This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft File: rMMoWMzalYbG2WceMQ1RwoJoxFk.mft (raw, json) Hash identifier: B62ObbHvnJncxovVb0L7KzP9yugxEY6v/XFaEDLVzDA= Subject key identifier: 5B:F1:A2:58:26:33:4F:60:33:97:5D:57:86:59:D3:72:1D:E3:A5:51 Authority key identifier: AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59 Certificate issuer: /CN=acc32858ccda9586c6d9671e310d51c28268c459 Certificate serial: 019B6C57D7EC399A32167AE029FB5A76B528 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft Manifest number: 173D Signing time: Mon 29 Dec 2025 23:00:54 +0000 Manifest this update: Mon 29 Dec 2025 23:00:54 +0000 Manifest next update: Tue 30 Dec 2025 23:00:54 +0000 Files and hashes: 1: 5wpBu9lqq6Eh5bxmApWBHSmv8rU.roa (hash: OWwgDNZvQnVhoKGxoJou3ziQhvyReIZ9m1NH7rz0BqA=) 2: rMMoWMzalYbG2WceMQ1RwoJoxFk.crl (hash: Ys/njPBK4jJjExzDAinYgPtnhKdNsLW20We6kPlWle4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.crl rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 23:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:57:d7:ec:39:9a:32:16:7a:e0:29:fb:5a:76:b5:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=acc32858ccda9586c6d9671e310d51c28268c459 Validity Not Before: Dec 29 23:00:54 2025 GMT Not After : Dec 30 23:00:54 2025 GMT Subject: CN=5bf1a25826334f6033975d578659d3721de3a551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:85:69:61:94:78:e5:a1:dc:ef:fd:ff:a4:19: 03:c8:95:0d:a6:93:1d:45:e0:97:e7:25:32:d9:e1: dc:06:6b:54:60:cb:46:2e:61:c4:53:7a:0a:6c:ac: 07:71:2e:ad:10:57:12:88:ae:6e:29:cd:22:7f:c9: c8:bb:df:9c:53:fb:dd:6b:a2:43:c9:be:84:2a:ad: 70:5c:3c:a1:85:d5:42:1b:b8:ac:28:74:94:b0:ce: 49:84:f9:f1:8b:87:ce:58:5e:32:ee:c7:5a:70:2b: 80:3f:51:fa:ce:94:f1:31:53:9d:f4:d9:a1:d4:fa: 98:10:c3:49:47:4e:2e:62:86:b5:02:dc:01:db:83: 5a:8d:ce:75:9b:a0:62:c0:c9:65:89:c1:31:ec:68: 53:48:fc:2a:a5:05:f2:6e:46:f5:26:27:ac:b0:a5: bd:d8:00:e4:a4:ca:11:49:da:43:e8:56:bf:68:1f: 03:1a:e9:a0:53:37:b5:48:47:b9:84:01:e7:6c:ee: c6:ac:50:dc:5a:d7:01:e5:b0:49:ee:7f:5c:ef:4a: fd:31:aa:19:3f:9a:af:59:35:96:39:06:6a:ce:73: 11:bd:af:ea:bb:c8:95:96:c0:47:31:c9:57:2f:a6: 7c:4e:81:be:52:86:dd:60:40:69:6c:5c:fd:ea:72: 3a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F1:A2:58:26:33:4F:60:33:97:5D:57:86:59:D3:72:1D:E3:A5:51 X509v3 Authority Key Identifier: keyid:AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:a1:a6:08:17:45:b0:58:af:7d:c4:10:73:75:fc:39:35:d2: df:8a:af:a7:94:b0:e8:ce:70:fc:7d:e2:43:aa:a1:27:83:ee: 69:4a:ac:03:fe:76:08:f3:8f:8d:cf:1e:d3:e9:a5:1f:95:be: fe:39:01:34:76:40:0f:7c:f7:a0:f8:fb:69:c1:84:9d:81:d6: d9:cc:29:c9:45:81:b1:db:6f:58:6b:81:80:19:0a:63:2a:8e: 3f:3a:82:ce:99:b8:dc:bd:56:f3:94:84:a3:40:f1:a7:f5:af: 21:64:90:14:03:2e:76:20:ae:36:17:1d:85:84:cd:c7:9e:48: 38:87:fd:15:e0:8a:fb:3d:ac:3f:a2:ca:44:3e:e5:97:f3:64: f2:1c:52:a7:99:3b:e0:2f:6b:39:c7:b9:4a:97:bf:03:e0:9d: 36:93:86:be:8e:93:e8:71:c2:3d:bc:81:59:61:5f:08:2d:00: a3:9b:20:51:63:8a:e1:53:aa:53:b4:9b:0e:5d:c1:08:28:b6: 30:0b:eb:70:8b:21:3d:f6:62:11:d6:0d:4b:0d:01:0d:92:39: 78:cd:d5:57:1e:b2:1d:9a:a0:93:0a:04:e5:6b:70:b8:fe:2a: 00:56:34:ef:31:5f:03:d2:39:8e:83:af:3d:73:03:55:7a:27: ee:6e:fc:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsV9fsOZoyFnrgKftadrUoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYzMyODU4Y2NkYTk1ODZjNmQ5NjcxZTMxMGQ1MWMyODI2 OGM0NTkwHhcNMjUxMjI5MjMwMDU0WhcNMjUxMjMwMjMwMDU0WjAzMTEwLwYDVQQD Eyg1YmYxYTI1ODI2MzM0ZjYwMzM5NzVkNTc4NjU5ZDM3MjFkZTNhNTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4VpYZR45aHc7/3/pBkDyJUNppMd ReCX5yUy2eHcBmtUYMtGLmHEU3oKbKwHcS6tEFcSiK5uKc0if8nIu9+cU/vda6JD yb6EKq1wXDyhhdVCG7isKHSUsM5JhPnxi4fOWF4y7sdacCuAP1H6zpTxMVOd9Nmh 1PqYEMNJR04uYoa1AtwB24Najc51m6BiwMllicEx7GhTSPwqpQXybkb1JiessKW9 2ADkpMoRSdpD6Fa/aB8DGumgUze1SEe5hAHnbO7GrFDcWtcB5bBJ7n9c70r9MaoZ P5qvWTWWOQZqznMRva/qu8iVlsBHMclXL6Z8ToG+UobdYEBpbFz96nI6XwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFvxolgmM09gM5ddV4ZZ03Id46VRMB8GA1UdIwQY MBaAFKzDKFjM2pWGxtlnHjENUcKCaMRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvck1Nb1dNemFsWWJHMldjZU1RMVJ3b0pveEZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC82Y2Y3NjktOWI1OC00ODQ3LThmMWYt ZWRjNTQwNzJhZTg5LzEvck1Nb1dNemFsWWJHMldjZU1RMVJ3b0pveEZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC82Y2Y3NjktOWI1OC00ODQ3LThmMWYtZWRjNTQwNzJhZTg5 LzEvck1Nb1dNemFsWWJHMldjZU1RMVJ3b0pveEZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjqGmCBdF sFivfcQQc3X8OTXS34qvp5Sw6M5w/H3iQ6qhJ4PuaUqsA/52CPOPjc8e0+mlH5W+ /jkBNHZAD3z3oPj7acGEnYHW2cwpyUWBsdtvWGuBgBkKYyqOPzqCzpm43L1W85SE o0Dxp/WvIWSQFAMudiCuNhcdhYTNx55IOIf9FeCK+z2sP6LKRD7ll/Nk8hxSp5k7 4C9rOce5Spe/A+CdNpOGvo6T6HHCPbyBWWFfCC0Ao5sgUWOK4VOqU7SbDl3BCCi2 MAvrcIshPfZiEdYNSw0BDZI5eM3VVx6yHZqgkwoE5WtwuP4qAFY07zFfA9I5joOv PXMDVXon7m78jA== -----END CERTIFICATE-----Generated at Tue Dec 30 08:53:15 2025 by rpki-client