This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft File: RhU-isRttc5XS6fjnoforwlsGok.mft (raw, json) Hash identifier: kylS76L9wNGVXOk0OBdRDhvS9tvHKV8o/EiB5fWq1Ic= Subject key identifier: E6:AE:19:54:42:C4:C3:E3:61:C8:F8:FA:3E:57:02:A3:7C:7D:AC:6B Authority key identifier: 46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89 Certificate issuer: /CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89 Certificate serial: 019B6D33667DAEBD9B00D86AC362670EC775 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft Manifest number: 0679 Signing time: Tue 30 Dec 2025 03:00:43 +0000 Manifest this update: Tue 30 Dec 2025 03:00:43 +0000 Manifest next update: Wed 31 Dec 2025 03:00:43 +0000 Files and hashes: 1: RhU-isRttc5XS6fjnoforwlsGok.crl (hash: lDaeUKf6mjevzbsWmMpSFzcArqc1V3uVymUcHgr0tvY=) 2: yOFjl_Pxx0Rc441XIFCRbQAh0C8.roa (hash: xKAfXgoPQJ/4slkyXjKOtsYsgtyUmgpiHM6n61mT42s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.crl rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 03:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6d:33:66:7d:ae:bd:9b:00:d8:6a:c3:62:67:0e:c7:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89 Validity Not Before: Dec 30 03:00:43 2025 GMT Not After : Dec 31 03:00:43 2025 GMT Subject: CN=e6ae195442c4c3e361c8f8fa3e5702a37c7dac6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a3:5a:de:0d:82:19:0e:8e:bd:59:db:04:d5: 35:c0:bd:9a:6c:8b:8c:5f:b2:d9:86:a6:7b:23:46: 44:7d:a0:33:f2:70:53:5b:d6:94:4a:12:2d:5b:75: 08:b7:e5:c7:76:b0:56:a7:a2:bd:dd:6e:02:6c:48: 92:4a:ba:44:89:44:dd:bc:3d:d1:d5:f5:44:0e:4b: dd:74:53:cd:40:e0:ad:c4:c9:bb:6d:99:67:4c:8b: e6:38:ff:fe:0c:a6:2c:1b:4c:65:b2:60:e2:3c:26: 0f:68:c2:0e:66:a7:6b:49:78:56:c1:0f:a7:05:16: 6e:78:a5:2e:95:45:e8:0e:c3:b7:ad:2f:48:79:6c: 01:e2:75:52:38:12:30:df:75:1c:a7:b4:9b:a9:6c: 55:13:cf:f5:c7:04:4f:e5:e1:05:33:01:83:5a:9e: cb:13:34:9e:5b:cd:d5:87:e1:42:30:fb:09:e3:dc: 6f:50:e7:55:ad:23:65:60:0e:38:ed:e4:34:a4:c1: 41:e7:cf:cd:5f:a1:1f:fc:9e:3f:49:a6:16:d6:50: d6:6a:15:6a:b2:6b:5d:71:4c:f9:98:0d:bb:0e:12: 45:96:4f:9f:24:b4:68:0a:da:77:26:ee:4a:81:8f: 52:d9:fe:c1:0b:34:29:92:7e:f0:d7:cf:94:43:22: 77:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AE:19:54:42:C4:C3:E3:61:C8:F8:FA:3E:57:02:A3:7C:7D:AC:6B X509v3 Authority Key Identifier: keyid:46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:b2:c3:ba:31:ae:81:b8:35:e0:9a:c3:83:48:6b:bf:c8:44: ef:93:85:3c:d2:bf:44:ba:d5:70:c1:38:51:a9:60:e7:1a:39: d8:1d:5a:2a:ba:88:16:f8:54:19:6c:04:98:43:48:c0:cd:cb: 9a:db:1f:73:6f:5f:a8:70:56:57:e7:f8:bd:a4:4d:48:e7:cb: 96:18:a1:63:e5:4c:ce:91:79:6c:5b:e5:61:f9:f9:31:ec:0d: 51:55:89:a0:e5:57:89:38:88:ec:44:e1:fe:a7:34:f4:83:82: 31:84:b5:23:c7:a5:00:e3:c9:a4:75:c7:f7:6d:00:2e:08:1c: 6c:99:40:9b:a7:75:78:50:6f:ba:0c:9c:ec:05:fa:aa:45:03: c2:48:9c:f0:5f:1b:90:80:78:51:4f:1d:41:1d:56:ef:9f:ab: 54:86:1b:ea:cf:55:1e:c6:48:ea:ea:b1:db:06:36:0b:2b:08: 85:97:41:28:d8:92:85:7b:f3:d0:e8:dc:b6:cd:a5:8f:ba:03: db:95:91:8a:11:c1:79:ed:19:92:69:3c:7e:2d:83:44:19:ca: 21:ac:ba:71:3e:99:9c:a4:1e:83:7f:10:f4:05:c6:a4:81:bd: ba:51:02:a1:83:4a:3b:d1:dc:38:1b:a2:9e:15:3f:cc:25:64: 62:2e:ab:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZttM2Z9rr2bANhqw2JnDsd1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2MTUzZThhYzQ2ZGI1Y2U1NzRiYTdlMzllODdlOGFmMDk2 YzFhODkwHhcNMjUxMjMwMDMwMDQzWhcNMjUxMjMxMDMwMDQzWjAzMTEwLwYDVQQD EyhlNmFlMTk1NDQyYzRjM2UzNjFjOGY4ZmEzZTU3MDJhMzdjN2RhYzZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3qNa3g2CGQ6OvVnbBNU1wL2abIuM X7LZhqZ7I0ZEfaAz8nBTW9aUShItW3UIt+XHdrBWp6K93W4CbEiSSrpEiUTdvD3R 1fVEDkvddFPNQOCtxMm7bZlnTIvmOP/+DKYsG0xlsmDiPCYPaMIOZqdrSXhWwQ+n BRZueKUulUXoDsO3rS9IeWwB4nVSOBIw33Ucp7SbqWxVE8/1xwRP5eEFMwGDWp7L EzSeW83Vh+FCMPsJ49xvUOdVrSNlYA447eQ0pMFB58/NX6Ef/J4/SaYW1lDWahVq smtdcUz5mA27DhJFlk+fJLRoCtp3Ju5KgY9S2f7BCzQpkn7w18+UQyJ3JQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOauGVRCxMPjYcj4+j5XAqN8faxrMB8GA1UdIwQY MBaAFEYVPorEbbXOV0un456H6K8JbBqJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmhVLWlzUnR0YzVYUzZmam5vZm9yd2xzR29rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8wZDExNzItNGJiMi00OTJjLWI1MTEt NzhkYzdiMmMzZTg4LzEvUmhVLWlzUnR0YzVYUzZmam5vZm9yd2xzR29rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8wZDExNzItNGJiMi00OTJjLWI1MTEtNzhkYzdiMmMzZTg4 LzEvUmhVLWlzUnR0YzVYUzZmam5vZm9yd2xzR29rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtrLDujGu gbg14JrDg0hrv8hE75OFPNK/RLrVcME4Ualg5xo52B1aKrqIFvhUGWwEmENIwM3L mtsfc29fqHBWV+f4vaRNSOfLlhihY+VMzpF5bFvlYfn5MewNUVWJoOVXiTiI7ETh /qc09IOCMYS1I8elAOPJpHXH920ALggcbJlAm6d1eFBvugyc7AX6qkUDwkic8F8b kIB4UU8dQR1W75+rVIYb6s9VHsZI6uqx2wY2CysIhZdBKNiShXvz0Ojcts2lj7oD 25WRihHBee0Zkmk8fi2DRBnKIay6cT6ZnKQeg38Q9AXGpIG9ulECoYNKO9HcOBui nhU/zCVkYi6rcQ== -----END CERTIFICATE-----Generated at Tue Dec 30 12:29:27 2025 by rpki-client