This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft File: FAa0-f1RaOt3gegksUU-mfXmVTw.mft (raw, json) Hash identifier: B3LXvFE2U73ItVPh4EpQ5MsJQU1rgCCMteXNsLgBYHw= Subject key identifier: 91:D0:8C:06:6A:E1:21:B0:14:B5:7A:F8:D0:43:97:6D:3B:49:4E:58 Authority key identifier: 14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C Certificate issuer: /CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c Certificate serial: 019B43C9C7934AF56037A99DABE23CF7398D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft Manifest number: 178A Signing time: Mon 22 Dec 2025 02:00:55 +0000 Manifest this update: Mon 22 Dec 2025 02:00:55 +0000 Manifest next update: Tue 23 Dec 2025 02:00:55 +0000 Files and hashes: 1: FAa0-f1RaOt3gegksUU-mfXmVTw.crl (hash: 1ec3Wq/EzVENsWtOPS4omV2dtjA1FRetf+cqFovJA10=) 2: c3go-15xGcBaQkyMFCkLYeR3zYQ.roa (hash: 4H2iOu8gLLffNi536xCsuCivAwnItfPi2vTZ/W207ew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:c9:c7:93:4a:f5:60:37:a9:9d:ab:e2:3c:f7:39:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c Validity Not Before: Dec 22 02:00:55 2025 GMT Not After : Dec 23 02:00:55 2025 GMT Subject: CN=91d08c066ae121b014b57af8d043976d3b494e58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a9:4a:85:4f:0b:63:fb:45:6b:28:72:e0:cf: 67:d1:06:e1:fe:e1:17:5f:71:84:66:9d:8f:80:af: e7:5f:08:d2:a1:6d:29:66:d8:ca:00:6f:71:03:e2: c6:c5:dc:f4:2b:38:72:35:57:32:5b:09:e0:82:2c: 7a:e8:a7:74:71:8d:4a:e3:c1:b2:1d:36:33:2f:7f: 34:c2:7d:09:42:dd:ac:ea:11:6b:7b:52:28:be:9e: f4:d8:cb:c1:7a:1b:39:f8:82:38:75:16:8c:84:0c: 06:e6:ae:67:09:f0:29:3a:06:ea:da:cb:ff:a7:ef: a2:0f:f0:8b:32:b3:50:ad:58:06:6f:af:6c:b2:30: d1:84:6a:b1:76:d6:8f:72:01:44:ca:f6:a9:cd:d8: d9:c2:02:31:d9:19:6c:2f:de:61:58:8f:d4:58:b9: 4d:de:68:d8:02:2d:d6:3c:81:c2:27:c9:20:81:ec: 39:17:22:a4:65:58:d1:46:35:57:07:ee:d9:a1:e7: dc:57:9b:e9:f5:69:57:7e:9b:29:53:bb:b1:6e:eb: 32:86:ca:69:15:3e:d8:e1:6d:18:77:50:1a:99:da: 58:d3:ed:5e:e8:6d:1f:17:c2:71:dd:47:61:21:9b: a3:8e:1a:37:31:73:6a:86:14:77:5e:ff:5a:86:ed: a0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D0:8C:06:6A:E1:21:B0:14:B5:7A:F8:D0:43:97:6D:3B:49:4E:58 X509v3 Authority Key Identifier: keyid:14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:27:bd:d1:d1:a7:45:1d:2a:6b:c6:ee:b5:1b:e7:3d:e1:f1: b9:13:4e:38:03:c8:95:e3:15:eb:2f:84:5c:a8:85:ea:86:57: a9:c7:d3:4a:47:b8:e5:5f:d8:84:70:29:42:85:35:df:76:a9: b3:21:a2:5d:54:fc:d3:3e:12:d6:5b:05:62:18:b1:52:65:e5: 05:42:9d:a7:d7:35:79:b8:bd:08:7a:9e:b3:6c:6e:3b:ff:30: 3c:cc:fc:3d:4a:f7:63:5f:5a:7e:95:db:73:56:30:cf:0b:1a: ff:d8:a9:5c:a7:2d:dc:0f:bd:b3:ea:9e:29:07:01:6e:20:01: 2d:17:b2:f7:58:94:24:29:e1:fb:49:02:8d:66:2a:a5:ca:ce: 0d:60:97:d0:7e:f2:69:7d:59:35:3c:e7:9c:17:15:0f:8c:1e: 06:f6:f4:a8:65:d7:a1:b8:06:a1:f8:c4:b9:f2:5a:27:8c:b8: b2:35:19:93:2c:35:53:b2:7e:39:7d:5d:ba:92:38:12:b7:a1: d8:f8:dd:dd:0a:50:c1:a2:00:d7:27:f9:9e:26:12:af:d8:76: c8:35:bb:6d:74:f8:77:c4:a5:5c:6d:42:22:fe:cb:2c:94:b0: b0:15:92:19:35:30:06:07:fa:0b:2e:e1:8a:20:3b:30:f0:f8: 14:f0:55:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDyceTSvVgN6mdq+I89zmNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0MDZiNGY5ZmQ1MTY4ZWI3NzgxZTgyNGIxNDUzZTk5ZjVl NjU1M2MwHhcNMjUxMjIyMDIwMDU1WhcNMjUxMjIzMDIwMDU1WjAzMTEwLwYDVQQD Eyg5MWQwOGMwNjZhZTEyMWIwMTRiNTdhZjhkMDQzOTc2ZDNiNDk0ZTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0alKhU8LY/tFayhy4M9n0Qbh/uEX X3GEZp2PgK/nXwjSoW0pZtjKAG9xA+LGxdz0KzhyNVcyWwnggix66Kd0cY1K48Gy HTYzL380wn0JQt2s6hFre1Iovp702MvBehs5+II4dRaMhAwG5q5nCfApOgbq2sv/ p++iD/CLMrNQrVgGb69ssjDRhGqxdtaPcgFEyvapzdjZwgIx2RlsL95hWI/UWLlN 3mjYAi3WPIHCJ8kggew5FyKkZVjRRjVXB+7ZoefcV5vp9WlXfpspU7uxbusyhspp FT7Y4W0Yd1AamdpY0+1e6G0fF8Jx3UdhIZujjho3MXNqhhR3Xv9ahu2gtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJHQjAZq4SGwFLV6+NBDl207SU5YMB8GA1UdIwQY MBaAFBQGtPn9UWjrd4HoJLFFPpn15lU8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkFhMC1mMVJhT3QzZ2Vna3NVVS1tZlhtVlR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NmQ1MTItNDk5Yi00MThlLWE0MjAt YzE2MTI0NmM4MjVhLzEvRkFhMC1mMVJhT3QzZ2Vna3NVVS1tZlhtVlR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC84NmQ1MTItNDk5Yi00MThlLWE0MjAtYzE2MTI0NmM4MjVh LzEvRkFhMC1mMVJhT3QzZ2Vna3NVVS1tZlhtVlR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArye90dGn RR0qa8butRvnPeHxuRNOOAPIleMV6y+EXKiF6oZXqcfTSke45V/YhHApQoU133ap syGiXVT80z4S1lsFYhixUmXlBUKdp9c1ebi9CHqes2xuO/8wPMz8PUr3Y19afpXb c1Ywzwsa/9ipXKct3A+9s+qeKQcBbiABLRey91iUJCnh+0kCjWYqpcrODWCX0H7y aX1ZNTznnBcVD4weBvb0qGXXobgGofjEufJaJ4y4sjUZkyw1U7J+OX1dupI4Ereh 2Pjd3QpQwaIA1yf5niYSr9h2yDW7bXT4d8SlXG1CIv7LLJSwsBWSGTUwBgf6Cy7h iiA7MPD4FPBVVg== -----END CERTIFICATE-----Generated at Mon Dec 22 06:53:03 2025 by rpki-client