This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json) Hash identifier: s7rzyK6yNQuCP2NrON4/b5ZlIkAPfNSlcEn5VJzjsAk= Subject key identifier: 26:01:71:D0:6D:F7:E1:83:54:EC:09:08:C0:38:8F:D5:A0:A0:21:10 Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af Certificate serial: 019B4994D6A60220A911EBDBF434CDEBA6DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft Manifest number: 07F3 Signing time: Tue 23 Dec 2025 05:00:49 +0000 Manifest this update: Tue 23 Dec 2025 05:00:49 +0000 Manifest next update: Wed 24 Dec 2025 05:00:49 +0000 Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: qxGe7KoxQU7trl5xkZw5VMGJ3VYhFeS0dtUupAdPOpo=) 2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 05:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:94:d6:a6:02:20:a9:11:eb:db:f4:34:cd:eb:a6:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af Validity Not Before: Dec 23 05:00:49 2025 GMT Not After : Dec 24 05:00:49 2025 GMT Subject: CN=260171d06df7e18354ec0908c0388fd5a0a02110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d1:61:e0:f0:d2:c4:85:27:d8:75:4d:15:6c: 86:d5:18:df:3d:8e:39:06:b0:2f:86:cb:49:56:cc: 0a:3b:4c:14:33:6a:86:54:2a:04:c8:0c:a3:22:82: 79:25:af:40:92:0a:7d:e6:c7:8a:0a:fc:fa:ad:86: 99:b7:39:3a:a2:b5:5b:2b:b8:26:cc:f7:52:ee:77: c7:15:25:2a:15:dc:65:ee:3b:a2:03:e6:0a:54:07: 94:83:f8:39:23:be:eb:90:68:4c:a9:df:41:42:e7: 16:f6:c6:28:8d:bb:f6:68:b5:29:49:61:4a:55:0f: 62:13:37:85:bb:64:8b:8c:2b:f6:ae:65:79:dd:1b: da:47:4e:8e:78:2b:4e:34:9a:99:6c:da:56:95:b1: bb:63:43:10:ea:f3:22:8d:de:9f:c4:c2:80:1f:d7: df:85:4b:03:8a:2f:c0:17:81:12:61:7c:36:5d:4a: b1:97:84:d2:7a:ce:cf:9b:e5:8e:30:3a:56:43:84: 67:43:13:d4:0c:fb:c7:df:f3:3c:3d:58:b7:3e:5d: c3:a3:d4:96:c6:cd:b8:e7:8d:19:8d:e6:e4:28:bf: 13:73:bb:41:1a:e6:c0:f5:bd:14:02:c5:ef:e5:fa: 03:46:a9:d7:60:41:d1:7f:9c:a7:40:a2:0c:e2:34: 9f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:01:71:D0:6D:F7:E1:83:54:EC:09:08:C0:38:8F:D5:A0:A0:21:10 X509v3 Authority Key Identifier: keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:c8:08:74:01:6c:8f:a9:03:11:c9:a8:8d:2b:e3:c4:70:f1: a8:e8:d0:a2:aa:ef:80:ec:c1:19:59:1c:a3:78:16:49:2e:3d: a7:d8:45:de:d0:d9:30:ae:58:62:da:4b:eb:8d:29:4d:cc:3b: 74:11:b8:5f:9d:a0:43:50:3a:b0:5a:7b:53:2d:3c:f2:62:31: 34:70:0c:79:6a:aa:8e:b4:38:16:cd:25:43:27:55:13:68:a1: 9a:57:36:db:d9:23:ed:59:90:8c:d4:8e:f3:2d:80:50:05:28: a8:1b:1f:14:75:a0:31:11:db:5e:67:2b:34:f7:1e:72:b1:2d: 66:a9:df:49:f8:fc:13:e1:f9:29:15:53:66:16:2e:57:6b:27: 77:e8:4d:02:df:94:34:b6:29:f2:f0:75:92:4f:07:66:c4:d6: 58:d8:ab:4a:91:c8:eb:75:5f:4d:24:c4:b2:ac:95:7b:b6:2c: 98:46:f9:90:f3:8b:63:35:93:ec:5e:8f:81:d9:c7:e8:0a:f3: 0b:74:21:4a:31:f8:9e:0e:2c:ba:28:88:e3:72:d4:27:7a:bd: 16:91:f7:2a:84:a9:7e:b8:3a:30:a2:81:a8:9a:a1:70:49:bf: a2:6a:24:46:f4:04:fe:dc:0b:65:5d:00:67:4b:83:06:f1:82: f5:8b:9d:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJlNamAiCpEevb9DTN66bdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNmY1MWNhMjM5ODIxMDNmZmUzNGY5ODkwZDBiNzRlOGZh NzgxYWYwHhcNMjUxMjIzMDUwMDQ5WhcNMjUxMjI0MDUwMDQ5WjAzMTEwLwYDVQQD EygyNjAxNzFkMDZkZjdlMTgzNTRlYzA5MDhjMDM4OGZkNWEwYTAyMTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdFh4PDSxIUn2HVNFWyG1RjfPY45 BrAvhstJVswKO0wUM2qGVCoEyAyjIoJ5Ja9Akgp95seKCvz6rYaZtzk6orVbK7gm zPdS7nfHFSUqFdxl7juiA+YKVAeUg/g5I77rkGhMqd9BQucW9sYojbv2aLUpSWFK VQ9iEzeFu2SLjCv2rmV53RvaR06OeCtONJqZbNpWlbG7Y0MQ6vMijd6fxMKAH9ff hUsDii/AF4ESYXw2XUqxl4TSes7Pm+WOMDpWQ4RnQxPUDPvH3/M8PVi3Pl3Do9SW xs24540ZjebkKL8Tc7tBGubA9b0UAsXv5foDRqnXYEHRf5ynQKIM4jSfiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCYBcdBt9+GDVOwJCMA4j9WgoCEQMB8GA1UdIwQY MBaAFDJvUcojmCED/+NPmJDQt06Pp4GvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYt OTY2ZmE5NmJlZmYyLzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYtOTY2ZmE5NmJlZmYy LzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADcgIdAFs j6kDEcmojSvjxHDxqOjQoqrvgOzBGVkco3gWSS49p9hF3tDZMK5YYtpL640pTcw7 dBG4X52gQ1A6sFp7Uy088mIxNHAMeWqqjrQ4Fs0lQydVE2ihmlc229kj7VmQjNSO 8y2AUAUoqBsfFHWgMRHbXmcrNPcecrEtZqnfSfj8E+H5KRVTZhYuV2snd+hNAt+U NLYp8vB1kk8HZsTWWNirSpHI63VfTSTEsqyVe7YsmEb5kPOLYzWT7F6PgdnH6Arz C3QhSjH4ng4suiiI43LUJ3q9FpH3KoSpfrg6MKKBqJqhcEm/omokRvQE/twLZV0A Z0uDBvGC9YudHA== -----END CERTIFICATE-----Generated at Tue Dec 23 10:49:16 2025 by rpki-client