This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json) Hash identifier: YEhKKn7YLujBeYwYAdhD6jWoCB6H1wTXnMm/Y6aj+5c= Subject key identifier: 79:42:32:7A:57:A2:DC:B6:03:1A:1F:02:6E:59:FB:15:42:BA:AB:57 Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82 Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682 Certificate serial: 019B50A9F98E7CFC328D875AF96C12EFA75B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft Manifest number: 0727 Signing time: Wed 24 Dec 2025 14:01:15 +0000 Manifest this update: Wed 24 Dec 2025 14:01:15 +0000 Manifest next update: Thu 25 Dec 2025 14:01:15 +0000 Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: 8lDEcsOD0gzmaJ7i4RXeK9i+Fc/yeSZLeA6rtEkQVUg=) 2: p6pII2yeX9CFzHUBZ-7ECA5XoLc.roa (hash: a0i/QIPJclzVoZAHggGCZw2DH9on4V8xPPUo2d8z17I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:50:a9:f9:8e:7c:fc:32:8d:87:5a:f9:6c:12:ef:a7:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682 Validity Not Before: Dec 24 14:01:15 2025 GMT Not After : Dec 25 14:01:15 2025 GMT Subject: CN=7942327a57a2dcb6031a1f026e59fb1542baab57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f6:85:c0:a3:92:0e:a2:bb:f8:fa:cb:b1:84: c7:99:dc:d1:7b:94:a9:8b:ec:89:b1:c1:55:e5:76: dc:bf:41:fa:c3:d8:c1:c8:42:1f:a6:ff:37:df:50: 9d:05:cc:71:50:c8:db:0e:6a:31:16:6e:9c:dc:b2: eb:56:7e:d7:3e:96:2e:c6:38:f6:3c:f0:3a:20:24: 19:ae:cc:e9:3a:c6:6f:04:df:86:3c:69:d2:ad:b5: 7d:bf:de:9c:2f:f6:8e:3e:77:01:f5:03:99:31:4d: 10:21:26:af:b3:a8:0c:c3:55:a6:86:ef:4c:c8:a3: 9a:af:be:96:66:6f:de:d1:75:f2:4a:7f:90:58:7c: 88:89:42:6a:c5:f0:21:b5:03:92:8a:e1:34:5f:3c: 9e:95:8a:15:8f:c1:25:86:8d:2e:4e:4a:70:73:ec: 79:fb:ca:98:da:f5:d5:ea:e2:5a:dc:1a:89:57:9d: 57:12:ff:1b:61:09:27:81:47:37:e1:37:5d:44:6b: 90:a4:12:26:33:29:8f:b0:3b:94:9b:e4:08:0d:47: ae:aa:4a:f0:d9:8c:6a:78:ed:6a:d1:a4:6b:47:7c: c2:13:fc:23:45:58:74:84:d3:92:b6:8e:7d:9e:86: bf:de:69:90:5a:b3:a3:a7:3a:2a:7b:2f:e6:ae:41: 05:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:42:32:7A:57:A2:DC:B6:03:1A:1F:02:6E:59:FB:15:42:BA:AB:57 X509v3 Authority Key Identifier: keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:b2:90:97:c4:14:06:2c:49:b1:32:97:2c:ca:31:ea:83:ec: a6:2e:2a:cd:b0:e2:3a:14:0f:a8:76:9a:50:e6:ba:3c:b5:81: 8f:b7:7d:ab:82:e2:a8:da:80:e8:ce:38:07:2a:4d:89:c1:a6: c0:75:38:20:d9:b1:12:1a:8d:f4:58:21:18:4c:b6:3f:3f:f3: bf:bb:93:cb:86:ec:d6:73:6b:9b:95:2d:4e:84:73:50:08:93: c5:f0:96:1e:92:dc:8d:c9:2f:ef:33:cd:fa:ce:ab:d5:dc:b4: 91:63:9f:14:27:ac:0e:12:48:92:05:2e:8a:ae:ba:bf:95:59: cf:de:0e:84:94:bb:cf:4d:34:25:13:8a:26:a5:36:f6:68:a3: 4a:07:a4:ec:80:2d:47:f8:0a:18:c9:a1:7f:40:a2:93:53:c1: 29:e6:29:cf:ff:f8:76:40:e9:23:92:b2:38:2d:c2:6b:a6:d2: 02:e2:a6:ce:61:09:c4:74:16:8e:b6:e5:fb:92:12:ba:9a:4b: 61:c2:60:a1:b8:45:e3:bb:93:87:86:b7:d1:7d:37:ad:07:05: be:bd:95:af:a8:9d:35:15:6b:e8:92:4c:5d:11:e3:1f:a5:2f: 14:b5:be:b8:20:f1:43:79:f8:75:81:75:2a:64:64:c4:1d:91: d9:a1:72:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtQqfmOfPwyjYda+WwS76dbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1ZDFhNzcxNjAyNTE3MTEzM2EzMjAyYzk0NjJhMGVhYmQ2 NjA2ODIwHhcNMjUxMjI0MTQwMTE1WhcNMjUxMjI1MTQwMTE1WjAzMTEwLwYDVQQD Eyg3OTQyMzI3YTU3YTJkY2I2MDMxYTFmMDI2ZTU5ZmIxNTQyYmFhYjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9PaFwKOSDqK7+PrLsYTHmdzRe5Sp i+yJscFV5Xbcv0H6w9jByEIfpv8331CdBcxxUMjbDmoxFm6c3LLrVn7XPpYuxjj2 PPA6ICQZrszpOsZvBN+GPGnSrbV9v96cL/aOPncB9QOZMU0QISavs6gMw1Wmhu9M yKOar76WZm/e0XXySn+QWHyIiUJqxfAhtQOSiuE0XzyelYoVj8Elho0uTkpwc+x5 +8qY2vXV6uJa3BqJV51XEv8bYQkngUc34TddRGuQpBImMymPsDuUm+QIDUeuqkrw 2YxqeO1q0aRrR3zCE/wjRVh0hNOSto59noa/3mmQWrOjpzoqey/mrkEFVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHlCMnpXoty2AxofAm5Z+xVCuqtXMB8GA1UdIwQY MBaAFEXRp3FgJRcRM6MgLJRioOq9ZgaCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmRHbmNXQWxGeEV6b3lBc2xHS2c2cjFtQm9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8xNWM0N2MtMmM3Yy00ODFjLWJmODkt ODA3MjQ2Y2E3YTI0LzEvUmRHbmNXQWxGeEV6b3lBc2xHS2c2cjFtQm9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC8xNWM0N2MtMmM3Yy00ODFjLWJmODktODA3MjQ2Y2E3YTI0 LzEvUmRHbmNXQWxGeEV6b3lBc2xHS2c2cjFtQm9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV7KQl8QU BixJsTKXLMox6oPspi4qzbDiOhQPqHaaUOa6PLWBj7d9q4LiqNqA6M44BypNicGm wHU4INmxEhqN9FghGEy2Pz/zv7uTy4bs1nNrm5UtToRzUAiTxfCWHpLcjckv7zPN +s6r1dy0kWOfFCesDhJIkgUuiq66v5VZz94OhJS7z000JROKJqU29mijSgek7IAt R/gKGMmhf0Cik1PBKeYpz//4dkDpI5KyOC3Ca6bSAuKmzmEJxHQWjrbl+5ISuppL YcJgobhF47uTh4a30X03rQcFvr2Vr6idNRVr6JJMXRHjH6UvFLW+uCDxQ3n4dYF1 KmRkxB2R2aFyrw== -----END CERTIFICATE-----Generated at Wed Dec 24 23:21:39 2025 by rpki-client