This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft File: dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json) Hash identifier: 0sWLKYCdcfvjP+dUOQuLnls8mkphVNtAlMx3sJyy86w= Subject key identifier: 3D:C8:2E:EF:05:15:C2:F4:00:99:51:52:2A:F2:C3:E3:FD:93:C9:F6 Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3 Certificate issuer: /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3 Certificate serial: 019B36B3146B26E12432609DF21C5877EA70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft Manifest number: 0954 Signing time: Fri 19 Dec 2025 13:01:04 +0000 Manifest this update: Fri 19 Dec 2025 13:01:04 +0000 Manifest next update: Sat 20 Dec 2025 13:01:04 +0000 Files and hashes: 1: VWVp9Cs0S9PvQSERU4KTGGzQ8JI.roa (hash: SxWsENl0azYTplSpEg/TKtQu0dvHaU6Cl+WjOSHnKaA=) 2: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: d79jfnOswg60d07cwuXALeecu4ISaXz/h1BItUbjIa8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 13:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:b3:14:6b:26:e1:24:32:60:9d:f2:1c:58:77:ea:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3 Validity Not Before: Dec 19 13:01:04 2025 GMT Not After : Dec 20 13:01:04 2025 GMT Subject: CN=3dc82eef0515c2f4009951522af2c3e3fd93c9f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f2:a5:39:04:c0:33:e4:d4:83:6f:a6:98:99: 02:1b:3c:d3:f6:5f:20:29:69:56:d4:70:1f:45:b4: bd:db:7b:e9:9c:d2:01:af:bb:ba:06:cc:04:91:da: eb:c9:6b:fc:ad:a6:d6:93:6a:b3:88:d2:6c:0d:4d: 83:23:36:5d:51:00:2c:c4:a8:78:ed:40:a9:5c:13: a2:62:0a:15:af:ec:fb:7e:ae:63:74:29:8b:41:4b: f0:4c:e2:49:bb:f6:1e:cc:66:78:59:8a:bc:ab:ba: 5b:81:ed:a5:6a:a3:c2:0c:0b:41:09:f8:f3:c3:63: e9:37:1f:41:b4:ad:f9:5a:62:61:07:24:ac:60:cb: 96:b6:c8:11:0a:30:8a:53:4a:4e:b4:92:89:88:cd: fb:21:3b:9a:d3:88:f3:ac:81:36:6d:26:f9:00:0b: 0f:bd:92:50:41:91:38:1b:a5:39:67:24:36:42:fa: 36:59:5c:7b:d2:dc:c7:3c:3f:6a:81:fa:b1:c7:bf: b2:f7:64:06:48:69:2d:5d:b0:3a:5c:bd:47:32:61: 75:71:2d:e9:5c:79:6a:14:25:17:05:4a:c1:bb:cc: dc:15:47:d1:44:50:fe:8b:15:ea:5d:0f:90:37:2f: 62:3c:42:79:fe:6c:31:a3:c1:59:8f:e4:56:06:9f: 7d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C8:2E:EF:05:15:C2:F4:00:99:51:52:2A:F2:C3:E3:FD:93:C9:F6 X509v3 Authority Key Identifier: keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:cf:4a:6d:72:b7:d9:b2:31:b4:a6:6f:b5:58:ae:96:8b:c8: 7a:96:0a:75:fa:11:df:24:c8:bf:d3:47:ac:be:66:4f:e2:36: 75:0d:5d:6e:2a:f4:49:56:88:fb:0b:29:59:a6:f0:76:57:0d: 57:9a:34:4c:2f:19:3b:d6:20:9d:88:aa:48:d5:83:82:ce:cb: 51:83:20:93:df:b3:9b:5b:f3:39:65:36:6a:20:3b:8f:4c:ba: 3b:26:f0:d3:b2:ba:8e:d1:20:76:57:de:1e:ac:8e:fe:c8:c5: f1:c4:f0:70:0f:f8:45:69:a9:70:21:47:fe:fc:d2:1d:b8:ec: e7:a8:d7:aa:7b:bf:f2:6c:aa:4f:db:a8:2a:9c:35:0e:b1:1f: 3b:03:05:21:ed:05:51:5a:62:81:99:ee:60:8b:86:d3:db:79: 36:a1:ca:99:f8:fc:27:db:46:33:26:a1:e5:8f:b9:d2:5e:30: 5e:4f:c8:58:59:8a:42:1c:6e:2b:f9:09:1e:58:35:69:51:89: 5d:40:40:92:20:2e:ac:92:0f:a1:d2:33:60:1d:7f:a8:c3:f0: 09:a8:1f:b1:e5:51:c6:e1:55:ca:28:7d:7a:9e:6d:cd:e3:d5: 90:e0:24:ab:1f:32:6c:a2:1f:24:89:97:91:d6:ba:eb:20:72: 38:0c:b8:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2sxRrJuEkMmCd8hxYd+pwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OGU5OWEzMWYzNTgyNDAwYWI1ZGZhNzc3YzYwZDE2YWNh ZWRkYjMwHhcNMjUxMjE5MTMwMTA0WhcNMjUxMjIwMTMwMTA0WjAzMTEwLwYDVQQD EygzZGM4MmVlZjA1MTVjMmY0MDA5OTUxNTIyYWYyYzNlM2ZkOTNjOWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPKlOQTAM+TUg2+mmJkCGzzT9l8g KWlW1HAfRbS923vpnNIBr7u6BswEkdrryWv8rabWk2qziNJsDU2DIzZdUQAsxKh4 7UCpXBOiYgoVr+z7fq5jdCmLQUvwTOJJu/YezGZ4WYq8q7pbge2laqPCDAtBCfjz w2PpNx9BtK35WmJhBySsYMuWtsgRCjCKU0pOtJKJiM37ITua04jzrIE2bSb5AAsP vZJQQZE4G6U5ZyQ2Qvo2WVx70tzHPD9qgfqxx7+y92QGSGktXbA6XL1HMmF1cS3p XHlqFCUXBUrBu8zcFUfRRFD+ixXqXQ+QNy9iPEJ5/mwxo8FZj+RWBp99qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD3ILu8FFcL0AJlRUiryw+P9k8n2MB8GA1UdIwQY MBaAFHSOmaMfNYJACrXfp3fGDRasrt2zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEk2Wm94ODFna0FLdGQtbmQ4WU5GcXl1M2JNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC80MzdhZTUtYzJhYi00YzcxLTlkMDYt ZmVjNmMyNzAxZWRhLzEvZEk2Wm94ODFna0FLdGQtbmQ4WU5GcXl1M2JNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC80MzdhZTUtYzJhYi00YzcxLTlkMDYtZmVjNmMyNzAxZWRh LzEvZEk2Wm94ODFna0FLdGQtbmQ4WU5GcXl1M2JNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvs9KbXK3 2bIxtKZvtViulovIepYKdfoR3yTIv9NHrL5mT+I2dQ1dbir0SVaI+wspWabwdlcN V5o0TC8ZO9YgnYiqSNWDgs7LUYMgk9+zm1vzOWU2aiA7j0y6Oybw07K6jtEgdlfe HqyO/sjF8cTwcA/4RWmpcCFH/vzSHbjs56jXqnu/8myqT9uoKpw1DrEfOwMFIe0F UVpigZnuYIuG09t5NqHKmfj8J9tGMyah5Y+50l4wXk/IWFmKQhxuK/kJHlg1aVGJ XUBAkiAurJIPodIzYB1/qMPwCagfseVRxuFVyih9ep5tzePVkOAkqx8ybKIfJImX kda66yByOAy4Fg== -----END CERTIFICATE-----Generated at Fri Dec 19 22:53:45 2025 by rpki-client