This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft File: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft (raw, json) Hash identifier: MUKFBv7U71w50A4I4AV7uwQtw+qPZ27hLG6cNJeUvE0= Subject key identifier: F8:BD:47:62:13:19:DA:8A:65:D3:14:CA:0D:CD:F3:82:65:EB:DA:B5 Authority key identifier: 77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46 Certificate issuer: /CN=779fbaaac6541ab318529eb025613c6520e47646 Certificate serial: 019B12017588C14CD13D5E80F3B123229E9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft Manifest number: 0624 Signing time: Fri 12 Dec 2025 10:00:43 +0000 Manifest this update: Fri 12 Dec 2025 10:00:43 +0000 Manifest next update: Sat 13 Dec 2025 10:00:43 +0000 Files and hashes: 1: bKhEoTi8VyX_Q5KODWRSQwgQwKY.roa (hash: xvVp0HHxMjOmKvNmsan4is7a0Z8jz8EK1PXrOk2MzSo=) 2: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl (hash: Yxl2qiD2gtP9wQwRHT9cfghFJadtKxs7G5y8ciy6+sU=) 3: k3MkBKIkrmXV8hBuw2gGPp_sASw.roa (hash: kkGwe02sJUGG5OVjC1fC3C/lnFwMVxsODhInEGGgNMw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:01:75:88:c1:4c:d1:3d:5e:80:f3:b1:23:22:9e:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=779fbaaac6541ab318529eb025613c6520e47646 Validity Not Before: Dec 12 10:00:43 2025 GMT Not After : Dec 13 10:00:43 2025 GMT Subject: CN=f8bd47621319da8a65d314ca0dcdf38265ebdab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d4:2d:ab:e2:cb:97:8d:f2:0f:7b:60:5f:46: 5f:44:f1:88:d6:7b:9c:46:c6:15:7e:b6:1e:b7:e5: d7:97:2f:de:30:2c:ea:a6:c1:7b:b7:2c:e6:16:b7: 2e:01:48:26:39:8a:5f:82:65:c5:4e:29:13:0f:bd: 8f:5c:59:9a:ea:45:79:97:a7:3c:17:da:02:22:9c: de:42:b3:8d:32:e6:65:63:b8:7d:34:1e:04:11:98: d0:e7:98:ea:c5:74:cb:03:66:01:8f:ce:d5:6d:8d: 75:fb:f6:44:2b:1c:31:37:4d:f4:b1:98:6e:3c:05: f4:cc:4b:33:44:3a:47:92:34:52:92:fc:cc:b4:08: 0b:4f:e6:f0:fb:b2:b5:b3:2c:e5:30:ee:46:85:02: 91:28:f1:f5:98:e7:43:bb:44:86:2e:a6:c4:b8:ac: 4c:c2:ff:23:77:37:1c:ba:a9:ac:f0:15:3b:db:27: ba:6a:c1:8c:82:35:2c:55:e4:0b:90:85:61:f1:ae: 35:29:b8:bb:32:ab:6d:b6:ce:ef:af:f3:7f:e9:a0: e6:a4:1e:c4:c9:2c:52:8c:a7:23:79:cc:eb:a4:0e: c7:7e:cc:ef:57:12:7b:92:5c:15:94:0f:2f:e9:85: c0:56:08:a6:58:89:fb:ce:ce:98:3a:27:43:00:26: 4b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:BD:47:62:13:19:DA:8A:65:D3:14:CA:0D:CD:F3:82:65:EB:DA:B5 X509v3 Authority Key Identifier: keyid:77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:1f:87:c0:b2:c0:ee:88:51:10:0f:c6:f5:93:11:fa:01:c1: 9f:09:26:b6:b5:4a:ad:0b:86:c6:1e:8b:fb:eb:9b:2c:51:a4: c8:1a:64:f3:2f:62:b4:e4:4b:76:2c:b8:be:d8:67:c8:89:80: ef:7b:20:65:bb:a1:9a:88:57:e8:93:61:ec:e8:41:f4:3a:30: 97:36:12:95:3d:f2:78:58:f6:3e:ef:1a:a7:b7:7b:0d:b3:9c: 4d:27:f5:3d:14:4a:2b:fb:b1:a4:2f:2a:09:ca:c7:be:17:12: 6c:77:a9:35:aa:58:88:a5:57:d5:1c:cd:ee:ab:bd:32:e2:15: 1a:3e:6d:a3:b5:b3:29:7e:74:29:83:56:d3:32:87:5c:c2:0e: b6:43:3a:77:7e:b7:74:35:bb:8b:89:83:e1:9c:36:55:1d:89: 6d:10:65:6f:06:7b:aa:6a:4f:eb:cb:63:08:5e:be:d5:d2:08: ac:05:bd:25:33:c6:bf:2e:3a:82:46:55:d2:d9:1c:1e:5e:02: 37:43:47:14:e9:cd:6c:09:0f:fd:f5:28:11:28:96:cb:9e:94: 02:3d:36:da:cd:53:02:62:c6:89:b4:96:e0:3c:a3:bc:cd:a0: ac:33:64:ca:f6:5b:26:2b:18:6b:cf:2d:cf:5f:9e:79:2d:71: b6:f1:90:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSAXWIwUzRPV6A87EjIp6eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3OWZiYWFhYzY1NDFhYjMxODUyOWViMDI1NjEzYzY1MjBl NDc2NDYwHhcNMjUxMjEyMTAwMDQzWhcNMjUxMjEzMTAwMDQzWjAzMTEwLwYDVQQD EyhmOGJkNDc2MjEzMTlkYThhNjVkMzE0Y2EwZGNkZjM4MjY1ZWJkYWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dQtq+LLl43yD3tgX0ZfRPGI1nuc RsYVfrYet+XXly/eMCzqpsF7tyzmFrcuAUgmOYpfgmXFTikTD72PXFma6kV5l6c8 F9oCIpzeQrONMuZlY7h9NB4EEZjQ55jqxXTLA2YBj87VbY11+/ZEKxwxN030sZhu PAX0zEszRDpHkjRSkvzMtAgLT+bw+7K1syzlMO5GhQKRKPH1mOdDu0SGLqbEuKxM wv8jdzccuqms8BU72ye6asGMgjUsVeQLkIVh8a41Kbi7Mqttts7vr/N/6aDmpB7E ySxSjKcjeczrpA7HfszvVxJ7klwVlA8v6YXAVgimWIn7zs6YOidDACZLNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPi9R2ITGdqKZdMUyg3N84Jl69q1MB8GA1UdIwQY MBaAFHefuqrGVBqzGFKesCVhPGUg5HZGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDUtNnFzWlVHck1ZVXA2d0pXRThaU0RrZGtZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi85ODNiNDctNDdhOS00MjUxLWExMjkt MjAwMjQ5MThlZTY2LzEvZDUtNnFzWlVHck1ZVXA2d0pXRThaU0RrZGtZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi85ODNiNDctNDdhOS00MjUxLWExMjktMjAwMjQ5MThlZTY2 LzEvZDUtNnFzWlVHck1ZVXA2d0pXRThaU0RrZGtZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIh+HwLLA 7ohREA/G9ZMR+gHBnwkmtrVKrQuGxh6L++ubLFGkyBpk8y9itORLdiy4vthnyImA 73sgZbuhmohX6JNh7OhB9DowlzYSlT3yeFj2Pu8ap7d7DbOcTSf1PRRKK/uxpC8q CcrHvhcSbHepNapYiKVX1RzN7qu9MuIVGj5to7WzKX50KYNW0zKHXMIOtkM6d363 dDW7i4mD4Zw2VR2JbRBlbwZ7qmpP68tjCF6+1dIIrAW9JTPGvy46gkZV0tkcHl4C N0NHFOnNbAkP/fUoESiWy56UAj022s1TAmLGibSW4DyjvM2grDNkyvZbJisYa88t z1+eeS1xtvGQLw== -----END CERTIFICATE-----Generated at Fri Dec 12 13:22:10 2025 by rpki-client