This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft File: cdiwl1czMSbftYNIDqji09NGwI0.mft (raw, json) Hash identifier: RyDErs5zZu7YEMydn5zvN7Fm6vyjXFlAUOeDETd6V5c= Subject key identifier: 48:CC:05:51:4B:63:34:B6:E6:D6:AC:00:56:BA:05:C1:A3:32:5C:2E Authority key identifier: 71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D Certificate issuer: /CN=71d8b09757333126dfb583480ea8e2d3d346c08d Certificate serial: 019B50A94DC276053CAEE91E3FC5EF6AE79A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft Manifest number: AA Signing time: Wed 24 Dec 2025 14:00:31 +0000 Manifest this update: Wed 24 Dec 2025 14:00:31 +0000 Manifest next update: Thu 25 Dec 2025 14:00:31 +0000 Files and hashes: 1: 2EqRaIm0ahFzSQziRWxNhuiDeiY.roa (hash: 5jZKlaOwWZIRRP1zoyFgUhrGBnHTFy4tV4SJl+5yoHI=) 2: cdiwl1czMSbftYNIDqji09NGwI0.crl (hash: eSJ6EIxJHFcivBHBwrSDSmSRt6dMpLAOK9xbnSrq4lc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:50:a9:4d:c2:76:05:3c:ae:e9:1e:3f:c5:ef:6a:e7:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71d8b09757333126dfb583480ea8e2d3d346c08d Validity Not Before: Dec 24 14:00:31 2025 GMT Not After : Dec 25 14:00:31 2025 GMT Subject: CN=48cc05514b6334b6e6d6ac0056ba05c1a3325c2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4f:df:f2:7f:9b:f6:18:96:7a:af:50:29:a0: f5:6e:b3:ed:6d:60:dd:76:07:93:86:f9:2b:94:61: 8d:02:a4:34:ad:e8:bb:92:ef:87:2f:35:b9:ae:73: 8b:10:14:1b:a4:36:e0:cd:b7:62:1b:b4:95:56:a6: 4c:50:0a:59:3e:32:2f:71:28:f9:00:ac:c2:62:12: da:c4:ce:e4:c2:0d:58:d3:7d:62:4d:da:c7:04:f7: 42:ce:41:cf:d2:81:3d:79:0a:dc:ad:88:bb:d1:45: 96:f1:40:c2:e4:87:48:6d:2e:b7:78:11:19:77:89: 94:9c:c1:23:ea:37:46:cd:61:dc:c0:c9:b9:3d:b7: 9a:90:90:0e:06:97:db:6c:d7:9a:44:45:58:3a:5d: 55:2a:65:95:b5:df:72:6d:70:18:e9:c4:b1:cf:8e: 2d:7a:b1:a5:ef:21:4d:d3:72:cd:f4:51:47:98:0a: 30:de:ae:50:0a:24:37:dc:0f:40:82:5f:f9:bd:f4: bb:18:8f:ed:d8:02:2d:a1:0e:b5:aa:c1:7d:65:56: 50:a7:d0:0c:08:5d:cb:af:39:64:49:ae:22:f4:df: bf:21:1a:3a:c7:61:d6:7c:92:ce:1f:f4:2f:7d:73: 27:eb:f8:4c:61:f1:c5:0e:fc:28:d1:23:70:dc:c3: 82:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CC:05:51:4B:63:34:B6:E6:D6:AC:00:56:BA:05:C1:A3:32:5C:2E X509v3 Authority Key Identifier: keyid:71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:a4:d9:81:04:6a:e2:3f:83:d6:b6:e0:e7:27:96:31:01:66: 3d:ec:36:cf:06:12:f3:64:a7:3b:ac:ee:59:86:2a:fa:d3:b4: 7a:9a:34:be:59:2b:96:b9:b6:d2:65:05:a6:c1:59:88:ce:a8: 8e:dd:f4:6e:66:15:b0:bb:ec:37:2c:c6:01:ce:c4:76:87:54: 83:f1:f0:40:8d:e0:95:b8:82:83:8b:9b:75:46:92:e1:7a:61: d5:32:35:3e:7d:c5:77:a7:e0:75:32:44:33:46:16:73:1a:0b: 48:69:9c:3b:eb:93:4e:f7:b2:b7:2c:ad:54:1a:85:e3:ca:bc: 6e:ab:c8:11:2f:6f:72:0f:f7:7a:51:ba:e1:ff:a3:3b:9a:89: 1d:02:70:07:61:a2:f7:d0:c3:e7:58:67:df:e0:0b:50:de:ae: a7:4e:a8:3e:2b:bf:d0:d1:7a:74:30:86:5b:1b:b1:9b:8a:fe: e5:ba:50:9b:79:15:5f:84:14:85:43:54:61:f7:35:45:9f:9f: 95:29:65:ee:71:97:b5:78:76:60:42:43:36:67:af:74:55:00: 72:90:67:43:76:aa:1a:6f:e7:05:ba:61:2a:17:29:0e:30:aa: 8d:d3:61:76:31:52:0f:87:d5:0d:59:61:6f:e1:cd:85:d1:d2: 9e:f6:f2:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtQqU3CdgU8rukeP8XvaueaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZDhiMDk3NTczMzMxMjZkZmI1ODM0ODBlYThlMmQzZDM0 NmMwOGQwHhcNMjUxMjI0MTQwMDMxWhcNMjUxMjI1MTQwMDMxWjAzMTEwLwYDVQQD Eyg0OGNjMDU1MTRiNjMzNGI2ZTZkNmFjMDA1NmJhMDVjMWEzMzI1YzJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0/f8n+b9hiWeq9QKaD1brPtbWDd dgeThvkrlGGNAqQ0rei7ku+HLzW5rnOLEBQbpDbgzbdiG7SVVqZMUApZPjIvcSj5 AKzCYhLaxM7kwg1Y031iTdrHBPdCzkHP0oE9eQrcrYi70UWW8UDC5IdIbS63eBEZ d4mUnMEj6jdGzWHcwMm5PbeakJAOBpfbbNeaREVYOl1VKmWVtd9ybXAY6cSxz44t erGl7yFN03LN9FFHmAow3q5QCiQ33A9Agl/5vfS7GI/t2AItoQ61qsF9ZVZQp9AM CF3LrzlkSa4i9N+/IRo6x2HWfJLOH/QvfXMn6/hMYfHFDvwo0SNw3MOCmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEjMBVFLYzS25tasAFa6BcGjMlwuMB8GA1UdIwQY MBaAFHHYsJdXMzEm37WDSA6o4tPTRsCNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy82Yjk2MjYtZmIxYS00NDVlLWI5NWEt YjAwMmYzNWJlNzM5LzEvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy82Yjk2MjYtZmIxYS00NDVlLWI5NWEtYjAwMmYzNWJlNzM5 LzEvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl6TZgQRq 4j+D1rbg5yeWMQFmPew2zwYS82SnO6zuWYYq+tO0epo0vlkrlrm20mUFpsFZiM6o jt30bmYVsLvsNyzGAc7EdodUg/HwQI3glbiCg4ubdUaS4Xph1TI1Pn3Fd6fgdTJE M0YWcxoLSGmcO+uTTveytyytVBqF48q8bqvIES9vcg/3elG64f+jO5qJHQJwB2Gi 99DD51hn3+ALUN6up06oPiu/0NF6dDCGWxuxm4r+5bpQm3kVX4QUhUNUYfc1RZ+f lSll7nGXtXh2YEJDNmevdFUAcpBnQ3aqGm/nBbphKhcpDjCqjdNhdjFSD4fVDVlh b+HNhdHSnvbyoA== -----END CERTIFICATE-----Generated at Wed Dec 24 16:59:26 2025 by rpki-client