This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json) Hash identifier: 50U8JRah6CwJylmVZ078aLCqRBndj1SgmiKq/UwyjvQ= Subject key identifier: DC:BC:A0:86:BB:FF:3E:42:2E:23:8B:2C:3D:62:EF:70:34:01:43:C2 Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e Certificate serial: 019B1A29187C08AF0F4814FFFB2715C4895A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft Manifest number: 0BD5 Signing time: Sun 14 Dec 2025 00:00:59 +0000 Manifest this update: Sun 14 Dec 2025 00:00:59 +0000 Manifest next update: Mon 15 Dec 2025 00:00:59 +0000 Files and hashes: 1: Ly1MWymIvXOCybb36lr4yOkjsU8.roa (hash: VpBFbk8tqcALSJaD09pM7y3kJlzVLbs+HEbBlDB9T94=) 2: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: 6XkKnlujOXEPgtV6zk9WelyLWTm5p5k7liOhnm39rxQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:29:18:7c:08:af:0f:48:14:ff:fb:27:15:c4:89:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e Validity Not Before: Dec 14 00:00:59 2025 GMT Not After : Dec 15 00:00:59 2025 GMT Subject: CN=dcbca086bbff3e422e238b2c3d62ef70340143c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fb:ae:2d:b3:ab:94:d4:1d:59:19:2e:f4:32: 93:05:87:4e:d0:e6:05:1d:00:e1:a0:81:b9:d0:b4: b9:b3:1b:2c:fe:03:45:cf:db:b6:ea:48:0e:dc:36: 6e:03:72:ed:e4:e5:7f:82:4f:89:38:88:e9:e9:81: 6f:4d:a3:45:0e:ad:ad:b8:80:62:2d:ee:d9:d1:90: 03:31:bf:5c:b9:f3:53:86:e7:36:f1:79:9f:99:a5: 5a:43:d0:70:0b:e0:f5:3f:30:9b:eb:5e:70:c6:8e: 6d:f2:39:ed:e0:09:af:be:5c:50:d9:3c:3c:00:6c: ea:0f:71:f1:63:9b:dc:ab:ed:b8:d9:7e:91:d2:b5: 9c:79:ed:94:b0:6f:c1:f0:e8:a1:24:f9:1f:dd:83: b1:a5:88:34:3e:5d:21:7b:87:98:38:f8:6f:ca:bf: 78:3c:36:fe:63:23:11:f2:f8:20:d9:4a:7b:3e:fb: b5:94:71:a2:cc:e7:14:5d:06:bf:19:5a:42:79:25: 17:1b:8b:ac:4a:49:3b:f9:4f:c0:8e:75:81:17:65: d6:7f:5a:88:89:d5:39:fb:dd:3b:f1:b3:d0:83:9e: c3:b3:65:91:4b:ec:43:a5:a4:a9:de:26:79:04:16: c5:4a:9f:fc:e7:f5:3a:fd:46:2b:72:9d:e1:d0:15: f4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BC:A0:86:BB:FF:3E:42:2E:23:8B:2C:3D:62:EF:70:34:01:43:C2 X509v3 Authority Key Identifier: keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:06:09:bf:cf:23:d6:35:13:a7:dd:1d:9f:fc:2d:53:0b:b3: 67:40:8a:59:23:26:e9:5c:f4:ac:c5:f8:fb:17:67:7d:b2:11: b5:32:b1:0a:c1:fe:b6:2b:3f:9d:5c:b9:be:20:96:d4:4f:91: 37:fc:fa:94:fd:2a:5e:12:32:1b:c7:6b:32:b7:52:35:fd:f9: ca:c3:48:18:ed:e1:85:a1:43:e6:5b:5a:21:d5:04:e7:8c:cd: 6e:c5:21:b9:73:2e:5f:c8:72:94:c0:74:be:72:82:7e:66:d8: 35:53:ed:af:3d:21:ad:e7:e8:ac:6b:d4:fb:1d:2f:8b:51:63: 63:d7:5d:6f:0e:37:08:1b:32:94:c7:fe:7b:af:7d:d9:0a:14: 90:c5:0c:a3:ff:11:32:f8:5c:de:06:d3:ac:b6:53:2f:0c:c3: 6c:45:e7:85:ca:9a:5a:da:ac:e6:22:8e:61:97:7e:ca:f5:59: ea:6d:d0:ed:8f:c9:ee:56:0a:2e:3c:b6:48:e8:43:42:0f:26: 40:87:49:47:00:3b:f9:48:cd:97:02:b0:00:2b:88:9c:0b:25: 5a:b4:72:06:03:7b:53:87:de:fa:1b:a9:d6:60:f2:e2:fc:c2: 73:10:a5:aa:16:d7:38:64:29:fd:36:1b:4e:e2:f8:0d:48:31: 62:c1:14:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaKRh8CK8PSBT/+ycVxIlaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwN2EwMzk1MDJkNDZhNmI5OTA5MTEwY2UyYWIxMzk2ODc3 YmQwOGUwHhcNMjUxMjE0MDAwMDU5WhcNMjUxMjE1MDAwMDU5WjAzMTEwLwYDVQQD EyhkY2JjYTA4NmJiZmYzZTQyMmUyMzhiMmMzZDYyZWY3MDM0MDE0M2MyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfuuLbOrlNQdWRku9DKTBYdO0OYF HQDhoIG50LS5sxss/gNFz9u26kgO3DZuA3Lt5OV/gk+JOIjp6YFvTaNFDq2tuIBi Le7Z0ZADMb9cufNThuc28XmfmaVaQ9BwC+D1PzCb615wxo5t8jnt4AmvvlxQ2Tw8 AGzqD3HxY5vcq+242X6R0rWcee2UsG/B8OihJPkf3YOxpYg0Pl0he4eYOPhvyr94 PDb+YyMR8vgg2Up7Pvu1lHGizOcUXQa/GVpCeSUXG4usSkk7+U/AjnWBF2XWf1qI idU5+9078bPQg57Ds2WRS+xDpaSp3iZ5BBbFSp/85/U6/UYrcp3h0BX0bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNy8oIa7/z5CLiOLLD1i73A0AUPCMB8GA1UdIwQY MBaAFDB6A5UC1GprmQkRDOKrE5aHe9COMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAt Y2UyYTQ5NmZlZTg2LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAtY2UyYTQ5NmZlZTg2 LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuAYJv88j 1jUTp90dn/wtUwuzZ0CKWSMm6Vz0rMX4+xdnfbIRtTKxCsH+tis/nVy5viCW1E+R N/z6lP0qXhIyG8drMrdSNf35ysNIGO3hhaFD5ltaIdUE54zNbsUhuXMuX8hylMB0 vnKCfmbYNVPtrz0hreforGvU+x0vi1FjY9ddbw43CBsylMf+e6992QoUkMUMo/8R Mvhc3gbTrLZTLwzDbEXnhcqaWtqs5iKOYZd+yvVZ6m3Q7Y/J7lYKLjy2SOhDQg8m QIdJRwA7+UjNlwKwACuInAslWrRyBgN7U4fe+hup1mDy4vzCcxClqhbXOGQp/TYb TuL4DUgxYsEUAw== -----END CERTIFICATE-----Generated at Sun Dec 14 05:30:27 2025 by rpki-client