This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft File: A9yMYjke_dTdGORoGeF3gAKpoYc.mft (raw, json) Hash identifier: 9r8qV4cskCsXj52m6YtEuF+CvficXeblmLdKKD/Ww6k= Subject key identifier: F2:47:DC:FE:73:3C:6F:B9:62:63:DF:80:F0:2F:6D:B2:AD:00:89:64 Authority key identifier: 03:DC:8C:62:39:1E:FD:D4:DD:18:E4:68:19:E1:77:80:02:A9:A1:87 Certificate issuer: /CN=03dc8c62391efdd4dd18e46819e1778002a9a187 Certificate serial: 019B33B279DD387772707F7B90A59E83526E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft Manifest number: 0543 Signing time: Thu 18 Dec 2025 23:01:33 +0000 Manifest this update: Thu 18 Dec 2025 23:01:33 +0000 Manifest next update: Fri 19 Dec 2025 23:01:33 +0000 Files and hashes: 1: A9yMYjke_dTdGORoGeF3gAKpoYc.crl (hash: oQRZtauMSvfJDpW/Fab2sFNcuoWSENUgJtMoWD1bj74=) 2: KMKlBIWdbSLJxhG6mlrGw76dE8w.roa (hash: wMSY3OLmFX6U/ZLAS1pVuwf7520K0rZUrgx8A8ShiM0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.crl rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:b2:79:dd:38:77:72:70:7f:7b:90:a5:9e:83:52:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03dc8c62391efdd4dd18e46819e1778002a9a187 Validity Not Before: Dec 18 23:01:33 2025 GMT Not After : Dec 19 23:01:33 2025 GMT Subject: CN=f247dcfe733c6fb96263df80f02f6db2ad008964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2b:ee:7c:90:3d:ce:f7:09:d6:8a:7f:c3:cc: 1b:16:8d:98:62:07:44:e5:f1:33:d5:47:2f:61:d3: f2:79:41:80:ea:cb:0c:bf:d6:50:14:a1:fd:ba:e4: 41:26:b5:6d:35:bb:20:3f:a6:4e:89:42:dd:f4:ef: 70:84:61:cc:f3:52:23:14:d1:14:e7:15:09:7c:a7: 43:f5:23:7a:d2:86:2c:3d:1b:2b:c4:9f:78:14:25: ef:1a:72:5c:21:de:ee:ac:54:15:9d:03:15:ba:b5: 0e:cf:6c:fb:f1:a8:48:64:e6:bf:8d:b9:d9:ab:8f: fb:14:bf:18:19:4e:ef:ba:69:63:43:3f:f0:c4:f4: 2a:cf:18:d3:c8:d7:68:3b:5b:3b:30:98:4d:18:d2: cb:bb:83:d3:53:d6:c2:61:86:cd:15:b3:94:dd:28: 46:84:fa:68:01:35:3c:26:80:d1:11:5e:3b:70:53: ce:b5:7d:b4:c7:92:fb:2d:7a:1f:f3:74:40:d4:3d: 18:70:2a:f3:cd:8d:b7:e4:b4:fb:2c:84:e1:a5:f0: 82:c3:50:d7:2b:57:ae:f9:c3:d8:0b:95:00:25:2b: 7a:c6:0f:0a:d8:1c:bf:f3:82:4c:56:49:46:67:0d: 3c:ee:3d:96:dc:ea:f1:36:ee:3b:00:88:16:e1:02: f0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:47:DC:FE:73:3C:6F:B9:62:63:DF:80:F0:2F:6D:B2:AD:00:89:64 X509v3 Authority Key Identifier: keyid:03:DC:8C:62:39:1E:FD:D4:DD:18:E4:68:19:E1:77:80:02:A9:A1:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:2a:d3:7f:6c:22:e6:06:35:68:31:0e:26:43:4d:f9:93:53: d9:94:0f:e2:f4:bb:3d:8e:32:0c:a9:47:29:c0:96:00:b1:9d: df:fb:9b:83:2b:2e:21:6b:26:a6:38:e7:7d:b6:bb:2b:b9:20: 1a:7b:7f:1d:05:75:2b:3d:af:7c:4b:90:87:24:82:f1:2c:8b: d7:ba:b5:62:76:2a:8f:11:5a:43:e0:d5:93:55:98:7a:06:a5: c7:e7:48:59:74:25:5b:8b:44:7c:96:91:31:c3:4b:54:63:58: 58:19:0d:77:94:7c:eb:cc:29:0e:3b:3a:85:29:0c:64:5f:68: 49:f8:e2:83:fe:b3:f4:9b:bc:68:c6:82:56:ec:d0:56:2a:48: eb:08:eb:fa:89:c6:45:e6:d9:3c:20:91:a8:75:e6:a8:9d:e0: 22:3e:79:e4:e2:38:e0:f3:53:50:81:3e:d8:e5:12:29:09:1f: 83:01:4c:e6:93:08:05:54:ba:ad:d3:89:48:78:51:2b:9a:c7: 34:e6:e7:db:4c:cc:0e:10:55:b0:ad:ea:ca:a9:50:2d:29:77: bc:bb:a0:3c:f4:1c:45:c3:35:73:37:ac:d7:b8:79:e4:7c:01: 64:ff:3c:a4:5f:b8:29:44:c8:3c:92:a7:45:69:7d:5b:6d:c9: 30:0b:4d:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszsnndOHdycH97kKWeg1JuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzZGM4YzYyMzkxZWZkZDRkZDE4ZTQ2ODE5ZTE3NzgwMDJh OWExODcwHhcNMjUxMjE4MjMwMTMzWhcNMjUxMjE5MjMwMTMzWjAzMTEwLwYDVQQD EyhmMjQ3ZGNmZTczM2M2ZmI5NjI2M2RmODBmMDJmNmRiMmFkMDA4OTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyyvufJA9zvcJ1op/w8wbFo2YYgdE 5fEz1UcvYdPyeUGA6ssMv9ZQFKH9uuRBJrVtNbsgP6ZOiULd9O9whGHM81IjFNEU 5xUJfKdD9SN60oYsPRsrxJ94FCXvGnJcId7urFQVnQMVurUOz2z78ahIZOa/jbnZ q4/7FL8YGU7vumljQz/wxPQqzxjTyNdoO1s7MJhNGNLLu4PTU9bCYYbNFbOU3ShG hPpoATU8JoDREV47cFPOtX20x5L7LXof83RA1D0YcCrzzY235LT7LIThpfCCw1DX K1eu+cPYC5UAJSt6xg8K2By/84JMVklGZw087j2W3OrxNu47AIgW4QLwXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPJH3P5zPG+5YmPfgPAvbbKtAIlkMB8GA1UdIwQY MBaAFAPcjGI5Hv3U3RjkaBnhd4ACqaGHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTl5TVlqa2VfZFRkR09Sb0dlRjNnQUtwb1ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kMDgwYzctY2VlNi00YjQxLThjMWMt MGVmOGMwMzZiNjE2LzEvQTl5TVlqa2VfZFRkR09Sb0dlRjNnQUtwb1ljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9kMDgwYzctY2VlNi00YjQxLThjMWMtMGVmOGMwMzZiNjE2 LzEvQTl5TVlqa2VfZFRkR09Sb0dlRjNnQUtwb1ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUyrTf2wi 5gY1aDEOJkNN+ZNT2ZQP4vS7PY4yDKlHKcCWALGd3/ubgysuIWsmpjjnfba7K7kg Gnt/HQV1Kz2vfEuQhySC8SyL17q1YnYqjxFaQ+DVk1WYegalx+dIWXQlW4tEfJaR McNLVGNYWBkNd5R868wpDjs6hSkMZF9oSfjig/6z9Ju8aMaCVuzQVipI6wjr+onG RebZPCCRqHXmqJ3gIj555OI44PNTUIE+2OUSKQkfgwFM5pMIBVS6rdOJSHhRK5rH NObn20zMDhBVsK3qyqlQLSl3vLugPPQcRcM1czes17h55HwBZP88pF+4KUTIPJKn RWl9W23JMAtNrg== -----END CERTIFICATE-----Generated at Fri Dec 19 07:49:39 2025 by rpki-client