This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft File: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft (raw, json) Hash identifier: PxyUNvJlfa8SSAbqM8/FnTXxJPY3XVYDSDMfHg0TMJE= Subject key identifier: 8C:E5:54:7C:97:EF:A4:66:5E:D6:5D:8F:4B:82:9F:87:38:AB:C6:11 Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49 Certificate issuer: /CN=bf56ba98c6745a63026d78fc284722399d2eb849 Certificate serial: 019B4FCE324265941CED7B52EFCEE738AE88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft Manifest number: 11CD Signing time: Wed 24 Dec 2025 10:01:11 +0000 Manifest this update: Wed 24 Dec 2025 10:01:11 +0000 Manifest next update: Thu 25 Dec 2025 10:01:11 +0000 Files and hashes: 1: 5XEV-gEMIErGK0axVAW_a3kFgdQ.roa (hash: zrBYoY+XDrWBTYUlEabBJW1Q13TMvp0kauzANBjQtoQ=) 2: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl (hash: CxDJkHt4krgn+V9efLcZNAZc4+RXgjyVCYCDHAOPQ+A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4f:ce:32:42:65:94:1c:ed:7b:52:ef:ce:e7:38:ae:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849 Validity Not Before: Dec 24 10:01:11 2025 GMT Not After : Dec 25 10:01:11 2025 GMT Subject: CN=8ce5547c97efa4665ed65d8f4b829f8738abc611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5e:17:70:3f:e3:cd:ca:5a:45:dc:6b:45:43: 10:69:65:b6:1c:73:be:72:5d:d5:e7:25:22:cd:86: dc:58:2b:f7:55:15:96:20:e9:77:71:f2:db:7f:1c: f3:03:ac:26:ac:62:94:64:81:8f:16:22:15:93:6a: fa:05:b3:6f:c3:c2:2c:4e:a5:2d:2f:ec:73:1c:4c: ba:93:37:a2:53:fb:02:86:1e:04:ac:fc:96:11:c5: 5c:96:b2:63:4f:aa:85:21:e5:a9:a6:71:75:e3:d2: 99:89:4a:30:a9:71:73:cb:13:86:7b:c5:1f:aa:6d: ed:ca:6a:c8:7a:81:e2:51:d0:8b:6e:6f:e9:a1:ac: 29:93:bf:95:ec:df:83:d8:d3:e6:bc:3d:77:51:a3: c7:e9:45:18:07:d3:8b:a5:07:0d:86:99:b5:4e:ac: 5a:73:11:c8:0b:b0:f0:0a:81:15:d6:e5:e5:44:6b: 93:f9:f8:98:23:da:18:f8:96:86:d7:32:52:19:a9: f7:8d:5c:0d:07:29:f3:77:b7:e0:32:8a:7d:b8:da: 21:f9:5d:87:53:b4:96:c0:b2:10:d4:6c:80:6d:e8: 0d:f9:a3:5d:ce:3b:91:69:e6:d7:00:97:d0:03:7c: 39:b3:06:9f:7c:94:c5:e0:4a:7d:0a:55:f7:74:7b: b3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E5:54:7C:97:EF:A4:66:5E:D6:5D:8F:4B:82:9F:87:38:AB:C6:11 X509v3 Authority Key Identifier: keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:40:6d:5d:86:45:05:20:b7:1d:ef:d2:de:ab:5b:c2:bd:7f: 74:50:ac:7d:61:32:86:d4:1a:e1:47:40:78:2e:41:d9:e4:e7: 2c:a1:a0:22:76:de:2c:05:60:d1:f8:7a:92:0a:c1:77:5c:8e: 8e:81:bf:30:e3:25:71:5b:f5:26:e1:9e:1a:f3:93:e5:d7:77: 13:f9:4d:46:99:77:c7:c9:af:fb:27:19:0d:7e:ef:c9:eb:52: 63:97:2e:36:7e:ca:29:00:11:03:21:f2:b6:c1:38:38:31:40: 0a:08:f0:52:c7:0c:bb:4b:1d:b3:e9:84:f4:09:1f:3a:20:16: 60:3a:0a:24:69:e7:4e:15:98:cf:5b:a6:ca:5b:f6:c7:3c:b7: 07:ce:d0:0f:ac:75:64:95:a8:7a:fd:43:aa:e3:14:e2:74:fa: 73:95:a9:7c:9d:6b:56:94:75:27:9b:21:e0:c9:99:8b:6e:d5: ce:04:bf:39:81:3b:96:9d:e7:b0:cb:70:45:c3:b6:16:78:d6: 30:3f:07:f0:ef:97:00:1b:e7:19:37:c7:ed:eb:e1:7f:b9:a8: 3c:d6:49:d9:04:35:26:77:73:3f:a8:e5:c4:dc:99:c4:82:df: 84:a4:73:1b:a9:91:3d:bb:39:1e:d2:f0:4b:84:d6:cd:7f:22: 2f:36:68:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtPzjJCZZQc7XtS787nOK6IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmNTZiYTk4YzY3NDVhNjMwMjZkNzhmYzI4NDcyMjM5OWQy ZWI4NDkwHhcNMjUxMjI0MTAwMTExWhcNMjUxMjI1MTAwMTExWjAzMTEwLwYDVQQD Eyg4Y2U1NTQ3Yzk3ZWZhNDY2NWVkNjVkOGY0YjgyOWY4NzM4YWJjNjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArV4XcD/jzcpaRdxrRUMQaWW2HHO+ cl3V5yUizYbcWCv3VRWWIOl3cfLbfxzzA6wmrGKUZIGPFiIVk2r6BbNvw8IsTqUt L+xzHEy6kzeiU/sChh4ErPyWEcVclrJjT6qFIeWppnF149KZiUowqXFzyxOGe8Uf qm3tymrIeoHiUdCLbm/poawpk7+V7N+D2NPmvD13UaPH6UUYB9OLpQcNhpm1Tqxa cxHIC7DwCoEV1uXlRGuT+fiYI9oY+JaG1zJSGan3jVwNBynzd7fgMop9uNoh+V2H U7SWwLIQ1GyAbegN+aNdzjuRaebXAJfQA3w5swaffJTF4Ep9ClX3dHuzaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIzlVHyX76RmXtZdj0uCn4c4q8YRMB8GA1UdIwQY MBaAFL9WupjGdFpjAm14/ChHIjmdLrhJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zMzQzZDItNTI1My00MjQzLWEwMWYt NTg3ZmM4NGFjZWZlLzEvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy8zMzQzZDItNTI1My00MjQzLWEwMWYtNTg3ZmM4NGFjZWZl LzEvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAckBtXYZF BSC3He/S3qtbwr1/dFCsfWEyhtQa4UdAeC5B2eTnLKGgInbeLAVg0fh6kgrBd1yO joG/MOMlcVv1JuGeGvOT5dd3E/lNRpl3x8mv+ycZDX7vyetSY5cuNn7KKQARAyHy tsE4ODFACgjwUscMu0sds+mE9AkfOiAWYDoKJGnnThWYz1umylv2xzy3B87QD6x1 ZJWoev1DquMU4nT6c5WpfJ1rVpR1J5sh4MmZi27VzgS/OYE7lp3nsMtwRcO2FnjW MD8H8O+XABvnGTfH7evhf7moPNZJ2QQ1JndzP6jlxNyZxILfhKRzG6mRPbs5HtLw S4TWzX8iLzZoEw== -----END CERTIFICATE-----Generated at Wed Dec 24 18:09:15 2025 by rpki-client