This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft File: oN9_W2YYvaI8g77RG0QgQfH7RW0.mft (raw, json) Hash identifier: rYpzbekWR/f9IPIkO5pcHhbseexn6SRLG7pC+w65fik= Subject key identifier: DF:17:E3:FE:BF:C7:1E:3D:41:66:30:5C:30:FD:CE:3F:E2:7C:25:91 Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d Certificate serial: 019B3569DA133C8BBD382BE01CED8B4F7476 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft Manifest number: 1046 Signing time: Fri 19 Dec 2025 07:01:27 +0000 Manifest this update: Fri 19 Dec 2025 07:01:27 +0000 Manifest next update: Sat 20 Dec 2025 07:01:27 +0000 Files and hashes: 1: M6-0ilcboil8V3qdXWtXp8FSrwU.roa (hash: WRf8o79b0NMGHVx92f3msPfTUcZhCgsvW5xiza5z8ZI=) 2: alnV74vFSam3rQx6Dmd1DNDuigc.roa (hash: MKKETCkbJ8gLUuVxMB/kJlGwLoMwUcWOoOci82/CtNA=) 3: dMb0PjxW_FKRnnqCOxhUGiKYQfU.roa (hash: SEn9C8PYQsCWBmkbIckjpQRAnohpBTNoR7109sqhxa8=) 4: l5fucFsRI8YqdsxQQ1gM3icDFgY.roa (hash: F8cwyE/KovnNrO6uesrwG6iPrTntm+Jn5JO1juTZFLQ=) 5: oN9_W2YYvaI8g77RG0QgQfH7RW0.crl (hash: EX0dlFdjc5nV5g3/8RcwChaXxi1IWF/VAZOKCD8Mdp4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:69:da:13:3c:8b:bd:38:2b:e0:1c:ed:8b:4f:74:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d Validity Not Before: Dec 19 07:01:27 2025 GMT Not After : Dec 20 07:01:27 2025 GMT Subject: CN=df17e3febfc71e3d4166305c30fdce3fe27c2591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:eb:ff:d1:d8:f6:d4:e1:b5:24:f2:eb:e7:12: 8f:a2:ac:79:f1:2e:b0:a6:19:02:dd:67:be:5f:d7: 5a:a6:13:f2:fb:a7:6e:3c:ce:e5:86:84:05:61:ef: 24:d9:3b:3d:87:ec:5b:e4:aa:14:24:44:c6:24:49: a7:bf:d1:df:ae:32:52:e4:b3:07:09:b6:64:b7:b0: 6a:3d:4f:d7:68:5d:e8:25:f7:6d:5d:ac:ca:1c:1c: df:c1:0c:58:d8:0f:b8:ef:6b:99:c5:2a:48:45:c1: 28:d4:26:fe:6e:86:e9:b4:d3:4b:33:d9:bc:44:0c: 12:34:a2:bf:c4:23:bc:e2:70:46:b9:23:eb:a9:b8: df:49:fa:cd:bf:b9:96:a3:3d:42:b9:91:b8:62:e4: 6b:dc:be:4b:a7:c1:9d:3a:e7:21:ad:e1:fd:6d:4d: 00:70:98:13:3f:aa:3f:18:f8:2e:b6:c9:b0:00:d0: 39:2c:aa:0f:56:63:1e:d7:6b:9e:3e:f1:56:41:7d: 31:97:37:b8:35:d5:89:d2:5f:d3:52:12:82:9b:97: 8c:70:4d:27:9f:22:aa:1d:a2:0d:12:31:49:4d:e5: c4:19:42:56:5f:af:db:b6:2f:09:91:b4:3f:21:fb: 54:f4:bd:d2:fb:27:17:ee:cd:4a:31:18:35:1c:85: e9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:17:E3:FE:BF:C7:1E:3D:41:66:30:5C:30:FD:CE:3F:E2:7C:25:91 X509v3 Authority Key Identifier: keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:b5:f0:b4:8f:40:27:e4:56:8e:2d:67:4e:0a:03:b8:d4:99: b2:f5:e2:d0:f4:61:fa:4c:8d:db:2d:4e:cf:19:f4:e7:32:94: 79:72:f3:f6:6b:80:a2:32:ea:c4:d2:be:c1:d9:87:bb:45:dc: 7d:43:e3:7c:27:23:c2:81:b4:00:7b:bf:9c:c8:c6:68:f9:dc: ad:e9:ec:8d:8e:5f:69:93:0f:21:f2:23:dd:f9:d1:0b:af:1a: d2:88:4a:8e:f9:8c:ee:ff:d5:28:a0:63:3c:14:7b:aa:27:17: 71:12:48:33:eb:72:9c:03:6c:91:38:f0:ea:65:35:d8:70:be: da:ff:66:19:88:8d:1f:e6:73:4e:8c:df:b7:d9:b4:55:e4:9d: c9:5a:41:1e:50:64:96:2d:5a:db:d7:e5:c3:f4:82:88:a4:0e: 43:1d:73:5d:03:ea:b8:35:2f:2c:b3:ce:da:5c:d9:bc:6c:04: b2:74:dd:14:55:b5:06:54:ea:55:59:2b:4a:87:8d:20:f1:17: 67:3e:dd:b3:66:a7:a8:4c:c4:ec:e3:bf:39:37:29:74:b8:7b: 94:ff:bc:89:67:20:11:b2:da:f0:e1:e5:97:8b:ad:8c:c5:24: b1:a8:7f:0b:c1:2b:1d:39:39:81:6e:55:99:ae:34:ce:04:1a: f7:b6:11:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1adoTPIu9OCvgHO2LT3R2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZGY3ZjViNjYxOGJkYTIzYzgzYmVkMTFiNDQyMDQxZjFm YjQ1NmQwHhcNMjUxMjE5MDcwMTI3WhcNMjUxMjIwMDcwMTI3WjAzMTEwLwYDVQQD EyhkZjE3ZTNmZWJmYzcxZTNkNDE2NjMwNWMzMGZkY2UzZmUyN2MyNTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+v/0dj21OG1JPLr5xKPoqx58S6w phkC3We+X9daphPy+6duPM7lhoQFYe8k2Ts9h+xb5KoUJETGJEmnv9HfrjJS5LMH CbZkt7BqPU/XaF3oJfdtXazKHBzfwQxY2A+472uZxSpIRcEo1Cb+bobptNNLM9m8 RAwSNKK/xCO84nBGuSPrqbjfSfrNv7mWoz1CuZG4YuRr3L5Lp8GdOuchreH9bU0A cJgTP6o/GPgutsmwANA5LKoPVmMe12uePvFWQX0xlze4NdWJ0l/TUhKCm5eMcE0n nyKqHaINEjFJTeXEGUJWX6/bti8JkbQ/IftU9L3S+ycX7s1KMRg1HIXpmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN8X4/6/xx49QWYwXDD9zj/ifCWRMB8GA1UdIwQY MBaAFKDff1tmGL2iPIO+0RtEIEHx+0VtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb045X1cyWVl2YUk4Zzc3UkcwUWdRZkg3UlcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hNTcyOGItYTM2ZC00ZmJhLTkzYWEt NWY0YmM5MDBjMDNkLzEvb045X1cyWVl2YUk4Zzc3UkcwUWdRZkg3UlcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9hNTcyOGItYTM2ZC00ZmJhLTkzYWEtNWY0YmM5MDBjMDNk LzEvb045X1cyWVl2YUk4Zzc3UkcwUWdRZkg3UlcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALbXwtI9A J+RWji1nTgoDuNSZsvXi0PRh+kyN2y1Ozxn05zKUeXLz9muAojLqxNK+wdmHu0Xc fUPjfCcjwoG0AHu/nMjGaPncrensjY5faZMPIfIj3fnRC68a0ohKjvmM7v/VKKBj PBR7qicXcRJIM+tynANskTjw6mU12HC+2v9mGYiNH+ZzTozft9m0VeSdyVpBHlBk li1a29flw/SCiKQOQx1zXQPquDUvLLPO2lzZvGwEsnTdFFW1BlTqVVkrSoeNIPEX Zz7ds2anqEzE7OO/OTcpdLh7lP+8iWcgEbLa8OHll4utjMUksah/C8ErHTk5gW5V ma40zgQa97YRNQ== -----END CERTIFICATE-----Generated at Fri Dec 19 15:09:54 2025 by rpki-client