This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft File: 0YHQxAlRpPkA5NndnCDkhWNQkg4.mft (raw, json) Hash identifier: 21akipdo7SirKB46timeg5v6B/W/s2FJiAb+DG60UUE= Subject key identifier: D9:D3:81:B4:74:4F:ED:1B:69:01:B1:2D:CF:20:A5:36:95:0A:16:54 Authority key identifier: D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E Certificate issuer: /CN=d181d0c40951a4f900e4d9dd9c20e4856350920e Certificate serial: 019B08FE2787A45D2613D14B9E01B26EAB19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft Manifest number: 1772 Signing time: Wed 10 Dec 2025 16:00:32 +0000 Manifest this update: Wed 10 Dec 2025 16:00:32 +0000 Manifest next update: Thu 11 Dec 2025 16:00:32 +0000 Files and hashes: 1: 0YHQxAlRpPkA5NndnCDkhWNQkg4.crl (hash: 9AWVgL87CEIPbYv6UoTksiGT1774IPisaLbTBGTRfaY=) 2: 2VAk9AH_jCxBcmS3UFNJkQWmjmM.roa (hash: OTJmVbnhsENHWSTSM66puZiLKu+kw6NtZbXCQeGN/YQ=) 3: 5kzmDTi0KIXTn8Ss2d36rIX1bZA.roa (hash: VgZeJy91lZpXmzMfyFbTui1JSN8xoQwBbcwBQ01/D0A=) 4: SA8oSTczcAjgQR1zXNlc0Vgrtd0.roa (hash: fw6Ud0wGZN9ltnlpcBVHmq+wSri7RZaFK71pfthgGyU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:fe:27:87:a4:5d:26:13:d1:4b:9e:01:b2:6e:ab:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d181d0c40951a4f900e4d9dd9c20e4856350920e Validity Not Before: Dec 10 16:00:32 2025 GMT Not After : Dec 11 16:00:32 2025 GMT Subject: CN=d9d381b4744fed1b6901b12dcf20a536950a1654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2c:b3:ad:db:9c:11:cb:9d:39:6c:dd:fb:8c: f0:b1:9a:d5:02:7e:e4:a1:3d:68:ab:27:39:26:d4: 92:b3:4f:21:55:d8:30:95:d5:ba:70:1e:94:fb:4a: ca:84:e8:5d:0b:10:41:0a:63:22:c7:b5:fc:5f:bf: 1f:d0:ec:a0:94:4a:17:df:d1:88:56:e1:00:cb:9f: 19:f0:39:fe:a1:03:72:4d:2a:e6:ac:02:60:e4:f8: 16:6a:c8:2b:d9:1e:01:7b:63:60:74:6d:e4:c1:2b: dd:a5:01:c3:23:50:66:0e:53:d8:02:a5:de:ac:d4: 6f:62:18:ee:0a:dc:1d:e3:25:36:da:6f:4f:c2:fd: c2:47:ee:15:f9:72:36:e0:58:d2:52:c4:91:13:fa: f3:c3:02:db:f0:c0:57:bf:a5:01:02:30:f0:18:44: 53:de:c1:c5:99:23:0d:bc:5a:8a:02:01:22:89:0f: 9c:48:6d:d6:e5:23:6c:f0:25:43:1a:9d:30:aa:7d: 94:b0:bb:42:b4:2c:cc:87:c6:dc:70:51:0f:09:89: cf:63:df:2d:bc:fd:d6:1d:04:e7:e0:92:52:bb:1e: ae:fa:28:34:b1:f5:20:50:1c:f5:e0:68:41:c6:33: 52:5f:9c:f5:78:3d:fc:59:3a:18:4b:92:d2:00:b5: 01:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D3:81:B4:74:4F:ED:1B:69:01:B1:2D:CF:20:A5:36:95:0A:16:54 X509v3 Authority Key Identifier: keyid:D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:13:c6:d3:6c:33:f8:33:4d:08:35:ac:ba:d6:2f:9e:b2:b2: 39:0c:32:c7:43:a1:0d:3c:e5:6c:13:0b:80:25:48:2d:af:53: 7d:06:7f:e0:eb:f0:f3:2d:40:4b:ea:30:f0:10:66:59:d1:bf: 65:0c:8c:0e:f4:4c:fd:d7:29:87:46:0f:55:b5:d4:c3:0f:f7: 91:e5:c2:a3:30:c9:31:39:7a:a6:24:c6:6b:69:83:48:25:30: 5a:64:7b:6c:6a:78:14:46:c2:d8:d7:01:99:e6:f1:5b:3c:80: ae:e4:70:4f:b0:1f:00:76:61:b6:f8:b3:64:60:b4:4a:44:3c: 30:3e:85:7b:06:94:4f:41:a9:4d:8e:bd:6d:c8:b0:db:d0:bf: cd:09:67:b0:46:77:98:91:d8:b1:45:87:46:4f:95:a6:2b:9f: ed:eb:96:ef:9a:7c:38:bc:9c:f3:01:15:b6:24:41:6a:bc:94: 24:f6:5d:17:3b:e8:f1:71:ff:9e:60:48:94:e9:b5:7c:2a:23: 60:84:ce:6d:92:61:8b:78:d8:dd:4b:34:ac:b3:83:5b:89:5c: 69:80:7a:9b:37:a6:b3:a0:8d:9a:f0:3a:37:28:26:fb:b2:16: 77:c7:2d:38:3f:36:2e:5e:9e:f5:e4:c7:19:1b:e2:80:67:11: 7f:b8:47:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsI/ieHpF0mE9FLngGybqsZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxODFkMGM0MDk1MWE0ZjkwMGU0ZDlkZDljMjBlNDg1NjM1 MDkyMGUwHhcNMjUxMjEwMTYwMDMyWhcNMjUxMjExMTYwMDMyWjAzMTEwLwYDVQQD EyhkOWQzODFiNDc0NGZlZDFiNjkwMWIxMmRjZjIwYTUzNjk1MGExNjU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyyzrducEcudOWzd+4zwsZrVAn7k oT1oqyc5JtSSs08hVdgwldW6cB6U+0rKhOhdCxBBCmMix7X8X78f0OyglEoX39GI VuEAy58Z8Dn+oQNyTSrmrAJg5PgWasgr2R4Be2NgdG3kwSvdpQHDI1BmDlPYAqXe rNRvYhjuCtwd4yU22m9Pwv3CR+4V+XI24FjSUsSRE/rzwwLb8MBXv6UBAjDwGERT 3sHFmSMNvFqKAgEiiQ+cSG3W5SNs8CVDGp0wqn2UsLtCtCzMh8bccFEPCYnPY98t vP3WHQTn4JJSux6u+ig0sfUgUBz14GhBxjNSX5z1eD38WToYS5LSALUBLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNnTgbR0T+0baQGxLc8gpTaVChZUMB8GA1UdIwQY MBaAFNGB0MQJUaT5AOTZ3Zwg5IVjUJIOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFlIUXhBbFJwUGtBNU5uZG5DRGtoV05Ra2c0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9hOWQ3OWUtYjI4Mi00M2MxLThiOGEt Mzg4YjgxYzBjOTBjLzEvMFlIUXhBbFJwUGtBNU5uZG5DRGtoV05Ra2c0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi9hOWQ3OWUtYjI4Mi00M2MxLThiOGEtMzg4YjgxYzBjOTBj LzEvMFlIUXhBbFJwUGtBNU5uZG5DRGtoV05Ra2c0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABRPG02wz +DNNCDWsutYvnrKyOQwyx0OhDTzlbBMLgCVILa9TfQZ/4Ovw8y1AS+ow8BBmWdG/ ZQyMDvRM/dcph0YPVbXUww/3keXCozDJMTl6piTGa2mDSCUwWmR7bGp4FEbC2NcB mebxWzyAruRwT7AfAHZhtvizZGC0SkQ8MD6FewaUT0GpTY69bciw29C/zQlnsEZ3 mJHYsUWHRk+Vpiuf7euW75p8OLyc8wEVtiRBaryUJPZdFzvo8XH/nmBIlOm1fCoj YITObZJhi3jY3Us0rLODW4lcaYB6mzems6CNmvA6Nygm+7IWd8ctOD82Ll6e9eTH GRvigGcRf7hHSQ== -----END CERTIFICATE-----Generated at Wed Dec 10 18:13:11 2025 by rpki-client