This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft File: s90R00a2O7HrIqB8JswSkaKgaJU.mft (raw, json) Hash identifier: v9S5GujSPbriz2wPX0cWUiPPTuMAlCSycSV5A3IraxU= Subject key identifier: E7:A5:9E:C2:50:8D:C9:8F:26:D1:18:9C:B1:68:E0:02:7C:01:E9:2E Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95 Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895 Certificate serial: 019B439308D7E334541334519FFCF9CF8F7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft Manifest number: 0F97 Signing time: Mon 22 Dec 2025 01:01:08 +0000 Manifest this update: Mon 22 Dec 2025 01:01:08 +0000 Manifest next update: Tue 23 Dec 2025 01:01:08 +0000 Files and hashes: 1: DUVtp5rmZWhjlPTwXejQEd3V8J4.roa (hash: qTcPo/VJaQTji8d15MDDjiWvnKJ389xtHOegN0VgXp0=) 2: s90R00a2O7HrIqB8JswSkaKgaJU.crl (hash: /eLq6YszF+umoTyMB6nu8pV3Z5jyXStX2YINLpV22+c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:93:08:d7:e3:34:54:13:34:51:9f:fc:f9:cf:8f:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895 Validity Not Before: Dec 22 01:01:08 2025 GMT Not After : Dec 23 01:01:08 2025 GMT Subject: CN=e7a59ec2508dc98f26d1189cb168e0027c01e92e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:82:9f:63:de:c8:b9:b2:d0:0a:b0:d8:00:d5: 51:e7:e2:dc:40:c3:ae:1e:93:07:bf:9c:69:d3:63: 17:87:8f:66:64:53:e1:2b:1c:d1:70:aa:b8:a9:72: b0:81:86:72:11:1e:35:37:f2:07:be:47:06:f1:6d: 8a:07:74:7d:82:44:72:82:3e:34:c4:c6:e8:7c:c9: bb:a5:2c:7c:2a:9e:ac:bd:52:45:1a:bb:7a:32:67: f2:fd:10:75:5e:c1:b9:49:e4:ae:0f:b6:f0:b7:9d: 80:d6:73:bb:65:7d:a1:fb:b8:72:7c:1c:81:9e:78: 35:3d:58:dc:cf:55:8b:83:b3:2c:da:f0:08:eb:8f: 4a:f7:f1:74:3b:4f:9e:5e:a2:7d:06:c8:63:6a:ea: 12:55:f5:b1:c0:b4:c7:e2:01:93:3d:8b:3b:ff:a4: 40:51:b8:4a:20:dc:3b:52:d5:3d:0c:3a:46:ae:e8: 02:2e:5d:6f:c5:d4:6a:99:15:27:89:5c:ec:e3:d0: e8:a3:3b:91:02:89:50:b3:3f:e6:2b:6b:0c:c8:c6: 77:73:ee:c6:12:1f:38:c0:43:40:cb:6b:4a:3a:fc: 92:75:ca:a3:8e:d2:51:52:f2:5f:73:8f:fa:cf:a3: a5:07:0f:71:9b:6f:91:5e:74:6a:54:87:a9:5e:5d: e3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A5:9E:C2:50:8D:C9:8F:26:D1:18:9C:B1:68:E0:02:7C:01:E9:2E X509v3 Authority Key Identifier: keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:bd:fb:45:b8:15:7e:60:34:da:32:5d:34:c4:42:29:99:ec: 6b:36:64:27:a4:ee:89:9b:3b:bd:5d:4d:0e:e5:0a:1f:ff:34: 00:fb:f5:1a:d9:9d:29:91:93:c2:c6:53:70:51:6b:be:5b:e6: f1:72:f7:63:f7:ba:5f:86:59:cc:f4:67:73:ce:e5:c4:68:45: 75:ea:b9:17:8f:cb:96:d4:1b:38:59:c9:62:11:ca:06:18:2a: 93:06:66:9e:b3:8f:f0:20:2e:1b:09:39:4f:8f:da:40:c5:54: 87:80:a2:c7:55:cf:4e:c8:39:9b:ef:a8:af:b9:ef:90:8c:8f: 04:37:f9:01:f3:94:4f:e9:92:7d:b6:12:1a:4a:75:40:d0:87: 35:9e:ac:6c:3a:2e:f6:f3:1d:3e:b2:72:3a:a1:c6:5f:01:58: 93:12:ad:e7:79:48:b1:9e:3a:5b:c9:fa:a9:c4:3f:ab:68:94: fa:1c:c3:9e:d2:4b:b8:d6:65:db:81:27:cf:d1:cb:08:78:3e: fd:3d:ca:48:68:99:91:27:a3:3a:4c:4d:1a:47:4f:dd:a4:59: db:a0:2e:bb:c2:c5:07:60:4a:fb:83:a1:c3:dc:bc:0c:e4:e4: 70:a8:b1:29:0f:3d:84:ec:69:b7:1f:8c:9c:af:cf:bb:fa:a9: b2:95:39:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDkwjX4zRUEzRRn/z5z49/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzZGQxMWQzNDZiNjNiYjFlYjIyYTA3YzI2Y2MxMjkxYTJh MDY4OTUwHhcNMjUxMjIyMDEwMTA4WhcNMjUxMjIzMDEwMTA4WjAzMTEwLwYDVQQD EyhlN2E1OWVjMjUwOGRjOThmMjZkMTE4OWNiMTY4ZTAwMjdjMDFlOTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIKfY97IubLQCrDYANVR5+LcQMOu HpMHv5xp02MXh49mZFPhKxzRcKq4qXKwgYZyER41N/IHvkcG8W2KB3R9gkRygj40 xMbofMm7pSx8Kp6svVJFGrt6Mmfy/RB1XsG5SeSuD7bwt52A1nO7ZX2h+7hyfByB nng1PVjcz1WLg7Ms2vAI649K9/F0O0+eXqJ9BshjauoSVfWxwLTH4gGTPYs7/6RA UbhKINw7UtU9DDpGrugCLl1vxdRqmRUniVzs49DoozuRAolQsz/mK2sMyMZ3c+7G Eh84wENAy2tKOvySdcqjjtJRUvJfc4/6z6OlBw9xm2+RXnRqVIepXl3jpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOelnsJQjcmPJtEYnLFo4AJ8AekuMB8GA1UdIwQY MBaAFLPdEdNGtjux6yKgfCbMEpGioGiVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9hNDE4OTgtZGEwOC00NjlkLWJlMWEt OGJiYzIyNmU2YzQ1LzEvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9hNDE4OTgtZGEwOC00NjlkLWJlMWEtOGJiYzIyNmU2YzQ1 LzEvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOb37RbgV fmA02jJdNMRCKZnsazZkJ6TuiZs7vV1NDuUKH/80APv1GtmdKZGTwsZTcFFrvlvm 8XL3Y/e6X4ZZzPRnc87lxGhFdeq5F4/LltQbOFnJYhHKBhgqkwZmnrOP8CAuGwk5 T4/aQMVUh4Cix1XPTsg5m++or7nvkIyPBDf5AfOUT+mSfbYSGkp1QNCHNZ6sbDou 9vMdPrJyOqHGXwFYkxKt53lIsZ46W8n6qcQ/q2iU+hzDntJLuNZl24Enz9HLCHg+ /T3KSGiZkSejOkxNGkdP3aRZ26Auu8LFB2BK+4Ohw9y8DOTkcKixKQ89hOxptx+M nK/Pu/qpspU58w== -----END CERTIFICATE-----Generated at Mon Dec 22 04:19:50 2025 by rpki-client