This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft File: 0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json) Hash identifier: jFEELpiS9ujU2IPaWd+7j9B/LH+Rp2zc+WW2hx81/gI= Subject key identifier: 52:81:64:A6:38:4F:06:16:FE:4A:5F:E5:1C:18:07:C9:28:77:A7:F2 Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D Certificate issuer: /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d Certificate serial: 019AF5E5B01286E0B0327F9B7C3C8CFC0D1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft Manifest number: 0B68 Signing time: Sat 06 Dec 2025 23:01:02 +0000 Manifest this update: Sat 06 Dec 2025 23:01:02 +0000 Manifest next update: Sun 07 Dec 2025 23:01:02 +0000 Files and hashes: 1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: nRwJhVEHkONWQ+MZ1Iqad6Ot/s/FAEUD6av7OWl8TwE=) 2: PdXLVimBA8zILWLashg1LUqBqm8.roa (hash: IrtzMysR6KSQR0SZiM1b2jUK5M57dKBFlK4qFH4B+Mo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:b0:12:86:e0:b0:32:7f:9b:7c:3c:8c:fc:0d:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d Validity Not Before: Dec 6 23:01:02 2025 GMT Not After : Dec 7 23:01:02 2025 GMT Subject: CN=528164a6384f0616fe4a5fe51c1807c92877a7f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:77:13:1f:85:d1:6c:85:22:af:2b:7e:3b:e2: f3:fb:0c:29:dc:58:eb:e0:a2:f9:c3:40:6a:dd:99: 61:4b:e4:d9:0b:f8:c7:20:ed:a1:ae:d5:05:1c:c8: f2:20:b4:a0:0b:f4:b2:ca:23:1f:1e:89:36:06:0c: 1c:3a:7b:16:47:44:25:fe:d5:7c:92:ed:e1:ca:4c: 05:99:04:ed:4b:91:cc:b6:f6:c9:78:17:5e:b3:9b: 08:df:1e:ad:61:4d:25:87:2d:4e:5b:bb:10:d8:7b: 6a:11:6e:df:64:a5:8f:53:67:15:0f:65:6b:60:9b: 9d:02:2a:ca:95:ce:8f:b4:67:73:5e:cb:73:14:6b: 21:ac:f0:98:8b:f1:d1:d5:ac:50:b4:83:e3:55:d3: 40:4e:f0:97:93:5a:f3:90:db:e7:f6:c2:99:8c:e4: cc:30:5c:b9:53:ce:ad:91:1e:44:15:39:c9:d0:fe: 81:f3:71:41:6a:5f:6f:b9:a3:24:5f:d5:75:54:63: c9:f5:d5:f0:2e:ad:e8:66:20:ae:ec:85:30:a1:2e: d5:4b:5b:3b:37:39:3d:70:66:7d:d9:67:3e:8a:c8: 53:73:f1:70:42:64:cc:40:d0:ea:2f:3c:d9:f4:d7: b9:59:64:16:10:f6:00:48:0a:e8:dd:0e:89:db:2e: 8c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:81:64:A6:38:4F:06:16:FE:4A:5F:E5:1C:18:07:C9:28:77:A7:F2 X509v3 Authority Key Identifier: keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:6a:a1:cb:c5:93:b3:3d:b4:9c:b4:60:19:70:64:5f:dd:be: c6:51:94:52:49:63:67:66:f4:75:df:12:53:ca:df:c7:fe:5e: 7e:91:c3:12:92:06:dc:7a:82:b3:30:1f:37:56:d8:06:74:89: 9e:6f:fd:99:fc:0d:b2:cc:33:9d:88:a1:08:94:c9:3d:86:c3: 05:65:65:44:f8:4f:0f:53:dc:9f:2a:ad:30:ca:e6:7f:3e:28: a9:60:28:ec:6d:5c:30:b2:d2:cc:a5:b8:e8:16:60:a5:2f:71: a9:6d:52:87:0a:9d:c5:fe:a4:2b:fc:74:87:5e:1f:53:b3:30: d9:d5:4b:ba:97:5c:75:5a:8b:49:b3:3d:fd:12:97:a1:f9:ff: 75:b2:79:05:d9:93:e1:e2:f0:6c:cb:55:93:fe:6a:b3:90:b9: 49:91:b2:02:14:b2:15:e1:5d:b1:48:5b:e8:e3:bd:12:19:d8: a9:3e:05:48:c5:9e:fd:4b:67:74:d7:73:86:94:cb:b9:a1:ba: 70:9f:91:bb:83:f5:05:16:1b:a7:db:0b:f6:1b:ad:ee:bc:2a: 5c:be:80:a5:8e:96:c0:f8:74:1c:16:ea:08:38:06:81:80:8f: a5:15:b6:96:d5:90:4a:d6:e7:18:0d:cb:f7:11:37:09:71:3b: 39:c1:2a:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15bAShuCwMn+bfDyM/A0eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyN2I4NzdmODk5MzQxMjY5YmVjNjdjNmUzYTBhODg4YmE3 YWU5OGQwHhcNMjUxMjA2MjMwMTAyWhcNMjUxMjA3MjMwMTAyWjAzMTEwLwYDVQQD Eyg1MjgxNjRhNjM4NGYwNjE2ZmU0YTVmZTUxYzE4MDdjOTI4NzdhN2YyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43cTH4XRbIUiryt+O+Lz+wwp3Fjr 4KL5w0Bq3ZlhS+TZC/jHIO2hrtUFHMjyILSgC/SyyiMfHok2BgwcOnsWR0Ql/tV8 ku3hykwFmQTtS5HMtvbJeBdes5sI3x6tYU0lhy1OW7sQ2HtqEW7fZKWPU2cVD2Vr YJudAirKlc6PtGdzXstzFGshrPCYi/HR1axQtIPjVdNATvCXk1rzkNvn9sKZjOTM MFy5U86tkR5EFTnJ0P6B83FBal9vuaMkX9V1VGPJ9dXwLq3oZiCu7IUwoS7VS1s7 Nzk9cGZ92Wc+ishTc/FwQmTMQNDqLzzZ9Ne5WWQWEPYASAro3Q6J2y6MawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFKBZKY4TwYW/kpf5RwYB8kod6fyMB8GA1UdIwQY MBaAFNJ7h3+Jk0Emm+xnxuOgqIi6eumNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMt OTk3OWRmNTJiMDE4LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMtOTk3OWRmNTJiMDE4 LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF2qhy8WT sz20nLRgGXBkX92+xlGUUkljZ2b0dd8SU8rfx/5efpHDEpIG3HqCszAfN1bYBnSJ nm/9mfwNsswznYihCJTJPYbDBWVlRPhPD1PcnyqtMMrmfz4oqWAo7G1cMLLSzKW4 6BZgpS9xqW1Shwqdxf6kK/x0h14fU7Mw2dVLupdcdVqLSbM9/RKXofn/dbJ5BdmT 4eLwbMtVk/5qs5C5SZGyAhSyFeFdsUhb6OO9EhnYqT4FSMWe/UtndNdzhpTLuaG6 cJ+Ru4P1BRYbp9sL9hut7rwqXL6ApY6WwPh0HBbqCDgGgYCPpRW2ltWQStbnGA3L 9xE3CXE7OcEqhQ== -----END CERTIFICATE-----Generated at Sun Dec 7 02:40:35 2025 by rpki-client