This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft File: rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft (raw, json) Hash identifier: WDYN8cX8eO94XV7d/nQ4YUeGLdVcxNxcqUX7XAHIDqA= Subject key identifier: B6:AA:C8:1F:EB:88:2F:C2:13:83:4F:83:C1:99:0A:DD:AD:F7:5C:5C Authority key identifier: AD:D9:20:79:94:BA:9C:7D:91:EA:7E:47:9F:EF:D1:B8:09:9F:62:CE Certificate issuer: /CN=add9207994ba9c7d91ea7e479fefd1b8099f62ce Certificate serial: 019B5ABF3E85B943E7C0E34191A355CADA21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft Manifest number: 17A2 Signing time: Fri 26 Dec 2025 13:00:41 +0000 Manifest this update: Fri 26 Dec 2025 13:00:41 +0000 Manifest next update: Sat 27 Dec 2025 13:00:41 +0000 Files and hashes: 1: kFVKcwXQRgJRjkvVE_6RJAsf_ck.roa (hash: 7MBrulcccTfvDlDzgpyHz3EsPyq5/GE8x+EUDDqQIRQ=) 2: rdkgeZS6nH2R6n5Hn-_RuAmfYs4.crl (hash: OOPzA6lwaSNjIis04m0nAtTe67b0V9g6oXAAELKoq+w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft rsync://rpki.ripe.net/repository/DEFAULT/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:3e:85:b9:43:e7:c0:e3:41:91:a3:55:ca:da:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=add9207994ba9c7d91ea7e479fefd1b8099f62ce Validity Not Before: Dec 26 13:00:41 2025 GMT Not After : Dec 27 13:00:41 2025 GMT Subject: CN=b6aac81feb882fc213834f83c1990addadf75c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:42:41:29:a2:1c:10:60:5d:e7:70:f2:5c:fe: a8:63:d0:20:fc:2f:b1:d7:39:c6:df:da:c3:e3:9c: cb:5e:50:1e:b9:56:7a:0a:4e:6e:8a:77:f7:8f:e1: 10:e6:8d:b7:3e:f3:0b:12:25:44:bf:ba:26:0e:34: 55:6d:82:2d:59:65:27:33:c5:16:d1:ae:41:32:f2: ec:b0:20:7c:60:ba:b8:c6:1b:95:d6:b3:ee:26:5a: 55:76:1b:5c:da:fe:c9:69:74:07:6e:6c:22:5d:f4: be:26:f3:be:5d:5f:18:09:8f:72:90:4f:4f:00:ad: 95:bd:47:4b:8b:9b:4d:93:5e:41:73:11:ad:9b:87: ab:66:4e:28:eb:3b:32:a5:01:f4:35:54:e1:50:b0: 92:23:bf:09:0f:d6:dd:da:e1:0a:dc:95:34:49:ee: 94:fc:ca:5d:78:0d:77:8b:11:47:9a:a0:64:11:24: b2:3e:54:d2:8b:80:01:fc:87:1f:86:5c:df:97:6f: 43:7c:47:b9:7f:78:63:28:51:2a:70:30:c9:7e:0a: 92:85:1e:f9:87:c4:b0:89:02:69:5b:fa:78:e6:83: 07:d0:b1:af:84:1a:23:34:ed:cc:3b:53:90:16:6a: bd:4f:34:6e:46:34:b1:b5:8d:e2:e5:bc:e3:18:43: 2a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:AA:C8:1F:EB:88:2F:C2:13:83:4F:83:C1:99:0A:DD:AD:F7:5C:5C X509v3 Authority Key Identifier: keyid:AD:D9:20:79:94:BA:9C:7D:91:EA:7E:47:9F:EF:D1:B8:09:9F:62:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:29:9b:53:e7:30:c0:88:2c:45:64:97:00:04:2f:b4:5e:fb: 8a:eb:c8:3d:6c:14:8d:27:2c:31:c0:be:04:ff:c9:db:76:44: c4:8f:8b:ce:5e:0f:09:23:3c:12:fb:e4:1e:f7:6d:9a:47:9e: 12:bb:77:fb:7d:cb:23:0f:5e:57:0c:56:aa:2e:61:ef:3a:1e: 16:cd:66:10:bc:00:20:30:f7:03:1d:36:12:a0:0d:9e:28:8f: 1d:ca:cb:f2:4b:f1:0a:bf:8e:91:cd:b5:53:7b:46:5c:a3:0f: 1a:a2:b9:f0:d8:d4:13:ee:bf:ee:84:f4:c3:78:68:ec:d9:d1: 3f:ed:7e:25:74:c1:ce:2a:3b:5b:2d:31:2a:98:c1:0a:33:48: 06:6a:cc:67:f7:0d:63:4d:e9:f9:d8:05:b2:60:32:92:fd:50: ff:ec:41:55:7f:c1:76:64:33:13:27:e7:57:5b:37:55:6d:56: fc:21:d0:de:0f:a0:05:05:3e:01:37:02:42:c6:db:16:46:b9: 72:fa:73:02:a3:c6:e4:25:3c:60:bd:91:25:30:15:a7:3b:c8: 31:1b:18:e4:ec:d3:06:bf:b2:ed:2a:98:b7:b4:75:06:28:84: 4b:60:f0:fa:b2:17:7c:1b:9e:36:3f:ac:26:03:84:d6:06:5f: a6:ae:67:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtavz6FuUPnwONBkaNVytohMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkZDkyMDc5OTRiYTljN2Q5MWVhN2U0NzlmZWZkMWI4MDk5 ZjYyY2UwHhcNMjUxMjI2MTMwMDQxWhcNMjUxMjI3MTMwMDQxWjAzMTEwLwYDVQQD EyhiNmFhYzgxZmViODgyZmMyMTM4MzRmODNjMTk5MGFkZGFkZjc1YzVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0JBKaIcEGBd53DyXP6oY9Ag/C+x 1znG39rD45zLXlAeuVZ6Ck5uinf3j+EQ5o23PvMLEiVEv7omDjRVbYItWWUnM8UW 0a5BMvLssCB8YLq4xhuV1rPuJlpVdhtc2v7JaXQHbmwiXfS+JvO+XV8YCY9ykE9P AK2VvUdLi5tNk15BcxGtm4erZk4o6zsypQH0NVThULCSI78JD9bd2uEK3JU0Se6U /MpdeA13ixFHmqBkESSyPlTSi4AB/Icfhlzfl29DfEe5f3hjKFEqcDDJfgqShR75 h8SwiQJpW/p45oMH0LGvhBojNO3MO1OQFmq9TzRuRjSxtY3i5bzjGEMqUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLaqyB/riC/CE4NPg8GZCt2t91xcMB8GA1UdIwQY MBaAFK3ZIHmUupx9kep+R5/v0bgJn2LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmRrZ2VaUzZuSDJSNm41SG4tX1J1QW1mWXM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC80N2E5YzktZDQ1Ny00NTc5LWIyYjAt ZTUyMTI1NzRmOWVjLzEvcmRrZ2VaUzZuSDJSNm41SG4tX1J1QW1mWXM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC80N2E5YzktZDQ1Ny00NTc5LWIyYjAtZTUyMTI1NzRmOWVj LzEvcmRrZ2VaUzZuSDJSNm41SG4tX1J1QW1mWXM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0CmbU+cw wIgsRWSXAAQvtF77iuvIPWwUjScsMcC+BP/J23ZExI+Lzl4PCSM8EvvkHvdtmkee Ert3+33LIw9eVwxWqi5h7zoeFs1mELwAIDD3Ax02EqANniiPHcrL8kvxCr+Okc21 U3tGXKMPGqK58NjUE+6/7oT0w3ho7NnRP+1+JXTBzio7Wy0xKpjBCjNIBmrMZ/cN Y03p+dgFsmAykv1Q/+xBVX/BdmQzEyfnV1s3VW1W/CHQ3g+gBQU+ATcCQsbbFka5 cvpzAqPG5CU8YL2RJTAVpzvIMRsY5OzTBr+y7SqYt7R1BiiES2Dw+rIXfBueNj+s JgOE1gZfpq5noA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:05:49 2025 by rpki-client