This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft File: 0fbkNwERz7-WhASFQie4CShRRQ0.mft (raw, json) Hash identifier: VUG/VUsQcdpasiDDEVO8no2tEeI7s+6AJlRQ0HG9480= Subject key identifier: 47:B3:72:D0:25:2C:4C:69:6A:7A:E5:D1:10:7F:C6:1D:4A:69:BD:59 Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d Certificate serial: 019B09A323B01352C329CC771B8440CF0519 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft Manifest number: 0FCF Signing time: Wed 10 Dec 2025 19:00:44 +0000 Manifest this update: Wed 10 Dec 2025 19:00:44 +0000 Manifest next update: Thu 11 Dec 2025 19:00:44 +0000 Files and hashes: 1: 0fbkNwERz7-WhASFQie4CShRRQ0.crl (hash: fFbzIuIaJJey9+142PHtCTMHSBN2Vtt3zKhoFH0Q1ZE=) 2: w9laCbfNTG9x8SgYBLM8cjfOdmA.roa (hash: WglJOtLwDI5HpNhEnz7a8Exzapc/0A4kuz517Fgs06A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:09:a3:23:b0:13:52:c3:29:cc:77:1b:84:40:cf:05:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d Validity Not Before: Dec 10 19:00:44 2025 GMT Not After : Dec 11 19:00:44 2025 GMT Subject: CN=47b372d0252c4c696a7ae5d1107fc61d4a69bd59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:43:2e:91:a9:16:a0:99:22:0d:b0:f9:05:55: f5:df:e0:b0:e0:44:bd:f5:a1:57:f2:63:33:59:d3: 33:90:c3:3b:94:59:06:8a:5e:97:cf:8f:c7:e2:47: 70:01:38:d2:e8:bb:79:c6:ef:21:d8:24:ca:1a:54: 3a:7c:85:d2:86:7a:a4:30:06:d4:ec:3f:43:f5:0a: 03:6c:5d:4d:d4:d3:39:ae:e4:08:02:8b:79:14:46: 0b:0c:d4:65:76:d5:cc:27:ad:bf:15:4f:2e:07:cc: 2b:01:56:7b:d9:cc:10:18:a9:d7:77:b2:07:34:4f: c8:f8:6e:a1:1f:e2:39:4f:2a:0f:bb:bb:a4:ee:72: e7:94:7f:db:2f:ab:d7:1b:5c:f3:b2:09:9e:00:4b: aa:f1:68:df:e3:5a:47:e7:e5:ef:de:7f:13:86:9b: df:10:09:cf:38:da:a0:fd:53:1f:f9:2a:2c:18:2f: 8a:af:f1:26:0e:eb:c4:a2:59:ab:9c:fe:30:03:6a: ee:43:46:90:f2:94:88:a2:03:6d:66:3a:8f:71:13: 3a:44:4e:ae:4a:1a:e6:80:30:68:a6:6e:f2:b1:f0: 1f:f0:61:1a:64:6e:aa:04:bd:97:76:8e:7b:6b:44: 17:24:d5:83:a5:2f:24:47:28:d6:af:58:6f:64:ac: 87:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B3:72:D0:25:2C:4C:69:6A:7A:E5:D1:10:7F:C6:1D:4A:69:BD:59 X509v3 Authority Key Identifier: keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:e0:82:13:be:a0:f0:a5:dd:49:b1:79:a4:d3:2d:95:cb:9a: 2c:1e:2d:0d:29:ee:28:71:5c:2e:69:6a:f1:37:8c:21:dc:05: 55:6f:9d:13:f0:fc:cf:01:ff:b8:da:f3:e9:8b:4f:80:3c:57: 31:23:79:95:46:b7:98:93:0e:50:97:49:4d:9b:77:0f:a0:b3: 65:c1:20:7a:71:eb:ab:f9:09:a6:67:0f:d3:10:c5:f9:0b:1d: 88:6e:01:d4:d1:42:45:e7:0e:ee:43:12:bc:28:29:c5:f3:b0: 5d:15:9a:4e:e4:0e:a5:54:c5:9b:c3:7e:73:59:b3:fe:04:16: e8:e8:2a:06:88:b2:b9:24:ca:09:e3:59:7c:fb:e4:47:b6:91: a3:1e:99:34:db:9f:fe:2e:16:49:b3:08:30:c1:15:4f:c5:62: 41:e5:73:82:35:48:2c:19:da:a6:ba:54:a1:b7:8e:d5:b2:ef: 45:4b:31:9b:fa:81:38:e4:a0:5f:69:00:ef:75:1a:d6:09:ff: 13:4a:9d:7d:13:3a:2e:04:ab:18:ee:6e:8b:77:11:21:e7:d4: c2:88:bd:95:14:42:5a:e3:66:3b:4e:7f:48:bb:b9:6d:35:10: 7b:d9:9d:ba:11:a6:60:aa:8c:47:e8:55:63:b2:2d:cc:e8:a5: f8:d2:40:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsJoyOwE1LDKcx3G4RAzwUZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZjZlNDM3MDExMWNmYmY5Njg0MDQ4NTQyMjdiODA5Mjg1 MTQ1MGQwHhcNMjUxMjEwMTkwMDQ0WhcNMjUxMjExMTkwMDQ0WjAzMTEwLwYDVQQD Eyg0N2IzNzJkMDI1MmM0YzY5NmE3YWU1ZDExMDdmYzYxZDRhNjliZDU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0MukakWoJkiDbD5BVX13+Cw4ES9 9aFX8mMzWdMzkMM7lFkGil6Xz4/H4kdwATjS6Lt5xu8h2CTKGlQ6fIXShnqkMAbU 7D9D9QoDbF1N1NM5ruQIAot5FEYLDNRldtXMJ62/FU8uB8wrAVZ72cwQGKnXd7IH NE/I+G6hH+I5TyoPu7uk7nLnlH/bL6vXG1zzsgmeAEuq8Wjf41pH5+Xv3n8Thpvf EAnPONqg/VMf+SosGC+Kr/EmDuvEolmrnP4wA2ruQ0aQ8pSIogNtZjqPcRM6RE6u ShrmgDBopm7ysfAf8GEaZG6qBL2Xdo57a0QXJNWDpS8kRyjWr1hvZKyHawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEezctAlLExpanrl0RB/xh1Kab1ZMB8GA1UdIwQY MBaAFNH25DcBEc+/loQEhUInuAkoUUUNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGZia053RVJ6Ny1XaEFTRlFpZTRDU2hSUlEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny81OWQ0ZTktNjYyYy00MzVhLWIzNTEt NGFhNTM5YTMwZDIxLzEvMGZia053RVJ6Ny1XaEFTRlFpZTRDU2hSUlEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny81OWQ0ZTktNjYyYy00MzVhLWIzNTEtNGFhNTM5YTMwZDIx LzEvMGZia053RVJ6Ny1XaEFTRlFpZTRDU2hSUlEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJeCCE76g 8KXdSbF5pNMtlcuaLB4tDSnuKHFcLmlq8TeMIdwFVW+dE/D8zwH/uNrz6YtPgDxX MSN5lUa3mJMOUJdJTZt3D6CzZcEgenHrq/kJpmcP0xDF+QsdiG4B1NFCRecO7kMS vCgpxfOwXRWaTuQOpVTFm8N+c1mz/gQW6OgqBoiyuSTKCeNZfPvkR7aRox6ZNNuf /i4WSbMIMMEVT8ViQeVzgjVILBnaprpUobeO1bLvRUsxm/qBOOSgX2kA73Ua1gn/ E0qdfRM6LgSrGO5ui3cRIefUwoi9lRRCWuNmO05/SLu5bTUQe9mduhGmYKqMR+hV Y7ItzOil+NJAqQ== -----END CERTIFICATE-----Generated at Thu Dec 11 00:18:30 2025 by rpki-client