This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json) Hash identifier: /opByhwMA5/l5V/sxihNX9YVOn5oXjJMK6gXa//CbZc= Subject key identifier: 9D:A4:B0:AD:BB:C9:3F:6C:A9:7F:D5:10:A0:0C:B5:2B:E4:65:50:82 Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d Certificate serial: 019B0E2596AED41289DC0C3B9FFF1F38796C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft Manifest number: 0E56 Signing time: Thu 11 Dec 2025 16:01:42 +0000 Manifest this update: Thu 11 Dec 2025 16:01:42 +0000 Manifest next update: Fri 12 Dec 2025 16:01:42 +0000 Files and hashes: 1: 1-boXqKY_Hyoe19Z5JIZ3K6AJj94.roa (hash: a5qc0h3BhqmeqSpAZh7GFmd10hjtqvPl4/lqfepgblo=) 2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: 9iZuTf+JQuAwdi6sSlOf1oTC84Z6r29pMcqkJROxzZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 16:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:25:96:ae:d4:12:89:dc:0c:3b:9f:ff:1f:38:79:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d Validity Not Before: Dec 11 16:01:42 2025 GMT Not After : Dec 12 16:01:42 2025 GMT Subject: CN=9da4b0adbbc93f6ca97fd510a00cb52be4655082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d5:17:75:81:65:ae:6a:76:4e:2b:0f:74:5f: 12:f3:7d:ae:10:72:ee:14:1a:3e:8e:ce:4a:14:03: 0b:89:cf:62:65:da:81:4c:2f:29:01:69:ed:1e:bc: a6:97:16:d2:3b:68:25:3d:3c:95:91:3b:6b:ee:36: 96:b9:4a:6f:c1:cc:93:54:e0:4d:79:bc:58:e4:34: 70:8d:33:78:38:1b:1e:4f:de:29:59:29:c1:27:89: fa:6f:a6:c2:56:a7:3c:7c:91:d4:19:19:16:4e:c6: c7:8f:f6:3d:be:b3:e8:7f:ad:1f:29:2a:2d:59:42: c2:26:36:63:23:a0:64:91:a3:91:ed:c7:b1:b7:74: 98:69:2b:71:cf:43:d5:3e:c1:b2:4d:7d:7c:c2:4b: b1:9f:b1:9a:f0:53:b4:ab:71:45:df:1b:a6:2e:f9: 3d:70:af:36:53:1f:16:6e:b4:03:74:a2:ce:46:62: f6:ee:e0:97:1b:0e:26:44:dc:6d:cd:79:26:42:49: 00:8b:a9:9a:28:b5:a2:26:69:01:ef:04:ff:ba:c7: be:8b:f1:3d:f5:19:90:2e:4c:c5:7f:d8:17:45:27: c0:62:5c:5b:3a:f7:9b:36:b3:3e:20:c0:c9:c0:9d: 47:c5:80:d8:05:38:61:c5:c4:aa:26:c4:a8:f5:39: 6e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A4:B0:AD:BB:C9:3F:6C:A9:7F:D5:10:A0:0C:B5:2B:E4:65:50:82 X509v3 Authority Key Identifier: keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:d8:71:7e:72:ef:56:7b:6b:e1:fc:46:f9:81:6b:d4:6c:cf: f5:99:66:16:c6:85:91:99:bb:cd:13:70:96:f8:e5:66:d3:2f: a6:31:b3:10:ad:e7:45:cb:df:3f:73:e9:a5:39:2e:27:5a:40: 0c:2c:d6:31:c8:67:49:cd:bf:23:b0:71:0e:51:a9:3f:ca:ab: 86:d8:8e:5e:19:99:c1:61:82:44:e2:96:2d:75:75:1e:45:8a: 5d:aa:39:8d:9b:cd:79:de:45:e5:b0:c7:d6:23:33:f3:12:d3: c8:bb:12:af:7e:6b:a2:f0:55:cf:e0:a6:06:e2:47:6a:26:5c: b6:71:76:35:5e:91:c8:06:e8:d0:cf:26:d0:5d:26:bf:c2:eb: e4:28:30:c1:ac:23:40:62:2e:dc:fb:27:dd:31:cb:5b:c6:92: 0e:29:9f:be:3b:75:01:72:6b:e7:1f:41:79:79:b5:89:6e:7b: 3f:e0:bb:be:3c:91:7e:79:69:67:54:f7:5d:6f:ef:25:ab:2e: 22:29:7c:88:9e:41:c5:7c:87:18:54:e7:d4:67:0b:69:82:34: 9f:98:85:54:9b:b3:ab:f2:81:bc:84:d7:f8:5e:f7:7e:1f:fd: a2:13:36:19:b1:db:d8:d9:5b:1d:77:57:a2:39:6c:a3:f9:31: 29:e3:46:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJZau1BKJ3Aw7n/8fOHlsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNmYxODQxNmQ3ZDQ3MGFhMDRhZDAwYmNhNTc2ODNjNzg5 ZDg1NGQwHhcNMjUxMjExMTYwMTQyWhcNMjUxMjEyMTYwMTQyWjAzMTEwLwYDVQQD Eyg5ZGE0YjBhZGJiYzkzZjZjYTk3ZmQ1MTBhMDBjYjUyYmU0NjU1MDgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdUXdYFlrmp2TisPdF8S832uEHLu FBo+js5KFAMLic9iZdqBTC8pAWntHrymlxbSO2glPTyVkTtr7jaWuUpvwcyTVOBN ebxY5DRwjTN4OBseT94pWSnBJ4n6b6bCVqc8fJHUGRkWTsbHj/Y9vrPof60fKSot WULCJjZjI6BkkaOR7cext3SYaStxz0PVPsGyTX18wkuxn7Ga8FO0q3FF3xumLvk9 cK82Ux8WbrQDdKLORmL27uCXGw4mRNxtzXkmQkkAi6maKLWiJmkB7wT/use+i/E9 9RmQLkzFf9gXRSfAYlxbOvebNrM+IMDJwJ1HxYDYBThhxcSqJsSo9TluBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ2ksK27yT9sqX/VEKAMtSvkZVCCMB8GA1UdIwQY MBaAFK5vGEFtfUcKoErQC8pXaDx4nYVNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYt MDZlNTRkZDkyMTcxLzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYtMDZlNTRkZDkyMTcx LzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUNhxfnLv Vntr4fxG+YFr1GzP9ZlmFsaFkZm7zRNwlvjlZtMvpjGzEK3nRcvfP3PppTkuJ1pA DCzWMchnSc2/I7BxDlGpP8qrhtiOXhmZwWGCROKWLXV1HkWKXao5jZvNed5F5bDH 1iMz8xLTyLsSr35rovBVz+CmBuJHaiZctnF2NV6RyAbo0M8m0F0mv8Lr5Cgwwawj QGIu3Psn3THLW8aSDimfvjt1AXJr5x9BeXm1iW57P+C7vjyRfnlpZ1T3XW/vJasu Iil8iJ5BxXyHGFTn1GcLaYI0n5iFVJuzq/KBvITX+F73fh/9ohM2GbHb2NlbHXdX ojlso/kxKeNGCQ== -----END CERTIFICATE-----Generated at Fri Dec 12 01:20:23 2025 by rpki-client