This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft File: mRyTTgj1egPvTro2taTaeYolIgc.mft (raw, json) Hash identifier: Qyf90Rm4prE6hDzA/NI3yX+XubPREbhuaBIUaH1Twk4= Subject key identifier: FE:4B:46:8B:28:EB:D2:E2:56:D4:F6:8D:F4:5B:C7:29:63:CD:FD:83 Authority key identifier: 99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07 Certificate issuer: /CN=991c934e08f57a03ef4eba36b5a4da798a252207 Certificate serial: 019B6957419D77BA304ECA08B9AE77D926C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft Manifest number: 179C Signing time: Mon 29 Dec 2025 09:01:24 +0000 Manifest this update: Mon 29 Dec 2025 09:01:24 +0000 Manifest next update: Tue 30 Dec 2025 09:01:24 +0000 Files and hashes: 1: db9OeH46tzqgA4Lx9Y7WIwYTuDM.roa (hash: FuLyiACFaT6BITOZPeoXwp9XiYIYBsR3kP7HfHr2tYI=) 2: mRyTTgj1egPvTro2taTaeYolIgc.crl (hash: 5IuAAdhwagxNdv3eRdJRL/BIZEjIzkhy9edweSIi8Qw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 09:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:69:57:41:9d:77:ba:30:4e:ca:08:b9:ae:77:d9:26:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=991c934e08f57a03ef4eba36b5a4da798a252207 Validity Not Before: Dec 29 09:01:24 2025 GMT Not After : Dec 30 09:01:24 2025 GMT Subject: CN=fe4b468b28ebd2e256d4f68df45bc72963cdfd83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:24:b5:d8:71:8e:37:eb:de:ea:f5:af:c2:5f: 12:d6:6e:6b:75:15:f1:0a:17:47:13:20:85:76:ab: d4:96:fb:ac:ac:21:6a:48:a4:8b:10:16:6b:21:e6: ab:3f:16:d0:1b:12:48:61:3b:ec:ce:ea:d7:5f:9b: b4:4a:c0:e6:2d:d6:73:8e:42:0c:ce:73:80:62:91: 77:e5:94:c2:fb:e2:d5:85:4e:57:9f:32:8a:7f:91: 05:08:ee:d2:8f:2c:86:bb:7a:2d:79:23:e3:fe:bd: 75:3e:2f:c1:f9:50:d6:ba:82:81:2b:8c:21:a5:3d: 51:4c:7d:d3:e4:ce:8b:38:d7:05:2b:a8:d4:34:12: 27:45:cc:e2:3b:21:37:e9:73:23:35:8b:d0:c5:bf: 97:f9:7c:29:cf:65:70:8d:f3:ef:a1:11:88:e9:a3: f1:5b:eb:84:2c:00:a7:84:70:9b:d3:8c:34:8d:e5: ce:de:95:92:ca:a8:de:f3:bf:70:16:66:53:5c:58: 3e:27:48:db:76:56:e5:7d:99:b1:e4:a2:5d:ee:e7: 7d:cf:09:83:db:45:99:38:9c:4f:5f:db:03:64:79: 53:4f:77:ea:70:5c:46:8c:84:db:93:03:ab:58:c7: 2b:99:8d:2f:9f:18:a9:98:1b:c9:9e:44:4a:42:40: 38:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:4B:46:8B:28:EB:D2:E2:56:D4:F6:8D:F4:5B:C7:29:63:CD:FD:83 X509v3 Authority Key Identifier: keyid:99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:83:b5:3e:0d:c1:92:e9:c0:f6:1e:86:f5:92:31:61:3f:48: 7d:80:6e:cd:89:cb:9b:ed:43:76:2b:35:10:63:9f:22:92:a5: 22:d1:fb:19:d5:ef:ea:7c:c4:67:22:c1:68:f5:36:2e:81:50: 67:70:5c:88:97:df:3f:16:ef:02:6d:ef:29:0b:d6:51:cd:6f: fd:f7:0c:bc:ad:e5:40:63:13:50:01:c5:c5:f4:46:29:68:49: 17:cc:de:fd:f6:cf:92:ea:72:93:86:64:6a:5d:66:e4:d6:50: 58:1c:33:09:20:43:f2:b6:2b:ed:4c:f6:48:31:a6:8e:e6:ea: ef:86:0d:cf:a5:a7:dc:6d:c9:97:f0:49:08:39:3d:b5:92:6b: 15:7c:f1:51:b1:d3:e4:8f:af:48:2b:d1:75:48:85:ac:82:a2: 6f:34:da:f4:3d:12:c1:07:35:b6:fd:58:d0:86:25:de:ea:95: f3:cd:5e:3c:e1:10:0b:61:f7:41:47:48:0f:b5:98:dc:0d:b6: 7a:32:53:12:3b:23:0d:38:24:57:f2:7b:82:b5:27:2a:23:56: 2e:69:be:d3:75:da:5b:1f:e0:4b:27:42:08:fa:00:b0:6e:42: ae:be:a4:31:4d:9d:e1:a9:0b:55:1d:c3:ea:ed:5d:3d:13:a8: f4:82:81:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtpV0Gdd7owTsoIua532SbGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5MWM5MzRlMDhmNTdhMDNlZjRlYmEzNmI1YTRkYTc5OGEy NTIyMDcwHhcNMjUxMjI5MDkwMTI0WhcNMjUxMjMwMDkwMTI0WjAzMTEwLwYDVQQD EyhmZTRiNDY4YjI4ZWJkMmUyNTZkNGY2OGRmNDViYzcyOTYzY2RmZDgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCS12HGON+ve6vWvwl8S1m5rdRXx ChdHEyCFdqvUlvusrCFqSKSLEBZrIearPxbQGxJIYTvszurXX5u0SsDmLdZzjkIM znOAYpF35ZTC++LVhU5XnzKKf5EFCO7SjyyGu3oteSPj/r11Pi/B+VDWuoKBK4wh pT1RTH3T5M6LONcFK6jUNBInRcziOyE36XMjNYvQxb+X+Xwpz2VwjfPvoRGI6aPx W+uELACnhHCb04w0jeXO3pWSyqje879wFmZTXFg+J0jbdlblfZmx5KJd7ud9zwmD 20WZOJxPX9sDZHlTT3fqcFxGjITbkwOrWMcrmY0vnxipmBvJnkRKQkA4LwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP5LRoso69LiVtT2jfRbxyljzf2DMB8GA1UdIwQY MBaAFJkck04I9XoD7066NrWk2nmKJSIHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVJ5VFRnajFlZ1B2VHJvMnRhVGFlWW9sSWdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8wNGMyMzktODg2OS00NmUyLTk1Yjct OTNiMzkyNTI1MTc1LzEvbVJ5VFRnajFlZ1B2VHJvMnRhVGFlWW9sSWdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC8wNGMyMzktODg2OS00NmUyLTk1YjctOTNiMzkyNTI1MTc1 LzEvbVJ5VFRnajFlZ1B2VHJvMnRhVGFlWW9sSWdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU4O1Pg3B kunA9h6G9ZIxYT9IfYBuzYnLm+1Ddis1EGOfIpKlItH7GdXv6nzEZyLBaPU2LoFQ Z3BciJffPxbvAm3vKQvWUc1v/fcMvK3lQGMTUAHFxfRGKWhJF8ze/fbPkupyk4Zk al1m5NZQWBwzCSBD8rYr7Uz2SDGmjubq74YNz6Wn3G3Jl/BJCDk9tZJrFXzxUbHT 5I+vSCvRdUiFrIKibzTa9D0SwQc1tv1Y0IYl3uqV881ePOEQC2H3QUdID7WY3A22 ejJTEjsjDTgkV/J7grUnKiNWLmm+03XaWx/gSydCCPoAsG5Crr6kMU2d4akLVR3D 6u1dPROo9IKBWw== -----END CERTIFICATE-----Generated at Mon Dec 29 13:28:40 2025 by rpki-client