This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json) Hash identifier: WF5uZnk1N8yxKs5xN7nWkj2HIdsv5pCHLloNyTOlWwM= Subject key identifier: 38:43:C9:CC:35:E1:B5:C9:63:27:DB:3A:0C:2A:6E:DC:82:7A:B8:8F Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc Certificate serial: 019B597762F411B93D20BDBF14FB269DE3F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft Manifest number: 05B4 Signing time: Fri 26 Dec 2025 07:02:34 +0000 Manifest this update: Fri 26 Dec 2025 07:02:34 +0000 Manifest next update: Sat 27 Dec 2025 07:02:34 +0000 Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: KNcXFtIfO21jV8ksSwINmKxpi8tmvnQGNl2OYS3VDFI=) 2: ynJSD2xc-CykfYa79BP9jQj40kM.roa (hash: fMb/laTqYN39Vwte4hGLXjRHIufJPIqxfdcZimxGcGk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:62:f4:11:b9:3d:20:bd:bf:14:fb:26:9d:e3:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc Validity Not Before: Dec 26 07:02:34 2025 GMT Not After : Dec 27 07:02:34 2025 GMT Subject: CN=3843c9cc35e1b5c96327db3a0c2a6edc827ab88f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:72:76:20:31:26:fd:ea:22:c2:09:9d:e4:ad: e8:77:cd:9d:49:85:91:22:20:8c:39:24:8a:b0:5c: 80:5d:78:3c:f9:cc:6d:4e:5d:2f:db:7e:8d:97:5b: f4:39:5f:c4:10:4c:ae:83:d2:e1:8d:7b:ab:2e:2a: c2:12:9e:0e:9e:8a:23:95:49:d7:f9:19:09:20:d9: d1:0e:06:82:a7:68:37:1e:b1:6d:cb:f5:99:7e:7a: a3:bf:f7:34:00:2f:fb:62:4f:b4:c1:0b:a1:cc:0a: d4:e8:77:93:d0:8e:ff:9b:12:11:12:25:b4:11:f9: c8:08:45:56:c9:2b:62:8b:6d:ef:16:8d:e9:f1:f8: f3:6d:02:19:83:0d:7c:ba:0d:80:04:a9:77:33:40: 32:99:2c:ab:a3:c9:b3:9d:66:31:ca:a5:53:20:0d: 44:34:7b:ff:e4:4c:78:82:36:c5:54:91:d7:0a:c2: a4:b1:82:e5:b5:7f:f6:43:eb:c0:a5:03:b2:dd:9f: e5:12:72:64:1f:0b:53:1c:26:6f:8f:38:7e:c3:c7: 5e:7d:e1:f2:7c:f1:5f:13:60:f1:8a:4f:f7:3d:7b: da:b2:a8:69:65:e4:89:3d:cc:b4:53:b1:d0:19:5a: ba:a5:8a:f8:aa:b6:25:ee:bb:10:fb:53:1e:2a:48: da:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:43:C9:CC:35:E1:B5:C9:63:27:DB:3A:0C:2A:6E:DC:82:7A:B8:8F X509v3 Authority Key Identifier: keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:30:66:22:a6:4d:82:53:3a:b5:05:4d:05:9e:05:4b:68:17: d5:dd:18:48:0e:1f:21:58:a9:2a:76:fa:a4:18:7b:84:88:a8: fc:df:f7:c4:55:2b:01:b6:54:87:75:b8:97:45:2c:89:c2:39: d0:b0:9a:1a:0f:6f:c8:ac:e4:b5:eb:73:10:13:f7:63:f5:1e: 11:b0:b3:fe:74:ac:98:9e:82:c7:13:9f:48:7b:dc:d1:0a:07: e3:01:0e:5f:11:a8:00:1d:68:2a:7d:9e:c2:55:1f:52:e1:90: 8d:a0:92:7c:b1:e5:ee:fd:8f:1c:10:aa:7a:8c:5a:6d:2b:80: 4b:21:fc:2b:3a:b9:0b:c5:bd:2c:50:9e:2a:9f:6b:1f:c3:41: 06:ae:3e:92:03:ce:64:61:a2:18:ed:be:1a:7c:0c:41:53:37: 31:7e:e5:d1:67:69:74:3a:1f:19:26:b1:79:19:bb:7d:a1:db: b9:09:6f:35:d8:df:f8:c3:57:98:33:6e:ca:06:50:24:00:a7: 26:10:f1:d5:89:2a:64:7b:e1:a1:d1:1c:e9:1c:cf:44:fa:18: c3:a8:f4:ef:9b:85:d5:e8:c3:11:b5:e0:54:f9:4d:1c:f8:0e: ae:dd:2f:ad:1a:82:21:e2:50:2e:7f:d3:34:8a:11:08:b0:ac: cc:da:ad:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd2L0Ebk9IL2/FPsmneP5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NzM5ZjA4NDQyZTIyNDQ2NjIxYjg5YTU3NjM5YjM1NDJi YTM0ZGMwHhcNMjUxMjI2MDcwMjM0WhcNMjUxMjI3MDcwMjM0WjAzMTEwLwYDVQQD EygzODQzYzljYzM1ZTFiNWM5NjMyN2RiM2EwYzJhNmVkYzgyN2FiODhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHJ2IDEm/eoiwgmd5K3od82dSYWR IiCMOSSKsFyAXXg8+cxtTl0v236Nl1v0OV/EEEyug9LhjXurLirCEp4OnoojlUnX +RkJINnRDgaCp2g3HrFty/WZfnqjv/c0AC/7Yk+0wQuhzArU6HeT0I7/mxIREiW0 EfnICEVWyStii23vFo3p8fjzbQIZgw18ug2ABKl3M0AymSyro8mznWYxyqVTIA1E NHv/5Ex4gjbFVJHXCsKksYLltX/2Q+vApQOy3Z/lEnJkHwtTHCZvjzh+w8defeHy fPFfE2Dxik/3PXvasqhpZeSJPcy0U7HQGVq6pYr4qrYl7rsQ+1MeKkja7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDhDycw14bXJYyfbOgwqbtyCeriPMB8GA1UdIwQY MBaAFOdznwhELiJEZiG4mldjmzVCujTcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTNPZkNFUXVJa1JtSWJpYVYyT2JOVUs2Tk53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9lMjBkNTktNDQ1NC00ZWM4LTk2Nzct NWYyYmYyMmUxODlkLzEvNTNPZkNFUXVJa1JtSWJpYVYyT2JOVUs2Tk53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9lMjBkNTktNDQ1NC00ZWM4LTk2NzctNWYyYmYyMmUxODlk LzEvNTNPZkNFUXVJa1JtSWJpYVYyT2JOVUs2Tk53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHjBmIqZN glM6tQVNBZ4FS2gX1d0YSA4fIVipKnb6pBh7hIio/N/3xFUrAbZUh3W4l0UsicI5 0LCaGg9vyKzktetzEBP3Y/UeEbCz/nSsmJ6CxxOfSHvc0QoH4wEOXxGoAB1oKn2e wlUfUuGQjaCSfLHl7v2PHBCqeoxabSuASyH8Kzq5C8W9LFCeKp9rH8NBBq4+kgPO ZGGiGO2+GnwMQVM3MX7l0WdpdDofGSaxeRm7faHbuQlvNdjf+MNXmDNuygZQJACn JhDx1YkqZHvhodEc6RzPRPoYw6j075uF1ejDEbXgVPlNHPgOrt0vrRqCIeJQLn/T NIoRCLCszNqtkg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:57:04 2025 by rpki-client