This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json) Hash identifier: QEbHV0g8jFYu9radSwgsftwlIQ20VEpNMB87GSFoeL8= Subject key identifier: A1:37:8D:34:80:79:55:69:4C:12:44:A1:95:A8:3C:E2:3D:E2:C1:EE Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08 Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808 Certificate serial: 019B194D46FCD6070D426EBB8762EF0F271C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft Manifest number: 14C7 Signing time: Sat 13 Dec 2025 20:00:53 +0000 Manifest this update: Sat 13 Dec 2025 20:00:53 +0000 Manifest next update: Sun 14 Dec 2025 20:00:53 +0000 Files and hashes: 1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=) 2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: Af/GvXmWyhr0LSrpZ6xw57Ui6BiyNsJHJgzvnMP8Jo8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:4d:46:fc:d6:07:0d:42:6e:bb:87:62:ef:0f:27:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808 Validity Not Before: Dec 13 20:00:53 2025 GMT Not After : Dec 14 20:00:53 2025 GMT Subject: CN=a1378d34807955694c1244a195a83ce23de2c1ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:41:32:78:cd:e8:17:d7:6c:89:51:cd:09:08: 26:63:53:c4:6d:40:af:93:79:8c:2e:76:dc:76:a4: 31:ef:c4:b1:f2:63:da:75:1a:f0:69:f8:97:61:ff: 38:6b:71:08:bf:10:08:23:5b:6d:86:73:d9:c8:87: 65:f2:4b:d2:f4:fd:9f:d4:86:5b:9e:70:4e:dc:5d: 13:39:ed:e6:8d:fc:20:74:63:59:dd:f1:38:bb:9e: cc:27:8b:eb:d7:86:af:21:2f:1e:5f:8f:63:76:47: c8:8a:56:97:6e:f6:5e:2f:cd:c9:4a:b9:e7:71:36: a7:b1:18:b7:e9:99:fa:06:ee:37:fa:c5:c2:25:eb: 7e:5b:35:c5:25:3f:b9:62:8e:e8:79:1b:23:21:e1: 6a:e7:1f:ac:da:14:5f:c2:a9:7b:48:55:b0:ff:55: 82:e3:e7:9d:e3:80:49:7a:9b:f5:13:7c:24:c0:cd: ae:9c:c0:a6:27:6c:b0:4a:8b:ce:62:09:d9:fb:19: d9:3c:09:a7:86:92:f5:25:58:4e:04:77:43:69:1b: 94:c8:2b:a7:81:c8:1b:ee:78:90:e2:99:ce:35:94: 22:f4:0e:88:59:d6:3f:96:82:7d:99:d4:af:0d:bf: dc:41:06:9f:2e:2e:d8:49:9e:ef:e1:a8:4a:d8:cd: ea:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:37:8D:34:80:79:55:69:4C:12:44:A1:95:A8:3C:E2:3D:E2:C1:EE X509v3 Authority Key Identifier: keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:bb:77:60:0f:e1:22:af:54:92:92:b7:cb:33:00:b5:06:31: dc:c4:b3:05:64:74:c8:73:36:32:5e:57:6a:7a:50:4c:93:58: 97:f1:32:88:a0:87:92:65:97:78:35:2d:bc:47:6c:5c:78:1b: 92:e4:4b:e4:54:ad:ce:8f:63:0a:71:95:0a:a2:1c:68:12:a4: 11:31:6e:a3:f4:25:ae:8a:f9:9e:21:cd:32:9e:a0:13:83:ae: 49:b6:67:97:3b:42:5a:72:45:dc:1f:a7:ca:83:1d:0d:87:c2: c1:9f:5b:d3:d1:fe:82:53:ec:20:eb:de:8b:86:cf:d0:2d:08: 2d:25:eb:cb:63:36:63:9c:07:12:58:90:5c:70:33:64:bb:c5: 4b:15:49:2a:ba:1f:91:31:69:6d:d8:5d:82:f4:72:99:86:37: 3a:47:78:3a:b0:35:65:03:8d:8e:ea:43:c3:70:a1:4d:68:cb: 8b:dc:13:c9:d2:0d:50:94:21:ce:00:10:fe:6c:e5:10:32:bd: 9b:44:35:a6:7f:98:c9:03:a3:6c:08:fe:11:e6:30:97:5d:ca: 6e:e5:f2:2b:76:e7:df:3e:c7:b4:36:f6:12:1d:c5:27:52:4f: 66:ea:e0:e7:66:0d:75:a1:e6:25:1a:0c:33:e2:fc:72:bb:06: a2:a0:f4:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZTUb81gcNQm67h2LvDyccMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxZDZiYWVjYjYzYWU0NmZlZWEzMGNhYjg2MjFkNDZjNTlm NzI4MDgwHhcNMjUxMjEzMjAwMDUzWhcNMjUxMjE0MjAwMDUzWjAzMTEwLwYDVQQD EyhhMTM3OGQzNDgwNzk1NTY5NGMxMjQ0YTE5NWE4M2NlMjNkZTJjMWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UEyeM3oF9dsiVHNCQgmY1PEbUCv k3mMLnbcdqQx78Sx8mPadRrwafiXYf84a3EIvxAII1tthnPZyIdl8kvS9P2f1IZb nnBO3F0TOe3mjfwgdGNZ3fE4u57MJ4vr14avIS8eX49jdkfIilaXbvZeL83JSrnn cTansRi36Zn6Bu43+sXCJet+WzXFJT+5Yo7oeRsjIeFq5x+s2hRfwql7SFWw/1WC 4+ed44BJepv1E3wkwM2unMCmJ2ywSovOYgnZ+xnZPAmnhpL1JVhOBHdDaRuUyCun gcgb7niQ4pnONZQi9A6IWdY/loJ9mdSvDb/cQQafLi7YSZ7v4ahK2M3qlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKE3jTSAeVVpTBJEoZWoPOI94sHuMB8GA1UdIwQY MBaAFLHWuuy2OuRv7qMMq4Yh1GxZ9ygIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMt N2FmNzlkYWE2OWI5LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMtN2FmNzlkYWE2OWI5 LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZbt3YA/h Iq9UkpK3yzMAtQYx3MSzBWR0yHM2Ml5XanpQTJNYl/EyiKCHkmWXeDUtvEdsXHgb kuRL5FStzo9jCnGVCqIcaBKkETFuo/Qlror5niHNMp6gE4OuSbZnlztCWnJF3B+n yoMdDYfCwZ9b09H+glPsIOvei4bP0C0ILSXry2M2Y5wHEliQXHAzZLvFSxVJKrof kTFpbdhdgvRymYY3Okd4OrA1ZQONjupDw3ChTWjLi9wTydINUJQhzgAQ/mzlEDK9 m0Q1pn+YyQOjbAj+EeYwl13KbuXyK3bn3z7HtDb2Eh3FJ1JPZurg52YNdaHmJRoM M+L8crsGoqD0JQ== -----END CERTIFICATE-----Generated at Sun Dec 14 01:02:10 2025 by rpki-client