This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft File: m9o0FBNxKfo4psYcSWq4thQJzgI.mft (raw, json) Hash identifier: Mh3ntNIV1rhuNqF1D5UpkwSdAEw/onmYHXQxvBI65mU= Subject key identifier: 87:21:37:5B:12:A0:AE:99:C3:51:77:9C:3B:77:E3:EE:88:0F:69:5B Authority key identifier: 9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02 Certificate issuer: /CN=9bda3414137129fa38a6c61c496ab8b61409ce02 Certificate serial: 019B10EEE9871DDAD2E035D5F885F6636376 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft Manifest number: 176F Signing time: Fri 12 Dec 2025 05:00:51 +0000 Manifest this update: Fri 12 Dec 2025 05:00:51 +0000 Manifest next update: Sat 13 Dec 2025 05:00:51 +0000 Files and hashes: 1: U6nb6DpUzJV_xi4UhiA5O3aKdZE.roa (hash: at4iy2FPtAChzVS5IZxWuVWW9v3c10T2DEm7KMEtSwY=) 2: m9o0FBNxKfo4psYcSWq4thQJzgI.crl (hash: x3G8POzuEAApPNJMbK7rquWkpxyBus6YWaX0Zy4saLk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 05:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:ee:e9:87:1d:da:d2:e0:35:d5:f8:85:f6:63:63:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bda3414137129fa38a6c61c496ab8b61409ce02 Validity Not Before: Dec 12 05:00:51 2025 GMT Not After : Dec 13 05:00:51 2025 GMT Subject: CN=8721375b12a0ae99c351779c3b77e3ee880f695b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:03:8c:6b:69:aa:b5:01:c8:b4:c4:0b:49:12: 39:eb:5e:42:3f:65:a7:43:22:07:6f:34:65:7c:02: 9e:38:00:d8:90:01:79:a7:9d:33:f8:5a:2d:ea:ea: e9:4f:83:f9:6f:5e:5d:8f:cf:dc:f2:5e:65:44:ca: 35:46:84:10:cc:cf:f4:03:95:0e:91:df:4f:e7:a0: dc:d6:dc:fe:c6:5a:04:62:e6:96:63:27:92:f2:de: cf:b1:29:59:3a:8e:5f:82:8c:85:e8:1d:7e:8d:60: d8:0f:a6:2b:26:61:c2:84:8a:fe:5a:0b:db:0f:3f: 25:e2:c1:ed:97:32:29:ca:14:89:0c:28:0c:84:62: d9:fe:47:7a:0d:72:5d:43:5f:35:95:ed:26:47:47: d8:a3:ff:4b:dc:4c:6d:eb:24:6b:ca:0e:ee:76:a4: 02:ee:76:72:ca:6e:06:39:78:00:9f:6a:bb:73:1f: db:c4:3b:77:57:83:bf:e4:c1:5e:2d:df:44:37:55: de:52:dd:fa:50:4b:ec:94:a1:b9:1e:5f:2b:d5:5f: 8e:e2:d6:51:9c:47:22:9c:3a:9e:7c:35:44:79:3a: 6d:3a:ce:e3:d4:c6:f2:e6:79:21:ee:08:67:26:7a: a8:31:ed:21:1b:b7:52:59:6d:72:f1:da:9b:a4:22: 70:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:21:37:5B:12:A0:AE:99:C3:51:77:9C:3B:77:E3:EE:88:0F:69:5B X509v3 Authority Key Identifier: keyid:9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:5c:8a:35:3f:ad:23:64:60:fc:a1:e7:bb:98:ed:0f:02:c7: ce:25:c6:5d:70:69:5c:53:b2:76:d1:d9:39:f4:7b:4b:4a:c7: 99:70:4d:2b:7d:33:36:36:23:12:9e:78:d7:f3:c2:8b:66:60: 90:52:a4:bd:9d:ac:33:a3:e1:15:8a:54:99:1f:3e:77:76:77: e4:23:e2:0f:e9:53:a9:3a:38:5c:6d:be:42:93:0a:80:66:4d: 97:fc:83:63:00:58:c1:a3:5a:6a:8c:0a:7c:62:29:e0:77:f0: fb:fa:a4:d3:b6:5a:0c:88:f6:2f:11:79:df:e8:34:04:6e:be: 66:99:b8:2c:12:d9:1a:a4:21:f6:36:99:46:b0:48:80:a5:11: fc:84:e0:ed:5e:b1:7c:69:1d:b7:39:a2:2d:f9:ec:77:e3:b3: 81:5d:9e:43:58:9c:b5:7e:06:7f:ff:10:78:96:d0:97:0f:d5: 3b:cc:7f:b8:68:d7:e3:ec:01:a9:44:dc:1b:24:7a:05:17:38: ed:e9:f8:70:2d:42:eb:7f:6e:8f:51:92:2e:a9:74:df:4a:f4: 38:24:33:d1:df:72:df:b2:9d:58:b1:51:59:ac:b5:36:13:b6: b8:e1:c2:e5:a9:a6:52:63:fd:0a:f2:53:1f:7d:d6:f7:45:a9: 96:a5:64:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQ7umHHdrS4DXV+IX2Y2N2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliZGEzNDE0MTM3MTI5ZmEzOGE2YzYxYzQ5NmFiOGI2MTQw OWNlMDIwHhcNMjUxMjEyMDUwMDUxWhcNMjUxMjEzMDUwMDUxWjAzMTEwLwYDVQQD Eyg4NzIxMzc1YjEyYTBhZTk5YzM1MTc3OWMzYjc3ZTNlZTg4MGY2OTViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgOMa2mqtQHItMQLSRI5615CP2Wn QyIHbzRlfAKeOADYkAF5p50z+Fot6urpT4P5b15dj8/c8l5lRMo1RoQQzM/0A5UO kd9P56Dc1tz+xloEYuaWYyeS8t7PsSlZOo5fgoyF6B1+jWDYD6YrJmHChIr+Wgvb Dz8l4sHtlzIpyhSJDCgMhGLZ/kd6DXJdQ181le0mR0fYo/9L3Ext6yRryg7udqQC 7nZyym4GOXgAn2q7cx/bxDt3V4O/5MFeLd9EN1XeUt36UEvslKG5Hl8r1V+O4tZR nEcinDqefDVEeTptOs7j1Mby5nkh7ghnJnqoMe0hG7dSWW1y8dqbpCJwNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIchN1sSoK6Zw1F3nDt34+6ID2lbMB8GA1UdIwQY MBaAFJvaNBQTcSn6OKbGHElquLYUCc4CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTlvMEZCTnhLZm80cHNZY1NXcTR0aFFKemdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yOTk1Y2QtNDY1Zi00YjQwLWE0NTUt MTZkM2NkMzUyZjJlLzEvbTlvMEZCTnhLZm80cHNZY1NXcTR0aFFKemdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8yOTk1Y2QtNDY1Zi00YjQwLWE0NTUtMTZkM2NkMzUyZjJl LzEvbTlvMEZCTnhLZm80cHNZY1NXcTR0aFFKemdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlyKNT+t I2Rg/KHnu5jtDwLHziXGXXBpXFOydtHZOfR7S0rHmXBNK30zNjYjEp541/PCi2Zg kFKkvZ2sM6PhFYpUmR8+d3Z35CPiD+lTqTo4XG2+QpMKgGZNl/yDYwBYwaNaaowK fGIp4Hfw+/qk07ZaDIj2LxF53+g0BG6+Zpm4LBLZGqQh9jaZRrBIgKUR/ITg7V6x fGkdtzmiLfnsd+OzgV2eQ1ictX4Gf/8QeJbQlw/VO8x/uGjX4+wBqUTcGyR6BRc4 7en4cC1C639uj1GSLql030r0OCQz0d9y37KdWLFRWay1NhO2uOHC5ammUmP9CvJT H33W90WplqVk0w== -----END CERTIFICATE-----Generated at Fri Dec 12 13:12:41 2025 by rpki-client