This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft File: cM9eaXxglK22vJcVazXgBf1M8uI.mft (raw, json) Hash identifier: nBeJ6gDQTNarJB2ldQfA0qBrcViryJ7ENwGneGpmybs= Subject key identifier: AC:37:B5:65:FE:16:21:C5:24:8A:6A:F4:81:34:E5:7A:DF:28:B0:60 Authority key identifier: 70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2 Certificate issuer: /CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2 Certificate serial: 019B33B22D58FE3A365938309378E959BFE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft Manifest number: 1783 Signing time: Thu 18 Dec 2025 23:01:13 +0000 Manifest this update: Thu 18 Dec 2025 23:01:13 +0000 Manifest next update: Fri 19 Dec 2025 23:01:13 +0000 Files and hashes: 1: ZMvF8N06VsuZ5tNxMMczzsSTe5w.roa (hash: D7vN+YdR9s6oznh1bq9p5ngAxVIRYXDWMiWld/VomNA=) 2: cM9eaXxglK22vJcVazXgBf1M8uI.crl (hash: o0eV5xUiFlqVp8fvCGu8yUR6x+PVOOQFcZx29pWNNo4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:b2:2d:58:fe:3a:36:59:38:30:93:78:e9:59:bf:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2 Validity Not Before: Dec 18 23:01:13 2025 GMT Not After : Dec 19 23:01:13 2025 GMT Subject: CN=ac37b565fe1621c5248a6af48134e57adf28b060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fb:b0:2f:12:55:ba:00:00:57:5b:a4:54:71: e8:92:cc:10:a9:dc:a2:f2:3e:c5:82:37:82:fa:90: ee:05:7b:d0:f3:82:bb:76:92:51:36:3a:d6:3c:e0: 1b:63:2b:da:e3:f8:c8:39:b5:a1:0c:4b:d0:32:6f: d0:7b:94:1f:78:d7:e0:0d:18:fb:9c:1f:0a:d2:e4: 35:e0:01:e2:16:3f:12:27:72:a9:bf:97:ae:e6:a0: 95:83:68:c4:f0:1a:22:23:20:67:21:75:1f:36:97: d7:ae:1b:f7:c7:de:bf:bf:2a:ea:c3:3a:2d:c8:0d: 99:d8:29:36:23:8f:76:3a:bc:e0:af:b9:cc:8c:07: a7:29:49:b0:54:97:05:6e:c6:75:bf:1a:d3:ea:91: 35:1d:57:73:31:ed:44:ff:5f:8a:70:09:78:ba:74: 69:f9:47:e7:a3:4f:9e:e9:03:06:cd:7b:4b:ca:27: 29:fd:c6:b0:9c:24:17:74:56:0c:0e:93:19:d1:3d: 5f:4b:2f:7b:ac:78:af:13:e0:b5:14:77:a3:88:a4: 7c:f8:c4:b5:50:64:66:43:c2:21:6e:a8:b1:1b:2d: e6:34:98:0d:32:a3:6b:85:2c:66:ef:79:45:bb:4d: ec:0b:ea:21:ed:e7:4a:40:75:1e:4f:43:4a:60:61: a8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:37:B5:65:FE:16:21:C5:24:8A:6A:F4:81:34:E5:7A:DF:28:B0:60 X509v3 Authority Key Identifier: keyid:70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:fd:52:c8:1a:74:13:79:e0:ff:f3:69:72:a3:42:58:57:ce: 89:ec:8f:f7:b8:c2:f2:ef:14:fc:ab:c0:85:f9:b6:69:67:56: 7c:f1:5b:22:43:28:a7:4a:30:9d:f2:0d:d5:82:e6:65:31:b1: ca:09:3a:6d:e0:5d:c6:24:b5:2e:e5:ee:da:74:88:eb:aa:fb: 25:87:e2:d0:b5:9a:91:b8:b8:0f:e3:ba:5c:6d:30:53:91:3a: a7:ed:28:ea:25:7c:0f:92:13:9b:56:dc:3a:ea:74:f8:4c:71: 24:74:a7:3e:5a:02:65:a0:fd:59:00:23:4d:a2:b9:55:e3:75: 7a:33:f2:e1:ef:56:af:17:d6:c6:83:c0:42:0a:6f:45:93:e5: bc:67:0c:b8:84:c2:89:65:10:98:36:0d:77:61:a5:d7:4a:88: 2d:80:8b:9e:d6:04:96:2d:f4:a1:25:20:d5:46:34:31:59:5d: 06:4b:a4:ef:6e:18:2e:a8:f1:32:09:b4:13:60:03:22:dd:42: 5c:70:b3:ed:b4:72:e8:7a:f5:64:04:00:30:e5:a3:bb:4d:c0: cc:38:b8:90:85:3e:23:ce:43:7b:4e:18:17:7f:b6:6e:ab:a5: 23:e2:00:5a:e5:3c:02:63:9e:b4:58:8c:73:ba:a1:e1:af:d9: 88:7b:cb:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszsi1Y/jo2WTgwk3jpWb/iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwY2Y1ZTY5N2M2MDk0YWRiNmJjOTcxNTZiMzVlMDA1ZmQ0 Y2YyZTIwHhcNMjUxMjE4MjMwMTEzWhcNMjUxMjE5MjMwMTEzWjAzMTEwLwYDVQQD EyhhYzM3YjU2NWZlMTYyMWM1MjQ4YTZhZjQ4MTM0ZTU3YWRmMjhiMDYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfuwLxJVugAAV1ukVHHokswQqdyi 8j7FgjeC+pDuBXvQ84K7dpJRNjrWPOAbYyva4/jIObWhDEvQMm/Qe5QfeNfgDRj7 nB8K0uQ14AHiFj8SJ3Kpv5eu5qCVg2jE8BoiIyBnIXUfNpfXrhv3x96/vyrqwzot yA2Z2Ck2I492Orzgr7nMjAenKUmwVJcFbsZ1vxrT6pE1HVdzMe1E/1+KcAl4unRp +Ufno0+e6QMGzXtLyicp/cawnCQXdFYMDpMZ0T1fSy97rHivE+C1FHejiKR8+MS1 UGRmQ8IhbqixGy3mNJgNMqNrhSxm73lFu03sC+oh7edKQHUeT0NKYGGo2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKw3tWX+FiHFJIpq9IE05XrfKLBgMB8GA1UdIwQY MBaAFHDPXml8YJSttryXFWs14AX9TPLiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY005ZWFYeGdsSzIydkpjVmF6WGdCZjFNOHVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy80ZDUyOTUtZjhmMi00ZTA1LWFkZDAt NTE5Nzk1YTIyNTAyLzEvY005ZWFYeGdsSzIydkpjVmF6WGdCZjFNOHVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy80ZDUyOTUtZjhmMi00ZTA1LWFkZDAtNTE5Nzk1YTIyNTAy LzEvY005ZWFYeGdsSzIydkpjVmF6WGdCZjFNOHVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARf1SyBp0 E3ng//NpcqNCWFfOieyP97jC8u8U/KvAhfm2aWdWfPFbIkMop0ownfIN1YLmZTGx ygk6beBdxiS1LuXu2nSI66r7JYfi0LWakbi4D+O6XG0wU5E6p+0o6iV8D5ITm1bc Oup0+ExxJHSnPloCZaD9WQAjTaK5VeN1ejPy4e9WrxfWxoPAQgpvRZPlvGcMuITC iWUQmDYNd2Gl10qILYCLntYEli30oSUg1UY0MVldBkuk724YLqjxMgm0E2ADIt1C XHCz7bRy6Hr1ZAQAMOWju03AzDi4kIU+I85De04YF3+2bqulI+IAWuU8AmOetFiM c7qh4a/ZiHvLfQ== -----END CERTIFICATE-----Generated at Fri Dec 19 00:55:45 2025 by rpki-client