This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json) Hash identifier: 2Q2wu6KRxSNL4XvzDQL+jE9xiCCylQAbOc7gzGqAATQ= Subject key identifier: 3F:05:D2:6A:B2:9A:E4:A3:E5:18:7F:96:EE:49:13:57:DF:65:83:9E Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a Certificate serial: 019B3CB4C925E4B76DCF387D07BC6E24E55E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft Manifest number: 1173 Signing time: Sat 20 Dec 2025 17:00:39 +0000 Manifest this update: Sat 20 Dec 2025 17:00:39 +0000 Manifest next update: Sun 21 Dec 2025 17:00:39 +0000 Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=) 2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: +abOItqJWjzuncjn8EdEvniTNF2sNXt1IO72AcTyGKY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:b4:c9:25:e4:b7:6d:cf:38:7d:07:bc:6e:24:e5:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a Validity Not Before: Dec 20 17:00:39 2025 GMT Not After : Dec 21 17:00:39 2025 GMT Subject: CN=3f05d26ab29ae4a3e5187f96ee491357df65839e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:41:2f:35:00:b1:b8:d3:97:2d:19:f8:3e:36: 33:a2:33:b7:ba:a5:04:27:3f:b0:0a:17:23:02:6f: 5a:a2:45:29:36:4c:3c:32:c5:5e:cd:6a:5d:de:8f: 83:0d:6c:9f:d0:f3:43:2a:a6:95:18:2e:f2:8d:af: 7c:5a:b1:79:06:47:86:aa:d9:15:d7:6b:28:58:bc: 71:f2:9f:76:9b:81:4c:e6:c7:a2:81:b3:52:7c:02: df:9d:dd:00:3e:1a:24:f5:be:41:9e:9e:92:2b:4b: 60:c5:f8:ca:49:1f:e3:23:ed:13:6c:f1:2f:23:dd: d0:8d:8e:7d:2f:c3:33:4d:9b:4c:8a:48:8b:bc:70: 13:24:90:b1:6a:e7:3a:e2:2d:ef:28:bd:5b:81:69: 82:98:e9:f5:a1:cc:95:f8:9f:78:3c:ff:e7:61:ea: 41:bc:21:68:22:6f:61:1e:dc:40:fe:2a:98:54:c9: df:11:9a:0d:8f:02:15:94:eb:56:6f:c7:86:cd:ab: 08:28:53:bf:a9:4c:26:62:5a:eb:7a:bd:18:db:a0: 61:ca:ac:fb:31:61:d5:ad:d4:34:7e:e1:c1:7b:21: 03:6f:35:91:5f:80:76:18:a1:a6:16:96:a6:8b:48: d9:54:bc:c7:55:f2:40:ef:78:8d:ee:fb:ce:a3:24: 7f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:05:D2:6A:B2:9A:E4:A3:E5:18:7F:96:EE:49:13:57:DF:65:83:9E X509v3 Authority Key Identifier: keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:82:f9:70:a3:22:15:ff:e6:bd:89:29:4a:4c:ac:12:7b:67: 58:85:88:2a:32:2f:4a:42:24:d5:3d:f1:c0:b8:46:45:94:78: fa:c7:e4:90:e2:2c:68:ab:2e:4f:d7:5a:f0:89:d5:cc:16:84: 0d:af:30:a3:c0:eb:58:af:68:b9:8e:9e:33:9a:ea:c0:8a:54: 19:13:f0:bf:d0:b8:75:d2:7e:6d:2d:b0:97:86:de:fc:b1:75: 6a:7f:d7:63:87:c5:8a:d0:3d:bb:e3:05:54:a7:74:c8:d1:cd: 58:61:c3:7e:81:a3:f3:79:47:52:6e:39:3b:e4:b7:20:b7:b4: d4:9c:2d:45:0f:c8:07:52:2d:e2:03:db:98:ee:ce:cc:ba:1a: 00:6a:81:67:77:98:9f:e8:8b:49:07:b7:27:29:29:c1:88:c5: 87:7d:08:51:99:27:e2:ee:f3:54:6e:55:a0:70:04:1e:63:b4: e7:05:52:5d:cf:ee:f9:e6:6d:3d:4a:f5:a9:1e:49:29:5b:0b: 37:16:c2:a5:67:b2:a7:01:c4:9e:8c:fa:7a:7e:f1:bf:2d:9a: 0a:a0:13:56:a3:16:a1:aa:08:be:bf:ce:1d:50:cb:ef:0f:d4: 7b:24:37:2e:da:ed:a1:10:d7:34:d8:69:56:a5:28:5a:2f:22: 1f:31:15:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8tMkl5Ldtzzh9B7xuJOVeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0MzRlZGJlMWI0MTAxYjI4YWJlMjMyZjJiY2YyYTAxNDg5 NzgyNWEwHhcNMjUxMjIwMTcwMDM5WhcNMjUxMjIxMTcwMDM5WjAzMTEwLwYDVQQD EygzZjA1ZDI2YWIyOWFlNGEzZTUxODdmOTZlZTQ5MTM1N2RmNjU4MzllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEEvNQCxuNOXLRn4PjYzojO3uqUE Jz+wChcjAm9aokUpNkw8MsVezWpd3o+DDWyf0PNDKqaVGC7yja98WrF5BkeGqtkV 12soWLxx8p92m4FM5seigbNSfALfnd0APhok9b5Bnp6SK0tgxfjKSR/jI+0TbPEv I93QjY59L8MzTZtMikiLvHATJJCxauc64i3vKL1bgWmCmOn1ocyV+J94PP/nYepB vCFoIm9hHtxA/iqYVMnfEZoNjwIVlOtWb8eGzasIKFO/qUwmYlrrer0Y26Bhyqz7 MWHVrdQ0fuHBeyEDbzWRX4B2GKGmFpami0jZVLzHVfJA73iN7vvOoyR/QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD8F0mqymuSj5Rh/lu5JE1ffZYOeMB8GA1UdIwQY MBaAFEQ07b4bQQGyir4jLyvPKgFIl4JaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDkt MTBjYWY1NDk4NmZmLzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDktMTBjYWY1NDk4NmZm LzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPoL5cKMi Ff/mvYkpSkysEntnWIWIKjIvSkIk1T3xwLhGRZR4+sfkkOIsaKsuT9da8InVzBaE Da8wo8DrWK9ouY6eM5rqwIpUGRPwv9C4ddJ+bS2wl4be/LF1an/XY4fFitA9u+MF VKd0yNHNWGHDfoGj83lHUm45O+S3ILe01JwtRQ/IB1It4gPbmO7OzLoaAGqBZ3eY n+iLSQe3JykpwYjFh30IUZkn4u7zVG5VoHAEHmO05wVSXc/u+eZtPUr1qR5JKVsL NxbCpWeypwHEnoz6en7xvy2aCqATVqMWoaoIvr/OHVDL7w/UeyQ3LtrtoRDXNNhp VqUoWi8iHzEVbQ== -----END CERTIFICATE-----Generated at Sun Dec 21 01:31:48 2025 by rpki-client