This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft File: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft (raw, json) Hash identifier: F6NMn6IPKYGOlZnVFw1BEVzxj8DOd6GonmU/pHlY+/Y= Subject key identifier: 9E:03:A0:4C:C3:15:A1:90:E5:C5:B7:F0:E0:C4:4A:76:0C:9D:C5:FD Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49 Certificate issuer: /CN=bf56ba98c6745a63026d78fc284722399d2eb849 Certificate serial: 019B4DDFABA0B248220882F5F7E4F60095BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft Manifest number: 11CC Signing time: Wed 24 Dec 2025 01:01:02 +0000 Manifest this update: Wed 24 Dec 2025 01:01:02 +0000 Manifest next update: Thu 25 Dec 2025 01:01:02 +0000 Files and hashes: 1: 5XEV-gEMIErGK0axVAW_a3kFgdQ.roa (hash: zrBYoY+XDrWBTYUlEabBJW1Q13TMvp0kauzANBjQtoQ=) 2: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl (hash: LpHleDBs9OCxa7qI/hXEA8XXdiLRRmk8GebV5In88Do=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 01:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4d:df:ab:a0:b2:48:22:08:82:f5:f7:e4:f6:00:95:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849 Validity Not Before: Dec 24 01:01:02 2025 GMT Not After : Dec 25 01:01:02 2025 GMT Subject: CN=9e03a04cc315a190e5c5b7f0e0c44a760c9dc5fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:16:ce:72:9a:18:bd:33:c0:00:03:59:c3:a9: c1:f3:94:f5:a2:97:02:d4:0a:2c:e3:04:03:7d:de: fd:be:d6:35:4b:4b:1c:46:1f:cd:b0:ef:04:c0:82: cd:3a:18:99:61:f5:94:72:48:a6:01:c9:ed:f1:fa: 2d:13:4e:67:01:70:08:e0:0d:5d:82:ed:14:1c:ac: f3:a7:78:e3:9f:5f:1b:96:fa:d1:09:a4:be:4b:04: 75:42:30:1a:ce:1f:45:31:c9:9d:0a:fc:7d:0d:ec: 04:06:c3:bc:7d:c5:a1:bb:7b:cb:63:50:3c:ff:91: 14:e4:a8:bd:01:5f:db:73:8b:74:0b:5a:4b:33:bb: 4a:cd:53:dd:46:84:3b:f9:99:7f:ff:38:b9:13:d2: de:67:63:e3:96:6a:d2:92:79:5e:53:9d:7f:d9:37: 92:ca:50:ae:09:e9:01:b4:05:7e:20:8a:83:e1:c9: 79:31:15:25:43:30:a6:88:79:38:1f:b5:fb:c2:2a: c6:a0:64:46:39:64:cf:92:91:c3:af:3e:27:67:09: 45:9c:9d:90:10:d1:e9:95:20:c3:2a:85:a7:d1:04: 6a:5d:e5:db:5d:92:c5:b2:c7:88:32:03:dd:be:6f: 8c:ab:46:d0:98:9f:80:61:48:16:81:d2:30:9e:18: 12:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:03:A0:4C:C3:15:A1:90:E5:C5:B7:F0:E0:C4:4A:76:0C:9D:C5:FD X509v3 Authority Key Identifier: keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:fe:49:fc:14:a8:c0:9c:a6:e7:21:bb:2e:54:60:87:66:aa: d9:41:4a:56:26:05:9a:0f:fb:fe:1d:df:59:d8:0a:4b:fa:69: 12:47:b9:07:54:b3:5d:e0:cd:72:87:94:9a:fb:02:60:7e:51: 36:bf:24:db:8c:be:29:3b:42:6b:64:84:9f:97:d3:12:13:a6: e3:6d:d3:9e:48:4b:9e:b0:40:70:49:d0:04:d9:e1:92:92:47: 3b:54:01:58:fc:7e:f1:ce:4d:21:a2:c4:fa:41:d3:a0:c7:d1: b7:75:4e:6c:3f:78:7f:a4:16:dd:74:6f:99:df:e0:3b:98:ac: 8c:94:97:fb:0a:6e:69:9d:54:eb:a5:e5:d1:31:62:fa:db:09: 00:62:19:d2:77:7d:38:15:97:f1:5e:60:9b:70:3d:ce:67:a8: 1e:b4:07:58:aa:3b:46:6d:97:d1:b8:8c:5d:56:92:aa:0e:83: 40:6a:0b:14:e8:c3:8a:87:c1:ba:df:60:67:fe:1c:1b:31:42: 54:7d:04:bf:e4:48:44:c9:60:7a:4b:66:ef:b1:a5:85:41:40: 38:c4:23:36:47:83:b8:ba:e7:8b:00:6a:bb:b0:fb:f6:58:85: c5:ab:73:8d:8e:b5:bc:cc:84:eb:67:b0:68:29:4a:90:2a:0e: a5:55:62:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtN36ugskgiCIL19+T2AJW8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmNTZiYTk4YzY3NDVhNjMwMjZkNzhmYzI4NDcyMjM5OWQy ZWI4NDkwHhcNMjUxMjI0MDEwMTAyWhcNMjUxMjI1MDEwMTAyWjAzMTEwLwYDVQQD Eyg5ZTAzYTA0Y2MzMTVhMTkwZTVjNWI3ZjBlMGM0NGE3NjBjOWRjNWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxbOcpoYvTPAAANZw6nB85T1opcC 1Aos4wQDfd79vtY1S0scRh/NsO8EwILNOhiZYfWUckimAcnt8fotE05nAXAI4A1d gu0UHKzzp3jjn18blvrRCaS+SwR1QjAazh9FMcmdCvx9DewEBsO8fcWhu3vLY1A8 /5EU5Ki9AV/bc4t0C1pLM7tKzVPdRoQ7+Zl//zi5E9LeZ2PjlmrSknleU51/2TeS ylCuCekBtAV+IIqD4cl5MRUlQzCmiHk4H7X7wirGoGRGOWTPkpHDrz4nZwlFnJ2Q ENHplSDDKoWn0QRqXeXbXZLFsseIMgPdvm+Mq0bQmJ+AYUgWgdIwnhgSYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ4DoEzDFaGQ5cW38ODESnYMncX9MB8GA1UdIwQY MBaAFL9WupjGdFpjAm14/ChHIjmdLrhJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zMzQzZDItNTI1My00MjQzLWEwMWYt NTg3ZmM4NGFjZWZlLzEvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy8zMzQzZDItNTI1My00MjQzLWEwMWYtNTg3ZmM4NGFjZWZl LzEvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqP5J/BSo wJym5yG7LlRgh2aq2UFKViYFmg/7/h3fWdgKS/ppEke5B1SzXeDNcoeUmvsCYH5R Nr8k24y+KTtCa2SEn5fTEhOm423TnkhLnrBAcEnQBNnhkpJHO1QBWPx+8c5NIaLE +kHToMfRt3VObD94f6QW3XRvmd/gO5isjJSX+wpuaZ1U66Xl0TFi+tsJAGIZ0nd9 OBWX8V5gm3A9zmeoHrQHWKo7Rm2X0biMXVaSqg6DQGoLFOjDiofBut9gZ/4cGzFC VH0Ev+RIRMlgektm77GlhUFAOMQjNkeDuLrniwBqu7D79liFxatzjY61vMyE62ew aClKkCoOpVViJw== -----END CERTIFICATE-----Generated at Wed Dec 24 10:48:27 2025 by rpki-client