This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft File: U170D69INDOz4zaY5NHulfPJS-w.mft (raw, json) Hash identifier: +i9EyqiRdSOlXBC87SX/7B5fMOpffYywx3A828Ltjg4= Subject key identifier: 9D:BA:07:44:B2:A3:98:E2:3F:0C:E6:FE:7B:A9:9D:05:0E:D2:AE:78 Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec Certificate serial: 019B4A02B0E6912ED535BC4B17E725F80BAB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft Manifest number: 178E Signing time: Tue 23 Dec 2025 07:00:48 +0000 Manifest this update: Tue 23 Dec 2025 07:00:48 +0000 Manifest next update: Wed 24 Dec 2025 07:00:48 +0000 Files and hashes: 1: U170D69INDOz4zaY5NHulfPJS-w.crl (hash: BRRf9PPGZaalNERCfx3eXeJwxcoGM8lQiFW9jRyoYYc=) 2: a9R4a72Ce3HtrFyUZj2Jrpn9DLE.roa (hash: lEQCssDpqykyZtTNm3b2/t+M2Xlx2R2hbaDbanTEKE4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:02:b0:e6:91:2e:d5:35:bc:4b:17:e7:25:f8:0b:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec Validity Not Before: Dec 23 07:00:48 2025 GMT Not After : Dec 24 07:00:48 2025 GMT Subject: CN=9dba0744b2a398e23f0ce6fe7ba99d050ed2ae78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:16:93:a3:b9:5e:f6:21:5d:98:c5:1e:9d:92: 1f:5f:1f:61:37:dd:c9:47:0e:01:73:ce:10:99:61: 6b:8e:e5:ea:f8:1f:85:98:1d:ff:0d:f0:b0:39:94: ca:50:a9:74:ac:4c:45:fc:c9:20:78:21:eb:3a:e6: f2:c7:6f:40:d4:b4:1d:c3:50:14:51:17:a9:c0:bd: 0d:50:9a:ac:ea:96:88:21:da:d9:63:8d:a2:ca:28: 01:ac:0b:69:52:55:b0:bc:d3:ff:e7:af:b1:3a:14: 63:44:5f:e6:92:b6:d3:4d:81:f4:10:d9:33:aa:8e: 3e:f9:fa:f0:ef:da:6b:df:7a:df:df:6d:44:4e:41: b3:37:b0:d9:d2:57:65:97:0c:8c:fd:24:64:68:db: 37:7c:65:d1:92:61:cd:3f:40:a7:aa:86:80:10:c8: d8:ec:1d:43:fa:84:68:de:46:1f:94:6d:8d:02:d6: df:21:83:b7:49:be:23:26:22:ae:59:cf:e4:d4:23: 16:5e:c8:d5:0f:31:d0:07:0b:31:d5:f2:46:e6:0f: 1c:e5:af:9e:f2:72:a4:c4:51:f5:fc:71:ba:53:b9: cd:61:8e:f7:df:33:d5:fc:a7:8e:85:cc:e2:8b:cf: 92:44:b3:3c:d0:76:3b:57:85:0e:bb:39:84:bb:a9: 31:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BA:07:44:B2:A3:98:E2:3F:0C:E6:FE:7B:A9:9D:05:0E:D2:AE:78 X509v3 Authority Key Identifier: keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:10:93:2d:5b:a0:65:e1:b6:3b:2c:a9:1d:4c:cb:9f:88:a3: 8e:1f:61:8f:85:43:b2:f6:e6:eb:76:1d:10:e1:8c:b6:c2:d9: b2:be:a1:b2:d0:24:b1:92:b5:3a:91:2e:83:f0:f8:0c:e9:04: c8:96:73:51:d2:9d:fb:97:32:10:c6:6c:71:95:f1:91:c9:40: 17:10:a3:20:b3:4d:70:e3:48:9f:ed:56:04:5d:37:9d:80:eb: 63:2f:2f:ca:8a:b0:c2:8a:36:2b:8d:5b:6c:c4:87:e0:fe:14: 10:27:76:ae:b3:04:0c:24:ea:8b:58:fb:29:d5:a2:fc:57:1e: b3:d0:44:de:ea:67:7a:ea:62:7a:cd:c7:f3:7e:7c:d7:cb:80: 63:ed:0c:b8:24:8c:df:29:6f:23:eb:88:3f:9d:79:a8:d4:ad: 2a:70:da:e5:50:3e:d0:93:29:cd:92:a6:f2:cf:af:41:db:c3: e9:07:5f:80:24:73:4e:ce:8f:69:45:36:7f:38:72:da:1e:a8: 27:c5:43:4e:13:ee:f1:f1:81:10:d8:e8:df:a9:2a:29:9b:d0: eb:cb:b3:0a:dc:b5:67:54:9a:b9:ac:0d:d4:36:51:86:17:e6: 0a:b7:00:01:c5:70:b6:51:b5:c9:4d:78:ce:c1:71:97:99:36: 86:51:b1:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKArDmkS7VNbxLF+cl+AurMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNWVmNDBmYWY0ODM0MzNiM2UzMzY5OGU0ZDFlZTk1ZjNj OTRiZWMwHhcNMjUxMjIzMDcwMDQ4WhcNMjUxMjI0MDcwMDQ4WjAzMTEwLwYDVQQD Eyg5ZGJhMDc0NGIyYTM5OGUyM2YwY2U2ZmU3YmE5OWQwNTBlZDJhZTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRaTo7le9iFdmMUenZIfXx9hN93J Rw4Bc84QmWFrjuXq+B+FmB3/DfCwOZTKUKl0rExF/MkgeCHrOubyx29A1LQdw1AU URepwL0NUJqs6paIIdrZY42iyigBrAtpUlWwvNP/56+xOhRjRF/mkrbTTYH0ENkz qo4++frw79pr33rf321ETkGzN7DZ0ldllwyM/SRkaNs3fGXRkmHNP0CnqoaAEMjY 7B1D+oRo3kYflG2NAtbfIYO3Sb4jJiKuWc/k1CMWXsjVDzHQBwsx1fJG5g8c5a+e 8nKkxFH1/HG6U7nNYY733zPV/KeOhczii8+SRLM80HY7V4UOuzmEu6kxrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ26B0Syo5jiPwzm/nupnQUO0q54MB8GA1UdIwQY MBaAFFNe9A+vSDQzs+M2mOTR7pXzyUvsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy83N2E5ZjEtZjFmYi00ODVmLTkyM2Yt N2MzNzg5NDA1YmQ2LzEvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy83N2E5ZjEtZjFmYi00ODVmLTkyM2YtN2MzNzg5NDA1YmQ2 LzEvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQRCTLVug ZeG2OyypHUzLn4ijjh9hj4VDsvbm63YdEOGMtsLZsr6hstAksZK1OpEug/D4DOkE yJZzUdKd+5cyEMZscZXxkclAFxCjILNNcONIn+1WBF03nYDrYy8vyoqwwoo2K41b bMSH4P4UECd2rrMEDCTqi1j7KdWi/Fces9BE3upneupies3H835818uAY+0MuCSM 3ylvI+uIP515qNStKnDa5VA+0JMpzZKm8s+vQdvD6QdfgCRzTs6PaUU2fzhy2h6o J8VDThPu8fGBENjo36kqKZvQ68uzCty1Z1SauawN1DZRhhfmCrcAAcVwtlG1yU14 zsFxl5k2hlGxcA== -----END CERTIFICATE-----Generated at Tue Dec 23 09:04:14 2025 by rpki-client