This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: Bbf51kvz536HxhIX1MtvMZqu9lv62tV8ELfzSec91EY= Subject key identifier: 57:2E:36:3D:53:D0:B1:BD:CF:C2:82:90:C9:8A:C5:26:A0:7C:57:1E Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019AF5099906FFDD41B7DD7DBF3AA5ADC860 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 1250 Signing time: Sat 06 Dec 2025 19:00:38 +0000 Manifest this update: Sat 06 Dec 2025 19:00:38 +0000 Manifest next update: Sun 07 Dec 2025 19:00:38 +0000 Files and hashes: 1: 1-i_ESwYWDKjvxe-cLQFb33q5Qu0.roa (hash: MWN71QN/v297mIABIQi0BIqexEx6vQv3LxWHulQ1lh0=) 2: 3uMGCa1hGu4z3o3-_G7z4ipL-iU.roa (hash: W9UTR4UDUFmqfh0USMFmsobpW7zQlT5fd2b07I+b238=) 3: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: zOybr1IXbpuyQpdddz01F4vZEUHNx3YaVAGT1ajbmCQ=) 4: 53Cd6ksm6jJ9RlO5imUtuWj1rJA.roa (hash: cQll3lCbJxJtoxzsBZdQMm8ZJ1gmBBCp3yO2flYfKKU=) 5: 5aybWk2Ky5dF88Dl5BHsEFM1SO0.roa (hash: H+JwBN0SZWGViTYdzpWvA1lltG+ihuV8ot5mKPyc2Ag=) 6: D51k8Yufzem8ogKjVaG-BE3-N9Q.roa (hash: LfZnqpQQPapIc1GbVrcmd90U2aDXCgwED1y7JLo14nI=) 7: EEzCfGegHPEpdqTqvMRMlcFre1Y.roa (hash: uwoju1vAFdOs3H0Q+w/qT7aEQBJpMP98DiaXonyIQ9M=) 8: EQAhdlSS1FIFJlau-mazb3tbQD8.roa (hash: EYIWh35VYrIjFevk0wSjam09x/CTgAsspbJddnJMeDU=) 9: PLzlfTmqAL1rzlLN1TFrpHpYMVU.roa (hash: INujx6I3LZF9XIVr4zE9W5J6NHU6IlkfUKgf+j8aJrU=) 10: QCPaGZ8bi2Da50RQ4k8ya1w0dq4.roa (hash: UeTuehE3XWxqnHJAwNv7xL7hPz4xW2vyEJKj+BsbTow=) 11: aAu5S5IbLCTcHF2sjNSq_YvIkRs.roa (hash: Ofs8Vq4O2KmWTmDnq5aKJmZojKw/IVecQ8WTuC45ixk=) 12: fjY_g_wwgFPVt57q0tJYGzzoSDw.roa (hash: qq4Ldl54/taiWut/8vwq9PH71gezdeLMf1VMPmsHUe8=) 13: nOw141dLNmkj2u2FTqG2Wvc-gVM.roa (hash: CQnQRUA/+q6ZVbEZKZtps04sWUzpVEunbxRhthCLZIQ=) 14: pw1_qD5J6o76enPdGNTr_4Viub8.roa (hash: L6pLEncIISYEMGBKzu7DbyUXVYEOgT4kfh4modTEATA=) 15: qigZWtFurHaD054OcaOqq49am_w.roa (hash: Sa19eTl0ldE9k7oxfeYcou5g3EZnF3X8bF0Hbur3zdE=) 16: tRNXUlx68rKP9UOE-hhExB1kws8.roa (hash: +Hd3tIKng2pbogIxn1dcX/j1LNU33NvuDwSbS4tdpEA=) 17: ve2cUb4I36o88cUncaHeOHK5tGk.roa (hash: 6gTupRG97QR/JQvN8ay2tdbOI4Q3EMkpnACGQxjxniI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:99:06:ff:dd:41:b7:dd:7d:bf:3a:a5:ad:c8:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Dec 6 19:00:38 2025 GMT Not After : Dec 7 19:00:38 2025 GMT Subject: CN=572e363d53d0b1bdcfc28290c98ac526a07c571e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:5f:5e:b0:c1:50:d9:79:69:22:82:b7:fc:af: 9f:91:b6:be:1a:6a:14:9b:89:ee:77:52:b8:23:b2: 9b:20:c5:bb:ce:2a:76:f4:ed:25:e6:d6:25:78:ca: cb:19:26:ab:db:4a:46:ba:1d:98:92:73:be:27:39: a0:57:cd:6a:30:64:3f:ae:27:2b:59:4d:14:59:4b: bb:7c:0c:ad:7b:1b:a2:3b:41:9b:22:dd:d7:1c:33: 32:8a:3b:d8:a6:d0:0b:47:d4:87:51:7c:10:64:61: c1:2f:d1:1c:58:23:23:2e:eb:a2:63:1f:4e:2e:43: dc:71:d5:1d:b7:34:64:9a:38:49:5a:21:a0:9f:1a: 74:6d:93:a9:92:92:e4:64:15:f9:13:dd:52:d2:6b: b1:3b:9a:a7:46:44:38:0b:9e:a2:e1:d8:9a:a9:02: 8a:70:25:57:8a:1b:07:10:44:7f:9e:ad:df:b2:8c: ce:0a:4e:2f:c4:6c:91:7d:9a:47:b0:c6:dd:58:f5: 11:aa:7d:b6:b9:30:74:01:c8:44:eb:fa:62:47:4d: 0b:da:2b:4f:94:dc:0c:2d:76:66:df:51:8b:72:d2: 23:bc:73:6f:6d:cd:a5:0f:4f:88:91:b6:00:83:31: 11:8d:97:34:f2:29:4f:b1:3c:cd:b6:22:0a:9f:83: 96:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2E:36:3D:53:D0:B1:BD:CF:C2:82:90:C9:8A:C5:26:A0:7C:57:1E X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:74:fb:4a:26:e7:f0:ff:84:b2:10:0c:17:d0:be:68:b7:f3: 19:a2:5a:3e:7c:29:81:49:13:c1:b8:fc:66:30:72:fe:9b:74: 5f:d2:0e:16:c1:99:be:d1:b3:80:a2:fb:3e:2c:ac:0e:c7:6b: 96:0b:77:f8:09:e1:2e:2f:10:a6:65:d5:ef:3b:40:bf:22:e4: dd:2d:b4:8b:04:96:d7:a4:08:01:10:2a:d2:7e:a1:c1:42:10: 66:79:5c:29:c9:17:45:ce:35:26:31:fa:f4:9d:99:e6:39:21: cb:90:17:b4:7a:8a:49:11:26:79:30:b1:67:5d:b1:fd:fa:4e: 8f:78:86:12:7d:9c:30:b9:f1:37:2a:d4:94:9f:98:f0:f6:03: dc:77:73:bf:e1:65:90:ec:87:29:c4:73:38:b4:d6:f5:e4:d6: 30:4f:7b:39:1c:ec:e7:c2:b6:64:4f:98:d6:0e:eb:58:f8:eb: 0a:96:ab:a2:09:19:32:fc:a4:ee:4e:d4:26:99:65:00:47:7b: b8:ef:8e:e7:a3:a2:f1:e4:c3:1f:b5:cc:bc:2a:3f:fc:12:a4: 84:cc:29:d3:6e:df:07:54:e9:c7:22:f1:e7:e7:64:85:b5:1c: 82:73:a3:30:82:c5:a1:78:9c:c1:ef:61:f0:1c:b7:b0:36:8d: 9d:09:e6:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CZkG/91Bt919vzqlrchgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjUxMjA2MTkwMDM4WhcNMjUxMjA3MTkwMDM4WjAzMTEwLwYDVQQD Eyg1NzJlMzYzZDUzZDBiMWJkY2ZjMjgyOTBjOThhYzUyNmEwN2M1NzFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjF9esMFQ2XlpIoK3/K+fkba+GmoU m4nud1K4I7KbIMW7zip29O0l5tYleMrLGSar20pGuh2YknO+JzmgV81qMGQ/ricr WU0UWUu7fAytexuiO0GbIt3XHDMyijvYptALR9SHUXwQZGHBL9EcWCMjLuuiYx9O LkPccdUdtzRkmjhJWiGgnxp0bZOpkpLkZBX5E91S0muxO5qnRkQ4C56i4diaqQKK cCVXihsHEER/nq3fsozOCk4vxGyRfZpHsMbdWPURqn22uTB0AchE6/piR00L2itP lNwMLXZm31GLctIjvHNvbc2lD0+IkbYAgzERjZc08ilPsTzNtiIKn4OWjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFcuNj1T0LG9z8KCkMmKxSagfFceMB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi3T7Sibn 8P+EshAMF9C+aLfzGaJaPnwpgUkTwbj8ZjBy/pt0X9IOFsGZvtGzgKL7PiysDsdr lgt3+AnhLi8QpmXV7ztAvyLk3S20iwSW16QIARAq0n6hwUIQZnlcKckXRc41JjH6 9J2Z5jkhy5AXtHqKSREmeTCxZ12x/fpOj3iGEn2cMLnxNyrUlJ+Y8PYD3Hdzv+Fl kOyHKcRzOLTW9eTWME97ORzs58K2ZE+Y1g7rWPjrCparogkZMvyk7k7UJpllAEd7 uO+O56Oi8eTDH7XMvCo//BKkhMwp027fB1TpxyLx5+dkhbUcgnOjMILFoXicwe9h 8By3sDaNnQnmZw== -----END CERTIFICATE-----Generated at Sat Dec 6 22:53:14 2025 by rpki-client