This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft File: mKUzMIdAu70he_adzpCz9UEghFc.mft (raw, json) Hash identifier: DdblZ86xJOeTf/PXz1cY268HlY+PrvycZZ4ao5hdeRQ= Subject key identifier: 8A:DB:D5:3F:6F:DA:8A:E1:FD:F5:73:6D:60:1D:8B:C3:96:6D:62:6E Authority key identifier: 98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57 Certificate issuer: /CN=98a533308740bbbd217bf69dce90b3f541208457 Certificate serial: 019B484B3AAA77BE3FFE82391C820280F283 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft Manifest number: 1791 Signing time: Mon 22 Dec 2025 23:00:48 +0000 Manifest this update: Mon 22 Dec 2025 23:00:48 +0000 Manifest next update: Tue 23 Dec 2025 23:00:48 +0000 Files and hashes: 1: 4hnUUt9Ys_eQWvU2fA6JemX65dw.roa (hash: ntUnKbzWvKshnrPe1olGFJu/nCj9Xb/2m4Wf2hJLEss=) 2: mKUzMIdAu70he_adzpCz9UEghFc.crl (hash: 1uckZviTkJt2YfNyaZz1PYdPkI3aZBO23omYSSnOh4o=) 3: sfQ3GEtYzhBBWxqpfOQ0GcKpsbY.roa (hash: wrk4xF0OxGaC9MkY6FPvwbKzU+JxYtuzUOz5b0tcuxA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:4b:3a:aa:77:be:3f:fe:82:39:1c:82:02:80:f2:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98a533308740bbbd217bf69dce90b3f541208457 Validity Not Before: Dec 22 23:00:48 2025 GMT Not After : Dec 23 23:00:48 2025 GMT Subject: CN=8adbd53f6fda8ae1fdf5736d601d8bc3966d626e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a9:f5:34:df:b9:74:1d:5a:8c:7f:93:42:66: 4f:63:65:78:0d:5b:19:7f:16:c2:2d:80:d3:a6:2c: 29:47:7e:8d:57:bf:6e:f7:fc:6f:7b:49:44:2a:20: b9:f2:23:59:13:53:e8:6e:2c:de:28:d3:f6:d1:37: 57:42:9f:bf:be:58:cd:62:36:96:cf:ba:06:03:55: 87:29:8e:41:0a:31:67:95:8b:0e:c9:0d:e8:1f:6e: b3:73:ca:84:03:da:aa:14:56:db:4b:1a:7b:e5:d5: b6:17:c4:a8:a2:04:7f:1a:52:33:14:77:81:80:5c: 9e:aa:50:86:f4:72:3a:09:e9:0d:54:00:b6:e0:8e: 7d:63:3e:d3:b4:be:5d:d2:c7:0f:87:e7:24:aa:ee: b3:02:83:85:ce:13:3d:85:ff:a3:0b:63:02:6e:47: 95:f4:6c:c6:5b:30:8a:58:6e:cb:19:b7:90:3f:dc: a9:df:1b:f3:9c:de:46:d0:e8:65:77:96:55:2e:35: 7a:e7:03:c9:b3:d4:8a:11:f5:a6:a4:f7:55:13:0d: 20:18:ec:46:36:e2:76:ec:9a:3f:f6:07:87:5e:e2: 0f:9d:d1:0c:72:cb:53:0d:1b:9e:ef:8e:c4:8f:92: 4a:7c:a6:09:c5:fa:f1:63:05:97:7a:ef:37:2b:ec: 2d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:DB:D5:3F:6F:DA:8A:E1:FD:F5:73:6D:60:1D:8B:C3:96:6D:62:6E X509v3 Authority Key Identifier: keyid:98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:7c:2b:15:5d:d3:bc:cd:fa:51:6b:af:35:46:ee:b6:5e:c3: 5f:06:2d:1d:6f:be:fe:4c:05:16:6e:00:09:a7:35:9b:42:34: d8:d2:3c:91:8d:e1:6d:19:ee:cd:b4:01:90:ec:81:21:e3:9a: 44:47:cc:30:86:35:cb:30:19:27:62:0d:7c:26:0c:7a:15:b0: f9:f7:76:5b:37:50:91:d7:c2:03:1b:44:46:54:52:c9:28:32: 4b:0b:cb:b1:2c:3e:46:fe:19:87:6e:4d:33:bd:20:cb:e8:e4: 27:27:1d:07:e6:21:fa:ba:3f:7a:fd:a9:84:fc:e1:63:26:f8: 81:88:a2:69:b2:35:bb:75:b7:6a:ab:e3:11:9b:3e:03:ea:9f: de:ea:bd:2c:0d:1a:2e:37:28:0f:a6:f5:29:aa:fd:15:d9:86: df:33:91:5a:64:e2:39:1f:2f:2b:10:fd:e7:3e:1c:15:e1:69: 4a:49:8c:a1:41:d2:ea:13:05:8e:a2:39:95:77:ce:02:01:42: 7c:19:b0:ea:cb:7c:1d:26:fe:2e:ac:71:0e:bc:d3:7f:49:58: 7d:29:69:44:41:24:88:2f:40:a8:8c:10:6c:d2:4e:53:0f:05: e2:bf:07:43:aa:18:0f:e9:bf:88:d9:53:88:68:7f:1d:40:24: 6d:9f:d5:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtISzqqd74//oI5HIICgPKDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4YTUzMzMwODc0MGJiYmQyMTdiZjY5ZGNlOTBiM2Y1NDEy MDg0NTcwHhcNMjUxMjIyMjMwMDQ4WhcNMjUxMjIzMjMwMDQ4WjAzMTEwLwYDVQQD Eyg4YWRiZDUzZjZmZGE4YWUxZmRmNTczNmQ2MDFkOGJjMzk2NmQ2MjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKn1NN+5dB1ajH+TQmZPY2V4DVsZ fxbCLYDTpiwpR36NV79u9/xve0lEKiC58iNZE1PobizeKNP20TdXQp+/vljNYjaW z7oGA1WHKY5BCjFnlYsOyQ3oH26zc8qEA9qqFFbbSxp75dW2F8SoogR/GlIzFHeB gFyeqlCG9HI6CekNVAC24I59Yz7TtL5d0scPh+ckqu6zAoOFzhM9hf+jC2MCbkeV 9GzGWzCKWG7LGbeQP9yp3xvznN5G0Ohld5ZVLjV65wPJs9SKEfWmpPdVEw0gGOxG NuJ27Jo/9geHXuIPndEMcstTDRue747Ej5JKfKYJxfrxYwWXeu83K+wtjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIrb1T9v2orh/fVzbWAdi8OWbWJuMB8GA1UdIwQY MBaAFJilMzCHQLu9IXv2nc6Qs/VBIIRXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUtVek1JZEF1NzBoZV9hZHpwQ3o5VUVnaEZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi82YTUzOTQtMGIwNS00NTM4LWIwY2Qt OWY2ODkwZjkyZTYwLzEvbUtVek1JZEF1NzBoZV9hZHpwQ3o5VUVnaEZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi82YTUzOTQtMGIwNS00NTM4LWIwY2QtOWY2ODkwZjkyZTYw LzEvbUtVek1JZEF1NzBoZV9hZHpwQ3o5VUVnaEZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsXwrFV3T vM36UWuvNUbutl7DXwYtHW++/kwFFm4ACac1m0I02NI8kY3hbRnuzbQBkOyBIeOa REfMMIY1yzAZJ2INfCYMehWw+fd2WzdQkdfCAxtERlRSySgySwvLsSw+Rv4Zh25N M70gy+jkJycdB+Yh+ro/ev2phPzhYyb4gYiiabI1u3W3aqvjEZs+A+qf3uq9LA0a LjcoD6b1Kar9FdmG3zORWmTiOR8vKxD95z4cFeFpSkmMoUHS6hMFjqI5lXfOAgFC fBmw6st8HSb+LqxxDrzTf0lYfSlpREEkiC9AqIwQbNJOUw8F4r8HQ6oYD+m/iNlT iGh/HUAkbZ/VvQ== -----END CERTIFICATE-----Generated at Tue Dec 23 08:23:51 2025 by rpki-client