This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft File: rtyPMnpGGWTAqHqceAlAHFfIbUE.mft (raw, json) Hash identifier: 57wu4vptWJ0/14t/kCB8LAbsf8Zt7oxZM3NCvRMLeBs= Subject key identifier: 1B:15:00:1E:64:79:EB:6F:A9:A9:25:59:51:B7:03:64:A3:BE:53:20 Authority key identifier: AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41 Certificate issuer: /CN=aedc8f327a461964c0a87a9c7809401c57c86d41 Certificate serial: 019B24E358BDB54A94E4DCD012232A7DA781 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft Manifest number: 177B Signing time: Tue 16 Dec 2025 02:00:37 +0000 Manifest this update: Tue 16 Dec 2025 02:00:37 +0000 Manifest next update: Wed 17 Dec 2025 02:00:37 +0000 Files and hashes: 1: 2r5V-jLaZB51UHtAh-bFMsh9deI.roa (hash: MKCPJpuTtJZg9qISSN6i7GBsMIxb/Qe56YUG3zY4d1Q=) 2: rtyPMnpGGWTAqHqceAlAHFfIbUE.crl (hash: 8atfgAIqavR+bddLwnVyCaIQm8Bj2ymwm2aWQVQp04I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 02:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:e3:58:bd:b5:4a:94:e4:dc:d0:12:23:2a:7d:a7:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aedc8f327a461964c0a87a9c7809401c57c86d41 Validity Not Before: Dec 16 02:00:37 2025 GMT Not After : Dec 17 02:00:37 2025 GMT Subject: CN=1b15001e6479eb6fa9a9255951b70364a3be5320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b7:bc:45:5f:9e:f6:fc:fc:ac:df:71:43:4e: 1d:72:13:69:89:cb:9c:c9:4b:a4:9b:0a:c6:88:74: 86:35:bb:71:6f:85:08:ec:04:45:eb:9c:01:69:18: 7b:53:d0:12:9f:f6:12:ab:03:f0:2c:6e:6f:e3:f8: c2:5f:e1:68:59:ed:db:f1:75:86:ec:89:11:f1:0c: 00:de:7e:ee:f8:cd:b4:af:7c:49:00:c8:69:f0:29: b8:5c:03:39:cb:04:63:e0:17:fe:c0:70:4f:8d:c9: a2:11:29:bf:a4:35:32:53:58:80:c4:3f:99:6d:fc: 05:a4:b6:fa:fc:f9:91:6c:0e:9a:83:1c:47:6d:26: eb:4b:4e:52:09:fb:93:db:c3:ef:7e:1d:c1:cc:6b: a0:78:6e:0e:29:e5:e9:dc:9f:51:f3:a6:f1:de:92: 31:b0:30:a5:6f:e0:dd:54:19:68:17:e2:73:87:17: 61:33:d4:0a:b9:23:ef:5a:c4:dd:f3:ed:f1:47:5f: 5d:76:4a:de:5b:8b:61:23:86:90:fb:5c:cb:06:be: ba:2f:66:99:c0:57:c6:d8:bb:d1:0b:02:7f:8c:57: 3c:8e:5c:67:13:8c:04:10:a5:7d:a2:f3:31:15:3c: df:ef:c4:e5:1d:69:98:78:d6:e8:5d:cf:88:9f:6a: 57:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:15:00:1E:64:79:EB:6F:A9:A9:25:59:51:B7:03:64:A3:BE:53:20 X509v3 Authority Key Identifier: keyid:AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:c3:1c:ba:04:65:0a:c7:a4:37:e0:11:32:0b:f2:98:64:46: d4:6f:89:fa:e5:a5:44:d3:54:ae:de:bd:5f:6a:8b:87:89:ea: 61:5c:53:fe:59:aa:0d:fb:0b:5b:77:4e:5c:71:29:7d:bb:4e: e6:6c:02:4f:89:0b:73:77:8c:a0:12:6b:af:e8:55:96:08:50: d1:46:ca:d5:ce:85:df:91:16:50:ab:bf:86:0f:67:93:42:ca: 17:53:fb:b2:20:9d:30:e6:94:ff:07:da:98:31:0d:5b:e2:42: bf:d8:e9:47:84:02:9b:34:3d:3a:77:98:e3:59:c0:cf:e2:5f: b0:53:64:e6:6e:62:82:1e:cf:ef:03:c8:f3:17:1e:07:d4:48: f8:8e:73:f1:ce:77:ad:13:68:76:5b:bf:39:09:9d:90:61:da: 05:18:a7:af:44:3b:3f:21:e2:36:55:66:21:05:ce:79:cd:a5: d7:1c:5b:ab:73:23:7d:51:71:66:2a:b7:19:fb:75:7c:12:96: f7:b1:b5:2a:48:1c:2f:77:1a:01:27:c5:76:23:5b:d0:a7:f6: ef:fc:74:fb:d7:42:5b:23:ea:aa:73:51:c5:2b:16:d9:93:67: 3d:e3:c8:4e:da:ea:f3:28:94:4a:51:30:8f:c7:af:3f:97:27: d6:db:14:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsk41i9tUqU5NzQEiMqfaeBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZGM4ZjMyN2E0NjE5NjRjMGE4N2E5Yzc4MDk0MDFjNTdj ODZkNDEwHhcNMjUxMjE2MDIwMDM3WhcNMjUxMjE3MDIwMDM3WjAzMTEwLwYDVQQD EygxYjE1MDAxZTY0NzllYjZmYTlhOTI1NTk1MWI3MDM2NGEzYmU1MzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqre8RV+e9vz8rN9xQ04dchNpicuc yUukmwrGiHSGNbtxb4UI7ARF65wBaRh7U9ASn/YSqwPwLG5v4/jCX+FoWe3b8XWG 7IkR8QwA3n7u+M20r3xJAMhp8Cm4XAM5ywRj4Bf+wHBPjcmiESm/pDUyU1iAxD+Z bfwFpLb6/PmRbA6agxxHbSbrS05SCfuT28Pvfh3BzGugeG4OKeXp3J9R86bx3pIx sDClb+DdVBloF+JzhxdhM9QKuSPvWsTd8+3xR19ddkreW4thI4aQ+1zLBr66L2aZ wFfG2LvRCwJ/jFc8jlxnE4wEEKV9ovMxFTzf78TlHWmYeNboXc+In2pXZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBsVAB5keetvqaklWVG3A2SjvlMgMB8GA1UdIwQY MBaAFK7cjzJ6RhlkwKh6nHgJQBxXyG1BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnR5UE1ucEdHV1RBcUhxY2VBbEFIRmZJYlVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iMGRjNTItNDE2ZS00YTAyLTg5OTMt ZmJjNWExZTM4MmM1LzEvcnR5UE1ucEdHV1RBcUhxY2VBbEFIRmZJYlVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iMGRjNTItNDE2ZS00YTAyLTg5OTMtZmJjNWExZTM4MmM1 LzEvcnR5UE1ucEdHV1RBcUhxY2VBbEFIRmZJYlVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYcMcugRl CsekN+ARMgvymGRG1G+J+uWlRNNUrt69X2qLh4nqYVxT/lmqDfsLW3dOXHEpfbtO 5mwCT4kLc3eMoBJrr+hVlghQ0UbK1c6F35EWUKu/hg9nk0LKF1P7siCdMOaU/wfa mDENW+JCv9jpR4QCmzQ9OneY41nAz+JfsFNk5m5igh7P7wPI8xceB9RI+I5z8c53 rRNodlu/OQmdkGHaBRinr0Q7PyHiNlVmIQXOec2l1xxbq3MjfVFxZiq3Gft1fBKW 97G1KkgcL3caASfFdiNb0Kf27/x0+9dCWyPqqnNRxSsW2ZNnPePITtrq8yiUSlEw j8evP5cn1tsUsQ== -----END CERTIFICATE-----Generated at Tue Dec 16 10:37:58 2025 by rpki-client