This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft File: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft (raw, json) Hash identifier: SjSkLUSlo85ll3C4TV7GBgeeIpAZDme9k0IbHPz659c= Subject key identifier: 91:10:BF:9E:9B:AC:CD:94:46:32:B6:C7:1C:12:BE:F4:2C:3C:2E:07 Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39 Certificate issuer: /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39 Certificate serial: 019B3AFE2997AFB31389647437AAD0DF1B59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft Manifest number: 17A8 Signing time: Sat 20 Dec 2025 09:01:33 +0000 Manifest this update: Sat 20 Dec 2025 09:01:33 +0000 Manifest next update: Sun 21 Dec 2025 09:01:33 +0000 Files and hashes: 1: 2FhEmcxYfTh9K3J3avRiCdDc75E.roa (hash: tOhuHX2KWyFG2B0a0se5O81lEiJFRABFP38mxTII8TU=) 2: 8nUvj8lY7CMTGbwnkVwsxBWh6aw.roa (hash: Aix9ab5boOQSnVduDf/PzYb3KHZGbO4bW6Ul5fxfzk8=) 3: bdkHO-cMRs9yWZFdjBV-qe9nYgE.roa (hash: qubjkKMt0NactOF0nXU7jk7H1UZ/exx8oL0CEz67yU4=) 4: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl (hash: mPVPdHBrPRP+mkdfrgVUTpVSetIGphTNT6rRUR85bBM=) 5: yT5ungE9NAr5a95GJEQ0WzC2bc4.roa (hash: 3Q09eXeA/SVTTdlEZBa1ZfiKoZceB51s1iopXPbgTXw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:fe:29:97:af:b3:13:89:64:74:37:aa:d0:df:1b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39 Validity Not Before: Dec 20 09:01:33 2025 GMT Not After : Dec 21 09:01:33 2025 GMT Subject: CN=9110bf9e9baccd944632b6c71c12bef42c3c2e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:16:fc:96:74:76:30:82:07:e5:96:c6:7b:70: d3:0c:c6:ab:99:78:88:6e:8e:5e:ee:e5:3c:9b:66: 54:cd:58:37:86:41:1a:be:de:52:f3:6b:81:e3:c6: 4a:71:9f:c7:ac:ff:3f:c2:fd:2d:6b:63:66:69:18: 76:c8:73:78:db:c8:50:0c:93:11:ce:ca:54:87:c3: 77:89:d9:e7:50:4b:8e:e5:61:2a:9a:ad:ca:7c:80: b7:36:95:84:91:a9:50:ec:23:87:4d:07:8d:bb:33: 73:a6:5b:5c:78:ec:bc:bf:22:44:bb:93:30:90:10: 18:b0:81:44:0d:38:ad:d4:f9:6c:9a:23:81:ac:ab: 81:48:7c:30:85:8b:c0:6e:96:a6:e2:f6:2a:9c:9e: 48:32:4a:7b:bc:b7:b6:d0:a2:4b:4f:f6:19:77:c2: 16:3e:6a:dc:94:ad:d7:b9:db:dc:e9:e4:92:c4:4f: 33:93:4b:29:14:1a:09:75:56:20:c9:16:9f:7c:48: ca:41:d6:1e:1b:26:5a:aa:4e:4f:d5:a2:8f:c1:2d: ed:cc:a7:13:19:7d:04:21:df:e0:98:55:54:18:43: e6:75:40:66:79:2d:d3:95:14:cd:11:80:7e:18:45: bf:80:d1:18:67:cf:ab:82:2f:13:3d:5b:c7:7b:52: a0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:10:BF:9E:9B:AC:CD:94:46:32:B6:C7:1C:12:BE:F4:2C:3C:2E:07 X509v3 Authority Key Identifier: keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:4f:94:f7:10:2d:5b:44:66:e6:44:ff:b3:e8:73:82:09:cb: 0a:ed:3f:75:ea:c0:1e:f3:be:67:94:11:9c:0a:00:a1:e6:83: 53:75:93:d2:d2:7d:1e:d4:29:64:a9:74:76:fb:11:be:e1:62: bc:df:f9:6b:ad:9f:1f:e9:7f:6c:1e:c6:0a:00:b0:f8:21:e2: 63:70:be:70:60:f0:90:d8:f8:63:46:dd:ea:87:21:42:ee:51: 5b:51:e2:14:3f:23:6a:9d:40:34:41:b0:ba:04:b4:3d:ef:b1: f8:01:33:3d:92:84:66:dc:0a:00:a9:b0:07:93:7a:c7:7b:29: 04:00:82:a5:10:90:b1:59:f2:92:49:29:5c:f5:da:75:1c:90: ec:4e:d6:23:23:a8:85:c2:fa:52:5d:4d:42:e0:ed:10:a9:94: 6a:42:15:e2:27:37:03:60:3d:4b:e3:b2:ea:3d:42:d4:6e:ea: 00:e2:09:e9:89:fe:c1:e1:1a:a4:eb:1d:b1:3c:55:40:a7:ff: a8:30:4f:b1:d7:c8:9a:c6:c5:a3:e4:69:1b:a1:95:04:3d:2f: 49:f2:8f:d2:1e:0e:84:5a:73:ad:0a:df:44:5a:6f:5b:c7:c0: 41:25:91:d9:90:1a:c0:bc:d9:8f:ae:e5:13:73:d7:8d:8a:bb: 6d:47:dd:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6/imXr7MTiWR0N6rQ3xtZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkZDM1MzkzMzY3NGE1NjA4ZjZkMWVlMmRhYjRmNjRjOGJm ZjhmMzkwHhcNMjUxMjIwMDkwMTMzWhcNMjUxMjIxMDkwMTMzWjAzMTEwLwYDVQQD Eyg5MTEwYmY5ZTliYWNjZDk0NDYzMmI2YzcxYzEyYmVmNDJjM2MyZTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Bb8lnR2MIIH5ZbGe3DTDMarmXiI bo5e7uU8m2ZUzVg3hkEavt5S82uB48ZKcZ/HrP8/wv0ta2NmaRh2yHN428hQDJMR zspUh8N3idnnUEuO5WEqmq3KfIC3NpWEkalQ7COHTQeNuzNzpltceOy8vyJEu5Mw kBAYsIFEDTit1PlsmiOBrKuBSHwwhYvAbpam4vYqnJ5IMkp7vLe20KJLT/YZd8IW PmrclK3Xudvc6eSSxE8zk0spFBoJdVYgyRaffEjKQdYeGyZaqk5P1aKPwS3tzKcT GX0EId/gmFVUGEPmdUBmeS3TlRTNEYB+GEW/gNEYZ8+rgi8TPVvHe1KgSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJEQv56brM2URjK2xxwSvvQsPC4HMB8GA1UdIwQY MBaAFK3TU5M2dKVgj20e4tq09kyL/485MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgt NzJjODMxMjg3NjFiLzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgtNzJjODMxMjg3NjFi LzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIk+U9xAt W0Rm5kT/s+hzggnLCu0/derAHvO+Z5QRnAoAoeaDU3WT0tJ9HtQpZKl0dvsRvuFi vN/5a62fH+l/bB7GCgCw+CHiY3C+cGDwkNj4Y0bd6ochQu5RW1HiFD8jap1ANEGw ugS0Pe+x+AEzPZKEZtwKAKmwB5N6x3spBACCpRCQsVnykkkpXPXadRyQ7E7WIyOo hcL6Ul1NQuDtEKmUakIV4ic3A2A9S+Oy6j1C1G7qAOIJ6Yn+weEapOsdsTxVQKf/ qDBPsdfImsbFo+RpG6GVBD0vSfKP0h4OhFpzrQrfRFpvW8fAQSWR2ZAawLzZj67l E3PXjYq7bUfd8w== -----END CERTIFICATE-----Generated at Sat Dec 20 14:02:12 2025 by rpki-client