This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft File: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft (raw, json) Hash identifier: Lr771KZxdZ3Js/1Lxz0uMM9QuuOYlPxaN4PfOFYJpXo= Subject key identifier: 1C:22:AE:42:61:10:80:F5:30:58:09:6B:AB:C3:79:E1:0C:CE:DE:81 Authority key identifier: D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80 Certificate issuer: /CN=d291741252bb9c4cda80047dfb01ce98c219d180 Certificate serial: 019B59E3DA91CCC4B19BE9B9AC41CF6275CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft Manifest number: 164B Signing time: Fri 26 Dec 2025 09:01:03 +0000 Manifest this update: Fri 26 Dec 2025 09:01:03 +0000 Manifest next update: Sat 27 Dec 2025 09:01:03 +0000 Files and hashes: 1: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl (hash: UqCUBBgwMJuHlzusYy1TfKLqmAJDVtTOzhVePhLndPQ=) 2: 24F3NWEaUDo-ywzWotAmlAOE0aY.roa (hash: ERf1+Eo8kcPOcjF9iXtlxaEqblrqJRaC4jpu9Wj4DSs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:da:91:cc:c4:b1:9b:e9:b9:ac:41:cf:62:75:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d291741252bb9c4cda80047dfb01ce98c219d180 Validity Not Before: Dec 26 09:01:03 2025 GMT Not After : Dec 27 09:01:03 2025 GMT Subject: CN=1c22ae42611080f53058096babc379e10ccede81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:90:6a:27:2b:c0:6a:41:36:6d:9c:0e:93:c2: 09:e2:92:89:79:45:dd:46:51:6c:04:fb:c9:f3:02: 6d:cb:9c:a7:eb:79:1e:16:c7:de:b9:cd:55:57:02: 00:f4:89:54:d6:7a:79:35:65:c5:9a:45:3e:17:66: e8:8a:8c:2a:c0:e3:e3:64:1c:03:9b:24:bc:9d:fd: 12:89:84:4e:dc:4e:bf:69:43:72:b9:2a:dc:9e:55: 14:a4:b2:92:ff:c3:98:e4:0e:14:ec:09:fc:7e:e9: 7d:ad:39:c8:42:09:48:08:cd:47:eb:33:09:33:91: a7:a8:57:5e:77:b6:53:ed:48:51:c7:1d:10:e2:76: 06:1a:33:45:4e:c2:ee:48:9c:5f:6a:3e:dd:e6:83: 9c:e0:47:a1:96:e3:7d:f3:e9:47:be:ab:b5:7b:91: 15:d2:26:b4:0b:c9:24:d5:42:fb:19:be:b5:7f:c1: f0:fd:41:ae:ef:5d:c3:57:58:d4:4d:12:0a:11:09: 7d:89:1c:0b:82:ce:c8:5e:2f:24:35:e0:f8:ae:bb: 92:9c:cc:b6:09:78:c3:4b:9b:3a:c1:f4:5f:1d:61: 93:58:4c:d8:41:8a:00:4b:38:31:b6:40:89:3e:3a: 58:45:7e:59:e9:46:a2:f3:ff:5a:f5:4e:1e:aa:c0: 41:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:22:AE:42:61:10:80:F5:30:58:09:6B:AB:C3:79:E1:0C:CE:DE:81 X509v3 Authority Key Identifier: keyid:D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:39:f4:3f:dc:4d:49:ea:11:86:b6:9d:c4:84:92:dc:4c:e0: 79:a6:b8:e3:ee:67:5a:67:12:40:78:23:5e:02:d0:19:bf:ee: 87:8a:4c:b0:6e:0c:0d:f7:c8:00:5e:bf:63:c3:28:6f:59:4b: 1b:53:c0:bc:26:39:7f:4c:39:e4:12:a4:f1:16:71:ce:e5:62: 7f:7f:0c:3a:00:56:ac:ce:c0:b0:3e:11:ed:6f:ee:bf:00:5c: a3:13:80:bf:1f:ba:55:5a:f5:45:d2:16:36:d2:6a:24:e0:44: d9:c4:1d:dd:de:a8:2f:5f:6d:9a:1a:d7:a7:ba:9f:81:2f:e9: 4a:72:ab:90:c9:65:b2:a4:c7:b2:4e:50:14:9c:cf:8d:f9:88: cc:5b:bf:a2:12:eb:bd:4f:70:bb:aa:39:9a:bb:16:5b:ac:fb: 69:09:20:a9:44:af:36:eb:36:9f:50:3f:7e:42:e4:d3:32:b7: 13:35:23:54:d8:a0:20:72:5c:3a:e7:e6:3a:b7:59:5f:82:60: 68:c8:fe:0d:8e:bb:67:fb:2f:6e:83:5e:8c:11:d4:55:c4:b1: 3e:33:12:24:1c:ff:f7:a9:d8:49:95:2c:0b:6c:07:5f:51:83: b2:f9:76:d3:06:b8:67:25:45:ac:50:78:a3:78:dc:05:d0:cf: bc:8a:df:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ49qRzMSxm+m5rEHPYnXPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyOTE3NDEyNTJiYjljNGNkYTgwMDQ3ZGZiMDFjZTk4YzIx OWQxODAwHhcNMjUxMjI2MDkwMTAzWhcNMjUxMjI3MDkwMTAzWjAzMTEwLwYDVQQD EygxYzIyYWU0MjYxMTA4MGY1MzA1ODA5NmJhYmMzNzllMTBjY2VkZTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5BqJyvAakE2bZwOk8IJ4pKJeUXd RlFsBPvJ8wJty5yn63keFsfeuc1VVwIA9IlU1np5NWXFmkU+F2boiowqwOPjZBwD myS8nf0SiYRO3E6/aUNyuSrcnlUUpLKS/8OY5A4U7An8ful9rTnIQglICM1H6zMJ M5GnqFded7ZT7UhRxx0Q4nYGGjNFTsLuSJxfaj7d5oOc4EehluN98+lHvqu1e5EV 0ia0C8kk1UL7Gb61f8Hw/UGu713DV1jUTRIKEQl9iRwLgs7IXi8kNeD4rruSnMy2 CXjDS5s6wfRfHWGTWEzYQYoASzgxtkCJPjpYRX5Z6Uai8/9a9U4eqsBB6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBwirkJhEID1MFgJa6vDeeEMzt6BMB8GA1UdIwQY MBaAFNKRdBJSu5xM2oAEffsBzpjCGdGAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHBGMEVsSzduRXphZ0FSOS13SE9tTUlaMFlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8zYmE2ZmMtMmQ0OS00YWZmLTkyMjkt NDhiOTU3MjY0YzI2LzEvMHBGMEVsSzduRXphZ0FSOS13SE9tTUlaMFlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8zYmE2ZmMtMmQ0OS00YWZmLTkyMjktNDhiOTU3MjY0YzI2 LzEvMHBGMEVsSzduRXphZ0FSOS13SE9tTUlaMFlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMTn0P9xN SeoRhradxISS3Ezgeaa44+5nWmcSQHgjXgLQGb/uh4pMsG4MDffIAF6/Y8Mob1lL G1PAvCY5f0w55BKk8RZxzuVif38MOgBWrM7AsD4R7W/uvwBcoxOAvx+6VVr1RdIW NtJqJOBE2cQd3d6oL19tmhrXp7qfgS/pSnKrkMllsqTHsk5QFJzPjfmIzFu/ohLr vU9wu6o5mrsWW6z7aQkgqUSvNus2n1A/fkLk0zK3EzUjVNigIHJcOufmOrdZX4Jg aMj+DY67Z/svboNejBHUVcSxPjMSJBz/96nYSZUsC2wHX1GDsvl20wa4ZyVFrFB4 o3jcBdDPvIrfGA== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:22 2025 by rpki-client