This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.mft File: MhV9a4wSwFtBvEEkHQYVBAryQeE.mft (raw, json) Hash identifier: Dq7UsSmD+cV2OGHssgEGpFmx64xrxwgesA79xw7ktXg= Subject key identifier: 57:4B:C1:05:09:35:AB:DE:DE:7D:6B:80:FC:9B:22:BF:28:CF:50:96 Authority key identifier: 32:15:7D:6B:8C:12:C0:5B:41:BC:41:24:1D:06:15:04:0A:F2:41:E1 Certificate issuer: /CN=32157d6b8c12c05b41bc41241d0615040af241e1 Certificate serial: 019B36B3C7CD4028A8CFEEA7244B8E7CF52A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MhV9a4wSwFtBvEEkHQYVBAryQeE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.mft Manifest number: 04A0 Signing time: Fri 19 Dec 2025 13:01:50 +0000 Manifest this update: Fri 19 Dec 2025 13:01:50 +0000 Manifest next update: Sat 20 Dec 2025 13:01:50 +0000 Files and hashes: 1: MhV9a4wSwFtBvEEkHQYVBAryQeE.crl (hash: m/ZnNIqEPnA4sKx8nkLrU0igHhpOzDQXrqEUDTl0HkI=) 2: qJ1oXPy2zR5AWITHnFOnI8zbBtI.roa (hash: 2JhWie1vdrZ9TGWL5IWneU9ysYNZV//iN2iGhnspRb0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.mft rsync://rpki.ripe.net/repository/DEFAULT/MhV9a4wSwFtBvEEkHQYVBAryQeE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 13:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:b3:c7:cd:40:28:a8:cf:ee:a7:24:4b:8e:7c:f5:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32157d6b8c12c05b41bc41241d0615040af241e1 Validity Not Before: Dec 19 13:01:50 2025 GMT Not After : Dec 20 13:01:50 2025 GMT Subject: CN=574bc1050935abdede7d6b80fc9b22bf28cf5096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:32:db:77:7c:be:92:c3:c0:cd:aa:2f:3b:73: 7c:09:94:66:9d:db:9a:c5:34:2b:83:04:e1:01:b8: 57:a2:d0:9d:56:7c:a5:59:38:79:3b:78:9b:bb:92: be:a2:6f:0e:f1:a5:c6:4f:0f:54:57:2b:08:6f:4e: 20:3d:f3:e4:e8:06:e3:38:db:6c:fa:40:5a:fa:65: 19:b0:ff:d7:c2:c3:15:73:8b:4e:c4:e6:ea:05:88: 8d:3c:2a:12:5a:b5:a4:70:43:a6:92:89:bc:68:b9: 65:e7:15:77:30:79:fa:40:32:12:b8:70:f3:34:6e: 3c:26:fe:84:1f:0b:9d:91:5c:ff:dc:50:ef:6b:e3: b6:fc:0e:51:04:e9:72:b3:a4:63:40:b3:a7:d4:97: 01:b4:4b:49:4f:32:9a:72:0a:97:9f:6c:38:0a:7f: 13:30:bc:2c:56:83:71:b0:fe:04:f8:0c:22:c1:5d: 32:3a:e3:ec:b9:fd:54:b7:74:7d:d8:ea:82:52:6f: ab:c3:82:c1:fe:06:1c:c9:22:0a:4d:67:e4:ee:1d: 58:5f:ea:47:79:a0:4e:f0:9c:48:43:66:5b:e1:a5: 51:43:53:3b:a5:91:24:b9:c6:37:50:0f:db:31:1c: a3:1b:3b:74:57:2d:af:b6:c5:d3:21:ed:d7:12:b5: d8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4B:C1:05:09:35:AB:DE:DE:7D:6B:80:FC:9B:22:BF:28:CF:50:96 X509v3 Authority Key Identifier: keyid:32:15:7D:6B:8C:12:C0:5B:41:BC:41:24:1D:06:15:04:0A:F2:41:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MhV9a4wSwFtBvEEkHQYVBAryQeE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:02:02:9b:32:5f:6d:52:09:71:3d:ff:a0:71:4f:30:88:b7: 8b:b6:e7:f2:e5:ec:bd:81:11:c4:b6:08:6d:04:ea:b9:db:8d: 5b:3e:4c:77:07:5e:53:0d:f2:25:d4:e4:3f:e6:f2:34:53:02: d9:91:a5:be:5b:78:58:dc:64:7b:b1:f2:14:50:50:2f:08:ed: 2e:00:f7:26:5a:e4:58:c0:7a:8d:37:a2:f1:90:f4:d7:a9:56: 5d:38:36:6d:7e:44:6e:0d:86:81:07:71:98:18:48:cd:c0:f0: 56:eb:18:79:a8:61:d7:86:96:11:d6:9c:dd:88:a6:4f:b5:40: 59:e4:9f:34:8b:1b:c2:e9:77:83:43:c7:a7:37:6c:72:74:37: 2d:66:aa:ca:62:be:80:7c:9c:15:5a:cb:f0:f2:7a:30:d8:40: 71:a9:77:f0:87:ce:f7:9d:09:0d:98:b6:71:f7:0e:9d:de:b0: c0:ba:f1:61:ef:62:69:3b:ea:c7:2c:89:28:e4:cb:53:b2:60: 1f:21:11:a8:d3:49:e8:f1:b9:89:ad:03:4e:b1:f6:c9:31:fa: ce:a9:d4:5c:97:98:07:a5:19:fa:33:4e:43:00:37:56:13:f4: 14:71:a3:08:1e:62:59:97:13:8a:65:1e:3f:17:53:46:44:aa: ca:be:db:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2s8fNQCioz+6nJEuOfPUqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyMTU3ZDZiOGMxMmMwNWI0MWJjNDEyNDFkMDYxNTA0MGFm MjQxZTEwHhcNMjUxMjE5MTMwMTUwWhcNMjUxMjIwMTMwMTUwWjAzMTEwLwYDVQQD Eyg1NzRiYzEwNTA5MzVhYmRlZGU3ZDZiODBmYzliMjJiZjI4Y2Y1MDk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojLbd3y+ksPAzaovO3N8CZRmndua xTQrgwThAbhXotCdVnylWTh5O3ibu5K+om8O8aXGTw9UVysIb04gPfPk6AbjONts +kBa+mUZsP/XwsMVc4tOxObqBYiNPCoSWrWkcEOmkom8aLll5xV3MHn6QDISuHDz NG48Jv6EHwudkVz/3FDva+O2/A5RBOlys6RjQLOn1JcBtEtJTzKacgqXn2w4Cn8T MLwsVoNxsP4E+AwiwV0yOuPsuf1Ut3R92OqCUm+rw4LB/gYcySIKTWfk7h1YX+pH eaBO8JxIQ2Zb4aVRQ1M7pZEkucY3UA/bMRyjGzt0Vy2vtsXTIe3XErXYJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFdLwQUJNave3n1rgPybIr8oz1CWMB8GA1UdIwQY MBaAFDIVfWuMEsBbQbxBJB0GFQQK8kHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWhWOWE0d1N3RnRCdkVFa0hRWVZCQXJ5UWVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC80MTZhODAtZGM1Ni00NTE0LThiYzAt MjdmOWM4MjNlZGVhLzEvTWhWOWE0d1N3RnRCdkVFa0hRWVZCQXJ5UWVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC80MTZhODAtZGM1Ni00NTE0LThiYzAtMjdmOWM4MjNlZGVh LzEvTWhWOWE0d1N3RnRCdkVFa0hRWVZCQXJ5UWVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACAICmzJf bVIJcT3/oHFPMIi3i7bn8uXsvYERxLYIbQTquduNWz5MdwdeUw3yJdTkP+byNFMC 2ZGlvlt4WNxke7HyFFBQLwjtLgD3JlrkWMB6jTei8ZD016lWXTg2bX5Ebg2GgQdx mBhIzcDwVusYeahh14aWEdac3YimT7VAWeSfNIsbwul3g0PHpzdscnQ3LWaqymK+ gHycFVrL8PJ6MNhAcal38IfO950JDZi2cfcOnd6wwLrxYe9iaTvqxyyJKOTLU7Jg HyERqNNJ6PG5ia0DTrH2yTH6zqnUXJeYB6UZ+jNOQwA3VhP0FHGjCB5iWZcTimUe PxdTRkSqyr7bSA== -----END CERTIFICATE-----Generated at Fri Dec 19 22:53:21 2025 by rpki-client