This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft File: rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json) Hash identifier: k5r8HNVwG69b3swO66PtANJS2aUs8GTebngkXRHIytQ= Subject key identifier: 6F:90:AB:08:F0:9F:33:52:A2:B7:3D:A2:6F:B8:99:62:0D:A6:5D:50 Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4 Certificate issuer: /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4 Certificate serial: 019B4393546B4B76AD3D8182CC44C67AEA49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft Manifest number: 0A59 Signing time: Mon 22 Dec 2025 01:01:27 +0000 Manifest this update: Mon 22 Dec 2025 01:01:27 +0000 Manifest next update: Tue 23 Dec 2025 01:01:27 +0000 Files and hashes: 1: IhFmVxbE3gn_IPAxvOuH1Dxlo9o.roa (hash: oKXrmB0pSBgjznKzRYUFbiw4D9My9SBHtgqoNaUCBKA=) 2: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: Ap/EKLY/PU1RnoZTT3zivSt+lgq/ytdg6/hSfJ1MJt4=) 3: wbXeB63VhLi_7WMIhOdMpk0lCW4.roa (hash: d7dOr+7PutspTBpcReyCrf+E8CzcxyNVV7Zc8qzo3dU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:93:54:6b:4b:76:ad:3d:81:82:cc:44:c6:7a:ea:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4 Validity Not Before: Dec 22 01:01:27 2025 GMT Not After : Dec 23 01:01:27 2025 GMT Subject: CN=6f90ab08f09f3352a2b73da26fb899620da65d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:83:c4:67:22:4d:1f:38:60:8c:af:2f:bc:57: 9b:6a:fc:a9:4b:21:7a:3c:9f:b6:a7:e3:19:5a:03: de:e3:73:97:eb:cd:bb:e5:1e:e4:7a:b7:85:00:fa: 2c:0e:79:89:3e:f9:3c:bf:99:cd:ec:fd:f9:4d:99: e8:78:37:0a:64:20:86:a5:0c:be:53:db:bf:b8:fd: e9:0f:2e:d3:ba:4e:27:1c:19:e3:e9:48:00:2c:7e: 02:fa:8f:c1:05:a9:01:1b:58:ba:da:81:77:34:b5: 2d:9d:f3:ff:10:e8:a7:b8:f2:c9:7b:66:af:64:23: 46:d6:2a:8c:1f:0b:ab:a9:96:7a:ac:c5:33:70:fb: 39:46:07:18:56:2b:ba:4f:ef:a8:b5:2d:4a:13:b4: af:58:7e:a0:b4:1a:e0:ba:b2:ee:ff:47:5e:77:3c: f8:6e:f3:dd:c3:5d:d9:ad:15:c4:d1:69:73:cf:22: 1b:74:7d:d7:e1:2e:17:10:9e:67:44:d1:ef:38:28: db:3e:c1:ab:3a:e1:7b:45:2e:31:0f:48:b9:37:c7: 4e:0f:bf:e0:74:ea:8e:18:92:12:98:cd:4c:be:c7: 6f:64:9d:6a:73:c6:86:0c:b5:9b:d0:4d:98:e0:0a: 5d:47:99:99:e8:92:8d:51:da:86:90:c6:b8:15:d7: fd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:90:AB:08:F0:9F:33:52:A2:B7:3D:A2:6F:B8:99:62:0D:A6:5D:50 X509v3 Authority Key Identifier: keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:38:3c:37:27:8b:5d:50:d9:33:35:aa:3b:5e:3f:0a:cc:23: 10:1f:ee:1f:89:65:5b:cd:91:63:cf:de:84:3b:f0:5e:e8:74: cd:58:b3:a1:e7:ac:8b:59:30:44:fa:64:28:2e:e3:be:44:c2: 98:8b:3e:69:f3:b2:35:8c:8b:8a:e9:fe:8b:7f:a3:e0:33:86: 57:4a:e2:9f:c2:b3:91:bb:fb:ba:6a:88:4c:73:53:82:f8:df: 60:87:c9:1a:5c:e6:71:76:2b:35:26:91:71:ff:06:e7:b9:56: bf:5e:95:c1:a2:0c:2f:51:7b:b8:3c:71:31:60:37:25:8a:d6: e1:64:ea:d1:ac:7d:31:b4:d7:a0:8f:58:2a:c7:ee:62:29:aa: 91:73:09:cd:ba:7c:a3:e8:42:1b:1d:fb:64:96:5f:de:91:94: c1:65:df:92:81:13:a5:36:a0:61:57:37:74:38:54:2f:f7:c6: 18:dc:28:39:8c:13:6f:b6:f2:f6:7f:af:84:a2:cd:ef:3d:41: 9f:f7:03:e5:29:9b:b5:1a:2b:84:05:d5:0e:e0:60:75:00:3d: 1a:5f:32:02:70:0f:df:d0:41:df:e2:3f:81:72:5d:83:f1:61: 51:ea:01:0e:c0:c7:79:ad:b1:78:51:a9:91:53:a8:17:f5:33: ee:37:5f:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDk1RrS3atPYGCzETGeupJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMmQzOGUyMGYyNGQwZTMwYjg2Y2NkODI2MWFjMDAxN2Yx N2E1YTQwHhcNMjUxMjIyMDEwMTI3WhcNMjUxMjIzMDEwMTI3WjAzMTEwLwYDVQQD Eyg2ZjkwYWIwOGYwOWYzMzUyYTJiNzNkYTI2ZmI4OTk2MjBkYTY1ZDUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0oPEZyJNHzhgjK8vvFebavypSyF6 PJ+2p+MZWgPe43OX68275R7kereFAPosDnmJPvk8v5nN7P35TZnoeDcKZCCGpQy+ U9u/uP3pDy7Tuk4nHBnj6UgALH4C+o/BBakBG1i62oF3NLUtnfP/EOinuPLJe2av ZCNG1iqMHwurqZZ6rMUzcPs5RgcYViu6T++otS1KE7SvWH6gtBrgurLu/0dedzz4 bvPdw13ZrRXE0WlzzyIbdH3X4S4XEJ5nRNHvOCjbPsGrOuF7RS4xD0i5N8dOD7/g dOqOGJISmM1MvsdvZJ1qc8aGDLWb0E2Y4ApdR5mZ6JKNUdqGkMa4Fdf9xQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG+QqwjwnzNSorc9om+4mWINpl1QMB8GA1UdIwQY MBaAFK0tOOIPJNDjC4bM2CYawAF/F6WkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yZDg3NjEtMjI5Zi00YTM3LTg3YjEt NDI5OTUzMjNjMDNkLzEvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yZDg3NjEtMjI5Zi00YTM3LTg3YjEtNDI5OTUzMjNjMDNk LzEvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlzg8NyeL XVDZMzWqO14/CswjEB/uH4llW82RY8/ehDvwXuh0zVizoeesi1kwRPpkKC7jvkTC mIs+afOyNYyLiun+i3+j4DOGV0rin8Kzkbv7umqITHNTgvjfYIfJGlzmcXYrNSaR cf8G57lWv16VwaIML1F7uDxxMWA3JYrW4WTq0ax9MbTXoI9YKsfuYimqkXMJzbp8 o+hCGx37ZJZf3pGUwWXfkoETpTagYVc3dDhUL/fGGNwoOYwTb7by9n+vhKLN7z1B n/cD5SmbtRorhAXVDuBgdQA9Gl8yAnAP39BB3+I/gXJdg/FhUeoBDsDHea2xeFGp kVOoF/Uz7jdfTA== -----END CERTIFICATE-----Generated at Mon Dec 22 04:23:45 2025 by rpki-client