This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json) Hash identifier: 60oW742Pv7UKsMDPX4AsK3Ibed37h7GpXYGzTOg4me4= Subject key identifier: C8:A9:1B:2C:83:20:94:14:29:ED:D5:73:3C:4E:65:E7:9F:DE:55:44 Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0 Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0 Certificate serial: 019B1ACD8F8DBF0D4F742E8F4429DCC62232 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft Manifest number: 05A7 Signing time: Sun 14 Dec 2025 03:00:37 +0000 Manifest this update: Sun 14 Dec 2025 03:00:37 +0000 Manifest next update: Mon 15 Dec 2025 03:00:37 +0000 Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: 02corc63rm438kalKreYT/9zG+fBxTYjCmgHo7HNOFk=) 2: tavXsXu7Wm_kIdKnzfVPzxktMGQ.roa (hash: PDEUyoKVmJLpE4EXJZCm2eA6jcMg8DukO+sjxPMBeZo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 03:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:cd:8f:8d:bf:0d:4f:74:2e:8f:44:29:dc:c6:22:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0 Validity Not Before: Dec 14 03:00:37 2025 GMT Not After : Dec 15 03:00:37 2025 GMT Subject: CN=c8a91b2c8320941429edd5733c4e65e79fde5544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ec:d6:d9:3a:0c:ac:89:ba:9d:33:92:79:8b: 96:16:de:9d:eb:1b:55:55:51:42:88:56:6a:8a:2a: 90:5b:ac:a1:cf:72:a2:c4:73:8f:6a:61:16:ec:58: d3:e1:49:dc:78:f3:b5:51:a2:ef:f7:a9:18:f9:35: e1:e3:a5:36:df:c9:75:13:4a:c9:e2:e1:e5:80:c9: 69:49:9a:27:c7:07:44:2a:ff:f4:94:00:7f:d5:f7: 32:98:20:00:ae:a5:94:7e:64:21:b6:fe:32:f5:73: ba:d9:6c:eb:40:e6:3c:d2:2f:5f:2b:f9:13:9f:f5: 1d:43:9b:33:b0:09:f2:5e:4b:a5:ea:e6:f1:78:dc: 19:08:bd:28:21:bb:f2:79:7a:17:27:b8:c1:2a:26: 1a:a7:8b:f0:92:c8:74:bd:fd:75:a7:3c:f7:2c:d7: 0a:2c:91:47:ea:11:5f:9f:80:7b:c5:38:c0:e9:cb: 05:54:b6:6c:dc:21:0a:b5:fd:71:85:10:e4:a4:a2: 2a:ee:3c:b1:01:22:67:1c:49:2e:4b:b8:d5:21:0c: f1:19:e8:80:cf:e6:bf:d6:93:7c:00:29:29:30:e2: 36:7e:cd:67:91:df:f5:0e:18:4d:a6:ee:be:b3:91: a6:9b:bf:36:bb:77:55:ba:1c:af:98:48:5c:9a:c8: 6c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A9:1B:2C:83:20:94:14:29:ED:D5:73:3C:4E:65:E7:9F:DE:55:44 X509v3 Authority Key Identifier: keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:29:bf:7e:7d:c7:22:f1:31:1c:34:67:de:ab:e7:19:6a:56: 73:0c:0b:29:17:cf:fa:a8:74:30:31:02:eb:5f:1b:9f:64:77: ba:e7:fe:c6:ef:f9:fa:89:a8:d5:e5:95:7c:a0:5c:d6:87:b1: ce:13:44:11:53:05:1f:18:8a:4f:b9:e8:af:d5:87:d1:7d:aa: cb:28:e0:19:c2:79:e1:72:8f:ba:1e:d2:8b:6c:e7:f9:60:c0: e6:98:7e:3b:42:0f:69:9c:66:0a:98:68:86:10:f1:17:46:c5: 0f:6d:e6:c2:82:e4:75:d6:f9:22:8b:f4:64:42:86:08:b1:b0: f5:1c:82:69:92:55:ad:58:a5:e5:bf:53:05:a0:9f:3f:ac:a9: d3:7e:81:2d:07:d1:b2:f2:c4:c6:71:0c:61:37:66:8b:eb:be: 97:84:64:28:3b:f0:2a:58:07:b0:b1:f9:4c:e1:75:47:d2:17: 5b:2f:b6:cd:d4:89:fc:a3:87:2a:09:91:5d:de:02:67:8b:9e: 61:75:b4:d9:4a:ab:eb:b2:75:3a:b0:b8:9b:6e:0f:91:5b:04: f9:bc:29:d9:c6:a8:4c:fa:28:dc:4d:a3:08:c8:48:62:56:28: f0:93:f9:56:25:57:4e:9e:b0:ce:1e:ce:19:cd:98:a9:ae:f9: ff:33:4a:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsazY+Nvw1PdC6PRCncxiIyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3Y2VmNzVlMDk3YTYzMTg4NmIzM2M4MWY2NGFhNWViYmMw YzMyYTAwHhcNMjUxMjE0MDMwMDM3WhcNMjUxMjE1MDMwMDM3WjAzMTEwLwYDVQQD EyhjOGE5MWIyYzgzMjA5NDE0MjllZGQ1NzMzYzRlNjVlNzlmZGU1NTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwezW2ToMrIm6nTOSeYuWFt6d6xtV VVFCiFZqiiqQW6yhz3KixHOPamEW7FjT4UncePO1UaLv96kY+TXh46U238l1E0rJ 4uHlgMlpSZonxwdEKv/0lAB/1fcymCAArqWUfmQhtv4y9XO62WzrQOY80i9fK/kT n/UdQ5szsAnyXkul6ubxeNwZCL0oIbvyeXoXJ7jBKiYap4vwksh0vf11pzz3LNcK LJFH6hFfn4B7xTjA6csFVLZs3CEKtf1xhRDkpKIq7jyxASJnHEkuS7jVIQzxGeiA z+a/1pN8ACkpMOI2fs1nkd/1DhhNpu6+s5Gmm782u3dVuhyvmEhcmshs0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMipGyyDIJQUKe3VczxOZeef3lVEMB8GA1UdIwQY MBaAFNfO914JemMYhrM8gfZKpeu8DDKgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9mNGYwZDUtN2U0My00NmJlLWIwOTIt NWJhNTAxZTBiMzcwLzEvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9mNGYwZDUtN2U0My00NmJlLWIwOTItNWJhNTAxZTBiMzcw LzEvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWym/fn3H IvExHDRn3qvnGWpWcwwLKRfP+qh0MDEC618bn2R3uuf+xu/5+omo1eWVfKBc1oex zhNEEVMFHxiKT7nor9WH0X2qyyjgGcJ54XKPuh7Si2zn+WDA5ph+O0IPaZxmCpho hhDxF0bFD23mwoLkddb5Iov0ZEKGCLGw9RyCaZJVrVil5b9TBaCfP6yp036BLQfR svLExnEMYTdmi+u+l4RkKDvwKlgHsLH5TOF1R9IXWy+2zdSJ/KOHKgmRXd4CZ4ue YXW02Uqr67J1OrC4m24PkVsE+bwp2caoTPoo3E2jCMhIYlYo8JP5ViVXTp6wzh7O Gc2Yqa75/zNK2w== -----END CERTIFICATE-----Generated at Sun Dec 14 13:45:24 2025 by rpki-client