This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json) Hash identifier: 5Was4Y6dOwpjRb+k+qtrD2DfOlGha5kZt37tScq2MeI= Subject key identifier: 66:E3:18:23:F1:E3:B0:FC:4E:5A:14:A8:0B:AD:27:B3:C0:47:B9:19 Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8 Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8 Certificate serial: 019B6354628014206D80B39E882B37235E5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft Manifest number: 179D Signing time: Sun 28 Dec 2025 05:00:32 +0000 Manifest this update: Sun 28 Dec 2025 05:00:32 +0000 Manifest next update: Mon 29 Dec 2025 05:00:32 +0000 Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: PqQE34HmCMbVshv2oGhz+o9X8sumPLy22jTztGzyNHg=) 2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:63:54:62:80:14:20:6d:80:b3:9e:88:2b:37:23:5e:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8 Validity Not Before: Dec 28 05:00:32 2025 GMT Not After : Dec 29 05:00:32 2025 GMT Subject: CN=66e31823f1e3b0fc4e5a14a80bad27b3c047b919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ff:93:1e:f2:f0:d2:f9:1c:3e:f7:5a:73:c2: 53:96:d0:80:b2:6b:bb:55:69:9d:58:c7:d3:22:f0: ac:a9:46:39:07:49:6a:27:cd:77:49:95:0c:a3:a2: 4d:89:62:8b:c8:01:30:81:c4:6c:45:78:06:d1:44: 2c:78:90:7e:db:75:f9:00:a8:26:47:4c:c3:d8:6f: ea:a2:e5:01:56:36:d3:2e:56:a7:40:2b:70:b9:a7: 73:34:bf:a7:42:47:06:06:4c:88:b1:bd:1d:2a:b8: 0c:2f:a5:75:a8:81:7e:f4:4c:d5:9d:89:13:5c:e8: a8:fd:8a:ee:d4:62:87:3e:1c:d8:14:82:d7:ae:5f: 0c:ae:93:c9:0d:57:a9:7d:6a:58:52:82:8e:1d:b4: 49:42:69:0e:1f:71:f3:78:cd:67:70:76:26:35:cb: 73:95:20:c2:fa:9d:24:38:43:96:8c:02:ed:61:b4: b8:c7:a0:40:df:78:5c:7b:76:3f:5b:ec:88:0a:5e: cf:c0:69:b3:91:d3:32:2a:3b:27:e6:4b:66:ff:64: ba:07:28:f8:8c:80:80:38:97:fe:62:21:f0:97:46: 9e:ee:78:20:5b:e5:98:84:37:48:e2:47:a6:e7:af: 04:54:e6:fc:28:63:0b:b1:da:c1:c4:c1:1f:71:51: 7c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E3:18:23:F1:E3:B0:FC:4E:5A:14:A8:0B:AD:27:B3:C0:47:B9:19 X509v3 Authority Key Identifier: keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:b5:14:49:35:54:98:b7:17:c6:b4:f7:11:f9:92:2f:88:48: 90:8a:ca:28:18:0d:46:38:a5:e3:4b:9b:e8:95:04:c5:52:7a: 43:03:2a:cd:fc:6f:b8:b6:7a:1f:41:7a:3b:fb:15:4b:8c:ef: d6:37:fd:6d:68:44:83:81:9a:be:69:83:93:44:fa:6c:09:43: f1:b8:97:0b:60:7c:ac:03:f9:8b:21:bf:3e:55:b5:89:ac:64: 1a:db:96:86:72:d0:91:1e:a7:f2:74:c0:87:18:00:db:79:06: e6:60:53:47:b9:b2:f0:04:e7:35:94:f3:a1:4d:e0:40:bf:05: 2e:8b:8f:ca:b9:9a:a2:91:77:83:bb:d2:39:68:45:74:a7:07: ce:12:14:13:b4:95:79:a0:fa:e8:35:e9:19:39:29:f3:58:84: d0:7f:e6:d1:3d:23:44:30:11:c4:af:b6:df:14:3a:67:ba:de: 07:82:24:f3:68:5b:be:ab:16:50:f7:ec:c9:60:72:36:2e:15: 79:3c:a3:9d:f3:1c:57:87:65:b0:72:57:82:87:29:c8:9f:e1: f6:cd:dd:33:6e:cf:1b:f2:09:b0:d8:0d:78:d5:f2:12:25:58: 79:df:87:1f:c2:fc:5d:9d:a1:cc:bb:18:9c:16:62:f8:03:83: 88:12:ac:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtjVGKAFCBtgLOeiCs3I15aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZGRhODMyNzY5YzMxNjgxZjgyNTY4NTE0NzM2OGFmM2Ex MWY2ZjgwHhcNMjUxMjI4MDUwMDMyWhcNMjUxMjI5MDUwMDMyWjAzMTEwLwYDVQQD Eyg2NmUzMTgyM2YxZTNiMGZjNGU1YTE0YTgwYmFkMjdiM2MwNDdiOTE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwf+THvLw0vkcPvdac8JTltCAsmu7 VWmdWMfTIvCsqUY5B0lqJ813SZUMo6JNiWKLyAEwgcRsRXgG0UQseJB+23X5AKgm R0zD2G/qouUBVjbTLlanQCtwuadzNL+nQkcGBkyIsb0dKrgML6V1qIF+9EzVnYkT XOio/Yru1GKHPhzYFILXrl8MrpPJDVepfWpYUoKOHbRJQmkOH3HzeM1ncHYmNctz lSDC+p0kOEOWjALtYbS4x6BA33hce3Y/W+yICl7PwGmzkdMyKjsn5ktm/2S6Byj4 jICAOJf+YiHwl0ae7nggW+WYhDdI4kem568EVOb8KGMLsdrBxMEfcVF8QwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGbjGCPx47D8TloUqAutJ7PAR7kZMB8GA1UdIwQY MBaAFNHdqDJ2nDFoH4JWhRRzaK86Efb4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDIt ODYyMzZiYWMxMzA4LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDItODYyMzZiYWMxMzA4 LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU7UUSTVU mLcXxrT3EfmSL4hIkIrKKBgNRjil40ub6JUExVJ6QwMqzfxvuLZ6H0F6O/sVS4zv 1jf9bWhEg4GavmmDk0T6bAlD8biXC2B8rAP5iyG/PlW1iaxkGtuWhnLQkR6n8nTA hxgA23kG5mBTR7my8ATnNZTzoU3gQL8FLouPyrmaopF3g7vSOWhFdKcHzhIUE7SV eaD66DXpGTkp81iE0H/m0T0jRDARxK+23xQ6Z7reB4Ik82hbvqsWUPfsyWByNi4V eTyjnfMcV4dlsHJXgocpyJ/h9s3dM27PG/IJsNgNeNXyEiVYed+HH8L8XZ2hzLsY nBZi+AODiBKs/w== -----END CERTIFICATE-----Generated at Sun Dec 28 10:50:48 2025 by rpki-client