This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft File: d9LZKEIxBOXDSA4htKPtFJiyon4.mft (raw, json) Hash identifier: 18Nk4na2qLvmuKqYBMlkZanTh19K66TQGW4SUutkncg= Subject key identifier: F6:48:A9:47:F7:7B:16:12:4A:A5:2A:68:6E:FC:3E:CC:69:41:62:0C Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e Certificate serial: 019B4A03535B18FB5624E611008D49170B74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft Manifest number: 0D07 Signing time: Tue 23 Dec 2025 07:01:30 +0000 Manifest this update: Tue 23 Dec 2025 07:01:30 +0000 Manifest next update: Wed 24 Dec 2025 07:01:30 +0000 Files and hashes: 1: HX3f5FZnDXBVPEnE5bxp-46XcDI.roa (hash: Cn4L/fOgVlSahDb0v8tdmodjivbISS4FJEJArlg0b+Y=) 2: d9LZKEIxBOXDSA4htKPtFJiyon4.crl (hash: ykH0Z4KKnLbisJBFW35pV7hjENJ7EMnGz7KUrMmff+o=) 3: jKFJgU1IkNXTMlJ4fb3SLPhpIEs.roa (hash: gVNSWZlrE4CqYnhrjWkiPYyY6GBkTGDHd/hL4ezDiUs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 07:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:03:53:5b:18:fb:56:24:e6:11:00:8d:49:17:0b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e Validity Not Before: Dec 23 07:01:30 2025 GMT Not After : Dec 24 07:01:30 2025 GMT Subject: CN=f648a947f77b16124aa52a686efc3ecc6941620c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:85:df:85:b9:de:54:99:f1:47:3d:c0:e7:90: c6:f5:2f:cf:b4:97:8a:f8:92:aa:3d:f7:33:f5:32: d1:10:f3:c8:5f:8f:e6:6a:b3:12:ec:f6:14:22:33: fb:3c:b2:fd:26:06:77:b7:c9:ef:1b:b1:1e:7f:40: 97:8e:97:42:53:ff:6a:e1:4f:0e:96:b8:01:b6:8f: 5c:3a:4f:86:3c:bb:89:61:5e:a6:63:bb:07:6c:d6: 7a:0a:09:27:b5:0e:3f:82:87:32:5e:9f:7d:9f:ae: f1:74:7b:6c:30:01:42:5c:b3:5b:aa:84:81:f3:62: 33:d5:51:61:68:e4:21:d8:f4:39:3b:7c:bd:d4:fc: b1:f4:42:11:a8:26:ff:11:07:81:aa:ba:64:42:32: 21:ea:94:67:eb:b5:b7:8a:fd:a3:91:cf:33:9f:6a: ae:62:3b:0c:dd:9f:05:77:e1:5a:51:34:70:eb:69: 98:cb:35:2e:f4:51:39:e3:0a:cb:d0:0d:08:7d:97: 49:7c:e6:62:27:11:75:03:49:cf:49:41:46:1a:4a: e6:9a:a2:b6:96:68:09:d3:c5:bc:d6:39:d0:2f:b1: 3b:9e:1a:7a:b8:05:2e:e5:2f:4f:98:3b:54:f2:05: d6:f1:63:bb:8c:a8:81:38:42:f1:73:a0:e2:ab:fa: 2c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:48:A9:47:F7:7B:16:12:4A:A5:2A:68:6E:FC:3E:CC:69:41:62:0C X509v3 Authority Key Identifier: keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:db:ef:ee:b4:83:84:fb:9a:1c:dd:bb:2e:13:04:40:e9:5a: b2:7b:67:33:73:9e:23:85:c5:2c:86:9c:34:df:d8:82:63:d0: 1f:0e:6c:dc:cd:52:96:21:a7:c5:da:bc:af:0b:26:f6:89:f1: 9d:9c:bb:6f:80:fc:cd:e3:e4:ae:58:f2:7b:ee:16:0b:3c:83: 6b:0e:cf:10:45:3f:ac:24:d4:0d:78:0d:d3:42:f7:af:ee:0d: 69:37:33:f1:ec:7a:5e:4a:e2:e0:20:be:37:2e:49:16:fd:b0: a6:6c:d3:e8:7b:0c:77:b8:16:cb:a9:28:b4:d8:37:ba:03:44: ce:5c:16:d6:26:72:0a:e1:b8:60:82:2e:c6:05:f0:09:63:a9: c2:03:57:9c:10:bb:b9:32:a1:0c:a0:1a:e5:9a:f6:84:5f:ac: ff:ff:0a:39:4a:2b:4f:5d:f8:c5:d0:9c:56:20:2c:b9:b9:73: 91:a2:65:38:1e:de:9e:5b:ab:94:26:28:11:d2:5e:0c:3c:01: 7f:8f:69:a4:0a:3a:3f:39:31:85:08:c5:8e:91:40:2a:9c:49: bb:fb:be:f2:64:f0:d3:f1:6b:c8:42:0c:10:36:2a:fd:fb:77: f6:10:7e:b2:29:65:6a:56:0f:b0:c9:98:de:3d:42:bf:bb:1f: 0b:21:cd:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKA1NbGPtWJOYRAI1JFwt0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3ZDJkOTI4NDIzMTA0ZTVjMzQ4MGUyMWI0YTNlZDE0OThi MmEyN2UwHhcNMjUxMjIzMDcwMTMwWhcNMjUxMjI0MDcwMTMwWjAzMTEwLwYDVQQD EyhmNjQ4YTk0N2Y3N2IxNjEyNGFhNTJhNjg2ZWZjM2VjYzY5NDE2MjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoXfhbneVJnxRz3A55DG9S/PtJeK +JKqPfcz9TLREPPIX4/marMS7PYUIjP7PLL9JgZ3t8nvG7Eef0CXjpdCU/9q4U8O lrgBto9cOk+GPLuJYV6mY7sHbNZ6CgkntQ4/gocyXp99n67xdHtsMAFCXLNbqoSB 82Iz1VFhaOQh2PQ5O3y91Pyx9EIRqCb/EQeBqrpkQjIh6pRn67W3iv2jkc8zn2qu YjsM3Z8Fd+FaUTRw62mYyzUu9FE54wrL0A0IfZdJfOZiJxF1A0nPSUFGGkrmmqK2 lmgJ08W81jnQL7E7nhp6uAUu5S9PmDtU8gXW8WO7jKiBOELxc6Diq/os1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPZIqUf3exYSSqUqaG78PsxpQWIMMB8GA1UdIwQY MBaAFHfS2ShCMQTlw0gOIbSj7RSYsqJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgt NDg4NzkyMzg4ZTViLzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgtNDg4NzkyMzg4ZTVi LzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO9vv7rSD hPuaHN27LhMEQOlasntnM3OeI4XFLIacNN/YgmPQHw5s3M1SliGnxdq8rwsm9onx nZy7b4D8zePkrljye+4WCzyDaw7PEEU/rCTUDXgN00L3r+4NaTcz8ex6Xkri4CC+ Ny5JFv2wpmzT6HsMd7gWy6kotNg3ugNEzlwW1iZyCuG4YIIuxgXwCWOpwgNXnBC7 uTKhDKAa5Zr2hF+s//8KOUorT134xdCcViAsublzkaJlOB7enlurlCYoEdJeDDwB f49ppAo6PzkxhQjFjpFAKpxJu/u+8mTw0/FryEIMEDYq/ft39hB+sillalYPsMmY 3j1Cv7sfCyHNqw== -----END CERTIFICATE-----Generated at Tue Dec 23 15:52:11 2025 by rpki-client