This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft File: d2-uQ_c9o1_houQpZirguRdR4_s.mft (raw, json) Hash identifier: Dq/A71KabIYkX97/VVPwqJCEmFNavYKOpMdKg1+siEw= Subject key identifier: 38:B7:D3:C4:1E:3D:43:EB:25:32:36:12:C7:C0:21:F8:85:B3:E7:D0 Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb Certificate serial: 019B35A04EC19BA2022756790C5CC214DB94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft Manifest number: 14A9 Signing time: Fri 19 Dec 2025 08:00:56 +0000 Manifest this update: Fri 19 Dec 2025 08:00:56 +0000 Manifest next update: Sat 20 Dec 2025 08:00:56 +0000 Files and hashes: 1: BIbyN6MobH1STyCEPdXKcXxO-0I.roa (hash: Os4l0m9oxr0hmnuszsL7ZwnRaiayTTQWv9r3AFurnXg=) 2: Bbz0bBQb7OvBUdzdUU2fR0aTHW0.roa (hash: oXnG95uJE4GWCusPMitN/8TOoOTM8j2qb4pX4QMQ5u0=) 3: bdDCotOAfO1kv_FK4imM3A-Vth0.roa (hash: SflKXIddgIp/qAd1Zs2morymiezh6i6wy0uu+gUqlSk=) 4: d2-uQ_c9o1_houQpZirguRdR4_s.crl (hash: 7oqrj/YMscnOqsEv6HJnC9BGeqd7oWOsb0yrPpvbcfE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:a0:4e:c1:9b:a2:02:27:56:79:0c:5c:c2:14:db:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb Validity Not Before: Dec 19 08:00:56 2025 GMT Not After : Dec 20 08:00:56 2025 GMT Subject: CN=38b7d3c41e3d43eb25323612c7c021f885b3e7d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:15:0e:e0:dd:f4:f6:57:0b:d1:f9:1c:84:30: 65:9f:31:67:3d:a4:e3:f6:52:21:27:7b:03:19:e1: ce:6c:ff:af:53:ae:05:2b:60:b9:b1:9b:77:41:45: 04:3b:e7:8f:e9:45:5e:3f:88:13:1f:c6:97:07:88: f0:41:d1:df:b2:fe:79:d7:83:38:11:22:4c:6f:e6: 11:70:fb:1e:ee:5a:a8:b7:0c:ea:b3:6a:24:4b:4f: 87:39:c9:9c:15:bd:cd:82:19:23:7b:c7:f1:c8:01: 78:c9:e6:d9:8d:4b:37:31:46:a3:40:c8:49:8b:0c: 32:a1:4b:98:b2:e9:1f:7f:2e:f6:3d:6d:12:18:b1: be:e6:80:a2:ca:cd:8f:72:7c:3b:cc:0f:67:48:49: 04:e4:bf:a2:00:f1:c5:5a:82:d9:66:5b:6d:e9:eb: a7:85:c2:a2:40:f8:16:60:76:36:f5:05:af:b9:d6: 6f:58:49:fb:1b:9f:de:ef:d9:d1:83:67:b6:d7:42: 12:cd:6e:36:d2:f1:c1:ec:be:ac:d0:17:7a:56:f9: 6d:f3:c4:26:7c:a0:02:74:b0:c8:6b:4e:2e:3d:7e: 10:66:23:32:8b:b2:63:7a:6c:91:05:64:02:3d:c3: c1:5e:3f:c5:ba:d0:b3:ba:18:13:60:67:5a:0f:4b: 33:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:B7:D3:C4:1E:3D:43:EB:25:32:36:12:C7:C0:21:F8:85:B3:E7:D0 X509v3 Authority Key Identifier: keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:ca:64:28:ed:d9:27:ae:a3:1c:85:8a:56:79:46:df:3a:7a: 8c:9a:d2:60:31:ec:a8:48:80:b6:4e:91:55:53:ab:3f:1c:57: eb:03:3a:d1:8b:6e:0f:bb:2d:1e:1d:69:23:d0:d9:ee:d7:ae: ee:e8:28:80:03:d2:55:24:e8:29:ff:9a:14:84:14:c0:db:3f: 6c:c7:65:52:71:cf:31:61:b5:ef:10:69:3c:36:88:91:e4:f1: 09:53:2b:be:ef:5b:28:7e:c6:6f:c3:db:3b:14:43:92:75:94: 83:00:74:84:62:e9:2c:b5:06:0c:c4:36:0e:f2:6b:c9:55:89: c9:98:cb:11:23:e7:e7:01:18:25:f0:d6:4b:94:c0:2e:50:a8: 6f:be:bc:46:60:86:34:f7:d3:66:d0:54:f2:fa:23:37:f8:6f: 2b:ec:9d:42:b2:2c:49:3b:e4:e1:b9:7a:00:65:72:4e:1d:5a: 11:01:8e:c5:0a:88:d6:8c:37:0e:42:3b:fa:51:b6:69:9a:dc: 4d:ad:ac:40:ad:ba:c9:34:11:8f:a8:15:8a:88:ca:f5:28:7a: 98:ed:ed:7d:c3:8b:ae:d9:42:7a:ed:c4:4e:c6:3b:72:c0:b6: 3b:7e:98:78:5b:f1:a9:d2:f4:5a:c2:24:cb:65:b5:5f:68:02: 52:d6:16:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1oE7Bm6ICJ1Z5DFzCFNuUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3NmZhZTQzZjczZGEzNWZlMWEyZTQyOTY2MmFlMGI5MTc1 MWUzZmIwHhcNMjUxMjE5MDgwMDU2WhcNMjUxMjIwMDgwMDU2WjAzMTEwLwYDVQQD EygzOGI3ZDNjNDFlM2Q0M2ViMjUzMjM2MTJjN2MwMjFmODg1YjNlN2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5hUO4N309lcL0fkchDBlnzFnPaTj 9lIhJ3sDGeHObP+vU64FK2C5sZt3QUUEO+eP6UVeP4gTH8aXB4jwQdHfsv5514M4 ESJMb+YRcPse7lqotwzqs2okS0+HOcmcFb3Nghkje8fxyAF4yebZjUs3MUajQMhJ iwwyoUuYsukffy72PW0SGLG+5oCiys2Pcnw7zA9nSEkE5L+iAPHFWoLZZltt6eun hcKiQPgWYHY29QWvudZvWEn7G5/e79nRg2e210ISzW420vHB7L6s0Bd6Vvlt88Qm fKACdLDIa04uPX4QZiMyi7JjemyRBWQCPcPBXj/FutCzuhgTYGdaD0sznwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDi308QePUPrJTI2EsfAIfiFs+fQMB8GA1UdIwQY MBaAFHdvrkP3PaNf4aLkKWYq4LkXUeP7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDItdVFfYzlvMV9ob3VRcFppcmd1UmRSNF9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8wYWNmMmQtNWQ2Mi00M2YzLThkMTQt NGUwY2M1ODE2M2IwLzEvZDItdVFfYzlvMV9ob3VRcFppcmd1UmRSNF9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8wYWNmMmQtNWQ2Mi00M2YzLThkMTQtNGUwY2M1ODE2M2Iw LzEvZDItdVFfYzlvMV9ob3VRcFppcmd1UmRSNF9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcMpkKO3Z J66jHIWKVnlG3zp6jJrSYDHsqEiAtk6RVVOrPxxX6wM60YtuD7stHh1pI9DZ7teu 7ugogAPSVSToKf+aFIQUwNs/bMdlUnHPMWG17xBpPDaIkeTxCVMrvu9bKH7Gb8Pb OxRDknWUgwB0hGLpLLUGDMQ2DvJryVWJyZjLESPn5wEYJfDWS5TALlCob768RmCG NPfTZtBU8vojN/hvK+ydQrIsSTvk4bl6AGVyTh1aEQGOxQqI1ow3DkI7+lG2aZrc Ta2sQK26yTQRj6gViojK9Sh6mO3tfcOLrtlCeu3ETsY7csC2O36YeFvxqdL0WsIk y2W1X2gCUtYW8g== -----END CERTIFICATE-----Generated at Fri Dec 19 16:20:16 2025 by rpki-client