This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft File: MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft (raw, json) Hash identifier: GAwcxBxCsCdITmLDE53+9CYhIVBWakt4OevBTbLuKWc= Subject key identifier: B3:16:2A:16:2A:8D:C0:4A:F5:EB:3D:37:03:3E:A7:F8:77:A2:FF:AA Authority key identifier: 32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34 Certificate issuer: /CN=32b1b94b073c547991c20f842eadec167ec19e34 Certificate serial: 019B1201EBF06A063D40EA003573050BBA4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft Manifest number: 03E8 Signing time: Fri 12 Dec 2025 10:01:14 +0000 Manifest this update: Fri 12 Dec 2025 10:01:14 +0000 Manifest next update: Sat 13 Dec 2025 10:01:14 +0000 Files and hashes: 1: HTiETFMnseisEeoALFIWItsK6gc.roa (hash: iulklaFZv7FQZ4kyFEEaoOlUffIGv7CCXTbtxR93AS4=) 2: MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl (hash: 9ErpnXCB7cMQTdapv55HKD1jUvLY1NTeOGrOMzcpAXY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:01:eb:f0:6a:06:3d:40:ea:00:35:73:05:0b:ba:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32b1b94b073c547991c20f842eadec167ec19e34 Validity Not Before: Dec 12 10:01:14 2025 GMT Not After : Dec 13 10:01:14 2025 GMT Subject: CN=b3162a162a8dc04af5eb3d37033ea7f877a2ffaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f2:c2:63:49:01:91:67:63:2c:9f:46:61:87: 28:e8:0b:34:fc:fb:ea:7a:cf:11:31:17:80:92:60: 4b:af:3d:c9:7c:64:22:14:bb:9e:37:fd:a9:c2:cf: 3e:0f:02:11:3e:ee:ba:06:32:43:a8:f1:5d:63:e9: de:4f:8a:53:22:97:aa:71:e4:a2:0d:2f:84:c2:8f: 73:79:07:24:4b:b5:d6:81:86:b9:c0:f3:24:6f:af: 49:4f:6b:2c:ed:f6:86:b8:be:bf:a0:93:de:f3:94: 8e:42:80:6d:06:7a:e3:87:64:59:3e:e2:a1:0e:16: 13:84:72:31:cc:80:53:2a:4c:3f:ad:f0:42:da:a6: ce:ad:9b:4b:d7:be:a1:dc:69:5a:29:a2:91:70:22: 91:2c:10:90:dc:24:eb:2e:36:85:99:ae:87:e0:c4: d9:de:b7:49:3b:52:62:9c:18:eb:24:17:3d:60:78: a0:22:cc:a7:79:9e:ca:1c:43:e0:32:ba:8d:f8:31: 62:b9:5d:f7:67:30:0d:6d:70:6e:6a:a2:5d:95:e0: 2d:cb:8d:44:b1:42:36:a7:4a:e5:b7:41:24:33:9d: 23:6d:ee:8e:12:1a:6b:e3:35:f7:48:21:a3:2b:2f: 3b:e0:51:69:19:2e:1a:71:01:c7:eb:bd:3b:d8:4f: 78:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:16:2A:16:2A:8D:C0:4A:F5:EB:3D:37:03:3E:A7:F8:77:A2:FF:AA X509v3 Authority Key Identifier: keyid:32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:9c:82:da:dc:d7:28:42:8b:e7:7c:fe:40:66:6a:cf:42:27: 97:ce:ea:57:8b:0a:6b:13:3e:28:e8:a0:92:4e:c0:a5:59:c7: df:98:7a:68:29:39:10:61:16:32:e1:33:b2:66:fb:e1:fe:b4: 26:19:93:b6:ef:1a:cb:63:83:61:10:ed:77:10:cc:f3:ef:27: 6c:7f:19:3a:94:e6:ed:93:3e:0a:3f:7c:74:e3:65:70:d5:62: 00:bd:f8:b0:cf:e4:ed:e7:b5:c5:6f:1a:65:2a:cf:4f:6f:7d: 0e:8f:5e:82:19:50:29:f7:59:d7:b2:32:ab:ef:fd:0e:68:eb: 01:ee:98:67:34:c0:d1:6d:18:60:0b:50:b9:ce:15:c7:4d:48: 8b:be:4f:0b:55:5d:34:39:28:29:0b:ba:f9:a7:6a:59:fb:84: 3e:1d:33:3e:de:16:44:59:a5:bd:25:76:3c:10:da:6d:1e:09: 5c:9c:52:2c:9c:c2:67:3f:18:b7:8b:28:39:12:a2:45:f1:c3: d5:75:33:52:71:33:42:03:50:a6:11:5d:55:0a:d8:3f:58:c0: 54:f1:c4:44:e1:83:51:5a:9b:60:9f:7f:05:28:80:33:21:11: 5b:d1:d1:2e:a3:cf:d7:df:07:be:7b:d8:e4:9b:f2:ba:a4:e7: 67:1c:5b:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSAevwagY9QOoANXMFC7pKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyYjFiOTRiMDczYzU0Nzk5MWMyMGY4NDJlYWRlYzE2N2Vj MTllMzQwHhcNMjUxMjEyMTAwMTE0WhcNMjUxMjEzMTAwMTE0WjAzMTEwLwYDVQQD EyhiMzE2MmExNjJhOGRjMDRhZjVlYjNkMzcwMzNlYTdmODc3YTJmZmFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/LCY0kBkWdjLJ9GYYco6As0/Pvq es8RMReAkmBLrz3JfGQiFLueN/2pws8+DwIRPu66BjJDqPFdY+neT4pTIpeqceSi DS+Ewo9zeQckS7XWgYa5wPMkb69JT2ss7faGuL6/oJPe85SOQoBtBnrjh2RZPuKh DhYThHIxzIBTKkw/rfBC2qbOrZtL176h3GlaKaKRcCKRLBCQ3CTrLjaFma6H4MTZ 3rdJO1JinBjrJBc9YHigIsyneZ7KHEPgMrqN+DFiuV33ZzANbXBuaqJdleAty41E sUI2p0rlt0EkM50jbe6OEhpr4zX3SCGjKy874FFpGS4acQHH67072E940wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLMWKhYqjcBK9es9NwM+p/h3ov+qMB8GA1UdIwQY MBaAFDKxuUsHPFR5kcIPhC6t7BZ+wZ40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXJHNVN3YzhWSG1Sd2ctRUxxM3NGbjdCbmpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8wYTIwNmUtMTc4OC00MzZiLTk3Mjgt YmVkNGI5OWE3YmI0LzEvTXJHNVN3YzhWSG1Sd2ctRUxxM3NGbjdCbmpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS8wYTIwNmUtMTc4OC00MzZiLTk3MjgtYmVkNGI5OWE3YmI0 LzEvTXJHNVN3YzhWSG1Sd2ctRUxxM3NGbjdCbmpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO5yC2tzX KEKL53z+QGZqz0Inl87qV4sKaxM+KOigkk7ApVnH35h6aCk5EGEWMuEzsmb74f60 JhmTtu8ay2ODYRDtdxDM8+8nbH8ZOpTm7ZM+Cj98dONlcNViAL34sM/k7ee1xW8a ZSrPT299Do9eghlQKfdZ17Iyq+/9DmjrAe6YZzTA0W0YYAtQuc4Vx01Ii75PC1Vd NDkoKQu6+adqWfuEPh0zPt4WRFmlvSV2PBDabR4JXJxSLJzCZz8Yt4soORKiRfHD 1XUzUnEzQgNQphFdVQrYP1jAVPHEROGDUVqbYJ9/BSiAMyERW9HRLqPP198HvnvY 5JvyuqTnZxxbYA== -----END CERTIFICATE-----Generated at Fri Dec 12 16:53:42 2025 by rpki-client