This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json) Hash identifier: n59t8Xx2xbjPDK5aZIVD10X/RdrLkzUsu68yD3ZjzTI= Subject key identifier: B0:EC:8F:91:B1:50:AC:6F:31:C4:64:8D:54:82:3E:5A:BF:C2:7C:D5 Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89 Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689 Certificate serial: 019B1426ED51D222845C1C277C71EB9BCD92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft Manifest number: 1775 Signing time: Fri 12 Dec 2025 20:00:54 +0000 Manifest this update: Fri 12 Dec 2025 20:00:54 +0000 Manifest next update: Sat 13 Dec 2025 20:00:54 +0000 Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: Mgg4HhVvnctV1oIAAOExcYsa+lN17eFTOq2HpDMcdFw=) 2: bRo1FpRQdGW3rrEgf9LP2ZyYMbs.roa (hash: ZwgslFPNqU25lgzTk3XOIv2Nozx6fjcmPWKTGmYvfPU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 17:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:14:26:ed:51:d2:22:84:5c:1c:27:7c:71:eb:9b:cd:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689 Validity Not Before: Dec 12 20:00:54 2025 GMT Not After : Dec 13 20:00:54 2025 GMT Subject: CN=b0ec8f91b150ac6f31c4648d54823e5abfc27cd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:39:fa:73:ba:f0:e6:a4:86:ab:f0:3f:c7:0f: 8e:d0:f2:1c:7b:c4:af:37:1d:00:70:a3:d6:07:eb: 6d:e6:e0:66:51:77:f0:a2:f2:d5:c6:38:5f:3b:bb: f1:d8:67:07:d4:28:fb:1a:4f:57:32:72:e5:7b:33: 73:ef:ae:0c:ed:c5:87:03:03:2d:9f:b5:da:93:c3: fd:5f:83:1b:b1:b7:a0:82:5a:34:03:5a:69:47:61: 69:36:42:fa:4a:cb:ee:45:cd:14:5f:25:0e:82:a6: 73:5f:4b:04:db:92:d1:a9:4d:7f:79:16:23:2d:93: 11:eb:f5:73:50:cb:dd:e8:e1:fc:a2:89:e0:7f:a3: f0:3c:84:2c:75:0d:37:7e:23:cd:5d:29:f9:89:25: 88:96:f3:73:c0:25:d0:f2:f0:5f:cc:e7:31:d0:6e: ef:43:3a:ea:77:41:1d:d2:ec:72:77:8e:01:47:f9: 0d:09:6c:45:7f:ed:31:88:f3:46:e0:1a:ed:ff:a4: 45:ba:08:09:6b:96:80:99:84:d8:d8:10:4f:52:18: ba:de:86:22:fb:17:a8:86:45:21:45:69:9c:bc:df: 77:30:dd:66:98:0a:62:ee:60:60:11:0f:0a:04:ad: 2e:bb:39:d2:67:10:2a:ba:6c:7e:62:36:cf:b6:4c: a0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:EC:8F:91:B1:50:AC:6F:31:C4:64:8D:54:82:3E:5A:BF:C2:7C:D5 X509v3 Authority Key Identifier: keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:25:c9:1f:c2:08:dc:68:15:e0:f3:c6:ad:bb:29:21:52:d4: 37:e8:4e:f3:ab:ec:67:85:3f:c2:f1:08:75:fe:01:23:96:ef: c4:ba:7e:bb:c8:b0:38:30:ab:b9:b7:d0:aa:30:48:28:40:40: a2:08:3a:a7:50:a7:1d:a9:c0:45:d3:1d:e6:31:ad:05:b0:76: f2:07:51:23:48:e7:92:c1:51:a5:9d:b5:fb:21:0a:44:02:dd: e7:10:97:06:2c:8f:82:cc:3a:e9:2e:ab:e8:35:79:23:4d:91: 1b:b4:be:4d:6c:12:4e:f5:39:fc:ec:6d:cc:9e:b9:9c:12:51: 85:e5:ee:37:2e:e8:9a:e1:71:ae:b6:34:a9:2e:c5:95:a8:b2: f2:14:14:a4:a0:1a:ea:06:23:02:55:b9:31:5c:a6:45:af:25: 6f:93:5d:a0:9a:fb:f3:5d:84:51:96:ee:e2:61:7f:ab:38:a8: 7e:0c:52:79:a3:54:f4:f4:d6:d8:9c:2b:41:86:37:68:7f:10: ef:03:fe:0e:8e:12:68:5d:86:4c:0c:84:6a:c7:06:5a:ed:71: 4d:71:f6:0c:f4:7a:a0:71:2e:76:bf:10:98:68:eb:98:59:f1: 3d:37:71:e1:16:df:28:f8:16:5d:9b:cb:6f:eb:a3:a7:c3:41: a0:42:bc:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsUJu1R0iKEXBwnfHHrm82SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0YzY0OTk0ZTI0ZDRhZWZkYzQyYTg4MzFmZTBkY2UyMGQ2 MDQ2ODkwHhcNMjUxMjEyMjAwMDU0WhcNMjUxMjEzMjAwMDU0WjAzMTEwLwYDVQQD EyhiMGVjOGY5MWIxNTBhYzZmMzFjNDY0OGQ1NDgyM2U1YWJmYzI3Y2Q1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzn6c7rw5qSGq/A/xw+O0PIce8Sv Nx0AcKPWB+tt5uBmUXfwovLVxjhfO7vx2GcH1Cj7Gk9XMnLlezNz764M7cWHAwMt n7Xak8P9X4Mbsbegglo0A1ppR2FpNkL6SsvuRc0UXyUOgqZzX0sE25LRqU1/eRYj LZMR6/VzUMvd6OH8oongf6PwPIQsdQ03fiPNXSn5iSWIlvNzwCXQ8vBfzOcx0G7v Qzrqd0Ed0uxyd44BR/kNCWxFf+0xiPNG4Brt/6RFuggJa5aAmYTY2BBPUhi63oYi +xeohkUhRWmcvN93MN1mmApi7mBgEQ8KBK0uuznSZxAqumx+YjbPtkygSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLDsj5GxUKxvMcRkjVSCPlq/wnzVMB8GA1UdIwQY MBaAFPTGSZTiTUrv3EKogx/g3OINYEaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUt Mzg1NTY5OGZiNTdmLzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUtMzg1NTY5OGZiNTdm LzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdiXJH8II 3GgV4PPGrbspIVLUN+hO86vsZ4U/wvEIdf4BI5bvxLp+u8iwODCrubfQqjBIKEBA ogg6p1CnHanARdMd5jGtBbB28gdRI0jnksFRpZ21+yEKRALd5xCXBiyPgsw66S6r 6DV5I02RG7S+TWwSTvU5/OxtzJ65nBJRheXuNy7omuFxrrY0qS7Flaiy8hQUpKAa 6gYjAlW5MVymRa8lb5NdoJr7812EUZbu4mF/qziofgxSeaNU9PTW2JwrQYY3aH8Q 7wP+Do4SaF2GTAyEascGWu1xTXH2DPR6oHEudr8QmGjrmFnxPTdx4RbfKPgWXZvL b+ujp8NBoEK8Ew== -----END CERTIFICATE-----Generated at Sat Dec 13 02:33:50 2025 by rpki-client