This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft File: MjFs1IgVYto785JbSRi24R12UUw.mft (raw, json) Hash identifier: kw+3iD3qD3kowoF94e8Hx3QovrryoiBFdmU8+G5T5CE= Subject key identifier: A8:C2:73:C6:B4:C4:AA:BB:BB:84:2B:4A:BD:BC:1B:E6:58:B1:E2:37 Authority key identifier: 32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C Certificate issuer: /CN=32316cd4881562da3bf3925b4918b6e11d76514c Certificate serial: 019B32D781F66D5B27F9759861CA098B061E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft Manifest number: 0EDF Signing time: Thu 18 Dec 2025 19:02:22 +0000 Manifest this update: Thu 18 Dec 2025 19:02:22 +0000 Manifest next update: Fri 19 Dec 2025 19:02:22 +0000 Files and hashes: 1: MjFs1IgVYto785JbSRi24R12UUw.crl (hash: Jh5jjzz8Etb3bcDcuprfcxQ/18A/WorVPWB5y8yfbg0=) 2: O3osI0EMQ6lE3X_ye8aviCt4iTA.roa (hash: 9DOrDt/vfxy297yCahpwE4Xa/8MH6AlQc6vnFQ987B0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d7:81:f6:6d:5b:27:f9:75:98:61:ca:09:8b:06:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32316cd4881562da3bf3925b4918b6e11d76514c Validity Not Before: Dec 18 19:02:22 2025 GMT Not After : Dec 19 19:02:22 2025 GMT Subject: CN=a8c273c6b4c4aabbbb842b4abdbc1be658b1e237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9d:c1:61:56:d2:2e:4b:c4:3d:dc:00:bc:3a: 78:46:e3:8e:42:5e:65:23:67:6f:f2:be:5e:53:69: 64:46:c1:a7:f0:ff:04:60:18:a8:08:03:76:51:c6: d8:37:d2:ae:13:32:03:fc:62:f1:38:2b:84:50:9b: 14:00:93:53:83:31:72:d5:49:30:de:c6:0b:a9:bb: 08:e5:87:f6:5e:29:aa:7b:c8:41:ba:cc:96:91:24: 37:20:93:c5:35:b5:78:f7:79:21:e5:81:c4:dc:d3: ce:85:9f:b1:e8:39:9a:67:aa:7a:91:f7:a3:31:96: 62:35:04:36:f5:6c:7b:57:bd:17:24:ac:85:9d:f2: 7d:86:fb:1d:66:24:e6:af:c6:07:9f:79:31:a9:02: 99:03:18:20:76:cc:93:37:95:bf:3e:da:06:af:84: 6f:4b:0d:04:dc:47:93:2f:42:29:f3:31:ce:3c:e6: 18:f9:fa:7d:7f:2e:af:d8:04:2f:38:05:df:9b:c4: b5:b7:21:78:c5:84:d4:e4:af:22:dd:b8:e8:06:32: ff:7b:3f:7d:51:43:bb:08:4a:09:44:75:99:65:3b: 0c:99:86:a4:40:6b:d5:11:c8:62:cd:e7:73:af:39: 51:9e:84:a2:15:72:0f:49:bf:2f:4c:2c:de:7e:36: a9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C2:73:C6:B4:C4:AA:BB:BB:84:2B:4A:BD:BC:1B:E6:58:B1:E2:37 X509v3 Authority Key Identifier: keyid:32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:9b:c8:03:d8:1f:19:4e:f5:e3:65:ad:fa:0a:51:b0:95:cf: af:c3:6e:44:67:50:a1:8c:1a:24:66:1f:59:60:0c:76:8e:ad: 7a:e6:ca:7d:dd:ef:ea:9a:a8:27:50:93:b9:e5:29:cb:1b:1e: d6:10:df:e1:1a:1c:f3:63:d7:97:a6:c0:e1:57:31:41:62:e0: 62:8e:42:32:b4:93:a5:ec:23:ca:78:65:2a:ab:fe:dd:8f:3b: 35:44:a1:c8:84:f3:51:b8:10:14:d2:78:e7:75:90:3c:d3:07: 53:a5:49:1c:01:b4:e4:c6:e7:ff:5d:35:19:5e:55:32:a4:26: 03:f0:d5:22:56:24:b6:f7:12:3c:74:84:13:fa:fa:d0:11:9f: 7d:97:3b:6c:91:c1:d3:00:9c:3e:49:61:64:49:5c:9c:41:ca: c4:8e:3d:c6:9e:4f:28:3f:ed:ce:96:bc:bb:f7:1b:75:6e:18: b7:1d:10:9b:73:40:c0:31:85:20:43:44:72:fc:58:1a:cb:51: 02:7c:c5:d6:cc:7e:77:e4:2e:49:5f:ea:56:86:5a:ea:80:42: e8:30:4f:b5:52:5d:d0:aa:8c:78:1d:83:c0:83:a8:b0:64:90: b5:32:e2:bc:73:30:1f:4b:e5:07:0d:f7:d3:6b:01:69:4a:64: 84:1f:64:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy14H2bVsn+XWYYcoJiwYeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyMzE2Y2Q0ODgxNTYyZGEzYmYzOTI1YjQ5MThiNmUxMWQ3 NjUxNGMwHhcNMjUxMjE4MTkwMjIyWhcNMjUxMjE5MTkwMjIyWjAzMTEwLwYDVQQD EyhhOGMyNzNjNmI0YzRhYWJiYmI4NDJiNGFiZGJjMWJlNjU4YjFlMjM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr53BYVbSLkvEPdwAvDp4RuOOQl5l I2dv8r5eU2lkRsGn8P8EYBioCAN2UcbYN9KuEzID/GLxOCuEUJsUAJNTgzFy1Ukw 3sYLqbsI5Yf2Ximqe8hBusyWkSQ3IJPFNbV493kh5YHE3NPOhZ+x6DmaZ6p6kfej MZZiNQQ29Wx7V70XJKyFnfJ9hvsdZiTmr8YHn3kxqQKZAxggdsyTN5W/PtoGr4Rv Sw0E3EeTL0Ip8zHOPOYY+fp9fy6v2AQvOAXfm8S1tyF4xYTU5K8i3bjoBjL/ez99 UUO7CEoJRHWZZTsMmYakQGvVEchizedzrzlRnoSiFXIPSb8vTCzefjap7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKjCc8a0xKq7u4QrSr28G+ZYseI3MB8GA1UdIwQY MBaAFDIxbNSIFWLaO/OSW0kYtuEddlFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWpGczFJZ1ZZdG83ODVKYlNSaTI0UjEyVVV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9mMDM1OGYtMGQ1MC00NzA0LTg1Y2Yt MjYyZGE4ODNjOGUyLzEvTWpGczFJZ1ZZdG83ODVKYlNSaTI0UjEyVVV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9mMDM1OGYtMGQ1MC00NzA0LTg1Y2YtMjYyZGE4ODNjOGUy LzEvTWpGczFJZ1ZZdG83ODVKYlNSaTI0UjEyVVV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEpvIA9gf GU7142Wt+gpRsJXPr8NuRGdQoYwaJGYfWWAMdo6teubKfd3v6pqoJ1CTueUpyxse 1hDf4Roc82PXl6bA4VcxQWLgYo5CMrSTpewjynhlKqv+3Y87NUShyITzUbgQFNJ4 53WQPNMHU6VJHAG05Mbn/101GV5VMqQmA/DVIlYktvcSPHSEE/r60BGffZc7bJHB 0wCcPklhZElcnEHKxI49xp5PKD/tzpa8u/cbdW4Ytx0Qm3NAwDGFIENEcvxYGstR AnzF1sx+d+QuSV/qVoZa6oBC6DBPtVJd0KqMeB2DwIOosGSQtTLivHMwH0vlBw33 02sBaUpkhB9kUw== -----END CERTIFICATE-----Generated at Fri Dec 19 02:24:30 2025 by rpki-client