This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft File: RWF9LghjWN2nvbDcRmyhyG7U_so.mft (raw, json) Hash identifier: bnRl8VA7MSGL1V6N0dSrnjECfrnRxLRWAn05TPvtPaI= Subject key identifier: 7C:FF:93:EA:4D:B3:D5:68:D9:18:58:35:D3:30:72:44:78:1B:B1:53 Authority key identifier: 45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA Certificate issuer: /CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca Certificate serial: 019B3B348A1429DB8705984D380CF8E79187 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft Manifest number: 171B Signing time: Sat 20 Dec 2025 10:00:57 +0000 Manifest this update: Sat 20 Dec 2025 10:00:57 +0000 Manifest next update: Sun 21 Dec 2025 10:00:57 +0000 Files and hashes: 1: Kp8YOETyXn_CJNlkKRcjiHTajds.roa (hash: pE4tiu3XHnbIpJeimbwG8Yyb4EwnGUv1VJS0J7muojA=) 2: RWF9LghjWN2nvbDcRmyhyG7U_so.crl (hash: QYucBcnvjv6N2gs0tT838FMVlzhFn2s9dfz5zXHDFyM=) 3: opT_I9F9NlBeldQr0GrqFI_DCW8.roa (hash: MFWRH48M0sUB0KCZQGPrxKIdCpAK4ygrD33P9KlMNcM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:34:8a:14:29:db:87:05:98:4d:38:0c:f8:e7:91:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca Validity Not Before: Dec 20 10:00:57 2025 GMT Not After : Dec 21 10:00:57 2025 GMT Subject: CN=7cff93ea4db3d568d9185835d3307244781bb153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e5:2f:c3:54:1d:72:89:9e:7f:1b:22:5b:1d: 9b:de:01:56:90:38:c2:58:6c:e4:63:38:c5:92:0b: 84:88:04:34:33:17:ea:ba:93:bc:ab:e7:c6:f5:dd: 8e:9b:15:49:b1:e3:4d:e0:81:08:aa:f5:4b:e4:52: 33:59:fe:8c:1f:f4:f7:e9:eb:4f:91:ec:15:99:4f: c3:bd:5a:e0:a9:b0:86:e1:8c:8f:2e:30:12:45:41: f0:52:54:21:87:92:37:99:e1:5e:7e:40:0b:3a:d5: 2f:17:62:1b:04:cf:a5:60:68:c6:9f:d1:c9:3d:3a: 29:44:55:11:38:ed:c0:d3:94:41:a3:f3:4a:45:b2: eb:92:e2:92:51:25:e1:0a:b0:5f:4f:e7:be:0a:57: e6:51:2f:56:74:3d:61:e6:65:7a:5a:ff:74:e1:29: 5d:75:17:ed:a0:e5:b5:60:dd:56:9a:55:12:2b:21: 70:06:09:a9:fe:f3:ff:63:d6:0e:25:c6:0c:4b:fc: 51:a3:50:de:2e:92:4e:03:a8:dc:28:44:ae:ca:bb: 23:39:a0:2a:67:7f:22:23:2d:0d:bf:e3:e3:40:e7: 4d:ff:ac:7a:b1:6e:1f:92:9b:3f:53:aa:49:99:ce: e6:b0:95:ef:d2:5c:a8:9b:be:05:fc:b8:f5:64:43: b4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:FF:93:EA:4D:B3:D5:68:D9:18:58:35:D3:30:72:44:78:1B:B1:53 X509v3 Authority Key Identifier: keyid:45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:55:35:1d:99:39:c0:81:49:14:58:64:bf:bd:b9:d2:3b:06: 41:26:b1:6a:79:de:b3:14:00:26:c2:5d:94:ea:6a:34:96:f5: b8:e8:69:d0:22:31:2d:1b:ca:c1:26:6f:ed:ce:b8:d4:fc:d4: 2e:9e:43:04:67:44:50:2c:6e:c3:07:52:a4:4a:b3:09:21:2c: 79:5d:5c:04:cc:d9:42:70:20:da:35:ac:4e:85:40:37:6d:3a: 57:65:e6:f8:24:ca:17:7e:34:9d:80:7d:61:d6:80:b5:f4:89: a2:51:3e:f9:da:04:61:b6:59:c9:b9:07:42:14:9f:1e:33:32: 79:af:31:d4:03:e3:97:33:58:71:c2:d5:6f:ed:d7:ed:d3:56: db:6f:46:3b:92:3e:e7:a3:f6:9d:3a:4d:8e:68:0a:82:3a:c1: 26:b9:a9:3b:b5:9f:7d:ed:59:0a:74:93:d6:1a:99:7e:82:83: 33:db:88:1b:11:19:72:91:95:cd:8a:bf:ba:b6:4a:65:55:20: 02:f8:6b:a7:b0:b9:01:68:17:79:ff:40:0b:a3:da:62:eb:d4: 8c:5a:22:14:0d:db:9d:e3:90:fc:35:b5:dc:ac:71:b8:7e:d1: 72:2c:c4:fd:8e:1b:bc:32:13:ac:f2:51:8c:5f:5d:96:af:7f: bf:10:91:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7NIoUKduHBZhNOAz455GHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1NjE3ZDJlMDg2MzU4ZGRhN2JkYjBkYzQ2NmNhMWM4NmVk NGZlY2EwHhcNMjUxMjIwMTAwMDU3WhcNMjUxMjIxMTAwMDU3WjAzMTEwLwYDVQQD Eyg3Y2ZmOTNlYTRkYjNkNTY4ZDkxODU4MzVkMzMwNzI0NDc4MWJiMTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveUvw1QdcomefxsiWx2b3gFWkDjC WGzkYzjFkguEiAQ0MxfqupO8q+fG9d2OmxVJseNN4IEIqvVL5FIzWf6MH/T36etP kewVmU/DvVrgqbCG4YyPLjASRUHwUlQhh5I3meFefkALOtUvF2IbBM+lYGjGn9HJ PTopRFUROO3A05RBo/NKRbLrkuKSUSXhCrBfT+e+ClfmUS9WdD1h5mV6Wv904Sld dRftoOW1YN1WmlUSKyFwBgmp/vP/Y9YOJcYMS/xRo1DeLpJOA6jcKESuyrsjOaAq Z38iIy0Nv+PjQOdN/6x6sW4fkps/U6pJmc7msJXv0lyom74F/Lj1ZEO0owIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHz/k+pNs9Vo2RhYNdMwckR4G7FTMB8GA1UdIwQY MBaAFEVhfS4IY1jdp72w3EZsochu1P7KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUldGOUxnaGpXTjJudmJEY1JteWh5RzdVX3NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9kODFiNTktYzA1YS00OGZlLWI1YjEt MTU4OTI3MzM3Njg5LzEvUldGOUxnaGpXTjJudmJEY1JteWh5RzdVX3NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9kODFiNTktYzA1YS00OGZlLWI1YjEtMTU4OTI3MzM3Njg5 LzEvUldGOUxnaGpXTjJudmJEY1JteWh5RzdVX3NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg1U1HZk5 wIFJFFhkv7250jsGQSaxannesxQAJsJdlOpqNJb1uOhp0CIxLRvKwSZv7c641PzU Lp5DBGdEUCxuwwdSpEqzCSEseV1cBMzZQnAg2jWsToVAN206V2Xm+CTKF340nYB9 YdaAtfSJolE++doEYbZZybkHQhSfHjMyea8x1APjlzNYccLVb+3X7dNW229GO5I+ 56P2nTpNjmgKgjrBJrmpO7Wffe1ZCnST1hqZfoKDM9uIGxEZcpGVzYq/urZKZVUg Avhrp7C5AWgXef9AC6PaYuvUjFoiFA3bneOQ/DW13KxxuH7RcizE/Y4bvDITrPJR jF9dlq9/vxCRMg== -----END CERTIFICATE-----Generated at Sat Dec 20 11:30:36 2025 by rpki-client