This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft File: mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft (raw, json) Hash identifier: HYvRKAJ9tkiqk/S8f6cZ9oAIrQqEDaF/VuGxlKe+mAo= Subject key identifier: AD:3F:6D:11:A6:33:11:FA:90:75:89:80:D8:CA:72:0D:B7:38:63:48 Authority key identifier: 9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51 Certificate issuer: /CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51 Certificate serial: 019B5975DCBCDCFDA49E7D3761FE90E1B53A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft Manifest number: 1239 Signing time: Fri 26 Dec 2025 07:00:54 +0000 Manifest this update: Fri 26 Dec 2025 07:00:54 +0000 Manifest next update: Sat 27 Dec 2025 07:00:54 +0000 Files and hashes: 1: mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl (hash: k9tGy6K+cJmIEjQBV4Hft8uSPTYvDi3V6GjGEevLQz4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:dc:bc:dc:fd:a4:9e:7d:37:61:fe:90:e1:b5:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51 Validity Not Before: Dec 26 07:00:54 2025 GMT Not After : Dec 27 07:00:54 2025 GMT Subject: CN=ad3f6d11a63311fa90758980d8ca720db7386348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:74:d2:bd:40:fb:3b:67:99:f0:14:b2:84:07: dc:fc:49:6b:75:62:13:1b:9f:25:13:9d:61:93:9d: 37:67:e9:84:35:02:6f:40:eb:2a:0a:60:2e:2f:10: 4c:2e:0f:28:d2:75:0d:5f:f3:b6:0e:40:15:a2:c2: 36:12:ed:1e:b6:a6:cc:b5:02:54:8b:ba:28:de:76: 7f:a8:e4:48:45:85:99:e4:eb:5f:77:e2:c8:69:e7: bb:90:d3:e5:68:54:69:a6:be:cb:6e:60:0c:4f:54: a1:b6:2d:b1:d4:cf:8e:bc:95:5f:85:4d:c0:cd:bd: e9:36:9d:97:0d:c0:70:04:20:38:f7:cd:c9:55:42: 1c:a9:44:62:47:04:6b:d5:a6:0b:82:11:31:3f:d0: e1:23:45:0a:4c:b2:33:b7:55:3f:90:28:2b:e8:5f: f2:c3:48:97:5c:f5:af:8c:07:a5:be:32:02:4f:29: df:b1:23:1e:88:cd:fa:40:c6:93:a6:99:a7:6f:00: 1a:bf:b8:3f:92:84:92:2e:c6:d5:45:da:01:0f:e9: c7:95:55:dc:0d:97:8c:94:e6:c5:f7:5c:f1:e1:73: ef:52:e4:b7:96:ea:31:c5:1b:73:aa:40:6d:e3:c6: c3:37:f2:29:40:97:57:ea:ef:3a:30:b6:12:79:95: ef:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:3F:6D:11:A6:33:11:FA:90:75:89:80:D8:CA:72:0D:B7:38:63:48 X509v3 Authority Key Identifier: keyid:9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:5c:2f:fd:4f:64:3a:58:10:b3:02:8a:8a:70:4e:12:29:cb: 96:02:31:cf:d7:99:94:c1:69:02:32:e3:2d:b7:ab:81:67:70: 73:4e:1c:1b:1a:c1:8e:15:e8:32:5a:26:86:34:d8:6b:48:00: 41:88:27:81:1f:99:97:cb:c6:44:18:a0:dc:ac:36:1f:b4:69: 64:da:8d:19:f0:a9:4c:a9:50:e6:75:42:94:98:6c:6a:e4:7b: 77:98:2d:8b:8a:c6:10:4f:a5:94:a9:99:a9:3c:ab:73:8f:6e: 1c:f0:e6:fd:24:55:93:73:6a:ce:9d:54:b2:7b:a7:c5:3a:02: 1d:54:6c:df:27:0f:c0:62:15:5a:60:b0:ec:cd:ec:0e:f8:dc: 9c:fa:61:e7:9b:1d:e7:5d:8e:d3:c5:94:14:5b:41:16:2b:9b: 54:19:c5:c4:fd:37:35:14:b1:cc:e9:0a:13:6d:1b:e7:f1:8e: 18:f6:8e:db:b7:2a:37:ea:32:20:82:e8:64:20:ec:76:41:3d: 6f:00:d5:3e:35:e1:79:ff:1d:75:b7:d5:87:a8:49:0e:2f:53: d4:c2:bb:44:0a:2f:88:8c:e3:5a:c7:9d:88:e6:5b:99:b4:eb: 4f:08:8c:80:dd:73:b6:23:a2:5c:43:69:d5:fc:5c:dc:9e:54: a7:53:09:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZddy83P2knn03Yf6Q4bU6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhZjlkMWU1NWY0M2U0ZmRkNmQyNGZiNGIwZWRhNmU5ZDEy OGFhNTEwHhcNMjUxMjI2MDcwMDU0WhcNMjUxMjI3MDcwMDU0WjAzMTEwLwYDVQQD EyhhZDNmNmQxMWE2MzMxMWZhOTA3NTg5ODBkOGNhNzIwZGI3Mzg2MzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHTSvUD7O2eZ8BSyhAfc/ElrdWIT G58lE51hk503Z+mENQJvQOsqCmAuLxBMLg8o0nUNX/O2DkAVosI2Eu0etqbMtQJU i7oo3nZ/qORIRYWZ5Otfd+LIaee7kNPlaFRppr7LbmAMT1Shti2x1M+OvJVfhU3A zb3pNp2XDcBwBCA4983JVUIcqURiRwRr1aYLghExP9DhI0UKTLIzt1U/kCgr6F/y w0iXXPWvjAelvjICTynfsSMeiM36QMaTppmnbwAav7g/koSSLsbVRdoBD+nHlVXc DZeMlObF91zx4XPvUuS3luoxxRtzqkBt48bDN/IpQJdX6u86MLYSeZXvjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK0/bRGmMxH6kHWJgNjKcg23OGNIMB8GA1UdIwQY MBaAFJr50eVfQ+T91tJPtLDtpunRKKpRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXZuUjVWOUQ1UDNXMGstMHNPMm02ZEVvcWxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS8wYzVlZDctMGU3Mi00ZWFkLTkwNmMt MjkxYTMxNjRhMGI4LzEvbXZuUjVWOUQ1UDNXMGstMHNPMm02ZEVvcWxFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS8wYzVlZDctMGU3Mi00ZWFkLTkwNmMtMjkxYTMxNjRhMGI4 LzEvbXZuUjVWOUQ1UDNXMGstMHNPMm02ZEVvcWxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAalwv/U9k OlgQswKKinBOEinLlgIxz9eZlMFpAjLjLbergWdwc04cGxrBjhXoMlomhjTYa0gA QYgngR+Zl8vGRBig3Kw2H7RpZNqNGfCpTKlQ5nVClJhsauR7d5gti4rGEE+llKmZ qTyrc49uHPDm/SRVk3Nqzp1UsnunxToCHVRs3ycPwGIVWmCw7M3sDvjcnPph55sd 512O08WUFFtBFiubVBnFxP03NRSxzOkKE20b5/GOGPaO27cqN+oyIILoZCDsdkE9 bwDVPjXhef8ddbfVh6hJDi9T1MK7RAoviIzjWsediOZbmbTrTwiMgN1ztiOiXENp 1fxc3J5Up1MJLQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:44:28 2025 by rpki-client