This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft File: 9zQlckyuJz8pYwYNyGXG8LBCXK0.mft (raw, json) Hash identifier: ggVkaFA65q99DJEaoujZ+YOR8keFDpxIre7ZvHDH/g0= Subject key identifier: 8F:EC:97:BF:A5:52:B2:EA:57:57:55:14:14:A7:49:F9:91:6E:4B:56 Authority key identifier: F7:34:25:72:4C:AE:27:3F:29:63:06:0D:C8:65:C6:F0:B0:42:5C:AD Certificate issuer: /CN=f73425724cae273f2963060dc865c6f0b0425cad Certificate serial: 019B3AFDDC07E21896F397B3A21CC35F3739 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zQlckyuJz8pYwYNyGXG8LBCXK0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft Manifest number: 0149 Signing time: Sat 20 Dec 2025 09:01:13 +0000 Manifest this update: Sat 20 Dec 2025 09:01:13 +0000 Manifest next update: Sun 21 Dec 2025 09:01:13 +0000 Files and hashes: 1: 4pRecLSQ-xIl4IPEZzRcqIax3-I.roa (hash: H+a8jrfauVXAPTlOBPXoA0IxSm3rMjg8mh86PIxmueU=) 2: 9zQlckyuJz8pYwYNyGXG8LBCXK0.crl (hash: cA++lO7m9yvUSVioerG6adU7kn7x0FNhzcY/bgjrqYM=) 3: HS9PpWT4FCSSstlIOFCaEuTYhZA.roa (hash: dTpJ+Vqey+wyIsJCiKM1TfllRZ7B3eMpNoAigDi5hoo=) 4: JNDj7IkhbQ_3xrbEz4uAXQ1Yv3Q.roa (hash: Wl0WwrfiuzHjyAyUMW+l+iPzUUYZzp7CP7Vher9u5s8=) 5: TDs3SCHkSwxi2Xb9E5-5lxldSWA.roa (hash: UmMaqKmCtjb0oErlYVHbczcMBZ32+2r0z5hmDOfKCCM=) 6: V6wlyE81nOSUZZNevO5fwFq_yuI.roa (hash: BJWgiCN26bDpqIeJaukxrOIxIn7K1eaqwr8a29JJlYg=) 7: Y6E3ztUNuP-EkxZVJnP3QMV8f34.roa (hash: 5ZMvfHfzXA3N5iMX/egkwzxlZHE1t5ELeXRMtB3b6GA=) 8: g_xhFlxALcLse_-Oj4PBePBZJnY.roa (hash: ZZWn8HGPLGkcu+1b7mxcw+bmNtXcMX/Z/tSj0BCyotA=) 9: kRIa94MWYWrUOVwjc9XA73SAMOA.roa (hash: CLFC01EOAmxOj0g9Emkl9wa15kGO2yyt+4qXoqbGCJI=) 10: wMrCQWEm2lPKU1aAl1mFhi-JWnE.roa (hash: hT7L1jOf2Ub3XumgetpA4h0Ys4xPjaNTHFtmr8cP4hQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft rsync://rpki.ripe.net/repository/DEFAULT/9zQlckyuJz8pYwYNyGXG8LBCXK0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:fd:dc:07:e2:18:96:f3:97:b3:a2:1c:c3:5f:37:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f73425724cae273f2963060dc865c6f0b0425cad Validity Not Before: Dec 20 09:01:13 2025 GMT Not After : Dec 21 09:01:13 2025 GMT Subject: CN=8fec97bfa552b2ea5757551414a749f9916e4b56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:46:39:e7:15:14:1b:f9:70:b9:c9:21:c6:95: 50:c5:8e:18:df:00:93:51:63:5b:b1:c7:f1:30:1e: 81:7f:be:d9:d8:a5:dd:69:08:85:9b:96:ce:1d:68: c8:48:0f:02:f5:3a:76:51:ed:dc:58:3f:e7:36:39: bb:7b:2c:ed:91:3d:8d:7f:e1:2d:c9:2f:be:06:5a: 52:a7:30:64:bd:24:41:58:b1:31:9b:f1:b2:a6:14: 5c:77:0d:2f:36:a3:44:61:34:1a:ad:9f:8f:14:5e: 8a:c4:7c:76:c5:1e:6a:69:54:63:fc:16:3c:fd:4f: 37:e7:b1:3a:95:c1:f0:66:56:6b:4d:90:91:5a:d2: bd:9d:31:03:05:b3:65:dc:77:15:9b:4e:95:f2:33: 0d:c4:a3:12:df:a7:7d:d9:3b:8f:0b:0e:6f:d7:1c: c5:71:0e:dd:96:e9:80:f9:bb:84:ff:b4:0a:06:dc: 92:d6:49:55:56:31:de:45:ac:5b:88:72:b6:df:35: cb:a8:d7:01:57:37:46:85:a0:03:82:05:17:c9:1f: 9f:13:88:6f:a6:92:bc:2c:75:90:68:bf:4f:93:07: 86:0e:e0:6f:94:8c:2e:86:eb:00:67:82:05:aa:6e: 47:94:86:e2:3f:2b:a6:2a:a1:41:82:c7:1f:b2:83: 95:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EC:97:BF:A5:52:B2:EA:57:57:55:14:14:A7:49:F9:91:6E:4B:56 X509v3 Authority Key Identifier: keyid:F7:34:25:72:4C:AE:27:3F:29:63:06:0D:C8:65:C6:F0:B0:42:5C:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zQlckyuJz8pYwYNyGXG8LBCXK0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:22:85:50:ec:63:70:57:93:72:a5:70:55:cc:e4:23:a0:3e: 72:a4:60:44:c7:07:4f:61:7d:38:21:bd:45:bb:d3:a5:5e:e8: 1d:63:b1:62:c8:1e:a7:40:63:b7:30:ee:4e:29:f0:c4:0f:6e: 50:e6:6b:65:f1:21:56:f4:dd:d7:67:46:0c:67:af:20:ee:5e: 56:c5:4a:f3:23:ce:15:c2:35:77:cf:c9:6f:e3:cd:d5:44:c1: e1:eb:36:db:39:fd:e3:a9:5f:19:3c:e8:f1:4d:0f:e0:ca:1a: 74:ca:38:13:0b:97:23:00:f9:95:a1:33:95:e4:9b:40:6c:c7: 0b:c0:4e:9e:f1:c0:af:3e:4b:b2:5e:b9:a4:b9:1b:d7:2e:4c: 20:d6:46:fe:e2:fb:7a:3e:ee:03:ca:25:46:ca:07:4a:35:78: e5:94:11:8f:11:d7:72:ee:fe:a9:cd:a7:9b:b5:bc:ca:ad:7a: 12:fb:05:61:3e:e3:7e:51:fd:df:1d:17:d2:39:23:92:34:53: ec:78:23:e9:62:67:de:60:c3:44:cf:4c:20:7b:df:59:13:6a: 2c:e4:3d:1c:16:33:42:e5:76:53:19:98:99:76:4e:15:7f:16: 40:37:34:c6:5e:9b:3b:51:b9:b2:fe:48:33:6b:e6:42:c7:2e: 8f:e1:52:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6/dwH4hiW85ezohzDXzc5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3MzQyNTcyNGNhZTI3M2YyOTYzMDYwZGM4NjVjNmYwYjA0 MjVjYWQwHhcNMjUxMjIwMDkwMTEzWhcNMjUxMjIxMDkwMTEzWjAzMTEwLwYDVQQD Eyg4ZmVjOTdiZmE1NTJiMmVhNTc1NzU1MTQxNGE3NDlmOTkxNmU0YjU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6EY55xUUG/lwuckhxpVQxY4Y3wCT UWNbscfxMB6Bf77Z2KXdaQiFm5bOHWjISA8C9Tp2Ue3cWD/nNjm7eyztkT2Nf+Et yS++BlpSpzBkvSRBWLExm/GyphRcdw0vNqNEYTQarZ+PFF6KxHx2xR5qaVRj/BY8 /U8357E6lcHwZlZrTZCRWtK9nTEDBbNl3HcVm06V8jMNxKMS36d92TuPCw5v1xzF cQ7dlumA+buE/7QKBtyS1klVVjHeRaxbiHK23zXLqNcBVzdGhaADggUXyR+fE4hv ppK8LHWQaL9PkweGDuBvlIwuhusAZ4IFqm5HlIbiPyumKqFBgscfsoOV4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI/sl7+lUrLqV1dVFBSnSfmRbktWMB8GA1UdIwQY MBaAFPc0JXJMric/KWMGDchlxvCwQlytMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXpRbGNreXVKejhwWXdZTnlHWEc4TEJDWEswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85ZjA5YWEtZGQ1ZS00ZTA2LWIyOGUt ZTg3MWIyMTc5MGRlLzEvOXpRbGNreXVKejhwWXdZTnlHWEc4TEJDWEswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC85ZjA5YWEtZGQ1ZS00ZTA2LWIyOGUtZTg3MWIyMTc5MGRl LzEvOXpRbGNreXVKejhwWXdZTnlHWEc4TEJDWEswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZiKFUOxj cFeTcqVwVczkI6A+cqRgRMcHT2F9OCG9RbvTpV7oHWOxYsgep0BjtzDuTinwxA9u UOZrZfEhVvTd12dGDGevIO5eVsVK8yPOFcI1d8/Jb+PN1UTB4es22zn946lfGTzo 8U0P4MoadMo4EwuXIwD5laEzleSbQGzHC8BOnvHArz5Lsl65pLkb1y5MINZG/uL7 ej7uA8olRsoHSjV45ZQRjxHXcu7+qc2nm7W8yq16EvsFYT7jflH93x0X0jkjkjRT 7Hgj6WJn3mDDRM9MIHvfWRNqLOQ9HBYzQuV2UxmYmXZOFX8WQDc0xl6bO1G5sv5I M2vmQscuj+FScA== -----END CERTIFICATE-----Generated at Sat Dec 20 11:42:52 2025 by rpki-client