This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft File: b14CML55nkSCnIcgyjg0cEVJTiA.mft (raw, json) Hash identifier: gihSdfDGNd10jV90aAe3+nCW4dP5iihkHENyrkTBaSk= Subject key identifier: C5:41:30:82:8C:42:22:E4:6F:A8:52:EA:C1:3E:60:86:ED:BB:6E:CA Authority key identifier: 6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20 Certificate issuer: /CN=6f5e0230be799e44829c8720ca38347045494e20 Certificate serial: 019B35699494742F077EE4D025103C9E558E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft Manifest number: 17C9 Signing time: Fri 19 Dec 2025 07:01:10 +0000 Manifest this update: Fri 19 Dec 2025 07:01:10 +0000 Manifest next update: Sat 20 Dec 2025 07:01:10 +0000 Files and hashes: 1: B8q_Ibebc5xuxzRGd478Vz8wacc.roa (hash: 7TxxkXjJMigm1zrdep1gr/0+c2ofcQeuEJMCWogNg+s=) 2: b14CML55nkSCnIcgyjg0cEVJTiA.crl (hash: yRd79k6k79Zqut8lnX2/zjIUUVvFrfMYp8UXb8zh9eA=) 3: fokVVRta6Se4qMfm0QW8Wvhb8to.roa (hash: GVDAbNxQsgJw7rFS4VJXxWwqpIOjbAD4y/lPqd19DXM=) 4: jN3YKyZr7fLBbaM-ys_51VKLM4I.roa (hash: /Z7rTH+6bXmxYBkfBLPrrW+aXm6fTfnVD3Lj/2mMT08=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:69:94:94:74:2f:07:7e:e4:d0:25:10:3c:9e:55:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f5e0230be799e44829c8720ca38347045494e20 Validity Not Before: Dec 19 07:01:10 2025 GMT Not After : Dec 20 07:01:10 2025 GMT Subject: CN=c54130828c4222e46fa852eac13e6086edbb6eca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1b:a9:2f:9c:02:80:dc:0a:95:d3:1d:ee:f8: 15:34:77:de:26:7e:56:fd:e4:5c:49:88:b7:3c:ef: 53:c2:64:64:bb:94:ab:11:75:37:26:3d:4b:70:03: e8:d1:6a:d4:d8:6d:06:1e:84:e7:34:12:ab:65:1d: fe:56:10:ac:07:26:71:64:c0:12:a4:74:40:70:f5: 01:a6:42:93:83:55:91:27:f7:a3:9e:78:a4:bc:c1: f9:3f:20:bf:24:ab:54:55:67:a5:1b:20:34:b6:fe: 5c:05:6d:43:85:1c:65:61:d2:6f:a5:29:01:df:7d: 3f:ec:4c:cf:e4:6d:b9:df:25:c1:4c:8b:c7:d0:7d: dc:23:92:12:a6:fa:53:86:fd:db:27:87:72:ec:3e: 89:25:04:84:b0:40:9b:04:2f:6b:94:53:72:97:8c: a1:e1:1d:db:32:2c:09:15:ec:65:c5:25:cc:90:4e: 94:52:ed:3d:e0:38:90:c2:aa:21:3d:5d:3f:f9:48: 0a:f6:0c:34:f0:aa:a2:a2:39:e0:5a:db:9a:87:b4: 19:42:65:f6:36:76:69:8c:54:0f:a2:1a:75:98:ba: 7a:4b:84:58:e9:7b:0f:20:f2:9d:24:b3:e8:51:8a: 60:34:b5:02:67:94:22:75:9e:24:f9:a1:cf:c6:ab: 0c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:41:30:82:8C:42:22:E4:6F:A8:52:EA:C1:3E:60:86:ED:BB:6E:CA X509v3 Authority Key Identifier: keyid:6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:a9:a4:75:62:75:93:9d:26:25:0d:ad:2d:73:cb:cc:5b:ca: c4:b9:99:3a:6f:ea:ad:ed:e6:36:44:4f:19:e1:55:e0:30:46: a2:33:e2:a4:f7:9e:fd:cb:45:1c:87:9c:c4:ae:86:3c:ed:47: a8:e0:15:5b:61:ac:d1:3a:4e:3e:f0:7a:ce:8c:e1:a4:09:ba: 85:16:d0:0e:75:d1:21:71:34:e0:57:06:d7:8e:81:ce:7d:97: b6:84:cf:a1:1c:91:f0:95:6a:5c:47:80:43:c4:6b:93:c0:d9: 43:11:b7:5b:5c:c5:b8:17:67:90:db:6a:c4:fb:c1:7d:57:ad: 75:22:36:ac:95:8d:8a:4d:7f:2c:9a:99:34:9c:9e:5c:c7:a2: cf:b4:5b:ab:dc:1c:bf:b6:7c:ba:c3:df:e9:8a:83:48:1f:43: 8d:49:27:00:9d:c9:ac:9c:e4:ad:03:f9:e4:02:39:f7:d3:de: a6:fb:88:98:4a:d9:c3:9c:ec:42:b4:ae:62:6b:cc:38:4b:dd: b1:27:9e:92:3c:5e:de:94:d0:23:26:b7:63:87:bd:72:a7:64: 91:48:b2:94:05:a7:f3:49:c9:a3:f8:80:3e:ed:14:35:c2:c6: 6f:97:ea:9c:b3:9d:bf:4a:a9:47:82:07:5c:77:21:4d:57:1b: f1:f1:40:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1aZSUdC8HfuTQJRA8nlWOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmNWUwMjMwYmU3OTllNDQ4MjljODcyMGNhMzgzNDcwNDU0 OTRlMjAwHhcNMjUxMjE5MDcwMTEwWhcNMjUxMjIwMDcwMTEwWjAzMTEwLwYDVQQD EyhjNTQxMzA4MjhjNDIyMmU0NmZhODUyZWFjMTNlNjA4NmVkYmI2ZWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBupL5wCgNwKldMd7vgVNHfeJn5W /eRcSYi3PO9TwmRku5SrEXU3Jj1LcAPo0WrU2G0GHoTnNBKrZR3+VhCsByZxZMAS pHRAcPUBpkKTg1WRJ/ejnnikvMH5PyC/JKtUVWelGyA0tv5cBW1DhRxlYdJvpSkB 330/7EzP5G253yXBTIvH0H3cI5ISpvpThv3bJ4dy7D6JJQSEsECbBC9rlFNyl4yh 4R3bMiwJFexlxSXMkE6UUu094DiQwqohPV0/+UgK9gw08KqiojngWtuah7QZQmX2 NnZpjFQPohp1mLp6S4RY6XsPIPKdJLPoUYpgNLUCZ5QidZ4k+aHPxqsMeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMVBMIKMQiLkb6hS6sE+YIbtu27KMB8GA1UdIwQY MBaAFG9eAjC+eZ5EgpyHIMo4NHBFSU4gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjE0Q01MNTVua1NDbkljZ3lqZzBjRVZKVGlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83MGNjZWYtMTdmMy00OTI4LTljMGIt YmE3YzdkODE5MGNhLzEvYjE0Q01MNTVua1NDbkljZ3lqZzBjRVZKVGlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny83MGNjZWYtMTdmMy00OTI4LTljMGItYmE3YzdkODE5MGNh LzEvYjE0Q01MNTVua1NDbkljZ3lqZzBjRVZKVGlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsqmkdWJ1 k50mJQ2tLXPLzFvKxLmZOm/qre3mNkRPGeFV4DBGojPipPee/ctFHIecxK6GPO1H qOAVW2Gs0TpOPvB6zozhpAm6hRbQDnXRIXE04FcG146Bzn2XtoTPoRyR8JVqXEeA Q8Rrk8DZQxG3W1zFuBdnkNtqxPvBfVetdSI2rJWNik1/LJqZNJyeXMeiz7Rbq9wc v7Z8usPf6YqDSB9DjUknAJ3JrJzkrQP55AI599PepvuImErZw5zsQrSuYmvMOEvd sSeekjxe3pTQIya3Y4e9cqdkkUiylAWn80nJo/iAPu0UNcLGb5fqnLOdv0qpR4IH XHchTVcb8fFAsQ== -----END CERTIFICATE-----Generated at Fri Dec 19 10:40:35 2025 by rpki-client