This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json) Hash identifier: /Kzbb6M7395/6nlD9U2lTO3ordj8JrWtqDFZXFkRRwM= Subject key identifier: 61:D8:5E:36:29:B0:6D:42:D5:CB:60:7E:0C:1E:43:1A:B8:AB:11:88 Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96 Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196 Certificate serial: 019B3F7F1A72B30C1B2E8152075E605ADD2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft Manifest number: 0B26 Signing time: Sun 21 Dec 2025 06:00:52 +0000 Manifest this update: Sun 21 Dec 2025 06:00:52 +0000 Manifest next update: Mon 22 Dec 2025 06:00:52 +0000 Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: 72IG6Mb+lvI6EpHFgdHmTPUaIz3pj/YHxwd9QFvZ5oQ=) 2: Q9uvUMUGF4tW9TpLUtXmiB_YDYU.roa (hash: 6w5t2feWmLv2FpcZk6E6i1f0DCsFUL0L2nW9iOpOGYo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7f:1a:72:b3:0c:1b:2e:81:52:07:5e:60:5a:dd:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196 Validity Not Before: Dec 21 06:00:52 2025 GMT Not After : Dec 22 06:00:52 2025 GMT Subject: CN=61d85e3629b06d42d5cb607e0c1e431ab8ab1188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6f:aa:ff:59:4d:45:e9:5d:d9:a8:55:9f:33: 77:fc:c1:5e:cc:a6:8f:fd:e5:ea:aa:6b:61:0e:f3: 89:da:94:64:1f:04:52:86:cf:66:7f:57:59:2b:48: 3c:68:c2:8d:aa:cb:bb:64:a5:51:0c:74:7a:dc:61: 35:28:a2:9f:5c:94:ba:f6:ea:28:04:b6:7c:e5:d3: 76:e1:7b:9a:fd:31:de:86:13:aa:11:26:ad:df:75: 99:96:da:73:86:02:88:13:f6:d7:29:ca:27:3d:0c: 99:25:bf:0b:5f:20:0a:f5:77:5e:f4:6b:7c:cd:32: 19:66:4e:a2:db:f5:27:f5:88:02:fd:45:01:41:14: 8c:30:55:a5:e9:59:13:f2:4b:ad:44:79:7b:f7:f2: e3:9c:b9:d7:4c:0e:ed:ad:5e:66:73:a7:9e:45:38: e1:30:26:1f:8c:d2:6b:aa:5f:70:b3:c6:23:ea:f2: 7b:b5:54:39:d5:b7:05:1e:4f:59:86:7a:67:25:86: 76:c9:99:8f:db:4a:95:cb:34:15:40:fe:ac:25:c7: c4:0c:bd:3b:f8:bb:04:21:9c:cf:d1:ca:c5:91:cc: f9:02:26:5e:8d:5f:13:73:5e:20:20:ab:a6:2b:9d: cc:a4:30:b3:50:c4:f3:9b:2e:6a:dd:1b:02:1a:4c: 48:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D8:5E:36:29:B0:6D:42:D5:CB:60:7E:0C:1E:43:1A:B8:AB:11:88 X509v3 Authority Key Identifier: keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:e7:42:94:d6:4b:7d:f4:f0:d8:2b:f3:99:a7:11:0f:15:bb: 64:4d:9f:e7:9a:00:29:32:d9:4c:b7:2e:3c:10:c0:98:99:ff: 0d:5c:00:84:32:54:8e:25:07:ac:d5:82:77:13:c6:d1:a9:d2: 0e:3d:43:e6:ee:61:65:b3:fa:9d:99:d3:48:f4:7c:42:62:07: fb:a2:28:ea:11:f9:35:b2:51:43:39:45:a5:9a:20:12:27:f7: c3:bd:5b:ca:3d:c4:94:9c:82:16:62:ca:6b:96:f0:76:13:f2: 8a:c3:f2:b5:78:22:e1:46:01:2b:79:8e:84:48:f4:1e:c1:00: a4:59:f0:c9:69:9e:a5:31:f7:fc:53:b2:2b:7b:34:fe:8b:ac: ab:2a:00:92:ba:fb:b8:b7:8f:18:04:13:9d:b4:aa:b0:6b:ae: 44:4b:b0:e1:50:f8:a3:05:a1:9f:16:8a:87:a7:53:54:64:05: 22:f0:95:99:6d:44:fa:37:e2:81:d2:81:da:09:86:f4:23:4a: 7d:57:11:98:99:03:70:e4:c4:8b:48:7a:df:3e:3b:8c:f3:49: 07:7c:ab:7f:f2:b9:bb:92:c8:10:b7:45:04:cc:c9:da:f6:91: b7:e3:34:3a:b6:9e:50:95:ac:70:3a:3d:99:04:b5:74:38:69: 92:21:cf:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/fxpyswwbLoFSB15gWt0tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3YjE0M2Y2NGQ1MTBiYTMxMjk3Y2JhZTU2ODJmZDQxYjJj ODExOTYwHhcNMjUxMjIxMDYwMDUyWhcNMjUxMjIyMDYwMDUyWjAzMTEwLwYDVQQD Eyg2MWQ4NWUzNjI5YjA2ZDQyZDVjYjYwN2UwYzFlNDMxYWI4YWIxMTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArW+q/1lNReld2ahVnzN3/MFezKaP /eXqqmthDvOJ2pRkHwRShs9mf1dZK0g8aMKNqsu7ZKVRDHR63GE1KKKfXJS69uoo BLZ85dN24Xua/THehhOqESat33WZltpzhgKIE/bXKconPQyZJb8LXyAK9Xde9Gt8 zTIZZk6i2/Un9YgC/UUBQRSMMFWl6VkT8kutRHl79/LjnLnXTA7trV5mc6eeRTjh MCYfjNJrql9ws8Yj6vJ7tVQ51bcFHk9ZhnpnJYZ2yZmP20qVyzQVQP6sJcfEDL07 +LsEIZzP0crFkcz5AiZejV8Tc14gIKumK53MpDCzUMTzmy5q3RsCGkxINQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHYXjYpsG1C1ctgfgweQxq4qxGIMB8GA1UdIwQY MBaAFPexQ/ZNUQujEpfLrlaC/UGyyBGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUt MGZiZTJkZTA2MzZkLzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUtMGZiZTJkZTA2MzZk LzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr+dClNZL ffTw2CvzmacRDxW7ZE2f55oAKTLZTLcuPBDAmJn/DVwAhDJUjiUHrNWCdxPG0anS Dj1D5u5hZbP6nZnTSPR8QmIH+6Io6hH5NbJRQzlFpZogEif3w71byj3ElJyCFmLK a5bwdhPyisPytXgi4UYBK3mOhEj0HsEApFnwyWmepTH3/FOyK3s0/ousqyoAkrr7 uLePGAQTnbSqsGuuREuw4VD4owWhnxaKh6dTVGQFIvCVmW1E+jfigdKB2gmG9CNK fVcRmJkDcOTEi0h63z47jPNJB3yrf/K5u5LIELdFBMzJ2vaRt+M0OraeUJWscDo9 mQS1dDhpkiHPXA== -----END CERTIFICATE-----Generated at Sun Dec 21 09:15:00 2025 by rpki-client