This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft File: 0627YSN4H_DjVBNEaseTHP9KSQ0.mft (raw, json) Hash identifier: YPnnxFxIL0ZYD1x9ru6E8H3TuQWvXNrVvkf595JbLCs= Subject key identifier: 4F:F3:88:3B:F2:3B:EA:A4:8E:1E:A9:BE:37:6C:84:C5:7F:E8:10:84 Authority key identifier: D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D Certificate issuer: /CN=d3adbb6123781ff0e35413446ac7931cff4a490d Certificate serial: 019B2E1DC8C926F434DF00443851965747C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft Manifest number: 1781 Signing time: Wed 17 Dec 2025 21:01:02 +0000 Manifest this update: Wed 17 Dec 2025 21:01:02 +0000 Manifest next update: Thu 18 Dec 2025 21:01:02 +0000 Files and hashes: 1: 0627YSN4H_DjVBNEaseTHP9KSQ0.crl (hash: vXhsz504OPgUx6vE9EkhwzpjKMWQYtF9MxCKcW4R9pI=) 2: yWi1Y-nakOmyfRqesRZIzBZCSpo.roa (hash: XIYZfLdl8kZlRiSAj90PT17pvRJ8h9U9zRjI6i+BCkM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:1d:c8:c9:26:f4:34:df:00:44:38:51:96:57:47:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3adbb6123781ff0e35413446ac7931cff4a490d Validity Not Before: Dec 17 21:01:02 2025 GMT Not After : Dec 18 21:01:02 2025 GMT Subject: CN=4ff3883bf23beaa48e1ea9be376c84c57fe81084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:62:cc:bf:bb:50:b6:52:f7:9d:54:c7:53:21: 14:8d:74:de:9b:e5:ff:1c:0c:c1:94:8c:eb:70:05: 23:9c:44:83:e5:ae:b9:8b:af:65:67:bc:6e:0e:59: f9:29:3d:bf:33:66:e2:a8:78:cd:0c:ca:f4:3b:dd: ce:b2:e7:d0:83:32:c1:5a:98:98:b4:96:81:75:99: b1:af:f2:91:69:7b:5d:f7:bb:34:b4:bf:f1:4d:4e: db:03:ba:0e:66:d3:9f:b3:ab:06:2e:01:f0:69:09: 1f:77:c1:69:a2:fb:47:60:06:b7:80:e6:9f:36:4e: 8d:71:51:e4:17:7b:d8:b9:15:1f:f6:ae:44:83:a0: 09:1b:44:66:f7:34:df:fd:c9:a8:6a:a0:64:4e:20: 89:41:82:af:03:45:86:44:27:57:31:ca:7f:e9:1d: bf:1a:65:2d:1b:de:ec:fb:20:0a:98:b5:dd:42:b6: c8:0b:dc:00:da:38:2f:8a:ea:e5:87:ac:88:28:c8: bf:d3:c4:57:1c:5d:89:9f:be:31:09:97:37:43:b1: 74:c8:11:71:79:d6:31:b8:73:17:db:78:75:05:ad: 18:3d:36:9d:c3:88:f1:f5:26:e0:65:95:d2:86:e8: 31:20:82:f4:ad:c6:70:20:67:f8:09:e7:48:b9:b5: 4c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F3:88:3B:F2:3B:EA:A4:8E:1E:A9:BE:37:6C:84:C5:7F:E8:10:84 X509v3 Authority Key Identifier: keyid:D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:55:9f:93:51:80:26:f4:f4:3f:b0:bd:ea:e2:2a:55:73:8c: 9e:83:91:62:26:8b:d1:fe:75:ab:5a:67:39:ef:1a:a2:22:e3: dd:88:8b:a8:84:f7:49:10:5d:81:00:aa:a6:ea:7b:dc:87:b3: aa:07:18:14:dd:15:92:76:0a:73:e3:8f:98:71:87:c6:5d:7d: 35:e1:b0:fb:3e:46:07:ec:8f:f0:a3:aa:8c:fc:4f:56:e0:ea: e4:c5:1b:e1:89:71:c4:84:2a:50:7b:8f:56:fe:0a:c8:87:09: 4e:9e:5e:47:a5:4a:97:c1:32:3c:ce:23:b5:d2:9d:9e:90:ba: 4a:3f:ef:b1:ef:81:86:32:95:a2:43:54:be:6c:2e:71:62:8a: c5:64:2b:e7:ec:bd:01:26:89:c0:12:85:e3:56:0f:f3:94:5c: 42:60:03:c7:cf:92:02:8b:1f:84:63:85:95:59:6e:60:dd:1e: f8:57:b2:24:b7:e1:c4:89:6a:fb:2a:e3:33:35:7e:e2:41:b4: 2f:f3:d6:cf:df:f5:6d:18:db:bf:77:44:31:10:d9:0d:72:e1: 3e:99:73:52:ca:b0:d2:99:28:cf:76:a1:54:35:d8:6d:e3:14: 34:52:eb:e2:fc:47:48:42:2a:20:c7:a6:c1:00:a1:3f:35:74: 88:09:88:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsuHcjJJvQ03wBEOFGWV0fGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzYWRiYjYxMjM3ODFmZjBlMzU0MTM0NDZhYzc5MzFjZmY0 YTQ5MGQwHhcNMjUxMjE3MjEwMTAyWhcNMjUxMjE4MjEwMTAyWjAzMTEwLwYDVQQD Eyg0ZmYzODgzYmYyM2JlYWE0OGUxZWE5YmUzNzZjODRjNTdmZTgxMDg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWLMv7tQtlL3nVTHUyEUjXTem+X/ HAzBlIzrcAUjnESD5a65i69lZ7xuDln5KT2/M2biqHjNDMr0O93OsufQgzLBWpiY tJaBdZmxr/KRaXtd97s0tL/xTU7bA7oOZtOfs6sGLgHwaQkfd8FpovtHYAa3gOaf Nk6NcVHkF3vYuRUf9q5Eg6AJG0Rm9zTf/cmoaqBkTiCJQYKvA0WGRCdXMcp/6R2/ GmUtG97s+yAKmLXdQrbIC9wA2jgviurlh6yIKMi/08RXHF2Jn74xCZc3Q7F0yBFx edYxuHMX23h1Ba0YPTadw4jx9SbgZZXShugxIIL0rcZwIGf4CedIubVM3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE/ziDvyO+qkjh6pvjdshMV/6BCEMB8GA1UdIwQY MBaAFNOtu2EjeB/w41QTRGrHkxz/SkkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDYyN1lTTjRIX0RqVkJORWFzZVRIUDlLU1EwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS84YTNlZTktNGYzNy00NWJlLThhYWMt Nzk4YWI3NzNlYWZhLzEvMDYyN1lTTjRIX0RqVkJORWFzZVRIUDlLU1EwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS84YTNlZTktNGYzNy00NWJlLThhYWMtNzk4YWI3NzNlYWZh LzEvMDYyN1lTTjRIX0RqVkJORWFzZVRIUDlLU1EwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmFWfk1GA JvT0P7C96uIqVXOMnoORYiaL0f51q1pnOe8aoiLj3YiLqIT3SRBdgQCqpup73Iez qgcYFN0VknYKc+OPmHGHxl19NeGw+z5GB+yP8KOqjPxPVuDq5MUb4YlxxIQqUHuP Vv4KyIcJTp5eR6VKl8EyPM4jtdKdnpC6Sj/vse+BhjKVokNUvmwucWKKxWQr5+y9 ASaJwBKF41YP85RcQmADx8+SAosfhGOFlVluYN0e+FeyJLfhxIlq+yrjMzV+4kG0 L/PWz9/1bRjbv3dEMRDZDXLhPplzUsqw0pkoz3ahVDXYbeMUNFLr4vxHSEIqIMem wQChPzV0iAmItQ== -----END CERTIFICATE-----Generated at Thu Dec 18 03:26:42 2025 by rpki-client