This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft File: RWF9LghjWN2nvbDcRmyhyG7U_so.mft (raw, json) Hash identifier: gWFMqLCWqiouw04HiRlPmmVSSFm3g7og5PHdJxqBPGs= Subject key identifier: 82:41:BF:6F:3B:29:3D:12:C9:5A:49:E7:BE:C9:B2:B5:90:D9:D0:7B Authority key identifier: 45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA Certificate issuer: /CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca Certificate serial: 019B6B7BDD421E5CFA8AAD8D5683CE0A2AA7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft Manifest number: 1734 Signing time: Mon 29 Dec 2025 19:00:38 +0000 Manifest this update: Mon 29 Dec 2025 19:00:38 +0000 Manifest next update: Tue 30 Dec 2025 19:00:38 +0000 Files and hashes: 1: Kp8YOETyXn_CJNlkKRcjiHTajds.roa (hash: pE4tiu3XHnbIpJeimbwG8Yyb4EwnGUv1VJS0J7muojA=) 2: RWF9LghjWN2nvbDcRmyhyG7U_so.crl (hash: KG47dswhHHTl4DsZs7r3H33MEOs/7jr8hYG6NZJpG8g=) 3: opT_I9F9NlBeldQr0GrqFI_DCW8.roa (hash: MFWRH48M0sUB0KCZQGPrxKIdCpAK4ygrD33P9KlMNcM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 15:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6b:7b:dd:42:1e:5c:fa:8a:ad:8d:56:83:ce:0a:2a:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca Validity Not Before: Dec 29 19:00:38 2025 GMT Not After : Dec 30 19:00:38 2025 GMT Subject: CN=8241bf6f3b293d12c95a49e7bec9b2b590d9d07b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f2:a3:b3:1b:be:78:2b:d8:2e:eb:42:d2:80: 30:0f:7e:6e:44:71:42:14:fa:21:d8:af:a7:cd:d1: 00:05:28:1d:25:30:65:7d:1c:14:c3:41:54:fd:57: 18:7d:20:bf:31:0f:7e:60:6f:2f:d7:80:23:7e:62: 97:cb:8e:4b:b9:b2:69:a6:ad:64:f1:0f:88:ab:ff: 9a:ff:23:4c:86:ed:a7:84:84:64:0e:6b:f6:40:a8: 62:44:c7:cf:6e:66:b3:02:45:6d:17:1a:4f:a1:30: 7f:ad:fa:13:87:99:5e:68:3f:c6:97:8b:8a:83:19: b1:be:2f:15:45:ee:02:37:23:a5:6d:fb:15:73:fe: 7c:68:d4:1b:9a:0b:91:73:fd:fd:b8:52:ae:0f:81: 63:05:0d:09:1d:07:44:8d:50:9b:2a:1e:ef:32:c2: 79:a6:1b:1c:47:8e:45:2e:12:6f:e9:8d:60:bd:f8: 0f:ad:3f:1d:53:cb:71:66:27:8d:93:d1:95:60:02: 33:4a:d5:6a:34:70:d2:30:cd:d0:17:02:dc:cb:5c: 9c:ff:09:da:ed:3a:c0:ba:27:2f:e5:e8:af:ab:22: fd:b2:ed:ed:26:10:95:54:0f:ea:a3:8e:34:02:58: 86:a5:99:5c:01:38:b3:7a:5f:ff:6a:27:6d:0d:6b: b6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:41:BF:6F:3B:29:3D:12:C9:5A:49:E7:BE:C9:B2:B5:90:D9:D0:7B X509v3 Authority Key Identifier: keyid:45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:0a:16:75:02:17:1d:d7:3c:77:5a:f2:3f:cc:06:cd:22:93: 86:ed:36:7e:53:7c:ae:18:79:20:4c:7a:3b:d7:c8:a7:30:65: 40:ae:34:f4:4f:4a:57:58:e0:6c:5d:ad:d1:8c:8f:93:e3:33: a5:5e:61:41:c7:bb:91:3a:0d:7c:f3:b9:3c:eb:d5:41:72:9b: 65:a2:80:01:b9:e6:be:03:c8:f2:b2:c1:ee:07:24:6e:a7:f7: ea:91:3a:c2:1c:01:09:34:16:19:ff:67:b8:2e:cc:99:bc:12: e6:a4:8e:6f:7e:2e:b1:91:88:da:63:c0:cb:1a:aa:94:fb:c8: c0:63:f5:a3:ef:b2:46:89:cc:13:4d:56:99:2e:b9:2f:ef:72: 59:6c:ac:08:90:70:5d:cc:62:10:11:b9:bc:a7:20:6e:9e:db: 9d:33:37:35:7b:e9:38:59:02:12:cf:29:75:e7:d0:12:9e:59: 11:64:06:36:86:2b:33:ad:e9:79:4b:d2:1f:35:1d:dc:8d:35: b4:28:a4:84:8d:56:d2:86:ec:d7:75:ec:b5:55:2d:a9:c2:35: 81:e9:31:fb:2c:f6:b3:26:c5:ee:9b:28:a4:1f:d2:d7:4b:4a: 47:83:de:f2:85:9f:7e:44:b4:ad:71:b4:78:6b:a4:0f:ae:5f: 94:34:69:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtre91CHlz6iq2NVoPOCiqnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1NjE3ZDJlMDg2MzU4ZGRhN2JkYjBkYzQ2NmNhMWM4NmVk NGZlY2EwHhcNMjUxMjI5MTkwMDM4WhcNMjUxMjMwMTkwMDM4WjAzMTEwLwYDVQQD Eyg4MjQxYmY2ZjNiMjkzZDEyYzk1YTQ5ZTdiZWM5YjJiNTkwZDlkMDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PKjsxu+eCvYLutC0oAwD35uRHFC FPoh2K+nzdEABSgdJTBlfRwUw0FU/VcYfSC/MQ9+YG8v14AjfmKXy45LubJppq1k 8Q+Iq/+a/yNMhu2nhIRkDmv2QKhiRMfPbmazAkVtFxpPoTB/rfoTh5leaD/Gl4uK gxmxvi8VRe4CNyOlbfsVc/58aNQbmguRc/39uFKuD4FjBQ0JHQdEjVCbKh7vMsJ5 phscR45FLhJv6Y1gvfgPrT8dU8txZieNk9GVYAIzStVqNHDSMM3QFwLcy1yc/wna 7TrAuicv5eivqyL9su3tJhCVVA/qo440AliGpZlcATizel//aidtDWu2qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIJBv287KT0SyVpJ577JsrWQ2dB7MB8GA1UdIwQY MBaAFEVhfS4IY1jdp72w3EZsochu1P7KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUldGOUxnaGpXTjJudmJEY1JteWh5RzdVX3NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9kODFiNTktYzA1YS00OGZlLWI1YjEt MTU4OTI3MzM3Njg5LzEvUldGOUxnaGpXTjJudmJEY1JteWh5RzdVX3NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9kODFiNTktYzA1YS00OGZlLWI1YjEtMTU4OTI3MzM3Njg5 LzEvUldGOUxnaGpXTjJudmJEY1JteWh5RzdVX3NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAewoWdQIX Hdc8d1ryP8wGzSKThu02flN8rhh5IEx6O9fIpzBlQK409E9KV1jgbF2t0YyPk+Mz pV5hQce7kToNfPO5POvVQXKbZaKAAbnmvgPI8rLB7gckbqf36pE6whwBCTQWGf9n uC7MmbwS5qSOb34usZGI2mPAyxqqlPvIwGP1o++yRonME01WmS65L+9yWWysCJBw XcxiEBG5vKcgbp7bnTM3NXvpOFkCEs8pdefQEp5ZEWQGNoYrM63peUvSHzUd3I01 tCikhI1W0obs13XstVUtqcI1gekx+yz2sybF7psopB/S10tKR4Pe8oWffkS0rXG0 eGukD65flDRpFQ== -----END CERTIFICATE-----Generated at Mon Dec 29 22:40:25 2025 by rpki-client