This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json) Hash identifier: RA5ACxqpz86fo3/w3nbXnSsLPrE6KtFReGhGDA5tCfk= Subject key identifier: CB:BF:30:82:77:0C:F8:7D:B2:BA:44:3F:75:E6:4C:7D:21:AF:3D:AF Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71 Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71 Certificate serial: 019B3A910FBC81407E92C836FBEB06325F6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft Manifest number: 04F2 Signing time: Sat 20 Dec 2025 07:02:23 +0000 Manifest this update: Sat 20 Dec 2025 07:02:23 +0000 Manifest next update: Sun 21 Dec 2025 07:02:23 +0000 Files and hashes: 1: nQ9AG6h0t4BBBHaY1oIQ2Z7HXiE.roa (hash: bmhEBNk6LesEwcu8xwGODwFl5oPTmJlYZFKxsnvzgRU=) 2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: uUacRrEFPri4H2EdzzSrurf7/Hg87KHSIYm/YcD6XRU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:91:0f:bc:81:40:7e:92:c8:36:fb:eb:06:32:5f:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71 Validity Not Before: Dec 20 07:02:23 2025 GMT Not After : Dec 21 07:02:23 2025 GMT Subject: CN=cbbf3082770cf87db2ba443f75e64c7d21af3daf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:19:37:e9:a5:5d:39:96:8b:8c:0b:a9:c2: ed:19:33:e0:5a:ed:13:0e:81:a6:20:c9:b5:21:3a: 7c:e1:85:53:aa:e0:c0:58:40:92:31:c5:88:7f:aa: 2e:d5:2a:a7:13:e0:3c:3e:b2:39:d8:fa:56:2f:aa: 71:a0:2c:73:11:f0:33:b8:9f:d9:d8:f1:da:be:ee: 3c:7b:64:09:6d:5d:c1:83:db:2e:73:42:d3:82:63: fb:79:39:b0:ff:b7:11:5f:ed:d7:91:ba:5f:87:58: 43:a4:95:f9:ec:21:bb:08:e1:95:06:20:88:bc:27: 53:93:0b:f6:9e:0e:bd:b0:74:36:c0:e0:3a:e1:4e: ef:6a:4e:76:9a:fd:4f:c7:62:e3:65:4b:2d:e1:a7: 83:21:ab:ca:58:68:78:3f:a2:0c:f8:1f:87:04:1b: a2:3f:25:3b:7e:78:04:61:4b:e9:47:39:b2:96:f8: 99:1f:57:17:aa:fc:ba:f4:eb:ff:45:f7:2b:3b:64: c9:75:96:73:32:e9:29:5b:b1:8a:fb:dd:99:6e:81: c1:00:77:52:37:cf:cd:ce:bd:6d:17:f7:6a:c9:cb: 5b:07:fc:2c:01:4b:8d:37:90:cb:bc:d2:86:fb:d5: ba:9a:ca:41:a1:13:10:a2:2a:d0:d3:5f:68:dc:9c: 32:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:BF:30:82:77:0C:F8:7D:B2:BA:44:3F:75:E6:4C:7D:21:AF:3D:AF X509v3 Authority Key Identifier: keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:56:c3:c5:fd:1d:28:1e:f9:ce:d8:ed:a7:9c:f6:56:d9:b2: 2d:4c:7e:db:2a:29:5c:6c:a1:6d:77:e2:68:7d:d7:42:19:f9: b6:d1:61:f0:b4:22:5a:53:ab:ed:80:19:82:fd:80:a7:87:9b: fc:9b:9d:b5:f9:e8:da:f1:86:c7:fb:71:32:9e:f2:69:fa:75: 5c:2f:83:8f:7f:3e:22:64:dc:a0:9a:f7:fa:5c:eb:60:87:9f: 47:f7:7b:7f:18:90:8e:97:e8:a8:2e:45:05:79:81:33:a3:b1: d0:66:ab:98:f2:ac:f0:a8:40:8a:50:eb:e0:28:22:6d:40:38: 0e:70:6f:63:58:b0:bf:28:f9:39:53:13:81:47:e3:d6:ac:0d: 81:1b:00:9c:6b:59:46:3d:8d:9c:c6:11:dc:25:53:cb:e5:9a: c4:c4:77:db:ea:37:19:9f:d0:17:8c:e8:c0:eb:9c:4c:73:8c: 92:c8:02:cf:52:94:e3:7b:1c:d1:ac:a1:c1:3f:3f:1d:e8:ee: e0:fc:77:ff:a9:91:c6:87:44:0e:38:f4:0e:71:24:e5:ac:66: be:13:50:c7:fe:59:30:33:d9:89:e2:0e:18:4c:fe:c0:48:9e: bd:9b:5e:cf:0b:08:99:03:7a:d6:58:8f:b9:4d:46:4c:cb:07: 30:30:c5:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kQ+8gUB+ksg2++sGMl9rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkNjUyMzcyZjBlNWQxNjljMjAwZjdkMWQwODBlODU3MGZm ZWRiNzEwHhcNMjUxMjIwMDcwMjIzWhcNMjUxMjIxMDcwMjIzWjAzMTEwLwYDVQQD EyhjYmJmMzA4Mjc3MGNmODdkYjJiYTQ0M2Y3NWU2NGM3ZDIxYWYzZGFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtikZN+mlXTmWi4wLqcLtGTPgWu0T DoGmIMm1ITp84YVTquDAWECSMcWIf6ou1SqnE+A8PrI52PpWL6pxoCxzEfAzuJ/Z 2PHavu48e2QJbV3Bg9suc0LTgmP7eTmw/7cRX+3Xkbpfh1hDpJX57CG7COGVBiCI vCdTkwv2ng69sHQ2wOA64U7vak52mv1Px2LjZUst4aeDIavKWGh4P6IM+B+HBBui PyU7fngEYUvpRzmylviZH1cXqvy69Ov/RfcrO2TJdZZzMukpW7GK+92ZboHBAHdS N8/Nzr1tF/dqyctbB/wsAUuNN5DLvNKG+9W6mspBoRMQoirQ019o3JwyTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMu/MIJ3DPh9srpEP3XmTH0hrz2vMB8GA1UdIwQY MBaAFK1lI3Lw5dFpwgD30dCA6FcP/ttxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iZDk4YzktZmNlMy00YmJhLWI0OWIt NGNhZTMyNWMwZTI4LzEvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iZDk4YzktZmNlMy00YmJhLWI0OWItNGNhZTMyNWMwZTI4 LzEvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW1bDxf0d KB75ztjtp5z2VtmyLUx+2yopXGyhbXfiaH3XQhn5ttFh8LQiWlOr7YAZgv2Ap4eb /Judtfno2vGGx/txMp7yafp1XC+Dj38+ImTcoJr3+lzrYIefR/d7fxiQjpfoqC5F BXmBM6Ox0GarmPKs8KhAilDr4CgibUA4DnBvY1iwvyj5OVMTgUfj1qwNgRsAnGtZ Rj2NnMYR3CVTy+WaxMR32+o3GZ/QF4zowOucTHOMksgCz1KU43sc0ayhwT8/Heju 4Px3/6mRxodEDjj0DnEk5axmvhNQx/5ZMDPZieIOGEz+wEievZtezwsImQN61liP uU1GTMsHMDDFsg== -----END CERTIFICATE-----Generated at Sat Dec 20 11:40:54 2025 by rpki-client