This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft File: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft (raw, json) Hash identifier: 9S9DJ6G3WVuAJxcwa0Hmqc+daNNinA1mCx71hkBa9VA= Subject key identifier: 04:3E:A7:96:27:DC:C1:D5:53:DE:E2:C3:31:25:49:EC:92:17:4E:78 Authority key identifier: 46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A Certificate issuer: /CN=467350d5975a272a88bfb8810af45981cd55935a Certificate serial: 019B4E8447DCE3680D28D0FDF33C5AD04DCB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft Manifest number: 108C Signing time: Wed 24 Dec 2025 04:00:50 +0000 Manifest this update: Wed 24 Dec 2025 04:00:50 +0000 Manifest next update: Thu 25 Dec 2025 04:00:50 +0000 Files and hashes: 1: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl (hash: x0qShmhlIjykrprTZ2nt9M5qhbIwFUpELAcylZ/n+xQ=) 2: cM594o8l7Xh7Dw0EOXhcxgvWLYI.roa (hash: 1Ym4804A2QtxpGJhVDPpEbLS0giUeOdd5FG8xMIV330=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 04:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:84:47:dc:e3:68:0d:28:d0:fd:f3:3c:5a:d0:4d:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=467350d5975a272a88bfb8810af45981cd55935a Validity Not Before: Dec 24 04:00:50 2025 GMT Not After : Dec 25 04:00:50 2025 GMT Subject: CN=043ea79627dcc1d553dee2c3312549ec92174e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:36:a1:54:79:1f:c3:0b:ee:f2:90:2c:a4:9d: c4:98:8a:ee:ad:49:f8:1d:d3:2e:dc:35:21:2b:e5: a9:75:99:08:60:05:28:00:c8:fa:2d:1e:6a:94:74: 8b:8c:5f:82:fe:e3:ac:8c:ed:25:cc:43:38:ce:0e: 7a:27:3d:b4:ba:c2:94:b5:fd:28:2c:bb:9b:29:fe: cd:7d:b0:81:42:07:a5:06:f6:55:4e:78:58:13:60: bf:55:11:eb:82:be:d9:cd:d4:74:bb:9f:9d:1a:a0: 0b:2c:19:88:e9:9a:4c:8f:26:d9:dc:77:35:30:07: 32:52:87:9d:fe:d0:ab:c7:ca:91:dd:7b:b9:1a:f1: 65:b6:bc:b2:1d:c9:9d:6d:57:51:c1:2e:70:20:27: 45:3e:b6:d6:01:d5:b1:c7:81:bc:0a:74:17:01:86: c0:b6:2c:ec:69:00:ce:61:7c:9e:fe:28:09:c1:4c: b4:99:ce:1c:81:45:f8:57:ec:a0:01:b1:0a:04:88: cd:9b:58:c5:b7:f1:6b:33:80:ca:0a:4e:d4:4e:01: 7e:7d:5c:24:99:d8:1a:65:8a:8b:9d:b9:c4:9b:c9: 67:8d:e0:b7:fe:af:0a:1b:40:89:45:10:fb:fe:0a: f5:ec:a7:77:e0:35:6b:87:ad:f7:ce:f4:dc:8e:db: 6a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:3E:A7:96:27:DC:C1:D5:53:DE:E2:C3:31:25:49:EC:92:17:4E:78 X509v3 Authority Key Identifier: keyid:46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:48:9f:31:36:ce:f9:9d:17:40:b3:fb:c7:ac:99:b6:9f:3a: 19:71:12:70:db:98:33:25:00:2f:c9:ac:5f:7d:42:47:12:6a: d2:fc:a7:ff:c7:75:b4:0c:0a:c5:73:25:e8:5f:2e:f4:79:19: 5c:d7:04:65:47:69:25:bd:98:3a:bf:f5:25:9d:bc:d1:01:06: 8c:fa:05:13:76:eb:9f:1d:0c:65:fe:ce:34:74:59:36:84:8d: 38:f6:7d:3e:1c:2b:9a:10:b5:f7:cd:fb:37:e6:d2:62:1c:6d: 60:75:8a:36:40:73:33:b7:fe:7a:bf:f2:b1:7c:6d:15:50:3b: 4d:f9:e3:c7:4a:27:4a:cf:52:2a:da:8f:b4:33:d7:ab:7f:e2: 96:fe:9f:20:25:e7:b0:db:fa:df:36:67:9b:b9:f4:0e:dd:cd: e2:f5:61:fc:32:12:99:e7:a5:bb:be:4c:3e:c5:fe:86:2f:b5: ce:3d:0d:71:d3:c5:9a:ab:83:a0:35:1e:17:8a:6c:17:04:7d: 6a:96:db:e4:bc:56:24:97:79:f9:63:76:ae:5f:50:31:c7:d9: 3c:c2:6d:69:9c:4b:5c:03:61:8e:17:b3:cc:d0:48:1e:52:4e: cf:0d:79:52:3e:81:b1:8f:54:d4:a0:f2:2a:41:ec:29:24:28: 6e:7c:6e:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOhEfc42gNKND98zxa0E3LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2NzM1MGQ1OTc1YTI3MmE4OGJmYjg4MTBhZjQ1OTgxY2Q1 NTkzNWEwHhcNMjUxMjI0MDQwMDUwWhcNMjUxMjI1MDQwMDUwWjAzMTEwLwYDVQQD EygwNDNlYTc5NjI3ZGNjMWQ1NTNkZWUyYzMzMTI1NDllYzkyMTc0ZTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1TahVHkfwwvu8pAspJ3EmIrurUn4 HdMu3DUhK+WpdZkIYAUoAMj6LR5qlHSLjF+C/uOsjO0lzEM4zg56Jz20usKUtf0o LLubKf7NfbCBQgelBvZVTnhYE2C/VRHrgr7ZzdR0u5+dGqALLBmI6ZpMjybZ3Hc1 MAcyUoed/tCrx8qR3Xu5GvFltryyHcmdbVdRwS5wICdFPrbWAdWxx4G8CnQXAYbA tizsaQDOYXye/igJwUy0mc4cgUX4V+ygAbEKBIjNm1jFt/FrM4DKCk7UTgF+fVwk mdgaZYqLnbnEm8lnjeC3/q8KG0CJRRD7/gr17Kd34DVrh633zvTcjttqfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAQ+p5Yn3MHVU97iwzElSeySF054MB8GA1UdIwQY MBaAFEZzUNWXWicqiL+4gQr0WYHNVZNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUm5OUTFaZGFKeXFJdjdpQkN2UlpnYzFWazFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9jNTdiNzUtMTBhNy00NzIzLTk0ZWEt ZTg1NzQ3N2E3MDA4LzEvUm5OUTFaZGFKeXFJdjdpQkN2UlpnYzFWazFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9jNTdiNzUtMTBhNy00NzIzLTk0ZWEtZTg1NzQ3N2E3MDA4 LzEvUm5OUTFaZGFKeXFJdjdpQkN2UlpnYzFWazFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa0ifMTbO +Z0XQLP7x6yZtp86GXEScNuYMyUAL8msX31CRxJq0vyn/8d1tAwKxXMl6F8u9HkZ XNcEZUdpJb2YOr/1JZ280QEGjPoFE3brnx0MZf7ONHRZNoSNOPZ9PhwrmhC19837 N+bSYhxtYHWKNkBzM7f+er/ysXxtFVA7Tfnjx0onSs9SKtqPtDPXq3/ilv6fICXn sNv63zZnm7n0Dt3N4vVh/DISmeelu75MPsX+hi+1zj0NcdPFmquDoDUeF4psFwR9 apbb5LxWJJd5+WN2rl9QMcfZPMJtaZxLXANhjhezzNBIHlJOzw15Uj6BsY9U1KDy KkHsKSQobnxuIg== -----END CERTIFICATE-----Generated at Wed Dec 24 12:55:07 2025 by rpki-client