This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json) Hash identifier: jxMUq+FtnEuAp26dv+LOg5C3JjPUmtsxAaCT4tPxG7Y= Subject key identifier: 84:2D:17:DC:33:AE:E4:92:89:0A:8B:45:04:4C:A5:D7:F8:01:91:E3 Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45 Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45 Certificate serial: 019B5E64FCF5B8342288C56505C72738DA13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft Manifest number: 0283 Signing time: Sat 27 Dec 2025 06:00:35 +0000 Manifest this update: Sat 27 Dec 2025 06:00:35 +0000 Manifest next update: Sun 28 Dec 2025 06:00:35 +0000 Files and hashes: 1: NymzbNZBsKNd-Q-QLvAahyZY8zY.roa (hash: 4tm9+O5MAP6uU3Q2HGQCNAKZry1kf/X+Xwuo3WltB+8=) 2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: 9oDY+ti78UAkhWW2jZuuLXzthAr7a+ysstwomqjVQUk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 06:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5e:64:fc:f5:b8:34:22:88:c5:65:05:c7:27:38:da:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45 Validity Not Before: Dec 27 06:00:35 2025 GMT Not After : Dec 28 06:00:35 2025 GMT Subject: CN=842d17dc33aee492890a8b45044ca5d7f80191e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:36:27:ff:76:d3:05:77:ae:d8:71:63:58:c3: 44:ac:f6:a0:8a:75:5b:d6:1e:69:6e:46:c4:e0:9d: 50:6d:bc:da:29:f6:ba:02:6d:b8:3f:e6:75:06:62: 38:39:4f:fd:77:68:b7:9e:a7:dc:d6:11:ea:23:b6: a1:ea:39:31:86:5d:cf:60:fd:68:8d:55:32:54:d6: e0:9e:cd:b3:2a:c7:c3:8e:42:23:cf:ad:bc:16:11: f0:61:10:ab:ab:f7:3f:cf:3f:d3:9a:4d:47:e6:fc: 12:16:a2:46:75:98:8b:bd:c7:8f:3a:1f:d1:fc:9f: 34:11:6c:67:e4:fa:71:8f:5f:31:09:55:19:17:dd: 33:f2:3d:cd:08:82:69:10:28:4f:19:d7:70:35:e5: 86:3a:e2:5b:e4:b7:83:45:f2:2a:43:df:a1:20:9d: 9f:86:e6:aa:5a:57:fe:d2:97:db:06:cc:69:8b:85: 5e:0e:6d:0c:91:2c:2a:86:c1:20:45:be:ba:16:33: 43:c7:0d:cb:42:31:15:fd:91:62:9e:6a:86:7b:11: 0f:e7:a7:52:a0:94:b5:31:4e:db:c4:9e:02:e7:c3: 45:56:de:1d:be:44:52:3e:16:59:c9:3a:0e:ab:b1: da:16:d3:16:57:bc:5a:b1:04:3e:54:d9:df:cb:aa: e5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:2D:17:DC:33:AE:E4:92:89:0A:8B:45:04:4C:A5:D7:F8:01:91:E3 X509v3 Authority Key Identifier: keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:d4:e0:e1:67:74:7f:86:3c:80:d0:89:f3:3f:5d:c1:c8:6c: e9:02:2c:18:9c:52:3a:40:f7:a4:0e:71:35:12:d0:7f:b0:04: a7:aa:84:ef:52:dd:80:df:ed:46:9d:93:88:99:75:5c:6f:bc: 2c:a0:3d:69:b9:3c:4c:06:ea:f9:64:8b:1d:53:e4:2a:9f:05: 2e:44:f4:3e:b7:1f:39:80:23:c0:30:87:92:a3:d3:c4:f2:bb: 4a:13:df:27:fb:ab:f1:a0:4d:2d:d7:ba:99:06:0e:2a:f7:2b: 00:72:f3:47:c0:64:a8:05:67:6a:f5:be:3b:25:c1:5b:51:ca: cd:27:c6:33:e5:a9:55:3c:73:97:c0:cd:2d:b8:ed:7e:6b:80: b0:b4:9f:b7:c4:7a:59:d0:f8:d1:37:25:fe:b5:fe:34:d3:4c: e8:68:4f:d1:06:45:27:c9:92:4f:07:a3:10:ab:e7:b0:ce:ea: 8c:25:4f:bb:d0:e1:b8:a9:f2:ec:4d:c7:ab:75:e3:e7:53:a8: 57:67:00:f6:92:4c:cd:cd:9a:0f:fe:3a:f4:01:47:0a:80:da: a4:30:f4:ab:ad:6c:cb:ce:ee:41:0f:8f:f3:37:8a:86:2d:e5: 23:39:83:b6:b0:05:f5:4b:99:b8:b7:dd:14:f1:7b:56:8f:e9: 20:f6:5d:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZteZPz1uDQiiMVlBccnONoTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NTViODBjNDVkZmI1ZWE3YWFhN2RkMWQ4ZWQ4YjE0Zjlj MWRjNDUwHhcNMjUxMjI3MDYwMDM1WhcNMjUxMjI4MDYwMDM1WjAzMTEwLwYDVQQD Eyg4NDJkMTdkYzMzYWVlNDkyODkwYThiNDUwNDRjYTVkN2Y4MDE5MWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnTYn/3bTBXeu2HFjWMNErPaginVb 1h5pbkbE4J1QbbzaKfa6Am24P+Z1BmI4OU/9d2i3nqfc1hHqI7ah6jkxhl3PYP1o jVUyVNbgns2zKsfDjkIjz628FhHwYRCrq/c/zz/Tmk1H5vwSFqJGdZiLvcePOh/R /J80EWxn5Ppxj18xCVUZF90z8j3NCIJpEChPGddwNeWGOuJb5LeDRfIqQ9+hIJ2f huaqWlf+0pfbBsxpi4VeDm0MkSwqhsEgRb66FjNDxw3LQjEV/ZFinmqGexEP56dS oJS1MU7bxJ4C58NFVt4dvkRSPhZZyToOq7HaFtMWV7xasQQ+VNnfy6rl1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIQtF9wzruSSiQqLRQRMpdf4AZHjMB8GA1UdIwQY MBaAFJhVuAxF37Xqeqp90djtixT5wdxFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQt ZWU2YzUwOWI2MjIxLzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQtZWU2YzUwOWI2MjIx LzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKNTg4Wd0 f4Y8gNCJ8z9dwchs6QIsGJxSOkD3pA5xNRLQf7AEp6qE71LdgN/tRp2TiJl1XG+8 LKA9abk8TAbq+WSLHVPkKp8FLkT0PrcfOYAjwDCHkqPTxPK7ShPfJ/ur8aBNLde6 mQYOKvcrAHLzR8BkqAVnavW+OyXBW1HKzSfGM+WpVTxzl8DNLbjtfmuAsLSft8R6 WdD40Tcl/rX+NNNM6GhP0QZFJ8mSTwejEKvnsM7qjCVPu9DhuKny7E3Hq3Xj51Oo V2cA9pJMzc2aD/469AFHCoDapDD0q61sy87uQQ+P8zeKhi3lIzmDtrAF9UuZuLfd FPF7Vo/pIPZdLQ== -----END CERTIFICATE-----Generated at Sat Dec 27 12:31:28 2025 by rpki-client