjE5MDEwMTIxWhcNMjUxMjIwMDEwMTIxWjAzMTEwLwYDVQQD EyhkZjQyMDc2MTNlMDgzOGM4MjAwZGJlZTVmOWQwMzQ1NDJlMzNjZGMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA70FZn1zND9An/bnM/M8ZjJ3Mtiqt 9b8tDkVK8ovLxklRalRd7qMNKCCORnYgHO3y6AKdwwqAU9moRksqPnHRJujiyH1l qwBnT55LFECovSGZR4kciI6MozcTHWUcsnNIH3/sltQtKqmUWpxawxMaQPU91OnJ NWXSiVCd6QWiYZoiT20FXLV1HLadYU3pSVDEqfJEJ3mLWfPbgdXgD1p1VeKqW+HS Kf9xFkNDQ+BfraeeeqRrshTjruKmnwcZkmcZXNt5WiEEejbTcsqvL46/NtFCTYox SBe2HH7wR2U9TfTevYknHaUTyuv2KLJiyzvIxyrcKIFUpkTwkxfGfoxgtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN9CB2E+CDjIIA2+5fnQNFQuM83DMB8GA1UdIwQY MBaAFPQ7+QgIrn7KBj90ao8diIZXNMijMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hOGQ5NDMtZjA4Mi00YjE4LWI4NDAt Mzg5MTk1YzRmMDdiLzEvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9hOGQ5NDMtZjA4Mi00YjE4LWI4NDAtMzg5MTk1YzRmMDdi LzEvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdyT8MPri DvZYu1JBwImwjhRykHvrl073L9xJVrMvCRHaeZC7QP27FmXid1Vdea+2c/IT6sYl u/bHdh3FZFPjcmlq9Myp+oZ00cAkHIMJhDtsdJp7IF/9/QdcyKc/8RSIiSM19rxj jWQGkEWky2QRh0bPK2oMk3gpsDU901MmDez20oZdxfzPRVdC7Z4Qze066mmO0Ar2 ukKb87qjNEhuE7sE1I1APqYm03KT3yXquxc3esLzwmEaabEdjzVaNq84+Adaazss 1rWj1IA1G2sIFXLxJlTkzHs+rCd45Ar3N60h+Gm5IyIHjEdYuXBMchyetZxXpB/K 9AYFqtHK0xXxlA== -----END CERTIFICATE-----Generated at Fri Dec 19 04:56:18 2025 by rpki-client