This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft File: Ad0iu63J75fJwaOGG21rTE3dhoc.mft (raw, json) Hash identifier: uf0am55viK0hk6d1oU9XpxFcuEie5d12Zj9gTrJyiM4= Subject key identifier: 9A:56:2F:84:A7:90:D7:C7:C9:3E:9D:AA:45:8E:8C:46:BA:28:AB:1F Authority key identifier: 01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87 Certificate issuer: /CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687 Certificate serial: 019B5977A81AAD5A29934ADEB8053449A90B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft Manifest number: 1188 Signing time: Fri 26 Dec 2025 07:02:52 +0000 Manifest this update: Fri 26 Dec 2025 07:02:52 +0000 Manifest next update: Sat 27 Dec 2025 07:02:52 +0000 Files and hashes: 1: Ad0iu63J75fJwaOGG21rTE3dhoc.crl (hash: lJCV7bBYa/FhU5uCjJMndjuWQ8RqYrDvhZK5VN+pdkA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:a8:1a:ad:5a:29:93:4a:de:b8:05:34:49:a9:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687 Validity Not Before: Dec 26 07:02:52 2025 GMT Not After : Dec 27 07:02:52 2025 GMT Subject: CN=9a562f84a790d7c7c93e9daa458e8c46ba28ab1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e6:79:ea:a1:d0:3b:36:a6:bf:0a:94:04:d6: de:46:47:99:61:78:14:fd:31:70:4e:b3:d1:ce:01: 0c:c2:2e:4a:69:b1:e6:aa:df:b4:58:2d:9c:85:a9: 4d:11:51:d4:26:1f:42:73:28:10:d4:56:a8:aa:78: a1:ca:3b:4b:8e:86:6b:ed:ce:64:5b:3a:4e:2c:f5: 0f:79:f0:b8:c5:8e:fc:5d:50:e4:e3:52:86:d5:f8: ef:cd:a1:a4:db:da:a3:80:61:df:e4:e2:bc:7e:55: 45:7b:ab:98:c8:de:7e:2a:0b:23:0d:7c:58:fd:05: da:8c:02:a7:b1:6c:3e:16:57:11:c4:5a:66:1e:61: 3f:83:17:36:23:13:1c:49:66:1f:af:60:8f:11:8c: 0e:cf:5e:9c:d0:3d:96:8c:2f:42:f3:98:e4:8e:ea: d0:a6:fc:56:5d:3d:77:fd:0d:cb:38:8e:b4:2c:1c: 8b:9f:fc:78:f0:82:00:51:0d:b3:47:fe:f6:5d:6a: 0e:20:b6:e5:a4:de:0e:d5:76:2c:62:b6:3f:f4:c3: ef:58:b8:5c:b1:7f:6b:53:72:f2:8f:13:d2:66:47: 93:ee:e2:ec:4f:b4:10:39:f5:97:08:68:2a:72:8b: d3:85:14:79:50:3f:59:b7:8a:68:1d:a5:91:4e:f8: 8c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:56:2F:84:A7:90:D7:C7:C9:3E:9D:AA:45:8E:8C:46:BA:28:AB:1F X509v3 Authority Key Identifier: keyid:01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:23:40:1b:c1:4c:1c:e0:89:dc:ac:6b:17:c4:55:d7:82:1a: ea:39:78:be:df:8c:49:35:1a:9b:6a:37:b2:00:ff:40:f5:28: b7:d8:e9:24:bd:9c:dd:09:68:55:1e:a3:5e:77:ad:9d:59:6f: 72:fb:83:da:a3:a8:bd:44:ce:48:4d:7d:88:e9:76:1e:82:78: bc:45:d4:7d:8d:54:31:9a:55:9f:bb:8c:89:2c:74:db:3b:00: 17:66:ce:8f:10:a3:c6:40:6f:c3:b2:96:a3:0b:c3:13:07:6d: f0:b1:00:2e:cc:e3:33:89:c1:de:4d:56:03:d7:26:70:ed:98: a4:5c:4d:62:d7:d2:f2:d7:3c:09:48:98:ae:79:49:c7:2f:47: 35:e1:5a:ae:2b:48:32:c2:7c:48:29:10:31:26:86:9d:16:96: 30:ad:12:29:7b:80:7f:1e:8c:19:2b:78:c1:f7:c1:df:2a:7b: 0d:2f:99:86:6d:62:b6:5c:04:a0:38:cb:75:b3:02:21:68:d8: 1b:96:c0:99:f8:40:4b:74:24:aa:e4:64:93:52:49:f5:7e:36: ee:95:2a:5f:81:87:17:91:c2:eb:69:42:b6:44:a0:99:f5:3f: 2a:8c:cb:be:90:8a:d5:fc:8b:94:98:a1:cd:b3:17:44:11:7b: 0d:12:87:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd6garVopk0reuAU0SakLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxZGQyMmJiYWRjOWVmOTdjOWMxYTM4NjFiNmQ2YjRjNGRk ZDg2ODcwHhcNMjUxMjI2MDcwMjUyWhcNMjUxMjI3MDcwMjUyWjAzMTEwLwYDVQQD Eyg5YTU2MmY4NGE3OTBkN2M3YzkzZTlkYWE0NThlOGM0NmJhMjhhYjFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOZ56qHQOzamvwqUBNbeRkeZYXgU /TFwTrPRzgEMwi5KabHmqt+0WC2chalNEVHUJh9CcygQ1FaoqnihyjtLjoZr7c5k WzpOLPUPefC4xY78XVDk41KG1fjvzaGk29qjgGHf5OK8flVFe6uYyN5+KgsjDXxY /QXajAKnsWw+FlcRxFpmHmE/gxc2IxMcSWYfr2CPEYwOz16c0D2WjC9C85jkjurQ pvxWXT13/Q3LOI60LByLn/x48IIAUQ2zR/72XWoOILblpN4O1XYsYrY/9MPvWLhc sX9rU3LyjxPSZkeT7uLsT7QQOfWXCGgqcovThRR5UD9Zt4poHaWRTviMOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJpWL4SnkNfHyT6dqkWOjEa6KKsfMB8GA1UdIwQY MBaAFAHdIrutye+XycGjhhtta0xN3YaHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWQwaXU2M0o3NWZKd2FPR0cyMXJURTNkaG9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi84NTdhODMtNmVkMC00MWM2LWJkZDYt NzA3ZGIyNTI0ZTZiLzEvQWQwaXU2M0o3NWZKd2FPR0cyMXJURTNkaG9jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi84NTdhODMtNmVkMC00MWM2LWJkZDYtNzA3ZGIyNTI0ZTZi LzEvQWQwaXU2M0o3NWZKd2FPR0cyMXJURTNkaG9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOSNAG8FM HOCJ3KxrF8RV14Ia6jl4vt+MSTUam2o3sgD/QPUot9jpJL2c3QloVR6jXnetnVlv cvuD2qOovUTOSE19iOl2HoJ4vEXUfY1UMZpVn7uMiSx02zsAF2bOjxCjxkBvw7KW owvDEwdt8LEALszjM4nB3k1WA9cmcO2YpFxNYtfS8tc8CUiYrnlJxy9HNeFaritI MsJ8SCkQMSaGnRaWMK0SKXuAfx6MGSt4wffB3yp7DS+Zhm1itlwEoDjLdbMCIWjY G5bAmfhAS3QkquRkk1JJ9X427pUqX4GHF5HC62lCtkSgmfU/KozLvpCK1fyLlJih zbMXRBF7DRKHIA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:02:28 2025 by rpki-client