This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft File: 1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft (raw, json) Hash identifier: o5cmM/r0Nr8/c5YFx3qbfsMnDhtkIGVl5h6OfdPClPk= Subject key identifier: 09:88:61:BF:79:D9:01:CC:31:71:3E:73:A4:3A:1F:4D:93:CF:15:83 Authority key identifier: FA:14:E8:15:3C:D3:F9:1C:33:39:7F:9B:7D:F9:1B:F1:73:C4:D1:6B Certificate issuer: /CN=fa14e8153cd3f91c33397f9b7df91bf173c4d16b Certificate serial: 019B251A3F8A90F35A60E45C2C8320A73026 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft Manifest number: 0186 Signing time: Tue 16 Dec 2025 03:00:35 +0000 Manifest this update: Tue 16 Dec 2025 03:00:35 +0000 Manifest next update: Wed 17 Dec 2025 03:00:35 +0000 Files and hashes: 1: 1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl (hash: 1nRtEf4aHGUS6CNnpp7lUt5kk1lQ3TaesXZvlvHc77w=) 2: i9PMkFjZgddcdQkvP1yxnZzZAzQ.roa (hash: AH1/HP90I2Jx2/ajhEGYd7uNt41g8Pva2Gq/dNXs1dY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:1a:3f:8a:90:f3:5a:60:e4:5c:2c:83:20:a7:30:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fa14e8153cd3f91c33397f9b7df91bf173c4d16b Validity Not Before: Dec 16 03:00:35 2025 GMT Not After : Dec 17 03:00:35 2025 GMT Subject: CN=098861bf79d901cc31713e73a43a1f4d93cf1583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:96:e2:aa:dc:7a:1c:6e:1d:fe:6f:3c:58: 3b:8c:a2:f7:90:e5:c5:bc:f9:ab:0c:00:59:10:da: 08:e7:99:d4:0e:09:62:f0:ec:23:3d:c0:7a:00:97: 59:d3:ee:2b:20:c5:c3:ff:f2:46:f4:5b:8f:0b:20: 99:b5:7d:f3:03:03:18:63:52:98:53:a1:3f:d8:a3: d8:fe:a6:ee:be:a6:00:9e:2a:c9:dd:bb:1c:57:6f: d1:65:28:83:e8:34:4c:82:e2:3e:f1:70:14:2a:da: 22:4f:c9:94:6d:be:b0:d5:88:66:70:14:ba:14:1c: 35:8c:78:cf:5a:75:fb:17:bf:97:23:d8:5f:db:0f: 05:4c:ca:82:ce:11:b7:01:9d:4c:02:11:03:00:8a: c1:44:64:10:d5:e3:8d:08:4f:8f:b7:57:2d:43:47: 5a:71:89:ca:6a:68:3d:eb:72:89:46:86:f8:65:8d: f6:ed:f6:7c:0b:bf:f8:4e:ce:38:92:28:67:1b:6f: 36:bc:fc:0e:b0:fc:e1:c2:4f:90:a3:d4:b4:d1:ab: 12:53:04:24:04:61:47:0d:8b:8c:c1:0d:e9:22:cc: 19:5c:11:86:30:d8:e4:ee:f9:73:7b:bf:77:f3:ee: f4:f3:82:1a:34:aa:e4:ed:b6:a8:02:0e:0a:d2:44: b3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:88:61:BF:79:D9:01:CC:31:71:3E:73:A4:3A:1F:4D:93:CF:15:83 X509v3 Authority Key Identifier: keyid:FA:14:E8:15:3C:D3:F9:1C:33:39:7F:9B:7D:F9:1B:F1:73:C4:D1:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:51:49:07:f1:a1:52:22:f6:ba:f1:25:6f:ac:63:5f:dc:2c: 01:a9:16:15:4b:8b:b2:8e:3c:aa:67:74:8b:15:24:1b:c0:aa: 71:8b:c1:77:77:42:e5:a7:82:b5:93:58:24:03:06:a4:f7:77: f5:64:cc:34:b8:6a:45:65:c5:05:90:86:4f:21:d0:a0:7a:25: 99:30:5e:af:f4:c4:3e:72:ca:e0:b0:95:5d:c3:0d:9b:3a:5e: 7b:89:ca:3e:95:fb:62:cf:2a:7c:29:46:ff:83:27:24:b2:72: 16:8b:36:74:6a:8e:1b:f1:3b:3a:57:15:db:6f:a9:5f:f6:20: be:2c:09:5f:6f:39:b7:56:18:f3:be:00:0b:0a:53:d6:1b:07: d7:44:6d:0c:c1:dd:1d:64:a0:b9:cd:3f:11:a9:ed:32:d2:5b: c0:5b:a6:91:df:90:56:b6:2b:4d:b8:4d:94:43:61:64:ef:64: d5:70:cf:8f:0d:2a:0d:64:cd:f5:3f:f8:72:0a:c9:b9:48:df: c0:c2:6c:0a:e3:c1:cd:ba:cd:55:4f:1e:75:f9:fc:91:8f:e3: 1d:5b:3f:d7:36:5d:e1:e3:f0:4f:2e:54:9e:18:a0:6b:d8:19: 51:6a:42:c4:9d:b1:2d:82:ed:19:7a:cb:43:52:cf:fb:2f:3b: 6b:49:3d:2b -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZslGj+KkPNaYORcLIMgpzAmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhMTRlODE1M2NkM2Y5MWMzMzM5N2Y5YjdkZjkxYmYxNzNj NGQxNmIwHhcNMjUxMjE2MDMwMDM1WhcNMjUxMjE3MDMwMDM1WjAzMTEwLwYDVQQD EygwOTg4NjFiZjc5ZDkwMWNjMzE3MTNlNzNhNDNhMWY0ZDkzY2YxNTgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgKW4qrcehxuHf5vPFg7jKL3kOXF vPmrDABZENoI55nUDgli8OwjPcB6AJdZ0+4rIMXD//JG9FuPCyCZtX3zAwMYY1KY U6E/2KPY/qbuvqYAnirJ3bscV2/RZSiD6DRMguI+8XAUKtoiT8mUbb6w1YhmcBS6 FBw1jHjPWnX7F7+XI9hf2w8FTMqCzhG3AZ1MAhEDAIrBRGQQ1eONCE+Pt1ctQ0da cYnKamg963KJRob4ZY327fZ8C7/4Ts44kihnG282vPwOsPzhwk+Qo9S00asSUwQk BGFHDYuMwQ3pIswZXBGGMNjk7vlze7938+7084IaNKrk7baoAg4K0kSzHQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFAmIYb952QHMMXE+c6Q6H02TzxWDMB8GA1UdIwQY MBaAFPoU6BU80/kcMzl/m335G/FzxNFrMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1oVG9GVHpULVJ3ek9YLWJmZmtiOFhQRTBXcy5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcvMjQwNzgwLTgxMTAtNDVkNy1iZDcz LWZkZmQyZDcyYjU0MS8xLzEtaFRvRlR6VC1Sd3pPWC1iZmZrYjhYUEUwV3MubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxUL2M3LzI0MDc4MC04MTEwLTQ1ZDctYmQ3My1mZGZkMmQ3MmI1 NDEvMS8xLWhUb0ZUelQtUnd6T1gtYmZma2I4WFBFMFdzLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXVFJ B/GhUiL2uvElb6xjX9wsAakWFUuLso48qmd0ixUkG8CqcYvBd3dC5aeCtZNYJAMG pPd39WTMNLhqRWXFBZCGTyHQoHolmTBer/TEPnLK4LCVXcMNmzpee4nKPpX7Ys8q fClG/4MnJLJyFos2dGqOG/E7OlcV22+pX/YgviwJX285t1YY874ACwpT1hsH10Rt DMHdHWSguc0/EantMtJbwFumkd+QVrYrTbhNlENhZO9k1XDPjw0qDWTN9T/4cgrJ uUjfwMJsCuPBzbrNVU8edfn8kY/jHVs/1zZd4ePwTy5Unhiga9gZUWpCxJ2xLYLt GXrLQ1LP+y87a0k9Kw== -----END CERTIFICATE-----Generated at Tue Dec 16 08:34:45 2025 by rpki-client