This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft File: 73imvMheyK3m7M6IDuBz1jdweWU.mft (raw, json) Hash identifier: g5FOAlj49Ze7BSlXaY6dOqbF6RKsI/s0RqEw+A+hAa8= Subject key identifier: 63:F6:42:15:1A:33:FF:E9:CE:5B:C4:A5:48:2B:A1:CC:2A:B2:73:33 Authority key identifier: EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65 Certificate issuer: /CN=ef78a6bcc85ec8ade6ecce880ee073d637707965 Certificate serial: 019B59ACF612C01F32922798B30CBD7ACD9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft Manifest number: 1798 Signing time: Fri 26 Dec 2025 08:01:05 +0000 Manifest this update: Fri 26 Dec 2025 08:01:05 +0000 Manifest next update: Sat 27 Dec 2025 08:01:05 +0000 Files and hashes: 1: 73imvMheyK3m7M6IDuBz1jdweWU.crl (hash: V9jRzEE/Vg+WxBMcf3ls2U82wJgCnNbrZ2o6S5XKWgg=) 2: 8ofg2JoTyb5e1GIiVqV2PdSesOU.roa (hash: z/SuBS1vMLBWp74A2t3I4/K0L71UAtSRqfDU9yXXBww=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:f6:12:c0:1f:32:92:27:98:b3:0c:bd:7a:cd:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef78a6bcc85ec8ade6ecce880ee073d637707965 Validity Not Before: Dec 26 08:01:05 2025 GMT Not After : Dec 27 08:01:05 2025 GMT Subject: CN=63f642151a33ffe9ce5bc4a5482ba1cc2ab27333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ba:66:47:4f:d4:0a:d2:0c:04:6d:db:20:51: 44:cc:4b:96:bf:4b:8f:24:39:a1:58:b2:31:79:99: 16:41:78:f7:e7:85:5f:81:36:54:fd:57:09:e0:b8: ce:96:a6:42:9e:88:05:c0:a2:aa:a7:7a:1d:56:16: 40:ec:ce:fe:a0:8c:44:b1:be:96:aa:27:e6:fe:a6: 0e:3b:c0:14:0c:7f:fb:2b:b7:c5:7e:25:e0:e0:5d: 4c:ea:20:b9:84:26:f0:17:d3:9f:6e:10:2e:31:05: 65:29:05:9d:16:2c:64:6d:88:90:7b:20:d5:91:5f: 66:50:82:6c:12:d1:52:2b:59:8d:0c:97:86:52:07: 87:48:c7:a2:aa:e6:97:b1:3c:ed:d2:10:c0:3e:5d: a3:6c:44:5f:5a:84:0a:37:75:25:93:5a:d7:39:dc: 80:a8:cb:0d:3b:f2:e3:10:44:73:5b:65:83:8e:15: a4:68:41:3d:64:bf:4c:c3:ef:2e:9c:89:f4:05:e5: b1:6d:d3:be:81:87:43:c6:71:df:87:fa:65:e0:b1: 91:51:e4:af:c8:9e:04:09:b3:41:49:65:9f:75:55: b1:08:cc:bd:de:7d:24:f4:d8:62:de:0b:2c:f2:af: f6:a5:a3:33:bb:3c:34:a8:1d:de:26:83:e3:36:e7: ed:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F6:42:15:1A:33:FF:E9:CE:5B:C4:A5:48:2B:A1:CC:2A:B2:73:33 X509v3 Authority Key Identifier: keyid:EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:62:ac:d8:09:e3:c5:25:c5:8b:20:8f:cb:be:67:de:a3:cc: 1b:c5:9b:fa:29:ed:14:6c:9b:95:de:76:26:78:c1:fb:a5:7a: f8:3a:ec:c7:2b:51:f6:fb:4f:68:f8:23:d5:e3:55:ba:6f:a6: ae:bc:aa:16:3a:31:a2:19:f3:1e:85:40:dd:fc:d6:e3:99:19: bb:42:2f:35:c1:8e:29:fa:db:e7:af:5a:e1:3d:77:66:e2:63: 94:51:62:d7:ea:d3:e7:c4:b7:27:88:b8:a0:69:e5:01:00:1a: a1:7d:d0:83:69:41:1b:c5:f1:5e:38:ae:5a:d7:3e:60:d3:0a: fd:ad:ef:b2:79:7e:b0:8e:30:67:3a:c2:31:c8:d1:b0:77:b0: da:ee:6f:0e:71:4b:62:62:29:88:55:2b:de:e8:dd:b0:40:a0: 07:f9:60:ac:d7:fa:36:52:3a:f3:f6:88:d6:d1:25:72:a6:81: a0:f0:7f:5c:99:0c:54:76:e2:95:bd:18:0b:68:0d:b2:ce:1d: 58:70:4c:87:bb:d2:7f:45:d5:a2:6e:53:63:09:74:77:bf:74: ad:2a:70:9f:db:df:be:bd:5f:7b:5f:3a:9a:d9:d4:10:3f:f0: 40:8d:ea:f6:0f:84:28:83:71:da:d0:2c:50:bc:fd:f0:1b:ce: 40:31:48:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrPYSwB8ykieYswy9es2fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNzhhNmJjYzg1ZWM4YWRlNmVjY2U4ODBlZTA3M2Q2Mzc3 MDc5NjUwHhcNMjUxMjI2MDgwMTA1WhcNMjUxMjI3MDgwMTA1WjAzMTEwLwYDVQQD Eyg2M2Y2NDIxNTFhMzNmZmU5Y2U1YmM0YTU0ODJiYTFjYzJhYjI3MzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bpmR0/UCtIMBG3bIFFEzEuWv0uP JDmhWLIxeZkWQXj354VfgTZU/VcJ4LjOlqZCnogFwKKqp3odVhZA7M7+oIxEsb6W qifm/qYOO8AUDH/7K7fFfiXg4F1M6iC5hCbwF9OfbhAuMQVlKQWdFixkbYiQeyDV kV9mUIJsEtFSK1mNDJeGUgeHSMeiquaXsTzt0hDAPl2jbERfWoQKN3Ulk1rXOdyA qMsNO/LjEERzW2WDjhWkaEE9ZL9Mw+8unIn0BeWxbdO+gYdDxnHfh/pl4LGRUeSv yJ4ECbNBSWWfdVWxCMy93n0k9Nhi3gss8q/2paMzuzw0qB3eJoPjNuft6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGP2QhUaM//pzlvEpUgrocwqsnMzMB8GA1UdIwQY MBaAFO94przIXsit5uzOiA7gc9Y3cHllMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzNpbXZNaGV5SzNtN002SUR1QnoxamR3ZVdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80OWFiYTQtZTYzZC00ZTA2LThhMTIt OTZmMjE2ODkzZGVjLzEvNzNpbXZNaGV5SzNtN002SUR1QnoxamR3ZVdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi80OWFiYTQtZTYzZC00ZTA2LThhMTItOTZmMjE2ODkzZGVj LzEvNzNpbXZNaGV5SzNtN002SUR1QnoxamR3ZVdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAamKs2Anj xSXFiyCPy75n3qPMG8Wb+intFGybld52JnjB+6V6+DrsxytR9vtPaPgj1eNVum+m rryqFjoxohnzHoVA3fzW45kZu0IvNcGOKfrb569a4T13ZuJjlFFi1+rT58S3J4i4 oGnlAQAaoX3Qg2lBG8XxXjiuWtc+YNMK/a3vsnl+sI4wZzrCMcjRsHew2u5vDnFL YmIpiFUr3ujdsECgB/lgrNf6NlI68/aI1tElcqaBoPB/XJkMVHbilb0YC2gNss4d WHBMh7vSf0XVom5TYwl0d790rSpwn9vfvr1fe186mtnUED/wQI3q9g+EKINx2tAs ULz98BvOQDFIMA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:27 2025 by rpki-client