This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft File: 9iZUZY9nKqzzcTO1xxz0sRwYado.mft (raw, json) Hash identifier: asF/alveFPJTtM6UWeqlk7DvklMcI/iwIJeAuhR47qM= Subject key identifier: DC:84:42:AB:D5:EB:CC:44:AE:31:51:8E:B5:C4:66:CA:B9:EB:2E:FD Authority key identifier: F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA Certificate issuer: /CN=f62654658f672aacf37133b5c71cf4b11c1869da Certificate serial: 019B311EAE93F71ED6BD737ECD41B4BB60B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft Manifest number: 028C Signing time: Thu 18 Dec 2025 11:00:52 +0000 Manifest this update: Thu 18 Dec 2025 11:00:52 +0000 Manifest next update: Fri 19 Dec 2025 11:00:52 +0000 Files and hashes: 1: 9iZUZY9nKqzzcTO1xxz0sRwYado.crl (hash: Rb1mDCcaapAr7IAZEVwjKUvlCPOr6SXLAZOXm4VDtbg=) 2: XtP9uPkBbHpNbcrbfiapaGNstI0.roa (hash: RHc/YYxPI6eAj3ZZsuy3p2bKIUCYpGJbMLwSSRkfsBM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 11:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:1e:ae:93:f7:1e:d6:bd:73:7e:cd:41:b4:bb:60:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f62654658f672aacf37133b5c71cf4b11c1869da Validity Not Before: Dec 18 11:00:52 2025 GMT Not After : Dec 19 11:00:52 2025 GMT Subject: CN=dc8442abd5ebcc44ae31518eb5c466cab9eb2efd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f1:75:30:3b:f8:54:69:89:6c:5c:a0:81:f3: 9d:35:95:20:26:ff:21:be:8d:e5:cc:57:f5:13:e1: 58:97:28:0c:3a:5d:9c:b1:14:ba:df:b7:0c:a8:61: 8d:d3:c9:78:08:c1:f4:4e:55:31:14:5f:29:40:62: f2:85:cf:08:b2:e9:66:17:77:46:28:6e:30:dc:39: 12:1d:3a:8c:a5:a7:e6:3c:37:54:df:24:a9:8a:55: 5c:ff:76:cf:a5:ae:98:99:f0:aa:16:7c:ec:36:97: 5f:17:11:0a:64:5b:e7:b3:56:b1:42:c3:75:d4:c4: 83:84:35:85:40:68:f4:1b:57:50:5c:a9:51:1d:f7: 59:c0:06:ee:6f:6c:4a:e6:2e:20:7b:f9:09:4c:b4: fa:20:f7:0b:09:23:a0:28:93:8d:91:7a:10:1c:f9: fe:a8:6b:56:62:68:5b:3b:ea:0d:00:b8:dd:5f:53: 1d:f9:62:ad:88:ae:88:3d:49:58:ad:0a:34:9f:56: bd:5e:17:00:89:eb:b2:19:42:61:ed:d1:f7:29:35: cc:46:43:db:83:93:94:b7:70:d1:f8:e6:2a:d0:2e: 86:c4:bb:d3:e8:3c:70:65:4b:36:20:80:0b:6e:bd: d2:d7:c0:14:cf:5b:03:75:54:64:ea:1d:68:fa:9f: fb:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:84:42:AB:D5:EB:CC:44:AE:31:51:8E:B5:C4:66:CA:B9:EB:2E:FD X509v3 Authority Key Identifier: keyid:F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:88:1a:7a:8a:a3:d1:bf:c5:23:a1:24:0b:80:b6:b8:d0:ba: 5d:88:9a:6a:1a:b9:9b:85:46:fe:95:0a:ac:cd:88:4f:b7:c2: 0e:fa:68:72:13:4b:de:97:dd:da:c0:48:1b:ab:56:d2:09:30: d6:e5:7c:95:e3:d1:eb:f8:14:10:55:67:ae:b8:a9:a2:6e:74: 44:c9:2b:28:c5:af:96:80:a4:92:5d:dd:e3:0f:ad:96:54:0d: 31:35:46:88:56:f4:aa:0d:fd:65:51:4c:da:c7:b1:9c:5c:16: d5:4a:6d:6c:48:e1:e1:f6:e1:a8:3f:d1:c6:e0:93:ef:02:50: f1:55:41:d7:2b:76:43:5f:92:c0:a4:d6:ff:b3:a5:97:0d:36: 3e:40:51:6a:a7:8c:cb:be:d1:28:98:ae:06:ee:8a:94:eb:f7: 4c:55:99:3e:f4:7c:af:77:e8:e4:c7:83:e3:d6:0f:d3:81:34: be:44:17:da:20:a5:5c:f5:1e:23:fa:ac:54:ef:d5:e1:1c:64: 9c:75:b0:3e:f9:9d:c2:27:43:38:bd:ce:48:4a:70:b5:80:5b: 75:d7:76:82:ed:54:d3:45:65:63:6f:9f:d6:d0:91:60:2c:65: 83:c5:d9:40:8a:84:71:cd:46:b0:6c:03:a0:a0:9a:66:c5:35: b3:31:c4:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxHq6T9x7WvXN+zUG0u2CyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2MjY1NDY1OGY2NzJhYWNmMzcxMzNiNWM3MWNmNGIxMWMx ODY5ZGEwHhcNMjUxMjE4MTEwMDUyWhcNMjUxMjE5MTEwMDUyWjAzMTEwLwYDVQQD EyhkYzg0NDJhYmQ1ZWJjYzQ0YWUzMTUxOGViNWM0NjZjYWI5ZWIyZWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPF1MDv4VGmJbFyggfOdNZUgJv8h vo3lzFf1E+FYlygMOl2csRS637cMqGGN08l4CMH0TlUxFF8pQGLyhc8IsulmF3dG KG4w3DkSHTqMpafmPDdU3ySpilVc/3bPpa6YmfCqFnzsNpdfFxEKZFvns1axQsN1 1MSDhDWFQGj0G1dQXKlRHfdZwAbub2xK5i4ge/kJTLT6IPcLCSOgKJONkXoQHPn+ qGtWYmhbO+oNALjdX1Md+WKtiK6IPUlYrQo0n1a9XhcAieuyGUJh7dH3KTXMRkPb g5OUt3DR+OYq0C6GxLvT6DxwZUs2IIALbr3S18AUz1sDdVRk6h1o+p/7vwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNyEQqvV68xErjFRjrXEZsq56y79MB8GA1UdIwQY MBaAFPYmVGWPZyqs83Eztccc9LEcGGnaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWlaVVpZOW5LcXp6Y1RPMXh4ejBzUndZYWRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9hNjhlMjYtOTJlNS00ZjQ5LWFkYjgt NjY0Nzc4ODQ1YjE2LzEvOWlaVVpZOW5LcXp6Y1RPMXh4ejBzUndZYWRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9hNjhlMjYtOTJlNS00ZjQ5LWFkYjgtNjY0Nzc4ODQ1YjE2 LzEvOWlaVVpZOW5LcXp6Y1RPMXh4ejBzUndZYWRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp4gaeoqj 0b/FI6EkC4C2uNC6XYiaahq5m4VG/pUKrM2IT7fCDvpochNL3pfd2sBIG6tW0gkw 1uV8lePR6/gUEFVnrripom50RMkrKMWvloCkkl3d4w+tllQNMTVGiFb0qg39ZVFM 2sexnFwW1UptbEjh4fbhqD/RxuCT7wJQ8VVB1yt2Q1+SwKTW/7Ollw02PkBRaqeM y77RKJiuBu6KlOv3TFWZPvR8r3fo5MeD49YP04E0vkQX2iClXPUeI/qsVO/V4Rxk nHWwPvmdwidDOL3OSEpwtYBbddd2gu1U00VlY2+f1tCRYCxlg8XZQIqEcc1GsGwD oKCaZsU1szHE1g== -----END CERTIFICATE-----Generated at Thu Dec 18 18:30:19 2025 by rpki-client