This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft File: bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json) Hash identifier: HNVP5ntUXPdBndBQh9NzhULBFpBTOSpAN1fkhZ3dmvs= Subject key identifier: DF:85:85:85:14:46:8C:0D:F8:49:32:60:72:5F:43:F2:6D:88:6D:92 Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7 Certificate issuer: /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7 Certificate serial: 019B47023EFF8522CE0892267F825169F4BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft Manifest number: 178E Signing time: Mon 22 Dec 2025 17:01:27 +0000 Manifest this update: Mon 22 Dec 2025 17:01:27 +0000 Manifest next update: Tue 23 Dec 2025 17:01:27 +0000 Files and hashes: 1: PWSDM2wQmRNxztAKQ8wgaZS7VDM.roa (hash: d9Wa5FwcE+PxgkYEzEZPmnpoKU1tHYNjbElNCRhvEFk=) 2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: 9SRv8hJbB9+EjliLQ+elrjxQpWwXrB7Yke3HYpH4NvM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:02:3e:ff:85:22:ce:08:92:26:7f:82:51:69:f4:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7 Validity Not Before: Dec 22 17:01:27 2025 GMT Not After : Dec 23 17:01:27 2025 GMT Subject: CN=df85858514468c0df8493260725f43f26d886d92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ac:30:98:a2:b7:e0:fc:fb:76:40:69:8e:cb: 97:08:64:ec:b4:de:8d:f4:c6:fa:af:e6:9e:1c:00: 45:4b:fc:4f:5f:f9:78:d8:51:bc:13:d6:81:f6:0d: 7e:2b:11:11:1c:f5:6b:c3:a1:85:55:75:e1:21:04: 38:7a:3e:4d:6b:ac:48:2e:de:8f:c2:57:b0:7f:d9: c9:1a:07:49:5d:80:0a:71:6d:6d:05:7f:51:12:a2: 89:96:65:b2:69:09:eb:3b:52:05:6b:1f:34:33:15: a3:7c:10:a8:42:57:e9:a7:65:6d:3a:ba:cd:6d:1f: 50:6a:96:aa:0b:10:45:e3:cf:83:84:9d:19:f2:26: 99:86:43:4c:7b:50:64:ee:05:3f:4a:ea:2b:aa:7a: db:64:e6:a3:95:30:d2:cb:3c:37:4b:5b:76:6d:9c: c0:19:66:d3:67:58:dd:ba:fd:f5:ed:5e:fe:2b:db: b2:eb:c8:25:54:39:ce:46:ce:5e:11:84:99:ff:6f: 18:10:41:37:53:54:c8:26:c4:53:40:95:e1:74:2e: 67:4c:5d:20:3d:36:c2:ab:98:cc:d8:0d:f2:9e:92: 6d:d3:59:02:4e:d9:db:24:2d:f6:a1:1d:e6:f6:18: ed:a8:f7:d6:d2:f1:27:9f:30:f9:87:eb:bf:e5:3f: 6b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:85:85:85:14:46:8C:0D:F8:49:32:60:72:5F:43:F2:6D:88:6D:92 X509v3 Authority Key Identifier: keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:79:d3:60:34:1c:35:ff:a2:25:86:3b:32:01:13:09:78:b0: b7:7e:73:8c:19:35:b4:a1:2f:60:ab:48:7f:5b:48:c0:94:2f: 13:1a:27:ab:3c:3f:2e:30:bd:9c:37:b7:c0:ce:28:18:65:eb: a2:28:60:ee:07:75:63:f2:b2:2e:ab:c8:51:42:13:cd:3b:90: a8:9d:76:17:b0:18:8c:e2:ab:2b:94:88:56:b3:e9:6e:d4:df: 0e:54:c9:c5:d0:93:df:29:9b:cf:9a:3e:a8:ec:60:19:71:dd: af:18:eb:e8:8d:fe:a8:09:cf:da:3a:62:19:cd:39:1f:09:19: 07:fd:6b:ff:e7:86:8f:71:db:f8:d6:cb:29:56:37:0a:78:9a: da:d1:60:12:5d:56:8e:b8:eb:d9:cc:05:ed:61:69:04:24:1f: b4:c1:0f:26:6a:8d:95:ba:80:7d:dd:cb:42:92:2a:ff:60:a6: 45:5b:39:7c:b5:e6:14:29:82:c9:7e:e8:c7:4a:cd:09:73:18: ea:3d:2e:10:15:32:e5:8e:24:74:4b:b0:2b:be:ce:a6:86:91: dd:bc:2f:4f:5c:f8:87:f0:df:a5:3f:74:52:d6:ed:0c:e2:ea: ed:f4:73:5f:a3:f0:b4:4c:a2:96:7a:74:63:cf:f2:08:07:9d: d6:57:0d:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHAj7/hSLOCJImf4JRafS7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMTQ2MDU2ZjBmYmJkZTYxOGJmZjAxMWMwZjIyYmE3NGE1 ODMyYjcwHhcNMjUxMjIyMTcwMTI3WhcNMjUxMjIzMTcwMTI3WjAzMTEwLwYDVQQD EyhkZjg1ODU4NTE0NDY4YzBkZjg0OTMyNjA3MjVmNDNmMjZkODg2ZDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA86wwmKK34Pz7dkBpjsuXCGTstN6N 9Mb6r+aeHABFS/xPX/l42FG8E9aB9g1+KxERHPVrw6GFVXXhIQQ4ej5Na6xILt6P wlewf9nJGgdJXYAKcW1tBX9REqKJlmWyaQnrO1IFax80MxWjfBCoQlfpp2VtOrrN bR9QapaqCxBF48+DhJ0Z8iaZhkNMe1Bk7gU/SuorqnrbZOajlTDSyzw3S1t2bZzA GWbTZ1jduv317V7+K9uy68glVDnORs5eEYSZ/28YEEE3U1TIJsRTQJXhdC5nTF0g PTbCq5jM2A3ynpJt01kCTtnbJC32oR3m9hjtqPfW0vEnnzD5h+u/5T9rswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN+FhYUURowN+EkyYHJfQ/JtiG2SMB8GA1UdIwQY MBaAFG0UYFbw+73mGL/wEcDyK6dKWDK3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS81ODlkYjktZTIyYi00ZDY0LTk0YjQt OGVjZjc1MTA1N2FjLzEvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS81ODlkYjktZTIyYi00ZDY0LTk0YjQtOGVjZjc1MTA1N2Fj LzEvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaHnTYDQc Nf+iJYY7MgETCXiwt35zjBk1tKEvYKtIf1tIwJQvExonqzw/LjC9nDe3wM4oGGXr oihg7gd1Y/KyLqvIUUITzTuQqJ12F7AYjOKrK5SIVrPpbtTfDlTJxdCT3ymbz5o+ qOxgGXHdrxjr6I3+qAnP2jpiGc05HwkZB/1r/+eGj3Hb+NbLKVY3Cnia2tFgEl1W jrjr2cwF7WFpBCQftMEPJmqNlbqAfd3LQpIq/2CmRVs5fLXmFCmCyX7ox0rNCXMY 6j0uEBUy5Y4kdEuwK77OpoaR3bwvT1z4h/DfpT90UtbtDOLq7fRzX6PwtEyilnp0 Y8/yCAed1lcNOg== -----END CERTIFICATE-----Generated at Mon Dec 22 22:34:35 2025 by rpki-client