This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft File: pMtQ54o6MeM3XPKquGXoRf8umcE.mft (raw, json) Hash identifier: jbTfk4VFbcRadP6JwaAeABxjFg2Yp1mowU6tCzq8iSY= Subject key identifier: DD:09:4A:26:2A:D5:7A:34:CF:06:E1:64:BE:6C:9C:48:0A:64:F8:FF Authority key identifier: A4:CB:50:E7:8A:3A:31:E3:37:5C:F2:AA:B8:65:E8:45:FF:2E:99:C1 Certificate issuer: /CN=a4cb50e78a3a31e3375cf2aab865e845ff2e99c1 Certificate serial: 019B3D23423F32E1006460017AB7485B5E1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft Manifest number: 1791 Signing time: Sat 20 Dec 2025 19:01:19 +0000 Manifest this update: Sat 20 Dec 2025 19:01:19 +0000 Manifest next update: Sun 21 Dec 2025 19:01:19 +0000 Files and hashes: 1: MKwXFQdhtuQYKRcVzorzsVxuXIw.roa (hash: GZ2oDGi2xK0WgPjyKpmqLx5efaJizRvGxJTHG502Kqs=) 2: QHGBtoYy-yUNGT2R6UBemRAxD5s.roa (hash: 3YJpkLEFxs1XCvKlcy0WQw5fAkmH7oTliDxTaEnJgz0=) 3: hwXn82QbEbf-SULTcBIDnH5UIZU.roa (hash: 08kQDvBZvCyHX595Crm1xVl4v8KtIgUsNRfQUr9hTAQ=) 4: pMtQ54o6MeM3XPKquGXoRf8umcE.crl (hash: yddQ3JhWUxzleh0k+cR9euAiuDhnmqyeOZHlCxyyIJQ=) 5: soZqy3HUC6xiStBTbgTdR73Vw2c.roa (hash: 0/K+cWWK8CwD0JZ/wMwAQQYw/af8O4bhKs39qQrbVB4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.crl rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:42:3f:32:e1:00:64:60:01:7a:b7:48:5b:5e:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4cb50e78a3a31e3375cf2aab865e845ff2e99c1 Validity Not Before: Dec 20 19:01:19 2025 GMT Not After : Dec 21 19:01:19 2025 GMT Subject: CN=dd094a262ad57a34cf06e164be6c9c480a64f8ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:46:6f:68:36:36:90:12:ff:d2:12:f5:bb:82: 0f:a2:1e:16:9c:df:b0:b1:8e:c2:66:4f:1c:1a:5c: f7:c2:e5:ec:37:da:2c:2d:65:45:24:4d:68:1d:b4: 48:72:f3:19:1b:0b:a3:1b:eb:4c:3d:6d:44:f9:10: 54:da:29:ab:3e:aa:8e:bd:7d:f9:20:b5:a7:4c:2f: 95:65:6e:1b:2e:6b:38:a4:ed:23:0d:51:5e:8b:a3: 40:e0:f5:ae:d1:23:3d:89:5e:a8:eb:2a:3b:90:92: e5:2a:99:95:53:a5:f4:1e:9f:0e:4d:11:86:21:4d: a6:50:de:b4:fb:30:d5:0d:7b:e3:dd:16:3d:df:b0: 80:57:e0:8b:00:fa:87:19:10:71:b1:50:07:82:dc: 66:f0:86:ec:50:a3:de:2b:98:41:ed:ba:ab:f2:b7: e4:d9:b6:d2:8a:c3:44:30:59:52:68:1f:c2:61:4d: 29:6a:61:b0:dc:6e:b3:74:82:d5:c2:69:48:85:d2: ec:c0:1b:75:89:6a:dc:47:62:ca:8a:66:83:79:1b: 4a:af:f2:e0:a6:a5:ab:2a:30:48:c3:cc:e5:d5:5e: 75:d8:ed:0f:27:80:aa:ca:2d:fd:54:cb:bb:f0:e8: 15:72:3f:6b:4e:cc:e9:bc:34:30:1f:c0:b0:a1:25: 32:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:09:4A:26:2A:D5:7A:34:CF:06:E1:64:BE:6C:9C:48:0A:64:F8:FF X509v3 Authority Key Identifier: keyid:A4:CB:50:E7:8A:3A:31:E3:37:5C:F2:AA:B8:65:E8:45:FF:2E:99:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:1b:0c:a3:81:d2:28:1a:19:f4:20:8b:0e:94:c7:e2:13:eb: b6:99:7c:fa:f0:37:b7:92:bf:2d:a6:59:ac:11:f8:c7:02:70: 1f:0f:a4:74:5c:55:dd:83:d4:e1:7d:5b:89:31:8c:c9:59:44: c0:76:e9:75:4f:9d:3f:dd:80:57:4a:e2:d5:78:4e:a2:b9:01: e3:e2:7e:cb:51:79:6e:ef:96:d0:60:ad:5f:f6:13:bf:07:20: f5:75:fc:27:28:99:c1:f6:14:ab:af:45:12:94:cb:16:3f:0b: 6a:10:e3:9d:be:3d:3c:94:de:0b:2f:60:ff:da:fa:b8:97:cc: b7:3b:83:f6:b8:4d:03:24:08:58:33:61:02:6f:78:ec:98:b1: 30:6a:38:d8:bd:3d:68:4a:96:f6:f7:4a:6d:0f:2d:65:7e:99: b1:ed:88:89:71:ba:14:55:49:17:10:e2:a5:1c:6c:1c:ad:44: 95:69:8e:70:13:dc:f0:94:20:fa:28:ff:3d:e7:27:a6:ce:0d: 17:87:6d:a9:b9:1c:8a:08:f8:3c:e9:69:93:4e:7b:ac:53:62: 5a:60:f7:cd:ec:23:15:10:c5:18:14:14:f6:43:66:07:1f:72: 08:d8:f2:c1:f3:24:e1:55:53:9b:b7:eb:f0:11:d6:b2:fd:a7: bd:22:1a:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9I0I/MuEAZGABerdIW14fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0Y2I1MGU3OGEzYTMxZTMzNzVjZjJhYWI4NjVlODQ1ZmYy ZTk5YzEwHhcNMjUxMjIwMTkwMTE5WhcNMjUxMjIxMTkwMTE5WjAzMTEwLwYDVQQD EyhkZDA5NGEyNjJhZDU3YTM0Y2YwNmUxNjRiZTZjOWM0ODBhNjRmOGZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEZvaDY2kBL/0hL1u4IPoh4WnN+w sY7CZk8cGlz3wuXsN9osLWVFJE1oHbRIcvMZGwujG+tMPW1E+RBU2imrPqqOvX35 ILWnTC+VZW4bLms4pO0jDVFei6NA4PWu0SM9iV6o6yo7kJLlKpmVU6X0Hp8OTRGG IU2mUN60+zDVDXvj3RY937CAV+CLAPqHGRBxsVAHgtxm8IbsUKPeK5hB7bqr8rfk 2bbSisNEMFlSaB/CYU0pamGw3G6zdILVwmlIhdLswBt1iWrcR2LKimaDeRtKr/Lg pqWrKjBIw8zl1V512O0PJ4Cqyi39VMu78OgVcj9rTszpvDQwH8CwoSUyvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN0JSiYq1Xo0zwbhZL5snEgKZPj/MB8GA1UdIwQY MBaAFKTLUOeKOjHjN1zyqrhl6EX/LpnBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE10UTU0bzZNZU0zWFBLcXVHWG9SZjh1bWNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9iMWYyZTAtOGE2MC00YzhhLTkwZGMt NGJlNzk0ZDY0MDZkLzEvcE10UTU0bzZNZU0zWFBLcXVHWG9SZjh1bWNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9iMWYyZTAtOGE2MC00YzhhLTkwZGMtNGJlNzk0ZDY0MDZk LzEvcE10UTU0bzZNZU0zWFBLcXVHWG9SZjh1bWNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALRsMo4HS KBoZ9CCLDpTH4hPrtpl8+vA3t5K/LaZZrBH4xwJwHw+kdFxV3YPU4X1biTGMyVlE wHbpdU+dP92AV0ri1XhOorkB4+J+y1F5bu+W0GCtX/YTvwcg9XX8JyiZwfYUq69F EpTLFj8LahDjnb49PJTeCy9g/9r6uJfMtzuD9rhNAyQIWDNhAm947JixMGo42L09 aEqW9vdKbQ8tZX6Zse2IiXG6FFVJFxDipRxsHK1ElWmOcBPc8JQg+ij/Pecnps4N F4dtqbkcigj4POlpk057rFNiWmD3zewjFRDFGBQU9kNmBx9yCNjywfMk4VVTm7fr 8BHWsv2nvSIaag== -----END CERTIFICATE-----Generated at Sat Dec 20 22:48:59 2025 by rpki-client