This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft File: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft (raw, json) Hash identifier: mCkc803lv+RzbbnOqCdFXCk2fCJ6tu0WeF8be3ty+ls= Subject key identifier: EE:D8:67:01:E8:11:10:90:BF:4A:A2:7F:09:9C:2F:4D:75:A1:08:7D Authority key identifier: D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40 Certificate issuer: /CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40 Certificate serial: 019B2250994CBD0FC01C71EE4D72D501DDAA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft Manifest number: 070F Signing time: Mon 15 Dec 2025 14:01:05 +0000 Manifest this update: Mon 15 Dec 2025 14:01:05 +0000 Manifest next update: Tue 16 Dec 2025 14:01:05 +0000 Files and hashes: 1: 0i_jhQqN2iNg5AEP50J1N6ocU14.roa (hash: dte6GhHBF0dhj/nHMGGQvO/MzVf6vGP1TT8x/x47jYs=) 2: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl (hash: CGekbHPovRjswImXAM4W1SO3/Nj79nRQ2Bbd7IFhjZc=) 3: wH2BXhQbp4RbWEqazf0ETM0OAOI.roa (hash: WPj1rnPevOFK6Wz2Mo2etzdEIyu2IX1IvghxSjU5v1Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 14:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:50:99:4c:bd:0f:c0:1c:71:ee:4d:72:d5:01:dd:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40 Validity Not Before: Dec 15 14:01:05 2025 GMT Not After : Dec 16 14:01:05 2025 GMT Subject: CN=eed86701e8111090bf4aa27f099c2f4d75a1087d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a5:08:19:f4:44:1d:83:9e:98:7d:5b:fe:62: b2:19:70:01:69:1c:4d:5c:60:18:81:40:7b:8d:17: 7a:1a:6e:d9:06:0f:3a:89:14:bd:bc:35:22:de:66: ca:d5:68:a9:20:01:a4:62:2b:0f:74:50:16:71:7a: 32:9d:90:be:77:19:96:2f:f8:78:63:18:8c:c5:50: 49:8d:fc:95:32:5a:95:40:fa:99:62:22:44:21:a9: c7:a3:6b:6a:ba:82:db:26:00:40:87:b0:ab:39:6d: af:38:15:f0:c0:8e:b8:fc:70:9c:a9:71:ba:53:1a: 71:33:f1:13:09:ef:79:dc:aa:50:b7:82:e8:de:8a: c7:b6:97:7c:9c:ab:ec:98:70:28:3a:c5:51:89:18: 8b:6c:ab:78:68:a5:d4:89:22:03:90:ff:88:2a:0c: 19:74:a2:76:64:3e:07:92:ad:5b:29:2d:d6:46:db: 2e:63:b9:77:cc:39:a5:47:25:82:57:4d:0d:12:5b: 0d:b3:c8:31:82:fc:20:6a:69:09:70:de:41:71:37: af:87:69:8c:fa:85:dc:fe:2a:be:a0:c3:c5:00:af: 70:bf:71:3e:a9:99:ce:ab:44:fa:09:55:68:4e:64: 05:99:51:c4:f6:22:96:63:46:99:7e:c4:a9:7b:eb: 52:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D8:67:01:E8:11:10:90:BF:4A:A2:7F:09:9C:2F:4D:75:A1:08:7D X509v3 Authority Key Identifier: keyid:D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:cb:bd:08:e3:67:af:aa:87:fa:36:d0:4a:6d:14:ca:b3:00: 01:d5:5b:1a:f7:f7:b5:ab:8e:f5:3c:84:bb:4d:10:f4:70:dc: 84:e0:66:e5:1a:b4:cf:59:1b:3f:bb:a6:c6:ed:56:ab:67:54: b3:51:bb:2d:d7:d3:4e:06:52:42:76:ce:cc:64:6f:a1:76:08: 25:52:b3:3b:63:0e:3c:98:40:dc:d2:3a:87:09:3d:52:6b:c4: 88:3f:50:03:70:7f:47:0c:5b:06:20:f4:4f:fb:1d:17:8d:90: 18:b6:7b:8d:da:14:48:ea:3a:d5:d5:65:55:98:61:85:ce:15: 1a:6e:4b:64:62:78:6c:c0:21:77:7f:91:00:66:57:82:91:f6: 3a:b0:46:c1:e4:33:8e:5a:68:88:df:f2:58:af:83:0e:35:78: 5d:e2:80:57:af:9a:15:0d:c4:37:75:58:43:33:a6:10:ae:f9: e0:1d:20:df:95:e1:3c:a7:2f:18:c6:9b:aa:0d:d3:12:b8:ba: dc:3f:9a:60:fd:f2:ae:8f:4e:35:7d:6e:64:7d:71:e0:49:e1: b2:fb:4b:7b:8a:72:b7:c9:2b:55:6e:56:3d:6f:3d:f9:e5:41: 1f:25:fd:d6:91:93:5f:76:2a:f9:21:70:d2:b1:8d:65:17:1c: 44:88:ed:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsiUJlMvQ/AHHHuTXLVAd2qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNDMyMmIyZDBhNzk0ZmQwNzZiODVlOGRjNTc4YWJiMGQw M2VjNDAwHhcNMjUxMjE1MTQwMTA1WhcNMjUxMjE2MTQwMTA1WjAzMTEwLwYDVQQD EyhlZWQ4NjcwMWU4MTExMDkwYmY0YWEyN2YwOTljMmY0ZDc1YTEwODdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6UIGfREHYOemH1b/mKyGXABaRxN XGAYgUB7jRd6Gm7ZBg86iRS9vDUi3mbK1WipIAGkYisPdFAWcXoynZC+dxmWL/h4 YxiMxVBJjfyVMlqVQPqZYiJEIanHo2tquoLbJgBAh7CrOW2vOBXwwI64/HCcqXG6 UxpxM/ETCe953KpQt4Lo3orHtpd8nKvsmHAoOsVRiRiLbKt4aKXUiSIDkP+IKgwZ dKJ2ZD4Hkq1bKS3WRtsuY7l3zDmlRyWCV00NElsNs8gxgvwgamkJcN5BcTevh2mM +oXc/iq+oMPFAK9wv3E+qZnOq0T6CVVoTmQFmVHE9iKWY0aZfsSpe+tSJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO7YZwHoERCQv0qifwmcL011oQh9MB8GA1UdIwQY MBaAFNJDIrLQp5T9B2uF6NxXirsNA+xAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGtNaXN0Q25sUDBIYTRYbzNGZUt1dzBEN0VBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy85N2MzNTMtMGMzNi00MDY2LWE1NmIt MTM5YTQ5NmNkNTljLzEvMGtNaXN0Q25sUDBIYTRYbzNGZUt1dzBEN0VBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy85N2MzNTMtMGMzNi00MDY2LWE1NmItMTM5YTQ5NmNkNTlj LzEvMGtNaXN0Q25sUDBIYTRYbzNGZUt1dzBEN0VBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU8u9CONn r6qH+jbQSm0UyrMAAdVbGvf3tauO9TyEu00Q9HDchOBm5Rq0z1kbP7umxu1Wq2dU s1G7LdfTTgZSQnbOzGRvoXYIJVKzO2MOPJhA3NI6hwk9UmvEiD9QA3B/RwxbBiD0 T/sdF42QGLZ7jdoUSOo61dVlVZhhhc4VGm5LZGJ4bMAhd3+RAGZXgpH2OrBGweQz jlpoiN/yWK+DDjV4XeKAV6+aFQ3EN3VYQzOmEK754B0g35XhPKcvGMabqg3TEri6 3D+aYP3yro9ONX1uZH1x4EnhsvtLe4pyt8krVW5WPW89+eVBHyX91pGTX3Yq+SFw 0rGNZRccRIjtSw== -----END CERTIFICATE-----Generated at Mon Dec 15 20:02:15 2025 by rpki-client