This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json) Hash identifier: 2GC34n+rbvkiPgVxlwdW42SaQOyUSfSvmY/ZNFJ7skQ= Subject key identifier: A4:5D:FB:05:9A:2E:01:BB:96:A4:64:00:7A:40:0E:6A:BB:B9:55:FA Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0 Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0 Certificate serial: 019B416D61647A995C6A4A972546A9E6ED59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft Manifest number: 05BB Signing time: Sun 21 Dec 2025 15:00:45 +0000 Manifest this update: Sun 21 Dec 2025 15:00:45 +0000 Manifest next update: Mon 22 Dec 2025 15:00:45 +0000 Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: Edo1kYh5WWdzgPZ+QLyrcbz5IHSwDfMflhlr8kG8bbM=) 2: tavXsXu7Wm_kIdKnzfVPzxktMGQ.roa (hash: PDEUyoKVmJLpE4EXJZCm2eA6jcMg8DukO+sjxPMBeZo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:61:64:7a:99:5c:6a:4a:97:25:46:a9:e6:ed:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0 Validity Not Before: Dec 21 15:00:45 2025 GMT Not After : Dec 22 15:00:45 2025 GMT Subject: CN=a45dfb059a2e01bb96a464007a400e6abbb955fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:e5:cd:62:86:53:00:cd:dc:c1:87:96:e1:4e: 74:f4:45:12:ea:e4:10:76:17:ed:e0:6a:66:0a:e5: 0b:ba:5e:87:67:14:cd:a8:e3:72:5f:7f:ca:a4:6c: 6a:dd:87:f6:83:dd:d3:65:89:21:8c:10:8d:17:b3: ec:7b:53:ca:4b:62:c4:c4:9f:16:f9:89:e2:cc:9b: 5e:0e:41:8c:09:8a:3e:e2:bf:ff:04:c0:83:f9:5f: 0e:a1:22:67:89:cc:f1:1c:6b:52:2b:1e:69:8c:0c: 23:e5:da:85:bc:43:27:74:78:6d:73:e4:e2:aa:05: 6b:a9:e2:3f:37:de:1c:c0:03:ed:f8:62:42:d8:b0: 48:14:8d:65:f2:7b:fa:4d:70:66:3f:1c:6b:7e:95: f5:85:53:01:14:cb:04:19:52:ee:eb:bb:f0:8c:73: ca:2f:2b:09:b7:c5:f1:1f:ca:21:1a:bd:b6:46:53: 37:6c:fe:e0:be:24:61:2b:3e:9b:91:17:f5:13:71: 57:e7:09:aa:61:07:81:5e:ef:30:57:7a:56:46:e7: 70:b7:61:dd:86:99:4a:c5:ad:4b:5c:83:b8:2a:5b: a7:98:d6:09:93:1b:17:80:56:59:47:a9:94:2c:bd: 93:1f:7e:55:9f:a1:55:ab:95:0c:4d:2b:70:4f:64: a2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:5D:FB:05:9A:2E:01:BB:96:A4:64:00:7A:40:0E:6A:BB:B9:55:FA X509v3 Authority Key Identifier: keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:7b:5c:26:aa:0d:f5:07:f4:37:bb:dd:f7:ba:58:65:14:0d: 2f:b8:ad:e2:21:58:be:d3:e7:a8:52:78:83:a1:04:f7:a7:7a: 36:de:b3:49:03:84:02:ec:26:2e:90:12:e7:63:75:2d:03:83: cd:02:7c:4f:e3:28:91:f2:a1:eb:ff:1c:b4:be:21:a8:df:c9: ff:76:9b:87:d8:a1:a5:50:2d:57:66:95:15:a1:f5:a7:0b:d7: ce:b3:db:90:45:5e:d4:d3:09:be:50:65:07:cd:4c:1e:f9:18: 2e:d4:0e:47:86:46:ce:e6:f2:b4:b0:bc:fe:b2:cd:3b:1a:a6: 86:04:43:2b:09:b1:78:dd:46:14:bf:04:df:8d:81:74:f0:4f: 7d:e5:9b:93:1d:15:e9:54:f2:db:de:25:b2:c0:99:05:99:ec: 2d:fd:36:41:b6:3b:f8:3c:fe:30:99:58:36:61:98:83:8a:bc: 04:20:2d:29:0f:c2:63:8f:65:6a:cc:3d:bb:d3:b1:b6:60:1a: 12:35:bc:5d:b1:f1:c0:76:f4:dd:24:91:20:36:a8:64:48:54: b7:f9:92:c3:dd:eb:69:88:86:bf:54:b5:7d:ae:d7:16:19:ca: 40:98:82:1f:db:ca:06:a1:2c:99:13:2c:b3:f6:ca:24:a3:ae: 18:f7:1d:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBbWFkeplcakqXJUap5u1ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3Y2VmNzVlMDk3YTYzMTg4NmIzM2M4MWY2NGFhNWViYmMw YzMyYTAwHhcNMjUxMjIxMTUwMDQ1WhcNMjUxMjIyMTUwMDQ1WjAzMTEwLwYDVQQD EyhhNDVkZmIwNTlhMmUwMWJiOTZhNDY0MDA3YTQwMGU2YWJiYjk1NWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+OXNYoZTAM3cwYeW4U509EUS6uQQ dhft4GpmCuULul6HZxTNqONyX3/KpGxq3Yf2g93TZYkhjBCNF7Pse1PKS2LExJ8W +YnizJteDkGMCYo+4r//BMCD+V8OoSJniczxHGtSKx5pjAwj5dqFvEMndHhtc+Ti qgVrqeI/N94cwAPt+GJC2LBIFI1l8nv6TXBmPxxrfpX1hVMBFMsEGVLu67vwjHPK LysJt8XxH8ohGr22RlM3bP7gviRhKz6bkRf1E3FX5wmqYQeBXu8wV3pWRudwt2Hd hplKxa1LXIO4KlunmNYJkxsXgFZZR6mULL2TH35Vn6FVq5UMTStwT2Si+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKRd+wWaLgG7lqRkAHpADmq7uVX6MB8GA1UdIwQY MBaAFNfO914JemMYhrM8gfZKpeu8DDKgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9mNGYwZDUtN2U0My00NmJlLWIwOTIt NWJhNTAxZTBiMzcwLzEvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9mNGYwZDUtN2U0My00NmJlLWIwOTItNWJhNTAxZTBiMzcw LzEvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHXtcJqoN 9Qf0N7vd97pYZRQNL7it4iFYvtPnqFJ4g6EE96d6Nt6zSQOEAuwmLpAS52N1LQOD zQJ8T+MokfKh6/8ctL4hqN/J/3abh9ihpVAtV2aVFaH1pwvXzrPbkEVe1NMJvlBl B81MHvkYLtQOR4ZGzubytLC8/rLNOxqmhgRDKwmxeN1GFL8E342BdPBPfeWbkx0V 6VTy294lssCZBZnsLf02QbY7+Dz+MJlYNmGYg4q8BCAtKQ/CY49lasw9u9OxtmAa EjW8XbHxwHb03SSRIDaoZEhUt/mSw93raYiGv1S1fa7XFhnKQJiCH9vKBqEsmRMs s/bKJKOuGPcdMQ== -----END CERTIFICATE-----Generated at Sun Dec 21 19:48:56 2025 by rpki-client