This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json) Hash identifier: pbuC2AhKNwjGOtjH6vV2rzYJgoI1CiGp8LgMCqgnRLE= Subject key identifier: 62:A2:51:F7:34:F9:77:68:24:41:B5:ED:2E:2E:46:7D:F8:79:D0:B8 Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd Certificate serial: 019B52980273FDC82F977B6B36D151AB3F59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft Manifest number: 166D Signing time: Wed 24 Dec 2025 23:00:52 +0000 Manifest this update: Wed 24 Dec 2025 23:00:52 +0000 Manifest next update: Thu 25 Dec 2025 23:00:52 +0000 Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: ln0SmyvQ62fSn+WLpJX+8uCxBf0b0W8YcqGKXi6q4jo=) 2: n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa (hash: depvn6FAlXY00NO5eAYz1KXbUInLhBp+Jz+PGCqafeo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:98:02:73:fd:c8:2f:97:7b:6b:36:d1:51:ab:3f:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd Validity Not Before: Dec 24 23:00:52 2025 GMT Not After : Dec 25 23:00:52 2025 GMT Subject: CN=62a251f734f977682441b5ed2e2e467df879d0b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a3:0f:be:ac:34:a8:b5:c7:51:6c:da:d7:87: ef:9a:60:d0:19:42:d9:d1:a5:97:8c:01:f2:d0:3d: 89:c9:25:38:84:50:9c:b7:f3:f3:36:b7:80:ae:0a: 06:0e:5a:79:7c:7d:e0:f2:c2:15:f5:69:f7:69:92: 3f:09:ba:f6:a8:f8:01:de:55:04:98:6a:cf:86:1c: d1:2b:5d:b1:7b:14:e0:69:8d:e6:6b:e0:7e:69:33: ab:8c:51:7f:98:69:6f:ad:f7:25:a5:90:4a:2d:6a: 35:49:95:76:68:ab:7a:cb:89:da:22:52:23:14:a9: dd:27:67:83:75:35:02:66:84:47:16:c8:dc:64:ae: 05:37:45:64:93:ac:d1:da:ad:33:18:ab:80:35:01: be:6c:6a:44:dc:35:85:3c:71:09:b9:93:43:d0:7f: 9f:ea:2b:06:00:64:d8:58:b8:02:21:82:11:0c:24: 3a:95:41:2e:7b:10:97:6f:4d:c7:2a:4d:5e:11:ef: 3f:67:ae:e4:0a:a0:cf:99:c6:89:a4:f9:44:b9:39: d0:7f:b1:44:22:7a:46:ab:30:32:be:4a:ea:82:3e: b5:5b:34:e7:28:9f:a3:70:12:03:21:11:6d:90:a7: 2a:f6:52:7d:4b:d1:19:cd:65:43:33:0d:4e:dc:3c: 39:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A2:51:F7:34:F9:77:68:24:41:B5:ED:2E:2E:46:7D:F8:79:D0:B8 X509v3 Authority Key Identifier: keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:0e:af:7b:a9:dc:07:52:1d:fd:9e:aa:d4:0e:86:6c:cc:f3: 1d:aa:8f:8c:2d:37:b8:e7:3f:7a:b6:06:71:55:aa:99:15:8d: 73:c1:8e:5b:ab:33:08:6d:18:94:e0:a7:e8:78:1e:48:89:3e: df:ed:b3:b6:23:0b:12:e5:27:00:e6:23:4b:32:7e:22:e8:35: dd:49:fe:4c:ac:95:0b:4c:e0:f0:68:96:9a:73:9f:96:bd:6c: 06:2c:2f:a4:c6:67:03:23:0f:eb:a2:7a:d5:99:a3:f5:c5:30: 3b:57:db:07:d2:40:a9:9a:9e:1c:76:19:6b:da:b3:b2:81:36: 73:a2:5b:9f:78:44:7b:1c:ec:6a:4b:82:27:3b:f2:e0:8b:0b: cf:ad:2a:15:3b:04:f2:77:ec:49:cc:c9:19:e4:5b:a7:a0:39: 21:a6:81:4d:1b:02:bc:e4:e2:3b:73:63:56:fe:00:0a:4e:64: 94:d3:fa:23:8c:52:23:09:72:7b:5d:49:8c:2c:e6:63:9b:b3: e7:3e:7f:57:fa:41:4b:e4:2a:b1:51:3d:0e:1e:e0:a8:60:25: 5d:83:48:94:39:0a:f8:52:68:ea:d0:a7:20:06:47:ee:f4:e7: 24:ea:2d:a1:8f:08:0f:9b:db:8d:be:82:f0:9c:9c:9a:b7:3e: a6:d6:60:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSmAJz/cgvl3trNtFRqz9ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNWI5MGI4OTgxYjU5MWQ3NWE3ZTkzNWUxMzA0YTc0MDc1 NjAyZmQwHhcNMjUxMjI0MjMwMDUyWhcNMjUxMjI1MjMwMDUyWjAzMTEwLwYDVQQD Eyg2MmEyNTFmNzM0Zjk3NzY4MjQ0MWI1ZWQyZTJlNDY3ZGY4NzlkMGI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1qMPvqw0qLXHUWza14fvmmDQGULZ 0aWXjAHy0D2JySU4hFCct/PzNreArgoGDlp5fH3g8sIV9Wn3aZI/Cbr2qPgB3lUE mGrPhhzRK12xexTgaY3ma+B+aTOrjFF/mGlvrfclpZBKLWo1SZV2aKt6y4naIlIj FKndJ2eDdTUCZoRHFsjcZK4FN0Vkk6zR2q0zGKuANQG+bGpE3DWFPHEJuZND0H+f 6isGAGTYWLgCIYIRDCQ6lUEuexCXb03HKk1eEe8/Z67kCqDPmcaJpPlEuTnQf7FE InpGqzAyvkrqgj61WzTnKJ+jcBIDIRFtkKcq9lJ9S9EZzWVDMw1O3Dw53wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGKiUfc0+XdoJEG17S4uRn34edC4MB8GA1UdIwQY MBaAFNJbkLiYG1kddafpNeEwSnQHVgL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODct YTJhYmRhZGY1ZjkwLzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODctYTJhYmRhZGY1Zjkw LzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfQ6ve6nc B1Id/Z6q1A6GbMzzHaqPjC03uOc/erYGcVWqmRWNc8GOW6szCG0YlOCn6HgeSIk+ 3+2ztiMLEuUnAOYjSzJ+Iug13Un+TKyVC0zg8GiWmnOflr1sBiwvpMZnAyMP66J6 1Zmj9cUwO1fbB9JAqZqeHHYZa9qzsoE2c6Jbn3hEexzsakuCJzvy4IsLz60qFTsE 8nfsSczJGeRbp6A5IaaBTRsCvOTiO3NjVv4ACk5klNP6I4xSIwlye11JjCzmY5uz 5z5/V/pBS+QqsVE9Dh7gqGAlXYNIlDkK+FJo6tCnIAZH7vTnJOotoY8ID5vbjb6C 8Jycmrc+ptZg6Q== -----END CERTIFICATE-----Generated at Thu Dec 25 03:22:25 2025 by rpki-client