This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json) Hash identifier: JGoC4NI7QsJ07J5KSaoMGApj9pEjBW94rqQyCQtVdho= Subject key identifier: 8F:A7:48:B3:7F:A8:00:C9:E3:7E:A8:BE:BE:69:4D:B7:6A:C3:D2:AF Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70 Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670 Certificate serial: 019B3C102BB83061419F31B1FC4B9D5C5FB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft Manifest number: 046C Signing time: Sat 20 Dec 2025 14:00:51 +0000 Manifest this update: Sat 20 Dec 2025 14:00:51 +0000 Manifest next update: Sun 21 Dec 2025 14:00:51 +0000 Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: 32PUtv4LRl7sYilbjV9dtRNARo91eMfhS9q3YRtqVTM=) 2: DhPaCGROVzc_RyLkimAXvuteooA.roa (hash: 7GJwuhnVTvbxl3b1/oKcnOg3a/h9WeQA7faf/qH9pFA=) 3: WtuPQAz22oEnCEx3Rc-9J0U0Qbk.roa (hash: LqsVaHB6US9lWput6TNuWvOyM8xnvQFU16n5uBdiSPM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:10:2b:b8:30:61:41:9f:31:b1:fc:4b:9d:5c:5f:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670 Validity Not Before: Dec 20 14:00:51 2025 GMT Not After : Dec 21 14:00:51 2025 GMT Subject: CN=8fa748b37fa800c9e37ea8bebe694db76ac3d2af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ff:bd:42:c0:aa:a9:6e:95:5d:03:4f:d3:88: 07:0f:6b:aa:3d:cb:c3:dd:75:84:49:e3:1d:66:e8: b1:62:63:43:a5:ad:4c:85:c6:9f:da:80:ac:30:ef: 21:6a:48:57:af:d9:4d:28:1d:98:9e:1a:33:5f:8e: 36:d0:7c:6a:02:84:8d:75:bd:b4:e1:b1:4b:e3:a1: 2f:0c:56:e5:f0:c1:b1:31:eb:b4:96:7b:2c:51:55: af:36:92:21:33:4b:8c:84:c1:34:46:c0:83:fd:38: 49:a4:d6:19:5f:50:f9:71:44:e9:13:b9:5d:e7:9a: 18:02:ad:b3:04:72:c0:89:a7:6b:41:af:b5:3f:14: be:7a:a9:cb:bc:6a:a9:19:52:2e:13:ca:64:39:fb: 6d:67:55:c6:a9:6d:87:50:41:39:74:70:3a:84:c3: 56:53:53:c5:e0:d4:11:36:cc:4b:8e:88:48:11:2e: ba:28:aa:e4:9b:34:a3:21:6a:a0:c6:2f:d0:ba:22: ae:08:84:1a:f9:a9:dd:50:71:a4:a1:54:f6:f1:f5: 3f:ac:b7:25:50:9d:2c:59:52:47:6f:a9:e8:21:c0: 60:1d:00:59:9d:2e:b2:57:9e:3e:d9:0c:11:8a:ab: 20:07:d7:0c:10:d9:d5:ae:23:a6:3e:8c:a9:a4:50: f9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A7:48:B3:7F:A8:00:C9:E3:7E:A8:BE:BE:69:4D:B7:6A:C3:D2:AF X509v3 Authority Key Identifier: keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:27:2e:b4:78:d6:d1:ed:10:45:a6:7f:25:02:f0:3f:75:37: 29:e9:18:98:e2:c1:de:3a:03:e5:b4:55:8f:cf:41:4d:2c:57: 74:a8:bb:40:f0:04:45:f3:15:cc:34:3d:bd:2a:5d:a1:b4:32: f6:97:41:b7:b0:29:16:b0:ec:fd:90:87:ca:5e:7f:01:c8:c2: 15:17:85:4c:30:8b:c0:b3:af:25:19:a9:2f:92:d3:04:63:5e: 56:6a:0e:db:f0:fd:c7:98:d2:fb:4d:aa:3b:2a:22:04:3d:a3: 44:e6:ed:ea:b7:a3:d0:2d:f5:0c:bb:86:02:86:5c:95:f8:b9: 36:80:67:79:be:4c:f6:d2:9c:b9:51:53:a6:8a:40:82:82:19: 19:0b:01:af:2f:b9:8d:ec:ff:01:c0:c0:fc:57:83:ac:02:f0: 95:9b:81:0f:67:e6:d1:e3:c9:7a:57:50:1f:11:78:64:de:cf: da:47:ef:f8:e5:21:08:b9:a6:8a:7c:d3:9b:9e:e9:e1:6f:70: a9:51:dd:26:43:0e:5f:e5:f2:f0:5c:13:64:43:55:20:76:97: f3:af:e2:f9:7c:e4:6a:f4:45:38:d8:82:9e:0c:b4:b4:30:bb: ea:e3:a2:4e:be:da:77:bb:62:d8:8f:70:44:ed:6f:3b:f8:49: f1:35:fc:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8ECu4MGFBnzGx/EudXF+4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYjYxZDFmMWQ5Y2NkYWI2YjZkOGUxNDUwYzJjOTM2ZDM5 N2U2NzAwHhcNMjUxMjIwMTQwMDUxWhcNMjUxMjIxMTQwMDUxWjAzMTEwLwYDVQQD Eyg4ZmE3NDhiMzdmYTgwMGM5ZTM3ZWE4YmViZTY5NGRiNzZhYzNkMmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsv+9QsCqqW6VXQNP04gHD2uqPcvD 3XWESeMdZuixYmNDpa1Mhcaf2oCsMO8hakhXr9lNKB2YnhozX4420HxqAoSNdb20 4bFL46EvDFbl8MGxMeu0lnssUVWvNpIhM0uMhME0RsCD/ThJpNYZX1D5cUTpE7ld 55oYAq2zBHLAiadrQa+1PxS+eqnLvGqpGVIuE8pkOfttZ1XGqW2HUEE5dHA6hMNW U1PF4NQRNsxLjohIES66KKrkmzSjIWqgxi/QuiKuCIQa+andUHGkoVT28fU/rLcl UJ0sWVJHb6noIcBgHQBZnS6yV54+2QwRiqsgB9cMENnVriOmPoyppFD5uQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI+nSLN/qADJ436ovr5pTbdqw9KvMB8GA1UdIwQY MBaAFNC2HR8dnM2ra22OFFDCyTbTl+ZwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzIt MTVmNjJjODkwYWY4LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzItMTVmNjJjODkwYWY4 LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACicutHjW 0e0QRaZ/JQLwP3U3KekYmOLB3joD5bRVj89BTSxXdKi7QPAERfMVzDQ9vSpdobQy 9pdBt7ApFrDs/ZCHyl5/AcjCFReFTDCLwLOvJRmpL5LTBGNeVmoO2/D9x5jS+02q OyoiBD2jRObt6rej0C31DLuGAoZclfi5NoBneb5M9tKcuVFTpopAgoIZGQsBry+5 jez/AcDA/FeDrALwlZuBD2fm0ePJeldQHxF4ZN7P2kfv+OUhCLmminzTm57p4W9w qVHdJkMOX+Xy8FwTZENVIHaX86/i+XzkavRFONiCngy0tDC76uOiTr7ad7ti2I9w RO1vO/hJ8TX8pQ== -----END CERTIFICATE-----Generated at Sat Dec 20 16:19:37 2025 by rpki-client