This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft File: 23uiovC_o6dvXJkaR82YaMbR674.mft (raw, json) Hash identifier: J2SyWfI1Pkzc3CWyFBORMbvtlmPqYmXpUDnyYf8BCWg= Subject key identifier: B9:C2:C2:E8:D0:4F:41:BD:E1:E7:45:D8:B8:95:BB:CC:93:75:A5:C0 Authority key identifier: DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE Certificate issuer: /CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe Certificate serial: 019B29D3382CC3E1F9E9016E193E6EC0FE2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft Manifest number: 1430 Signing time: Wed 17 Dec 2025 01:01:06 +0000 Manifest this update: Wed 17 Dec 2025 01:01:06 +0000 Manifest next update: Thu 18 Dec 2025 01:01:06 +0000 Files and hashes: 1: 23uiovC_o6dvXJkaR82YaMbR674.crl (hash: ZmazSS7KWweACjwmZRK9ehY9CfokfnlIkIQFF6/DqSQ=) 2: J8hzJTM2uz7yXJSlk16QOqdb0iI.roa (hash: sPVr5eHmre5tC1ZjjWRY6ekKAEsqs3UiVYcFX3QHcj0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 19:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:29:d3:38:2c:c3:e1:f9:e9:01:6e:19:3e:6e:c0:fe:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe Validity Not Before: Dec 17 01:01:06 2025 GMT Not After : Dec 18 01:01:06 2025 GMT Subject: CN=b9c2c2e8d04f41bde1e745d8b895bbcc9375a5c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:eb:75:2e:06:49:33:ae:b8:08:20:cc:63:b8: 84:b1:d4:58:7d:a2:62:f2:ca:b0:44:b9:8b:e0:95: c4:41:cd:f4:ae:44:e5:8d:82:0f:4b:c1:d5:73:3c: 76:63:e7:53:b9:dd:df:27:d3:ad:fa:75:f3:14:be: 5b:d2:fd:30:76:43:ea:d3:b7:1c:f1:1d:22:78:3e: 04:1d:2e:e0:95:5e:73:5e:78:e3:b0:dc:45:2a:08: ca:30:0e:9e:0e:7a:a6:b9:6e:13:35:52:50:f2:3e: b4:b4:a6:34:db:fa:24:72:df:45:d7:f8:ba:b0:89: a6:ee:e0:0e:ff:b3:87:74:a6:2c:1a:c0:81:fa:e6: 28:7e:c1:c4:0d:c2:c9:e2:2b:45:03:51:bc:66:88: a3:1c:85:75:81:6b:c8:ab:cf:7b:a6:ec:52:14:d1: f5:71:8e:c8:93:23:ed:de:f6:0f:06:ae:e8:8c:ad: 30:32:08:e8:32:5d:51:41:bc:cf:c6:8c:00:14:8f: f6:b3:78:77:79:f5:cf:4d:88:2e:b4:69:42:ae:77: f6:c2:ab:0f:eb:9f:c1:8f:4a:ca:d3:fb:8e:39:d5: e0:59:46:4a:09:b2:12:d0:1b:20:50:bc:42:d0:2e: 49:12:11:b9:55:b0:a7:55:9b:d4:8c:ff:8e:8b:77: 4a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C2:C2:E8:D0:4F:41:BD:E1:E7:45:D8:B8:95:BB:CC:93:75:A5:C0 X509v3 Authority Key Identifier: keyid:DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:8f:2d:12:d1:04:d4:f8:d4:b0:01:52:9b:e5:1e:2b:5d:13: 09:9b:d4:3b:76:4a:ec:4c:de:65:6b:42:e0:fd:8b:d6:db:f9: 1a:8e:a5:71:0c:f9:4b:7c:98:64:d9:e0:43:cb:65:70:7c:73: 19:ea:0f:27:77:2e:2b:1e:be:6a:4e:6e:01:dc:2b:85:8d:99: 31:e1:d4:17:47:ca:ba:55:20:e5:f7:89:b6:0c:db:bc:32:58: 22:99:82:ad:05:35:5f:95:22:de:22:d8:74:37:76:b4:78:6d: 9a:3c:72:86:d4:ab:63:a1:2a:e7:55:16:17:8d:7a:9a:0b:89: 0e:9a:cd:6f:f1:6e:57:a3:0d:bb:0c:13:3b:41:60:25:c5:bd: 99:09:fc:71:c4:5b:e4:a3:48:43:f2:92:35:4c:90:0d:ab:60: 2a:41:f9:e7:91:8c:a7:43:d3:31:20:1c:b7:7e:23:cd:1d:0d: 90:a9:8f:dc:67:40:39:ef:71:17:d8:59:0d:be:41:c5:80:2d: 4b:a0:64:ef:26:6c:16:65:da:37:2e:52:66:4c:96:f0:7e:66: cc:ff:e3:b4:d0:32:53:43:70:f7:5f:f9:50:07:85:ee:93:bb: 8a:31:d1:e0:10:71:c4:84:79:03:f9:d9:fb:15:c1:7a:8d:52: 38:03:37:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsp0zgsw+H56QFuGT5uwP4uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiN2JhMmEyZjBiZmEzYTc2ZjVjOTkxYTQ3Y2Q5ODY4YzZk MWViYmUwHhcNMjUxMjE3MDEwMTA2WhcNMjUxMjE4MDEwMTA2WjAzMTEwLwYDVQQD EyhiOWMyYzJlOGQwNGY0MWJkZTFlNzQ1ZDhiODk1YmJjYzkzNzVhNWMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOt1LgZJM664CCDMY7iEsdRYfaJi 8sqwRLmL4JXEQc30rkTljYIPS8HVczx2Y+dTud3fJ9Ot+nXzFL5b0v0wdkPq07cc 8R0ieD4EHS7glV5zXnjjsNxFKgjKMA6eDnqmuW4TNVJQ8j60tKY02/okct9F1/i6 sImm7uAO/7OHdKYsGsCB+uYofsHEDcLJ4itFA1G8ZoijHIV1gWvIq897puxSFNH1 cY7IkyPt3vYPBq7ojK0wMgjoMl1RQbzPxowAFI/2s3h3efXPTYgutGlCrnf2wqsP 65/Bj0rK0/uOOdXgWUZKCbIS0BsgULxC0C5JEhG5VbCnVZvUjP+Oi3dKUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLnCwujQT0G94edF2LiVu8yTdaXAMB8GA1UdIwQY MBaAFNt7oqLwv6Onb1yZGkfNmGjG0eu+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjN1aW92Q19vNmR2WEprYVI4MllhTWJSNjc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC82MTdhOWYtM2ZiMi00Y2JiLTk5ZmEt ZjIyZWI2NWZjYzcyLzEvMjN1aW92Q19vNmR2WEprYVI4MllhTWJSNjc0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC82MTdhOWYtM2ZiMi00Y2JiLTk5ZmEtZjIyZWI2NWZjYzcy LzEvMjN1aW92Q19vNmR2WEprYVI4MllhTWJSNjc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZo8tEtEE 1PjUsAFSm+UeK10TCZvUO3ZK7EzeZWtC4P2L1tv5Go6lcQz5S3yYZNngQ8tlcHxz GeoPJ3cuKx6+ak5uAdwrhY2ZMeHUF0fKulUg5feJtgzbvDJYIpmCrQU1X5Ui3iLY dDd2tHhtmjxyhtSrY6Eq51UWF416mguJDprNb/FuV6MNuwwTO0FgJcW9mQn8ccRb 5KNIQ/KSNUyQDatgKkH555GMp0PTMSAct34jzR0NkKmP3GdAOe9xF9hZDb5BxYAt S6Bk7yZsFmXaNy5SZkyW8H5mzP/jtNAyU0Nw91/5UAeF7pO7ijHR4BBxxIR5A/nZ +xXBeo1SOAM3zA== -----END CERTIFICATE-----Generated at Wed Dec 17 03:35:49 2025 by rpki-client