This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft File: F80TGMkZxu8W0kynhGKgt94UugU.mft (raw, json) Hash identifier: IVCUhhYTAMXQmlZX/tAgqbwtKT0sWUM9/pqf9wDMiw4= Subject key identifier: 69:CA:6D:BD:C9:57:AE:11:DE:EB:0F:35:37:12:BA:54:47:03:2B:F4 Authority key identifier: 17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05 Certificate issuer: /CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05 Certificate serial: 019B3CEC9D248313E26E59D7E10C4521F98A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft Manifest number: 0112 Signing time: Sat 20 Dec 2025 18:01:38 +0000 Manifest this update: Sat 20 Dec 2025 18:01:38 +0000 Manifest next update: Sun 21 Dec 2025 18:01:38 +0000 Files and hashes: 1: F80TGMkZxu8W0kynhGKgt94UugU.crl (hash: +eJw3bifud4uoEGzfsAkfG/o+193IdeSz8xRPrC20fA=) 2: fV1WZCcdLfEsqw2EdlQm5P-L0is.roa (hash: 0XqccHFLFqDbT7tC/mcDP32ySvfNB41cuIO9KikZ3oY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 18:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:ec:9d:24:83:13:e2:6e:59:d7:e1:0c:45:21:f9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05 Validity Not Before: Dec 20 18:01:38 2025 GMT Not After : Dec 21 18:01:38 2025 GMT Subject: CN=69ca6dbdc957ae11deeb0f353712ba5447032bf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:8a:9b:4f:8b:e8:37:9d:49:e4:4f:e3:41:3c: b6:8f:c2:12:92:2f:14:4b:cc:cc:32:9f:28:a9:04: 7a:5c:5e:91:09:ed:9e:1e:aa:f8:e9:19:d8:d4:9d: 43:9f:2e:11:22:65:05:7d:e0:9f:83:23:72:c7:fe: b3:33:45:df:e0:80:57:f9:0c:cb:3e:f9:0f:f7:6b: 3b:7d:38:fb:32:30:b3:c7:d0:ff:3a:31:14:a2:d7: f3:bf:c0:7b:f1:4a:1c:b7:e8:48:28:15:6d:1e:f1: 6b:c6:3c:5c:eb:06:85:a1:1f:90:7f:4f:e3:96:6c: 66:03:2f:1b:81:65:7e:83:1b:60:c5:0b:83:1c:72: a8:50:7a:55:ca:da:b7:dd:c5:70:46:d3:6f:f0:81: 41:6a:2d:4f:ed:f7:fe:6b:1c:52:43:dc:c5:3f:b6: 00:17:9f:e9:88:95:d8:a8:33:90:60:a6:a0:6a:de: 49:a2:2f:2a:47:c0:be:56:dc:6d:70:d8:8e:ff:d0: 1b:e3:f1:f1:87:cb:f9:73:84:b5:c3:a4:a4:0f:cd: 69:3e:7e:a6:f3:99:23:82:ae:6a:26:ab:1f:c3:b6: e1:74:fa:92:df:08:19:0a:80:65:2f:ad:aa:ae:9c: fa:4d:71:35:2d:36:74:55:00:42:e3:f8:dc:82:69: 48:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CA:6D:BD:C9:57:AE:11:DE:EB:0F:35:37:12:BA:54:47:03:2B:F4 X509v3 Authority Key Identifier: keyid:17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:61:31:54:2e:8e:53:eb:ac:89:a9:34:77:3b:5a:05:74:9d: 98:50:44:43:19:86:1d:d3:be:b0:fa:65:3e:84:7f:30:a7:70: 25:b2:a3:bb:e1:d6:c8:2c:7c:64:99:aa:e0:1b:18:1a:ef:47: bf:ea:d4:f1:a6:c8:7d:fe:79:8e:92:55:82:8c:64:d9:de:36: 27:a9:65:96:25:d2:fa:79:14:be:47:2d:81:f5:4b:62:74:da: 18:af:4c:1c:8d:5f:16:95:15:f6:a5:c0:47:83:94:bb:72:d4: cf:b0:b7:90:e0:20:df:7a:2d:b7:89:50:90:9e:cc:4d:bc:c0: 50:9d:9f:2e:d5:ee:be:34:d8:0f:6c:d4:90:69:02:8c:8c:9e: e7:1c:65:5e:ed:90:a6:51:7f:09:87:12:3c:94:5b:8c:45:2d: c2:42:1b:0d:0f:3e:64:a3:ad:22:50:d7:83:ef:7d:1e:36:62: 3e:4b:bb:57:5c:0b:3e:c8:e0:28:87:9f:a5:05:56:50:11:19: 37:ed:66:75:2f:24:35:e8:79:31:c4:db:ba:e4:c1:bd:26:0e: 6a:8d:f2:aa:dd:57:0c:35:6b:a6:50:1c:f6:01:ac:3d:d2:7d: 63:4a:7c:48:a2:9d:f3:34:2e:9a:1d:1b:45:bc:c9:71:16:8e: db:c2:80:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs87J0kgxPiblnX4QxFIfmKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3Y2QxMzE4YzkxOWM2ZWYxNmQyNGNhNzg0NjJhMGI3ZGUx NGJhMDUwHhcNMjUxMjIwMTgwMTM4WhcNMjUxMjIxMTgwMTM4WjAzMTEwLwYDVQQD Eyg2OWNhNmRiZGM5NTdhZTExZGVlYjBmMzUzNzEyYmE1NDQ3MDMyYmY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7YqbT4voN51J5E/jQTy2j8ISki8U S8zMMp8oqQR6XF6RCe2eHqr46RnY1J1Dny4RImUFfeCfgyNyx/6zM0Xf4IBX+QzL PvkP92s7fTj7MjCzx9D/OjEUotfzv8B78Uoct+hIKBVtHvFrxjxc6waFoR+Qf0/j lmxmAy8bgWV+gxtgxQuDHHKoUHpVytq33cVwRtNv8IFBai1P7ff+axxSQ9zFP7YA F5/piJXYqDOQYKagat5Joi8qR8C+VtxtcNiO/9Ab4/Hxh8v5c4S1w6SkD81pPn6m 85kjgq5qJqsfw7bhdPqS3wgZCoBlL62qrpz6TXE1LTZ0VQBC4/jcgmlIGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGnKbb3JV64R3usPNTcSulRHAyv0MB8GA1UdIwQY MBaAFBfNExjJGcbvFtJMp4RioLfeFLoFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjgwVEdNa1p4dThXMGt5bmhHS2d0OTRVdWdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8xYmFhZTEtNjIzYy00NTNiLTg2N2Mt OTM3NDJjNDhlMGZlLzEvRjgwVEdNa1p4dThXMGt5bmhHS2d0OTRVdWdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8xYmFhZTEtNjIzYy00NTNiLTg2N2MtOTM3NDJjNDhlMGZl LzEvRjgwVEdNa1p4dThXMGt5bmhHS2d0OTRVdWdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMWExVC6O U+usiak0dztaBXSdmFBEQxmGHdO+sPplPoR/MKdwJbKju+HWyCx8ZJmq4BsYGu9H v+rU8abIff55jpJVgoxk2d42J6llliXS+nkUvkctgfVLYnTaGK9MHI1fFpUV9qXA R4OUu3LUz7C3kOAg33ott4lQkJ7MTbzAUJ2fLtXuvjTYD2zUkGkCjIye5xxlXu2Q plF/CYcSPJRbjEUtwkIbDQ8+ZKOtIlDXg+99HjZiPku7V1wLPsjgKIefpQVWUBEZ N+1mdS8kNeh5McTbuuTBvSYOao3yqt1XDDVrplAc9gGsPdJ9Y0p8SKKd8zQumh0b RbzJcRaO28KA+Q== -----END CERTIFICATE-----Generated at Sun Dec 21 03:56:52 2025 by rpki-client