This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft File: 1P97rGRNWVZyLl4YOiL7FFXnVUY.mft (raw, json) Hash identifier: jUpApC62GoX/SDBNCHR/1YTLMG0WGWHufrQvf6YnxqI= Subject key identifier: 3B:A0:1F:88:4F:53:6A:09:82:B5:FE:52:5D:DF:AC:5F:F0:D5:EB:3F Authority key identifier: D4:FF:7B:AC:64:4D:59:56:72:2E:5E:18:3A:22:FB:14:55:E7:55:46 Certificate issuer: /CN=d4ff7bac644d5956722e5e183a22fb1455e75546 Certificate serial: 019B72FE584721C3F24251C7460B506D8DDC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft Manifest number: 0430 Signing time: Wed 31 Dec 2025 06:00:29 +0000 Manifest this update: Wed 31 Dec 2025 06:00:29 +0000 Manifest next update: Thu 01 Jan 2026 06:00:29 +0000 Files and hashes: 1: 1P97rGRNWVZyLl4YOiL7FFXnVUY.crl (hash: +mbIj0uA9NGo6FNg2DA/kJI4U/FWud2Jpw8lgVFz6hI=) 2: BBrcZolorsy-tffprBkzb6kzxjw.roa (hash: LubTLYd6O/FVL7Y6tbf5xWEWtjZWCQG4GmiGhTzuDxo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:72:fe:58:47:21:c3:f2:42:51:c7:46:0b:50:6d:8d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4ff7bac644d5956722e5e183a22fb1455e75546 Validity Not Before: Dec 31 06:00:29 2025 GMT Not After : Jan 1 06:00:29 2026 GMT Subject: CN=3ba01f884f536a0982b5fe525ddfac5ff0d5eb3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:89:6b:3b:55:68:64:0a:d6:2e:9e:98:ed:39: 92:b1:b6:de:b8:2a:24:17:31:1a:5e:4a:97:d0:8d: f8:c3:a0:e1:3e:49:ed:f6:65:e7:66:84:f3:2b:07: 13:30:5c:21:93:24:e3:7e:00:b1:39:79:de:43:62: 9f:d6:3d:1c:a8:4e:0c:21:e8:97:1a:40:9c:b8:60: d8:d2:be:f6:6f:9e:38:52:da:67:59:7a:2e:1f:f0: db:53:8c:f8:f0:cb:96:f5:ba:63:a6:d0:96:1e:9a: fb:f9:6c:ff:ae:af:2a:0b:27:87:76:b7:75:c1:bf: 8c:9f:65:8f:0f:79:12:5a:05:ae:98:06:30:32:50: f2:c0:51:4f:4f:79:2c:96:6f:e3:96:d4:40:0e:8f: 07:c0:ff:9c:fe:ff:98:6c:44:9f:32:7c:4a:6b:bb: 68:a9:8b:e8:a9:b5:22:d9:5a:37:ac:59:e9:5a:42: 7f:54:9b:6d:22:ac:f5:fa:8b:bd:69:79:fc:53:fb: 66:86:30:5e:29:a5:d3:80:c0:fe:37:00:e5:b6:60: 07:cd:5c:a1:3f:51:ab:07:7a:9e:80:b4:7f:92:86: 82:5d:1e:e6:0d:62:db:3b:3b:12:10:1e:0e:82:7c: 36:dc:82:57:b5:a4:11:55:42:cc:cd:a0:72:ee:76: dc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:A0:1F:88:4F:53:6A:09:82:B5:FE:52:5D:DF:AC:5F:F0:D5:EB:3F X509v3 Authority Key Identifier: keyid:D4:FF:7B:AC:64:4D:59:56:72:2E:5E:18:3A:22:FB:14:55:E7:55:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:85:3d:21:54:35:70:0d:15:d2:91:7d:72:c7:da:8c:1d:2c: cf:e4:5b:c8:3d:e3:ae:13:b3:21:71:32:2a:d4:54:c7:fc:15: ff:a8:13:60:95:ae:01:62:c6:af:4d:5d:24:9a:dc:6a:14:3f: c9:72:7e:a3:08:fb:67:ca:97:5a:d5:71:ab:2f:ca:2f:35:39: e1:59:1b:fd:8f:a4:30:25:71:4d:70:81:ab:81:8c:16:ad:6f: b0:0a:5b:22:30:cc:ce:a2:46:02:3f:e3:b5:60:8d:7a:21:ed: 65:ee:85:75:8c:11:8e:05:5e:a8:fd:6a:67:d5:b5:67:97:0d: d8:81:c9:2b:a5:27:50:ee:47:71:68:3f:4d:5b:90:ad:7f:09: ae:53:e7:33:8c:fd:fd:0e:14:7f:d4:67:e2:81:85:7e:c7:8c: 6e:31:75:95:5a:0f:2f:5a:a5:24:68:f2:3b:23:72:5e:58:de: 5a:a8:85:db:1e:0c:3e:57:d3:13:1c:ed:52:cf:40:09:49:db: c3:da:ed:08:2f:ae:c5:e1:f2:96:da:e1:ad:61:f1:0f:13:9c: fb:41:48:00:d1:27:31:f0:e5:92:7f:4a:21:ea:85:e8:fc:dd: 52:16:d3:6a:5b:95:f3:7a:ed:f7:69:c2:48:33:75:c9:39:65: 65:7a:b7:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZty/lhHIcPyQlHHRgtQbY3cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ZmY3YmFjNjQ0ZDU5NTY3MjJlNWUxODNhMjJmYjE0NTVl NzU1NDYwHhcNMjUxMjMxMDYwMDI5WhcNMjYwMTAxMDYwMDI5WjAzMTEwLwYDVQQD EygzYmEwMWY4ODRmNTM2YTA5ODJiNWZlNTI1ZGRmYWM1ZmYwZDVlYjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIlrO1VoZArWLp6Y7TmSsbbeuCok FzEaXkqX0I34w6DhPknt9mXnZoTzKwcTMFwhkyTjfgCxOXneQ2Kf1j0cqE4MIeiX GkCcuGDY0r72b544UtpnWXouH/DbU4z48MuW9bpjptCWHpr7+Wz/rq8qCyeHdrd1 wb+Mn2WPD3kSWgWumAYwMlDywFFPT3kslm/jltRADo8HwP+c/v+YbESfMnxKa7to qYvoqbUi2Vo3rFnpWkJ/VJttIqz1+ou9aXn8U/tmhjBeKaXTgMD+NwDltmAHzVyh P1GrB3qegLR/koaCXR7mDWLbOzsSEB4Ognw23IJXtaQRVULMzaBy7nbc/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDugH4hPU2oJgrX+Ul3frF/w1es/MB8GA1UdIwQY MBaAFNT/e6xkTVlWci5eGDoi+xRV51VGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVA5N3JHUk5XVlp5TGw0WU9pTDdGRlhuVlVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8xNjcyZDAtNWI2ZC00MTE1LWFmYjMt ODgwYTgxYjk5Y2M1LzEvMVA5N3JHUk5XVlp5TGw0WU9pTDdGRlhuVlVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy8xNjcyZDAtNWI2ZC00MTE1LWFmYjMtODgwYTgxYjk5Y2M1 LzEvMVA5N3JHUk5XVlp5TGw0WU9pTDdGRlhuVlVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAToU9IVQ1 cA0V0pF9csfajB0sz+RbyD3jrhOzIXEyKtRUx/wV/6gTYJWuAWLGr01dJJrcahQ/ yXJ+owj7Z8qXWtVxqy/KLzU54Vkb/Y+kMCVxTXCBq4GMFq1vsApbIjDMzqJGAj/j tWCNeiHtZe6FdYwRjgVeqP1qZ9W1Z5cN2IHJK6UnUO5HcWg/TVuQrX8JrlPnM4z9 /Q4Uf9Rn4oGFfseMbjF1lVoPL1qlJGjyOyNyXljeWqiF2x4MPlfTExztUs9ACUnb w9rtCC+uxeHyltrhrWHxDxOc+0FIANEnMfDlkn9KIeqF6PzdUhbTaluV83rt92nC SDN1yTllZXq3Eg== -----END CERTIFICATE-----Generated at Wed Dec 31 12:29:53 2025 by rpki-client