This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft File: 0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json) Hash identifier: jMRGJM7bzFfT/waerZdkHFkbDRC/+8Kt/G/ThEUD5Oo= Subject key identifier: 45:9C:C1:D5:59:E2:15:9D:C7:EE:A2:EF:FA:EB:6B:CF:FD:F1:32:F5 Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D Certificate issuer: /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d Certificate serial: 019B492749182D16D59E031C4BF2681AB2C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft Manifest number: 0B94 Signing time: Tue 23 Dec 2025 03:01:09 +0000 Manifest this update: Tue 23 Dec 2025 03:01:09 +0000 Manifest next update: Wed 24 Dec 2025 03:01:09 +0000 Files and hashes: 1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: 1ihD5EtaYm09LmafzvoI1VGBOuUU4Lm3ttebJ3+aPl0=) 2: HbJ_U9zbX8fxMvtFMjI0YyZaIU0.roa (hash: 2yJvKj/omVNhgQrJaORplMTqKb/JuCVSujLu6XPy7Jc=) 3: PdXLVimBA8zILWLashg1LUqBqm8.roa (hash: IrtzMysR6KSQR0SZiM1b2jUK5M57dKBFlK4qFH4B+Mo=) 4: Po_y7BTQnq0t83N4k5bzz1wi4hg.roa (hash: fdtaoOhUYPqSiYrFP8PD67S1dme/kg9U36uFUbhYCQg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:27:49:18:2d:16:d5:9e:03:1c:4b:f2:68:1a:b2:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d Validity Not Before: Dec 23 03:01:09 2025 GMT Not After : Dec 24 03:01:09 2025 GMT Subject: CN=459cc1d559e2159dc7eea2effaeb6bcffdf132f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c2:7a:3d:12:00:cd:f8:b1:a9:41:31:51:6d: a9:53:21:6d:9a:f3:86:1b:c7:3c:be:de:d9:e0:cf: 22:eb:68:dc:15:e7:d7:59:61:5a:b6:d3:f6:b4:71: f1:b5:7a:c7:a0:8d:53:ad:12:22:46:71:85:8a:db: 38:68:ce:50:29:f8:25:11:82:e4:56:99:73:db:c2: 6e:09:f1:7d:3f:a7:88:13:f0:bf:a1:44:b8:6a:e0: 9f:5d:42:4d:90:c9:d5:71:a0:b8:3a:5a:c4:f6:6b: 4b:76:ac:85:4f:da:0b:d2:e8:58:4a:17:e3:68:b1: e4:24:14:19:ea:83:ad:2a:28:81:8e:2d:20:00:41: e0:34:0d:f2:a9:72:af:ac:04:51:79:6d:a9:8a:f1: 20:46:a9:06:1f:b6:9a:d8:2a:2a:a8:01:c7:12:c0: c8:90:de:7f:42:2c:94:4a:fc:d3:e2:48:ff:5c:45: 81:6d:4c:09:c1:48:d8:a9:14:47:34:32:44:7b:62: e8:92:c1:06:64:b0:5a:08:77:00:dc:fc:f7:53:95: 1a:4e:35:8e:db:b3:1f:15:fc:9d:2a:cc:56:c5:62: 48:a5:b1:45:e1:05:56:bd:d1:8b:f2:72:49:53:c6: ae:1d:f8:e5:69:0a:c5:d6:27:8d:1b:a0:d0:91:27: 20:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:9C:C1:D5:59:E2:15:9D:C7:EE:A2:EF:FA:EB:6B:CF:FD:F1:32:F5 X509v3 Authority Key Identifier: keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:4b:cc:d0:36:8a:dd:cd:8f:ba:d8:39:45:2b:c2:f4:b9:d1: 18:5c:45:75:04:a6:38:05:08:1e:d5:64:81:50:14:4f:be:af: 62:38:dc:bb:62:6b:07:7d:0f:68:b2:ae:61:e4:18:e9:57:b2: 66:fa:64:2d:ec:c7:b0:75:3c:4a:54:19:63:c1:5e:71:b7:42: 6f:51:e3:91:a1:9b:16:71:56:38:2c:26:b0:b0:ff:02:d4:d7: 48:b9:72:82:8d:f9:cc:9d:84:a5:fa:99:d2:9b:93:1a:9e:fc: ef:41:c4:61:e0:00:1e:ce:c1:e5:75:ee:5d:7c:dc:e7:dd:7a: 9a:1a:8a:a2:de:36:31:58:4c:d4:97:4f:b1:96:3e:19:1c:10: 56:36:e3:22:cc:e0:03:f7:73:26:4e:31:40:d0:55:0a:ba:af: 7d:f5:06:7b:48:cf:b6:6f:61:27:f1:17:ef:f2:53:88:f4:26: 89:91:4e:e2:96:1d:24:70:e3:3a:25:88:4b:5f:92:96:fc:ca: c5:9f:ee:50:21:25:ec:88:b3:ba:97:19:0b:30:bc:bd:b0:82: 9f:6c:e4:c8:2c:cb:13:b1:b0:f2:38:40:79:6d:a3:e9:4a:97: 6e:71:a7:5f:77:45:5a:58:fb:c7:5f:99:76:66:5a:3e:87:3b: e2:de:78:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJJ0kYLRbVngMcS/JoGrLEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyN2I4NzdmODk5MzQxMjY5YmVjNjdjNmUzYTBhODg4YmE3 YWU5OGQwHhcNMjUxMjIzMDMwMTA5WhcNMjUxMjI0MDMwMTA5WjAzMTEwLwYDVQQD Eyg0NTljYzFkNTU5ZTIxNTlkYzdlZWEyZWZmYWViNmJjZmZkZjEzMmY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApsJ6PRIAzfixqUExUW2pUyFtmvOG G8c8vt7Z4M8i62jcFefXWWFattP2tHHxtXrHoI1TrRIiRnGFits4aM5QKfglEYLk Vplz28JuCfF9P6eIE/C/oUS4auCfXUJNkMnVcaC4OlrE9mtLdqyFT9oL0uhYShfj aLHkJBQZ6oOtKiiBji0gAEHgNA3yqXKvrARReW2pivEgRqkGH7aa2CoqqAHHEsDI kN5/QiyUSvzT4kj/XEWBbUwJwUjYqRRHNDJEe2LoksEGZLBaCHcA3Pz3U5UaTjWO 27MfFfydKsxWxWJIpbFF4QVWvdGL8nJJU8auHfjlaQrF1ieNG6DQkScgVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEWcwdVZ4hWdx+6i7/rra8/98TL1MB8GA1UdIwQY MBaAFNJ7h3+Jk0Emm+xnxuOgqIi6eumNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMt OTk3OWRmNTJiMDE4LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMtOTk3OWRmNTJiMDE4 LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXUvM0DaK 3c2Putg5RSvC9LnRGFxFdQSmOAUIHtVkgVAUT76vYjjcu2JrB30PaLKuYeQY6Vey ZvpkLezHsHU8SlQZY8FecbdCb1HjkaGbFnFWOCwmsLD/AtTXSLlygo35zJ2EpfqZ 0puTGp7870HEYeAAHs7B5XXuXXzc5916mhqKot42MVhM1JdPsZY+GRwQVjbjIszg A/dzJk4xQNBVCrqvffUGe0jPtm9hJ/EX7/JTiPQmiZFO4pYdJHDjOiWIS1+SlvzK xZ/uUCEl7IizupcZCzC8vbCCn2zkyCzLE7Gw8jhAeW2j6UqXbnGnX3dFWlj7x1+Z dmZaPoc74t54uA== -----END CERTIFICATE-----Generated at Tue Dec 23 05:52:11 2025 by rpki-client