This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft File: _pLvNTIb-Pcic0v_nfpj-9DwaQo.mft (raw, json) Hash identifier: dLxNh/Xx9PcpKtcxROGCX/eEroo5QOem5fo0EWe3E4U= Subject key identifier: 6F:7F:8E:7F:FA:FA:09:91:08:15:96:AC:0D:20:66:5A:64:13:D1:2E Authority key identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A Certificate issuer: /CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a Certificate serial: 019B38A2ED7486DDE64AF2ECAC3DD51BC617 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft Manifest number: 10F1 Signing time: Fri 19 Dec 2025 22:02:40 +0000 Manifest this update: Fri 19 Dec 2025 22:02:40 +0000 Manifest next update: Sat 20 Dec 2025 22:02:40 +0000 Files and hashes: 1: FsJZX9GGj2A1me0tekd7HmtKIf4.roa (hash: wa9LmtrA5IFHkOGKHcF70x4E1HktC1RNDhObryrXOsE=) 2: _pLvNTIb-Pcic0v_nfpj-9DwaQo.crl (hash: CnKdY73WN6Lv4vY8mJk/L2DRZHooPHVfqy1L5gRjC0M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:a2:ed:74:86:dd:e6:4a:f2:ec:ac:3d:d5:1b:c6:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a Validity Not Before: Dec 19 22:02:40 2025 GMT Not After : Dec 20 22:02:40 2025 GMT Subject: CN=6f7f8e7ffafa0991081596ac0d20665a6413d12e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2e:8b:2e:91:81:27:f6:cc:d9:f4:c8:6d:96: 5c:45:3c:ec:84:86:a6:3f:1b:a4:34:fd:6b:11:26: 03:64:7f:24:38:44:ad:78:ab:5d:ee:b5:fb:71:4a: e9:98:91:91:15:65:4f:63:aa:6f:0c:39:50:5b:3e: 4e:2b:79:1b:9a:00:57:d4:02:f6:17:d0:80:84:6f: 8e:2f:28:28:0f:14:6e:36:6e:32:9a:b4:aa:a2:da: 1f:64:05:34:e8:f2:a3:be:03:e6:58:56:fc:e5:ac: 20:82:d8:ca:56:d8:e4:aa:47:a8:1a:91:1e:fb:05: 8a:b4:43:82:c9:76:25:27:24:bd:23:0f:3f:c1:c3: 00:76:b8:b6:51:7a:2c:12:be:62:6f:0a:33:21:7f: 1d:32:57:0b:ca:b9:89:c4:35:a9:3c:92:0d:a6:32: 97:94:c2:c7:f9:c2:63:43:eb:42:85:05:ae:ac:e4: e7:66:83:50:c0:94:e5:e4:af:0b:28:7b:5b:75:c3: fe:37:aa:8a:cb:62:54:ab:ec:61:9e:a3:db:0f:b0: 2f:84:43:8a:95:40:f5:7e:19:9d:7a:cd:95:13:94: c2:f5:5e:24:f2:1c:15:ea:9c:51:ab:0a:8b:5b:71: 46:59:89:c4:c1:58:50:8a:47:c7:af:88:b2:39:01: d9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:7F:8E:7F:FA:FA:09:91:08:15:96:AC:0D:20:66:5A:64:13:D1:2E X509v3 Authority Key Identifier: keyid:FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:a1:c1:5f:e2:c6:5f:c4:51:54:f9:dc:a3:5d:c1:2e:d2:97: 15:47:34:8d:5d:fc:84:e0:30:02:8b:29:2a:36:0c:49:65:99: ac:f6:83:4b:62:a3:ff:bf:cd:da:b4:94:25:f0:bf:ac:cc:63: 7e:86:8d:e9:c9:df:fd:7a:3d:8e:a6:55:56:de:7a:d5:a6:73: e7:0b:b7:b9:84:2a:64:dc:ea:ff:ff:18:6a:c5:38:f4:01:79: 83:82:03:99:f2:b0:60:75:b5:99:46:e9:60:e4:ea:21:20:37: 18:ae:90:ca:df:e8:2c:b5:e5:d2:4e:f2:f9:de:13:da:18:02: f4:53:87:64:aa:b7:e8:e8:4e:3b:f9:0e:95:04:85:05:e6:ab: ad:6c:9c:af:0b:8c:d1:db:1d:5a:bc:30:42:76:95:59:c3:f1: af:43:53:2c:30:a0:48:16:31:6f:db:ab:05:50:7f:54:2e:d3: 12:69:2f:c2:b1:cd:34:88:01:58:0d:fd:ca:ad:e4:59:81:7f: 17:d7:c1:89:c6:ce:e0:93:6d:d8:a3:01:38:e4:53:91:73:4f: 8d:7b:9c:ab:79:ef:4a:ed:9b:1a:97:fd:cc:e5:77:53:40:80: 86:e7:8e:dc:70:ab:d9:7e:9a:0d:be:7e:11:32:07:87:00:89: 1c:5f:ce:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4ou10ht3mSvLsrD3VG8YXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlOTJlZjM1MzIxYmY4ZjcyMjczNGJmZjlkZmE2M2ZiZDBm MDY5MGEwHhcNMjUxMjE5MjIwMjQwWhcNMjUxMjIwMjIwMjQwWjAzMTEwLwYDVQQD Eyg2ZjdmOGU3ZmZhZmEwOTkxMDgxNTk2YWMwZDIwNjY1YTY0MTNkMTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1i6LLpGBJ/bM2fTIbZZcRTzshIam PxukNP1rESYDZH8kOESteKtd7rX7cUrpmJGRFWVPY6pvDDlQWz5OK3kbmgBX1AL2 F9CAhG+OLygoDxRuNm4ymrSqotofZAU06PKjvgPmWFb85awggtjKVtjkqkeoGpEe +wWKtEOCyXYlJyS9Iw8/wcMAdri2UXosEr5ibwozIX8dMlcLyrmJxDWpPJINpjKX lMLH+cJjQ+tChQWurOTnZoNQwJTl5K8LKHtbdcP+N6qKy2JUq+xhnqPbD7AvhEOK lUD1fhmdes2VE5TC9V4k8hwV6pxRqwqLW3FGWYnEwVhQikfHr4iyOQHZuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG9/jn/6+gmRCBWWrA0gZlpkE9EuMB8GA1UdIwQY MBaAFP6S7zUyG/j3InNL/536Y/vQ8GkKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3BMdk5USWItUGNpYzB2X25mcGotOUR3YVFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9kMjcyNWQtODAwMS00MWYxLTgwZTUt YTllZWYyOTRhYzM0LzEvX3BMdk5USWItUGNpYzB2X25mcGotOUR3YVFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9kMjcyNWQtODAwMS00MWYxLTgwZTUtYTllZWYyOTRhYzM0 LzEvX3BMdk5USWItUGNpYzB2X25mcGotOUR3YVFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANKHBX+LG X8RRVPnco13BLtKXFUc0jV38hOAwAospKjYMSWWZrPaDS2Kj/7/N2rSUJfC/rMxj foaN6cnf/Xo9jqZVVt561aZz5wu3uYQqZNzq//8YasU49AF5g4IDmfKwYHW1mUbp YOTqISA3GK6Qyt/oLLXl0k7y+d4T2hgC9FOHZKq36OhOO/kOlQSFBearrWycrwuM 0dsdWrwwQnaVWcPxr0NTLDCgSBYxb9urBVB/VC7TEmkvwrHNNIgBWA39yq3kWYF/ F9fBicbO4JNt2KMBOORTkXNPjXucq3nvSu2bGpf9zOV3U0CAhueO3HCr2X6aDb5+ ETIHhwCJHF/OYA== -----END CERTIFICATE-----Generated at Fri Dec 19 23:41:50 2025 by rpki-client