This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft File: syHLgokI9DB0nuOl8qYt5fgi99E.mft (raw, json) Hash identifier: hzxiYbwBr6e1WAYf/Yq+jXFWtCE2HYR74rjIwT6yCvc= Subject key identifier: D0:9C:62:D8:B5:7D:AA:EB:E5:CF:58:FB:F6:9E:D7:58:17:60:71:2C Authority key identifier: B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1 Certificate issuer: /CN=b321cb828908f430749ee3a5f2a62de5f822f7d1 Certificate serial: 019B3EA3AC2EA9F8C4F5B3D6CF4BFE845F2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft Manifest number: 12C9 Signing time: Sun 21 Dec 2025 02:01:12 +0000 Manifest this update: Sun 21 Dec 2025 02:01:12 +0000 Manifest next update: Mon 22 Dec 2025 02:01:12 +0000 Files and hashes: 1: 7Vf5R0kVboHfQe1HmwZydUmPy3w.roa (hash: CSR8lVlOICslmIH5THMhkf2ZR8pm8M7MZ0mWBD2ElFE=) 2: syHLgokI9DB0nuOl8qYt5fgi99E.crl (hash: Xy5x/wuQBfftvYaY21LczHLGpLFkcziXG9E3GaI7kRs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:ac:2e:a9:f8:c4:f5:b3:d6:cf:4b:fe:84:5f:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b321cb828908f430749ee3a5f2a62de5f822f7d1 Validity Not Before: Dec 21 02:01:12 2025 GMT Not After : Dec 22 02:01:12 2025 GMT Subject: CN=d09c62d8b57daaebe5cf58fbf69ed7581760712c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:21:64:22:d1:92:5e:63:c2:a0:e4:a4:87:f0: f3:4b:38:85:66:65:31:57:39:e5:70:1a:a3:0f:52: 62:14:9f:1e:cb:22:69:65:bc:d3:5a:c5:dc:0d:fe: 95:f6:01:3f:c2:f4:0b:89:bb:76:86:8d:3d:92:86: 4f:16:15:7a:cd:e5:a6:28:1b:49:35:be:19:c5:e8: 04:46:9b:12:ec:f6:00:19:46:57:2a:4b:76:6f:f1: 02:5e:d1:5c:04:a9:1f:91:c6:36:b6:62:db:86:11: 1b:80:42:56:15:93:5b:2b:63:55:c6:82:d1:d2:3e: d0:37:c6:43:a4:96:c4:3c:66:19:8b:dc:2c:3d:b8: d6:0a:10:f8:b7:0a:ac:30:57:2a:3f:10:5e:90:76: f8:57:04:33:87:af:88:c4:47:36:01:2f:00:97:a8: 04:b3:4d:ad:d5:24:e8:a2:0a:a6:64:b9:53:df:f2: 30:f4:18:3f:ec:c2:1c:a7:63:c5:32:3d:29:90:cb: 80:8c:dd:a7:b9:d2:86:1a:ed:f6:20:3a:fb:fd:72: 62:45:3b:83:c9:98:a6:09:77:e2:e6:37:fc:5b:f4: ab:ce:a8:03:20:dd:16:4b:0d:69:15:9a:13:85:98: 89:96:4e:66:44:92:8f:d6:46:d1:bc:57:e2:38:39: 9e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:9C:62:D8:B5:7D:AA:EB:E5:CF:58:FB:F6:9E:D7:58:17:60:71:2C X509v3 Authority Key Identifier: keyid:B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:79:42:c1:dd:26:fd:b1:07:11:5b:81:b7:1a:56:b9:1f:66: c8:d2:fc:ec:d1:ea:77:52:a1:de:5a:8c:86:c7:87:86:60:02: 5b:91:de:24:90:83:b0:a6:04:c3:fc:8f:fc:0b:69:e8:4e:96: 69:06:0e:51:79:e3:7e:a9:46:c6:7b:03:7d:bb:8f:34:f7:e9: 11:b5:c8:f7:82:53:54:17:de:cf:69:79:d9:45:7c:a7:3f:99: 25:86:f4:79:1e:18:0b:86:14:cb:8f:02:3c:65:da:94:90:2e: db:6c:df:df:1f:3e:4e:73:43:f8:3d:1e:57:c0:00:74:86:73: 9d:6b:53:07:c6:77:0c:50:4d:6f:d8:5b:04:7a:1c:b5:6f:e1: 06:67:9f:c2:60:be:cf:f3:f5:6b:3f:0d:4a:db:00:02:7c:14: 92:2c:91:45:3c:05:30:c2:79:c5:46:dd:fe:c3:e9:ee:89:22: 46:07:8a:ca:34:6e:a8:9b:a2:85:a3:90:72:e6:87:81:d9:0b: 53:13:5b:02:10:7b:9f:66:f3:c2:21:b0:36:80:ab:90:bf:ee: 83:99:03:fe:c9:76:d9:64:c7:4d:e2:e9:b4:92:e0:e1:82:9b: 18:e6:7a:67:42:86:b5:d5:4b:fc:c6:68:99:ca:05:a5:32:a8: 97:35:19:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o6wuqfjE9bPWz0v+hF8uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMjFjYjgyODkwOGY0MzA3NDllZTNhNWYyYTYyZGU1Zjgy MmY3ZDEwHhcNMjUxMjIxMDIwMTEyWhcNMjUxMjIyMDIwMTEyWjAzMTEwLwYDVQQD EyhkMDljNjJkOGI1N2RhYWViZTVjZjU4ZmJmNjllZDc1ODE3NjA3MTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxiFkItGSXmPCoOSkh/DzSziFZmUx VznlcBqjD1JiFJ8eyyJpZbzTWsXcDf6V9gE/wvQLibt2ho09koZPFhV6zeWmKBtJ Nb4ZxegERpsS7PYAGUZXKkt2b/ECXtFcBKkfkcY2tmLbhhEbgEJWFZNbK2NVxoLR 0j7QN8ZDpJbEPGYZi9wsPbjWChD4twqsMFcqPxBekHb4VwQzh6+IxEc2AS8Al6gE s02t1SToogqmZLlT3/Iw9Bg/7MIcp2PFMj0pkMuAjN2nudKGGu32IDr7/XJiRTuD yZimCXfi5jf8W/SrzqgDIN0WSw1pFZoThZiJlk5mRJKP1kbRvFfiODmeoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNCcYti1farr5c9Y+/ae11gXYHEsMB8GA1UdIwQY MBaAFLMhy4KJCPQwdJ7jpfKmLeX4IvfRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3lITGdva0k5REIwbnVPbDhxWXQ1ZmdpOTlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jY2FhMWEtOWRhYS00NGI4LTllMjYt ODdmMzQxODg4NTYwLzEvc3lITGdva0k5REIwbnVPbDhxWXQ1ZmdpOTlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9jY2FhMWEtOWRhYS00NGI4LTllMjYtODdmMzQxODg4NTYw LzEvc3lITGdva0k5REIwbnVPbDhxWXQ1ZmdpOTlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARXlCwd0m /bEHEVuBtxpWuR9myNL87NHqd1Kh3lqMhseHhmACW5HeJJCDsKYEw/yP/Atp6E6W aQYOUXnjfqlGxnsDfbuPNPfpEbXI94JTVBfez2l52UV8pz+ZJYb0eR4YC4YUy48C PGXalJAu22zf3x8+TnND+D0eV8AAdIZznWtTB8Z3DFBNb9hbBHoctW/hBmefwmC+ z/P1az8NStsAAnwUkiyRRTwFMMJ5xUbd/sPp7okiRgeKyjRuqJuihaOQcuaHgdkL UxNbAhB7n2bzwiGwNoCrkL/ug5kD/sl22WTHTeLptJLg4YKbGOZ6Z0KGtdVL/MZo mcoFpTKolzUZzA== -----END CERTIFICATE-----Generated at Sun Dec 21 08:58:24 2025 by rpki-client