This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft File: mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft (raw, json) Hash identifier: ZznTFAIJ6JkJtu2GYeaMP8zDtOAuySx1HRRwLfCujDg= Subject key identifier: 05:00:95:BD:78:14:A9:D3:10:74:49:26:B2:15:4C:48:B7:35:7A:A4 Authority key identifier: 99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82 Certificate issuer: /CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82 Certificate serial: 019B5976DF59F51DD0995EFC33CAAD08F758 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft Manifest number: 0D6C Signing time: Fri 26 Dec 2025 07:02:01 +0000 Manifest this update: Fri 26 Dec 2025 07:02:01 +0000 Manifest next update: Sat 27 Dec 2025 07:02:01 +0000 Files and hashes: 1: mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl (hash: OaMTuT/2hKT+uIS8G/Ab6zNFAjmljAaPCAFT9JdamdM=) 2: nZK_WOZBkx5CjkyneO9yoAn9z7M.roa (hash: dpA6T/m8yk0xZEgRWH2rVz82pLkCcKV+oqNh5OTEUXU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:df:59:f5:1d:d0:99:5e:fc:33:ca:ad:08:f7:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82 Validity Not Before: Dec 26 07:02:01 2025 GMT Not After : Dec 27 07:02:01 2025 GMT Subject: CN=050095bd7814a9d310744926b2154c48b7357aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6a:7c:b6:31:84:1e:a8:5a:6a:f7:54:d3:28: 34:12:34:95:08:52:a0:ba:de:2e:ae:c6:3d:e3:39: df:11:59:24:2d:22:c6:3b:e7:73:ac:46:23:5e:e1: d9:1f:d0:42:11:91:9d:71:b5:c9:c7:70:fa:23:92: 54:ea:25:74:ad:02:2a:f6:04:6f:c0:c7:6f:4f:56: 6c:36:c7:c4:5e:d6:aa:14:9c:0a:9d:06:8b:85:61: 19:c9:05:7d:80:2b:2b:19:e5:fe:9f:d6:c7:ec:56: a4:be:29:23:e5:9c:27:84:e3:24:0a:13:94:f1:67: 09:80:96:b1:1d:0f:75:ea:6e:90:82:3c:56:4b:c9: 4c:ec:61:87:76:43:5f:61:f7:70:e8:93:2a:ec:d9: 79:d2:ed:5d:d2:6e:51:19:ea:8d:d2:3c:75:de:5b: 3c:86:91:f4:53:72:71:ef:4c:92:f0:bd:a8:55:42: fd:b0:a0:bb:7a:87:a4:1f:d7:3d:78:9e:f6:67:3b: 3d:67:92:ed:98:ac:1b:5d:77:8c:1e:36:ed:c3:08: bf:1f:cd:31:89:26:e2:66:63:36:65:48:16:d6:01: af:00:98:e2:6e:4f:ce:2d:1d:d0:c4:27:3d:af:1b: 05:25:82:80:fe:fb:76:3a:e2:3d:54:20:1d:44:78: a3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:00:95:BD:78:14:A9:D3:10:74:49:26:B2:15:4C:48:B7:35:7A:A4 X509v3 Authority Key Identifier: keyid:99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:7a:e5:84:5e:f8:86:43:75:f8:27:26:d6:67:96:60:53:07: 42:f6:ba:22:a3:01:f2:b9:4f:40:c1:67:0f:ca:c6:b7:df:0b: 41:6a:f6:a9:21:c4:50:b9:c4:4d:ca:6a:63:c6:b8:9a:ee:fd: 4a:84:a1:33:5e:1b:b6:a0:3a:a0:91:56:2f:e3:14:fa:a6:8c: 66:d4:49:30:f2:ca:7c:f2:96:3e:dc:d5:69:db:2f:a9:ad:65: 2c:b2:0e:dc:98:8f:7d:14:fb:3a:58:90:18:90:40:5a:e9:4c: f0:24:e1:f6:8a:47:3c:f0:ae:89:e3:3f:f9:b7:01:5c:d2:99: e8:a9:42:1d:9e:d5:3d:33:42:fc:b1:6c:08:00:a0:18:38:7d: 49:86:5d:01:81:bf:65:d8:c5:c4:e5:d1:9c:56:30:bf:db:66: 8b:9e:c7:71:3e:2c:eb:24:7f:88:f0:87:f1:71:37:05:6f:f5: a1:bb:cd:f7:96:b3:67:4d:92:ec:d9:9a:d6:46:79:25:94:a7: f3:14:91:d2:ae:b5:30:55:12:04:42:18:c5:3f:ab:93:9a:22: a0:b6:68:ae:b0:d3:5a:d3:4e:64:97:98:77:b6:1d:6b:a4:eb: c9:92:c2:f1:e6:31:66:b2:9d:9b:fc:6b:b6:fb:de:70:4b:b1: d9:5a:54:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdt9Z9R3QmV78M8qtCPdYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5YjA0MjViNzFjMmI1MWNkN2ViZTQ3ZDNlZmU3Y2I5ODYx YjRkODIwHhcNMjUxMjI2MDcwMjAxWhcNMjUxMjI3MDcwMjAxWjAzMTEwLwYDVQQD EygwNTAwOTViZDc4MTRhOWQzMTA3NDQ5MjZiMjE1NGM0OGI3MzU3YWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2p8tjGEHqhaavdU0yg0EjSVCFKg ut4ursY94znfEVkkLSLGO+dzrEYjXuHZH9BCEZGdcbXJx3D6I5JU6iV0rQIq9gRv wMdvT1ZsNsfEXtaqFJwKnQaLhWEZyQV9gCsrGeX+n9bH7Fakvikj5ZwnhOMkChOU 8WcJgJaxHQ916m6QgjxWS8lM7GGHdkNfYfdw6JMq7Nl50u1d0m5RGeqN0jx13ls8 hpH0U3Jx70yS8L2oVUL9sKC7eoekH9c9eJ72Zzs9Z5LtmKwbXXeMHjbtwwi/H80x iSbiZmM2ZUgW1gGvAJjibk/OLR3QxCc9rxsFJYKA/vt2OuI9VCAdRHijswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAUAlb14FKnTEHRJJrIVTEi3NXqkMB8GA1UdIwQY MBaAFJmwQltxwrUc1+vkfT7+fLmGG02CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWJCQ1czSEN0UnpYNi1SOVB2NTh1WVliVFlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni85ZTk4MmQtYWQ1Yi00MTAwLThkOWQt ZDFlZmNlZWMzNGMxLzEvbWJCQ1czSEN0UnpYNi1SOVB2NTh1WVliVFlJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni85ZTk4MmQtYWQ1Yi00MTAwLThkOWQtZDFlZmNlZWMzNGMx LzEvbWJCQ1czSEN0UnpYNi1SOVB2NTh1WVliVFlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL3rlhF74 hkN1+Ccm1meWYFMHQva6IqMB8rlPQMFnD8rGt98LQWr2qSHEULnETcpqY8a4mu79 SoShM14btqA6oJFWL+MU+qaMZtRJMPLKfPKWPtzVadsvqa1lLLIO3JiPfRT7OliQ GJBAWulM8CTh9opHPPCuieM/+bcBXNKZ6KlCHZ7VPTNC/LFsCACgGDh9SYZdAYG/ ZdjFxOXRnFYwv9tmi57HcT4s6yR/iPCH8XE3BW/1obvN95azZ02S7Nma1kZ5JZSn 8xSR0q61MFUSBEIYxT+rk5oioLZorrDTWtNOZJeYd7Yda6TryZLC8eYxZrKdm/xr tvvecEux2VpUEw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:44:07 2025 by rpki-client