This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json) Hash identifier: uc4JYRy+fdezv6jRWsXL9oCZxNB+Re5whXcGOBrRQ2c= Subject key identifier: DE:EB:07:E8:96:E0:E0:AA:D0:FA:00:54:BA:17:32:29:49:7D:1D:13 Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58 Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558 Certificate serial: 019B4EBB852848DD4F7C878BC008EFD73819 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft Manifest number: 1645 Signing time: Wed 24 Dec 2025 05:01:10 +0000 Manifest this update: Wed 24 Dec 2025 05:01:10 +0000 Manifest next update: Thu 25 Dec 2025 05:01:10 +0000 Files and hashes: 1: 53yfdczv1so3h7m6p_kJKapwYb0.roa (hash: 8fm3UETmOMmwp3oE4jpSkcDNkIYvAEXotF2eKRsyjLw=) 2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: KURUcrTQ25SkKWf7h25EjdBzR/prwRKpeppN6ju3zLc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 05:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:bb:85:28:48:dd:4f:7c:87:8b:c0:08:ef:d7:38:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558 Validity Not Before: Dec 24 05:01:10 2025 GMT Not After : Dec 25 05:01:10 2025 GMT Subject: CN=deeb07e896e0e0aad0fa0054ba173229497d1d13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b8:c4:a3:92:73:7e:8c:f0:ca:29:ac:74:16: ec:cb:f4:24:96:57:a5:86:cb:74:2e:fc:09:ac:31: 3e:d9:ec:c0:b3:cc:2b:51:cb:24:83:f2:38:72:3d: 23:8b:89:c6:f6:6a:05:27:71:bf:a1:cb:cf:10:19: 65:96:16:5f:d0:f6:58:d1:a0:f9:de:5c:7c:88:0d: 6d:5a:5d:e8:ec:d1:44:cd:7a:21:dd:5d:b6:36:1c: a4:e3:04:bf:9f:89:8f:7a:9d:3d:e1:36:ec:af:0c: 08:b2:7c:b8:51:92:ed:3b:de:f2:ff:0c:04:10:63: 60:5c:de:ac:2e:97:6c:24:db:10:f8:7b:1a:a0:d7: 30:84:b0:96:9c:bd:e8:a3:70:ab:1e:68:18:62:9d: 5d:ae:e7:5e:75:d3:90:c1:fb:c6:23:25:c1:58:8b: e5:0c:a2:45:8e:a3:31:d7:0b:6b:18:db:ca:ea:e3: b4:42:f5:f5:f3:fd:c3:e3:52:9e:30:db:58:1c:85: 8f:d3:8c:3f:53:57:4e:f4:a6:70:eb:e5:39:ec:20: 8b:d9:5f:4b:d3:65:7e:36:1f:7a:ec:3e:a9:9e:8d: f8:10:71:6c:26:c4:19:b2:e5:b1:3a:c5:20:70:74: 41:b1:27:70:2d:56:5a:7e:c2:2e:1e:d4:3d:59:cf: 46:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:EB:07:E8:96:E0:E0:AA:D0:FA:00:54:BA:17:32:29:49:7D:1D:13 X509v3 Authority Key Identifier: keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:a8:59:83:0d:38:21:19:6c:99:ac:79:fc:28:c2:05:47:47: 90:12:d2:72:51:2a:59:fe:da:94:62:1f:9e:cd:1f:23:17:94: 58:09:77:d9:5c:cf:fe:19:b4:da:47:d4:ab:e9:e4:14:10:1c: 37:02:3e:02:83:82:0e:8b:ec:a1:75:bc:8e:30:bf:c3:df:64: b4:a5:b5:71:6a:f1:da:1e:a7:ef:77:4e:f1:a4:d3:63:c9:bc: da:b8:08:ec:2a:1c:8e:c6:12:89:55:a4:7e:7c:b3:d2:02:b2: dc:48:ba:96:38:20:b8:55:fb:ca:a3:81:48:ee:cd:4c:cd:f1: 2d:54:77:45:7d:e8:a1:0f:c9:64:90:86:0f:46:45:51:ba:4d: 88:33:1b:02:e4:b2:a4:9f:67:df:43:b8:6b:95:62:e1:bf:0c: 76:cb:37:26:1d:63:4b:27:dc:23:fc:ed:65:a3:58:6b:5b:34: b0:96:2b:38:65:76:e0:f6:b2:0a:9b:dc:b9:0a:23:70:15:64: 65:48:38:d0:68:d5:3d:bb:4a:93:8c:a7:4c:3c:e1:7c:f7:bd: 8b:07:97:bb:4c:1a:ba:72:b0:be:e4:22:18:56:3c:a9:e2:a7: 74:1c:b8:d4:eb:f1:a3:4c:58:09:a0:97:e2:4f:06:69:f3:d6: 9b:81:8e:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOu4UoSN1PfIeLwAjv1zgZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkZjBkZjc3MTE0NzQxZTEzYTE3ZDcyMTNlNjk1NmJmOTYy N2I1NTgwHhcNMjUxMjI0MDUwMTEwWhcNMjUxMjI1MDUwMTEwWjAzMTEwLwYDVQQD EyhkZWViMDdlODk2ZTBlMGFhZDBmYTAwNTRiYTE3MzIyOTQ5N2QxZDEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LjEo5JzfozwyimsdBbsy/Qkllel hst0LvwJrDE+2ezAs8wrUcskg/I4cj0ji4nG9moFJ3G/ocvPEBlllhZf0PZY0aD5 3lx8iA1tWl3o7NFEzXoh3V22Nhyk4wS/n4mPep094TbsrwwIsny4UZLtO97y/wwE EGNgXN6sLpdsJNsQ+HsaoNcwhLCWnL3oo3CrHmgYYp1drudeddOQwfvGIyXBWIvl DKJFjqMx1wtrGNvK6uO0QvX18/3D41KeMNtYHIWP04w/U1dO9KZw6+U57CCL2V9L 02V+Nh967D6pno34EHFsJsQZsuWxOsUgcHRBsSdwLVZafsIuHtQ9Wc9GEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN7rB+iW4OCq0PoAVLoXMilJfR0TMB8GA1UdIwQY MBaAFK3w33cRR0HhOhfXIT5pVr+WJ7VYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEt ZTFlZjI3NzcyZWFmLzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEtZTFlZjI3NzcyZWFm LzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASKhZgw04 IRlsmax5/CjCBUdHkBLSclEqWf7alGIfns0fIxeUWAl32VzP/hm02kfUq+nkFBAc NwI+AoOCDovsoXW8jjC/w99ktKW1cWrx2h6n73dO8aTTY8m82rgI7CocjsYSiVWk fnyz0gKy3Ei6ljgguFX7yqOBSO7NTM3xLVR3RX3ooQ/JZJCGD0ZFUbpNiDMbAuSy pJ9n30O4a5Vi4b8Mdss3Jh1jSyfcI/ztZaNYa1s0sJYrOGV24PayCpvcuQojcBVk ZUg40GjVPbtKk4ynTDzhfPe9iweXu0waunKwvuQiGFY8qeKndBy41Ovxo0xYCaCX 4k8GafPWm4GOoA== -----END CERTIFICATE-----Generated at Wed Dec 24 13:21:17 2025 by rpki-client