This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft File: sFcIRcI56ZkcibxcUEMekIeGDE0.mft (raw, json) Hash identifier: Z1gDXq5iXQlOKHrTYWXkmnZd98puZImcFNBOcZWaTEU= Subject key identifier: BD:55:BE:AC:D3:FE:D0:83:B8:1A:30:F2:65:82:F9:26:1C:C6:9F:2E Authority key identifier: B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D Certificate issuer: /CN=b0570845c239e9991c89bc5c50431e9087860c4d Certificate serial: 019B5AF65B92DA26C975ECC1C15D018A98F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft Manifest number: 0212 Signing time: Fri 26 Dec 2025 14:00:53 +0000 Manifest this update: Fri 26 Dec 2025 14:00:53 +0000 Manifest next update: Sat 27 Dec 2025 14:00:53 +0000 Files and hashes: 1: n2C0sjvTrbF7unBNdsXDONkHwzQ.roa (hash: jLl0pdc61DzddqyTuR7Io8Gkj/xajAEL7bTJB3EuzC8=) 2: sFcIRcI56ZkcibxcUEMekIeGDE0.crl (hash: 8O2OqlYHTjrrYyT/CJsAtJQN7p1xgV7q1dTJfewtRJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:5b:92:da:26:c9:75:ec:c1:c1:5d:01:8a:98:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0570845c239e9991c89bc5c50431e9087860c4d Validity Not Before: Dec 26 14:00:53 2025 GMT Not After : Dec 27 14:00:53 2025 GMT Subject: CN=bd55beacd3fed083b81a30f26582f9261cc69f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d1:99:fc:0b:9b:b8:f1:2d:2e:eb:20:d2:55: 50:37:5d:c2:03:c1:6c:04:76:9a:9f:52:11:6d:c5: 02:25:70:74:a6:90:10:15:5f:0e:df:23:d7:2a:b9: 73:11:33:32:6a:c9:4a:90:6e:4a:6d:78:22:b6:1c: 97:62:e5:16:05:48:9e:49:32:2e:51:a7:27:eb:ad: 16:46:ee:93:e1:00:32:81:6c:16:cd:a4:ad:03:65: 96:51:8b:bc:76:ba:fd:37:c4:1a:6a:89:a8:62:3c: 7c:cb:bc:9e:7f:50:a0:d8:0a:e5:c4:0e:43:b9:dc: 18:d4:66:2e:29:a7:79:4b:b2:80:1a:af:22:b3:6d: a4:f5:6a:ae:9f:0d:d3:ec:b9:f7:ad:72:9e:6b:be: e1:23:1f:30:e0:22:f1:b3:38:99:6c:f2:99:d7:98: f1:ca:7d:22:8f:15:89:5f:1b:85:65:65:f0:e7:72: aa:ba:eb:a8:37:5a:1d:ae:5c:64:7f:3d:fc:fb:f4: ee:01:bb:e5:da:83:f5:ee:76:aa:4e:67:27:92:26: 8c:ed:15:4e:48:e1:18:e6:04:3f:b5:69:09:09:49: db:ad:8c:e7:97:cd:df:8a:a1:6a:bf:08:26:f4:11: a2:74:89:c7:13:a4:32:eb:c0:cb:12:ae:91:7b:b1: bd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:55:BE:AC:D3:FE:D0:83:B8:1A:30:F2:65:82:F9:26:1C:C6:9F:2E X509v3 Authority Key Identifier: keyid:B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:04:df:79:0b:5e:0b:ab:e8:e9:20:98:a4:b9:92:ea:a8:fc: ef:dc:fa:3b:0a:de:39:24:f3:e5:63:0b:6f:fa:7f:7d:e4:d1: 6f:03:ae:15:3e:e1:0b:6d:07:88:59:f9:f9:47:58:b3:01:4d: 83:3b:dc:a6:de:db:a4:1c:40:64:9a:bf:e2:21:a2:4b:27:93: 12:55:85:d4:af:ec:82:24:34:a5:b3:05:54:87:e7:6e:d9:33: 31:94:0c:4d:5d:0b:df:c7:25:26:81:9e:a2:9a:ab:4f:62:a1: 14:67:4d:8f:b4:ce:62:70:0f:77:d1:89:68:78:7d:e7:8b:57: bb:3e:b3:98:c9:ce:8c:2c:b3:c3:66:3f:79:2b:3f:7e:e1:96: c3:a4:93:6a:e8:a9:1a:6b:fe:ac:38:1a:12:e7:84:c9:af:fa: 08:0c:c3:53:1a:5c:02:e1:4d:7d:c1:9a:c0:c7:6d:e7:3b:67: 53:7c:d0:22:40:55:39:cf:32:38:fb:13:1f:45:9a:af:0c:fc: 18:50:ec:d8:05:d0:ce:54:72:55:8d:1d:60:ce:19:1d:be:8a: 6d:4f:f9:a6:45:ba:f1:a7:64:59:9d:71:b5:42:40:fe:3f:a4: c6:d7:3e:ff:be:b6:cf:b8:78:eb:2b:fc:26:7b:52:28:e3:16: 15:03:55:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9luS2ibJdezBwV0BipjzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNTcwODQ1YzIzOWU5OTkxYzg5YmM1YzUwNDMxZTkwODc4 NjBjNGQwHhcNMjUxMjI2MTQwMDUzWhcNMjUxMjI3MTQwMDUzWjAzMTEwLwYDVQQD EyhiZDU1YmVhY2QzZmVkMDgzYjgxYTMwZjI2NTgyZjkyNjFjYzY5ZjJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNGZ/AubuPEtLusg0lVQN13CA8Fs BHaan1IRbcUCJXB0ppAQFV8O3yPXKrlzETMyaslKkG5KbXgithyXYuUWBUieSTIu Uacn660WRu6T4QAygWwWzaStA2WWUYu8drr9N8QaaomoYjx8y7yef1Cg2ArlxA5D udwY1GYuKad5S7KAGq8is22k9Wqunw3T7Ln3rXKea77hIx8w4CLxsziZbPKZ15jx yn0ijxWJXxuFZWXw53KquuuoN1odrlxkfz38+/TuAbvl2oP17naqTmcnkiaM7RVO SOEY5gQ/tWkJCUnbrYznl83fiqFqvwgm9BGidInHE6Qy68DLEq6Re7G9rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL1VvqzT/tCDuBow8mWC+SYcxp8uMB8GA1UdIwQY MBaAFLBXCEXCOemZHIm8XFBDHpCHhgxNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0ZjSVJjSTU2WmtjaWJ4Y1VFTWVrSWVHREUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8xZTdjNDgtZjhjMi00Njc5LWI3NzEt NDZjYTI2YWZmNTQ1LzEvc0ZjSVJjSTU2WmtjaWJ4Y1VFTWVrSWVHREUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy8xZTdjNDgtZjhjMi00Njc5LWI3NzEtNDZjYTI2YWZmNTQ1 LzEvc0ZjSVJjSTU2WmtjaWJ4Y1VFTWVrSWVHREUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdwTfeQte C6vo6SCYpLmS6qj879z6OwreOSTz5WMLb/p/feTRbwOuFT7hC20HiFn5+UdYswFN gzvcpt7bpBxAZJq/4iGiSyeTElWF1K/sgiQ0pbMFVIfnbtkzMZQMTV0L38clJoGe opqrT2KhFGdNj7TOYnAPd9GJaHh954tXuz6zmMnOjCyzw2Y/eSs/fuGWw6STauip Gmv+rDgaEueEya/6CAzDUxpcAuFNfcGawMdt5ztnU3zQIkBVOc8yOPsTH0Warwz8 GFDs2AXQzlRyVY0dYM4ZHb6KbU/5pkW68adkWZ1xtUJA/j+kxtc+/762z7h46yv8 JntSKOMWFQNVnA== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:18 2025 by rpki-client