This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft File: bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json) Hash identifier: +zjJam3C4/tPZTVBuluaGoPrItRGZybl1D4vrLdq230= Subject key identifier: F9:2B:11:E3:65:0A:83:87:CC:36:8C:4B:F2:BB:00:1A:C3:10:DE:10 Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16 Certificate issuer: /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016 Certificate serial: 019B36B4121C0ED4C78529E23B6B5DB3B10A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft Manifest number: 14F0 Signing time: Fri 19 Dec 2025 13:02:09 +0000 Manifest this update: Fri 19 Dec 2025 13:02:09 +0000 Manifest next update: Sat 20 Dec 2025 13:02:09 +0000 Files and hashes: 1: JJLEui4261ZXJVAJCMhhZuF8jH8.roa (hash: /ixKOls/TcJQuO85TTUBz1567wbeYHBB+Wz+IfsDjR8=) 2: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: /a+G3LjHcbUPZdeKinTXEgtuxIJB9OAx9wDntYGnb7E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:b4:12:1c:0e:d4:c7:85:29:e2:3b:6b:5d:b3:b1:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016 Validity Not Before: Dec 19 13:02:09 2025 GMT Not After : Dec 20 13:02:09 2025 GMT Subject: CN=f92b11e3650a8387cc368c4bf2bb001ac310de10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:94:b8:c3:c3:18:1a:97:e3:7e:8f:a5:f2:28: 50:5c:41:92:db:52:74:d6:48:a8:7a:83:1f:af:0c: cf:73:6d:f2:7f:8a:75:59:53:67:3b:a5:ea:58:c4: a7:79:65:a1:ac:cd:d9:b9:a5:7e:14:43:65:91:d2: 84:56:b3:aa:7c:b3:f2:8c:bf:b4:9c:63:4b:50:9b: 83:45:6e:7d:8e:f1:14:07:b8:c3:22:81:27:8d:87: 68:e4:e8:7d:fe:e6:97:3a:cc:2f:3d:d6:2d:4f:f5: 98:02:95:92:f0:b3:8e:73:ed:e4:b8:6e:ca:7e:47: a9:01:b2:5a:70:49:13:2b:7d:27:67:4c:96:52:7e: 72:36:4c:51:f3:87:77:2a:95:c6:59:dd:75:7c:c6: 49:53:32:69:e5:51:e6:ff:74:f7:d9:87:fe:61:95: f9:35:84:5a:42:84:bb:2d:b8:34:99:08:fc:37:c8: 67:14:b1:bc:69:63:c4:f9:34:e6:4e:a8:3d:ea:65: 6e:0b:92:ed:b2:5b:02:ff:4e:59:23:0c:f2:78:4a: 76:d1:fd:ca:27:ed:f8:03:41:fa:74:aa:05:69:d4: ee:66:8b:4a:a8:e1:f1:ed:bc:52:22:15:bf:fb:76: 57:3c:e2:0d:a5:9a:be:18:9a:f8:ed:65:7c:49:19: dc:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:2B:11:E3:65:0A:83:87:CC:36:8C:4B:F2:BB:00:1A:C3:10:DE:10 X509v3 Authority Key Identifier: keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:ff:54:37:2b:e3:e5:42:92:24:9f:10:ed:02:c6:4c:22:39: 81:a8:a8:54:d8:7b:aa:fc:36:4f:af:5a:5b:f0:09:b7:e1:ac: 55:e9:a0:60:d4:33:02:41:3a:86:3c:f6:00:ce:d3:3b:0b:44: 4a:98:74:66:f1:e4:8d:ba:39:21:bb:ed:70:cb:28:e3:b9:36: ca:39:bc:b7:32:12:51:57:aa:9e:ff:64:c4:5f:3a:f1:0b:e8: 2a:c5:2b:a8:98:83:e2:4c:c8:1d:26:a6:e4:46:74:00:16:3a: fd:66:ec:ca:4a:4b:50:28:d2:e6:cc:32:98:35:4e:6e:d5:67: 5c:5d:6d:d4:ed:9c:2b:7e:3c:44:8b:a3:75:93:4f:fc:d4:4e: df:1b:ff:2e:98:0a:7c:43:d3:82:14:9b:67:55:8e:8e:38:47: d6:c4:f4:9a:1e:52:c6:a8:0f:44:69:e7:55:9e:96:86:54:04: 1e:21:a3:f4:87:ca:8c:ca:09:5a:87:3f:bd:cf:04:58:10:31: f0:7d:13:b9:9c:1b:29:73:b3:21:01:84:14:d9:af:37:31:ba: bd:ce:5b:ec:35:f8:ca:66:3b:8d:e6:40:4a:5a:1f:67:92:c2: 63:c5:8b:89:ae:33:0c:98:e5:18:a6:5f:f4:25:24:75:5c:44: bb:5f:dc:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2tBIcDtTHhSniO2tds7EKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjYzc1ODVhYjdhODNlYzgwYjU1YWI5NTdiZjM3Yjc5MWU3 NjUwMTYwHhcNMjUxMjE5MTMwMjA5WhcNMjUxMjIwMTMwMjA5WjAzMTEwLwYDVQQD EyhmOTJiMTFlMzY1MGE4Mzg3Y2MzNjhjNGJmMmJiMDAxYWMzMTBkZTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ZS4w8MYGpfjfo+l8ihQXEGS21J0 1kioeoMfrwzPc23yf4p1WVNnO6XqWMSneWWhrM3ZuaV+FENlkdKEVrOqfLPyjL+0 nGNLUJuDRW59jvEUB7jDIoEnjYdo5Oh9/uaXOswvPdYtT/WYApWS8LOOc+3kuG7K fkepAbJacEkTK30nZ0yWUn5yNkxR84d3KpXGWd11fMZJUzJp5VHm/3T32Yf+YZX5 NYRaQoS7Lbg0mQj8N8hnFLG8aWPE+TTmTqg96mVuC5LtslsC/05ZIwzyeEp20f3K J+34A0H6dKoFadTuZotKqOHx7bxSIhW/+3ZXPOINpZq+GJr47WV8SRncqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPkrEeNlCoOHzDaMS/K7ABrDEN4QMB8GA1UdIwQY MBaAFGzHWFq3qD7IC1WrlXvze3kedlAWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk1kWVdyZW9Qc2dMVmF1VmVfTjdlUjUyVUJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83MDZmNDEtMDUzMS00M2RmLWIxZTkt NmY4NmQwYjdlM2UwLzEvYk1kWVdyZW9Qc2dMVmF1VmVfTjdlUjUyVUJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS83MDZmNDEtMDUzMS00M2RmLWIxZTktNmY4NmQwYjdlM2Uw LzEvYk1kWVdyZW9Qc2dMVmF1VmVfTjdlUjUyVUJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB/9UNyvj 5UKSJJ8Q7QLGTCI5gaioVNh7qvw2T69aW/AJt+GsVemgYNQzAkE6hjz2AM7TOwtE Sph0ZvHkjbo5IbvtcMso47k2yjm8tzISUVeqnv9kxF868QvoKsUrqJiD4kzIHSam 5EZ0ABY6/WbsykpLUCjS5swymDVObtVnXF1t1O2cK348RIujdZNP/NRO3xv/LpgK fEPTghSbZ1WOjjhH1sT0mh5SxqgPRGnnVZ6WhlQEHiGj9IfKjMoJWoc/vc8EWBAx 8H0TuZwbKXOzIQGEFNmvNzG6vc5b7DX4ymY7jeZASlofZ5LCY8WLia4zDJjlGKZf 9CUkdVxEu1/c4g== -----END CERTIFICATE-----Generated at Fri Dec 19 14:54:49 2025 by rpki-client