This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json) Hash identifier: yVNx/lVGea7YOA6I6C/al4BtpzT9E0joXT3tBLeMGms= Subject key identifier: C1:AF:59:53:BD:6A:BF:22:53:FD:F0:E9:CE:36:3E:F4:F6:EA:BA:EE Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Certificate serial: 019B390F4D8411609FDAF2EE984527D22E18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft Manifest number: 17A6 Signing time: Sat 20 Dec 2025 00:01:02 +0000 Manifest this update: Sat 20 Dec 2025 00:01:02 +0000 Manifest next update: Sun 21 Dec 2025 00:01:02 +0000 Files and hashes: 1: 22MFoiE6iwEXKG4ff-0g9Nk9e6k.roa (hash: 8ZAHeiN8JfpnEbf0xNsrPzSUL91MdaXwePhbLZYQBGY=) 2: 63R1CqkRJzCBTqXm_kqr_6UGOC4.roa (hash: QovmpL/thOh4yKhjTn4FNfnRr6OXEgupogya3Oy9KUE=) 3: AqlAoh2mHTGBQZiQ4Qu8bU198w8.roa (hash: QPQqaQ0W7/zxzqNuDuEf1YEVzGuiOziERZ9FXquvCOY=) 4: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: KC+MtwVa3u2chcLV+uGe1v9bvPoytzUuEZa1zPevxUA=) 5: F7mREJo49yqaKx4zxXBCYESlNos.roa (hash: 56dqndcexLz8vvjaPdedW02jbU8L03kO2wjQRwiBDN0=) 6: JaRJ0VkgZY-pAOHUpfAksmRNPT4.roa (hash: uuAowSkk49o7aPUMDMEAR0rCVXNjJkNtV+Ttn8WfvGo=) 7: kGkGzImsb5Dv_nGgCWEXgWNc7do.roa (hash: x9SmJ5GmGF/t3I5NSMgnwkUR+oRC+nVpi/mDc40npw4=) 8: mpy8rjwhUPGfrwU4aNyK-9x9FBA.roa (hash: LExOCoVzbGwBygx3rcSIfApEZE8wTyOT0YOXpiy9v1U=) 9: qF-2BgBNvB9Rp0K_VFhuwpTNLrY.roa (hash: h4z+iViHaDAdXrYk5TZebHBt4+M5KGpzETHGgdp4Ztc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 00:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:0f:4d:84:11:60:9f:da:f2:ee:98:45:27:d2:2e:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Validity Not Before: Dec 20 00:01:02 2025 GMT Not After : Dec 21 00:01:02 2025 GMT Subject: CN=c1af5953bd6abf2253fdf0e9ce363ef4f6eabaee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e4:85:3d:28:79:de:33:cf:b4:a2:22:49:dd: d7:4d:64:5c:6f:e9:1a:d7:fc:2e:6c:13:d6:e6:20: 7a:75:7e:54:9a:2a:39:b9:3a:56:72:26:a0:08:04: 50:50:ee:d3:26:2b:59:33:24:e3:6e:18:d4:d6:eb: 22:27:79:bb:ce:14:b2:aa:1a:5f:bc:d1:49:ce:60: f4:f3:16:f2:47:18:a7:62:9c:d7:46:ee:e2:9e:29: 05:c3:c7:3b:99:8a:06:3e:00:78:88:7d:c9:05:96: 23:d8:66:1f:9c:56:cb:f9:16:45:c1:81:21:42:8b: 23:a7:07:66:e3:11:2b:b7:4a:91:19:4f:0a:ee:63: a1:a9:00:c5:cd:40:c9:17:4a:b4:c6:5f:e1:a8:12: 28:27:52:59:8d:49:8f:3a:76:d5:bf:85:37:05:6e: fc:62:e3:f6:55:7c:f3:ce:51:f8:97:fc:0e:ee:6b: b2:07:18:be:70:43:98:3b:b1:65:68:f2:39:93:f8: c3:4a:e0:d2:7e:b4:e2:a4:65:34:b3:e9:fc:16:6b: 57:25:cb:57:11:5b:f9:16:a3:d5:67:76:9c:a3:fe: 46:21:59:bd:f9:16:a4:3b:b6:f4:7a:c4:8d:74:ce: aa:79:65:b1:ba:d7:5a:18:c9:b4:7e:62:24:82:e0: c0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:AF:59:53:BD:6A:BF:22:53:FD:F0:E9:CE:36:3E:F4:F6:EA:BA:EE X509v3 Authority Key Identifier: keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:4a:56:14:4a:7d:06:2e:b0:c2:38:6d:15:1e:4b:53:59:61: dc:f5:28:5c:7e:03:de:1e:1b:a2:60:10:09:3d:9a:20:1d:1d: e2:7c:b6:9e:d3:e5:94:18:e6:ff:ca:9a:e6:0e:b0:2e:a3:4f: ef:58:24:c8:82:f6:ca:85:9f:59:d1:a6:df:3a:ba:1d:0b:b3: dd:6e:34:55:1f:7c:02:35:dd:e4:89:41:24:05:2e:e2:13:c9: cd:3c:41:71:74:47:f2:54:d6:60:e2:b8:68:ff:41:b0:ab:c4: 2f:35:c7:56:3a:2f:d4:50:a2:8f:2f:08:e0:17:66:ab:37:c8: 2c:7a:f1:fd:bf:98:b4:c0:00:b4:c8:17:0d:5a:fd:e1:9d:e3: 48:91:32:6a:23:d7:a1:3b:4f:a7:b1:20:19:19:01:32:9e:cd: d6:7f:ce:84:b2:14:d3:f6:24:df:2e:d9:17:35:43:3e:5d:0d: d0:16:35:5b:05:ed:ee:9e:b5:7e:0c:a8:c9:3d:e5:c8:fa:9f: 98:c5:bb:4d:6e:a8:cd:36:a4:0e:ee:ad:54:1f:59:55:ba:c9: ac:53:16:e5:c1:a8:b8:9c:44:f0:d1:4c:5d:95:e1:96:61:87: f7:6f:a1:2e:bd:97:ab:d6:97:0d:66:22:f0:62:3c:40:99:f8: 96:36:34:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5D02EEWCf2vLumEUn0i4YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNjM2M2Q0MjhiNzkxNWMxMDg4MjVmMDk3MDYwMDRiOGVh M2Q0YjUwHhcNMjUxMjIwMDAwMTAyWhcNMjUxMjIxMDAwMTAyWjAzMTEwLwYDVQQD EyhjMWFmNTk1M2JkNmFiZjIyNTNmZGYwZTljZTM2M2VmNGY2ZWFiYWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAneSFPSh53jPPtKIiSd3XTWRcb+ka 1/wubBPW5iB6dX5Umio5uTpWciagCARQUO7TJitZMyTjbhjU1usiJ3m7zhSyqhpf vNFJzmD08xbyRxinYpzXRu7inikFw8c7mYoGPgB4iH3JBZYj2GYfnFbL+RZFwYEh Qosjpwdm4xErt0qRGU8K7mOhqQDFzUDJF0q0xl/hqBIoJ1JZjUmPOnbVv4U3BW78 YuP2VXzzzlH4l/wO7muyBxi+cEOYO7FlaPI5k/jDSuDSfrTipGU0s+n8FmtXJctX EVv5FqPVZ3aco/5GIVm9+RakO7b0esSNdM6qeWWxutdaGMm0fmIkguDAxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMGvWVO9ar8iU/3w6c42PvT26rruMB8GA1UdIwQY MBaAFA9jY9Qot5FcEIgl8JcGAEuOo9S1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEt MmUxYzBhZjRmYWE0LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEtMmUxYzBhZjRmYWE0 LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtEpWFEp9 Bi6wwjhtFR5LU1lh3PUoXH4D3h4bomAQCT2aIB0d4ny2ntPllBjm/8qa5g6wLqNP 71gkyIL2yoWfWdGm3zq6HQuz3W40VR98AjXd5IlBJAUu4hPJzTxBcXRH8lTWYOK4 aP9BsKvELzXHVjov1FCijy8I4BdmqzfILHrx/b+YtMAAtMgXDVr94Z3jSJEyaiPX oTtPp7EgGRkBMp7N1n/OhLIU0/Yk3y7ZFzVDPl0N0BY1WwXt7p61fgyoyT3lyPqf mMW7TW6ozTakDu6tVB9ZVbrJrFMW5cGouJxE8NFMXZXhlmGH92+hLr2Xq9aXDWYi 8GI8QJn4ljY0/A== -----END CERTIFICATE-----Generated at Sat Dec 20 09:58:19 2025 by rpki-client