This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft File: v60IrIYttq4LsLiArsBV7by7gvw.mft (raw, json) Hash identifier: +CpuU42uFhcnJTr/6djTlPpXGTV3c5p1K6wb6IXg7Ik= Subject key identifier: CB:5A:C0:95:90:E8:1F:B1:2A:69:A2:86:94:90:51:70:3E:34:E8:DB Authority key identifier: BF:AD:08:AC:86:2D:B6:AE:0B:B0:B8:80:AE:C0:55:ED:BC:BB:82:FC Certificate issuer: /CN=bfad08ac862db6ae0bb0b880aec055edbcbb82fc Certificate serial: 019B30E7EC635BBC57EC2F2426F956C0A66D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft Manifest number: 0F5C Signing time: Thu 18 Dec 2025 10:01:04 +0000 Manifest this update: Thu 18 Dec 2025 10:01:04 +0000 Manifest next update: Fri 19 Dec 2025 10:01:04 +0000 Files and hashes: 1: CZZ5ipuaAOE-Yr5zJDMCRrkyVSA.roa (hash: iFc83ywiMJmrxS1NXOM6QWOY3OsVmvxahP4mNSEaMZM=) 2: v60IrIYttq4LsLiArsBV7by7gvw.crl (hash: 0cjHP5xpHZuaB1FpFzkLb2FmUtKVIer7x2+iGTU2G3Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.crl rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 10:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:e7:ec:63:5b:bc:57:ec:2f:24:26:f9:56:c0:a6:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfad08ac862db6ae0bb0b880aec055edbcbb82fc Validity Not Before: Dec 18 10:01:04 2025 GMT Not After : Dec 19 10:01:04 2025 GMT Subject: CN=cb5ac09590e81fb12a69a286949051703e34e8db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:c5:96:f3:39:46:bd:e3:e2:98:76:07:94:71: 0c:28:f2:b0:c8:5a:56:d0:70:85:e9:05:19:31:69: d4:32:82:9d:eb:98:08:be:31:ef:81:ab:66:18:29: 18:0b:d9:71:61:a8:29:a0:ee:fe:52:37:14:fe:d7: 89:62:1f:d5:c5:98:04:21:5e:bf:6b:47:d6:8b:12: 98:9c:70:2c:1c:d0:f2:72:8c:8e:15:af:2b:84:dc: 57:16:c3:94:39:de:82:a0:83:2e:fd:51:c0:d7:7a: 97:8d:1c:43:a9:0f:c0:2c:1e:1e:ad:6b:73:29:5c: 5f:f5:7e:e1:b8:ff:41:97:29:89:7b:2b:7b:00:e5: 6d:dc:d8:35:5e:fd:04:78:74:26:00:40:ee:53:f6: 08:ac:45:d7:9f:bb:88:7b:57:bf:00:11:8c:4b:28: b1:a4:21:f9:3c:72:40:e5:55:a7:9c:64:24:56:0e: 4e:f6:e9:7f:3f:a6:1c:f8:a8:ef:58:73:a6:9b:79: b1:67:e8:7c:be:7d:15:2f:4e:f1:18:e1:14:09:8f: 88:9e:85:7d:59:22:52:72:3a:96:ac:71:08:41:aa: 79:8c:51:9c:e0:3b:88:a5:15:cf:f8:12:6c:21:b1: c5:29:ef:33:ee:c8:46:b2:0b:53:4d:97:d5:42:a0: ba:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5A:C0:95:90:E8:1F:B1:2A:69:A2:86:94:90:51:70:3E:34:E8:DB X509v3 Authority Key Identifier: keyid:BF:AD:08:AC:86:2D:B6:AE:0B:B0:B8:80:AE:C0:55:ED:BC:BB:82:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:57:42:8d:98:06:4d:b9:5b:2d:03:82:e7:4e:2c:ef:83:53: 2f:bc:e2:98:b4:6c:85:06:78:07:4d:e0:a9:9c:ef:1d:4c:8f: 2f:3a:73:53:80:2b:40:9e:6e:44:c9:00:03:ec:bd:58:a9:63: ad:30:07:f4:cf:b1:4c:e9:05:26:dd:84:01:79:64:ca:3c:11: f2:e7:1d:40:21:d8:90:10:2b:33:2d:41:11:ef:9b:5e:e6:33: 2b:9b:a9:fa:52:4e:dd:f5:43:af:8f:61:c4:fd:05:e5:bb:97: 58:cc:02:2b:a3:e5:29:14:b6:b3:48:59:db:bc:f2:74:71:14: 1a:e1:48:ce:65:d3:1d:ae:03:12:4e:bc:af:c7:a5:3d:cf:ed: 7c:a4:b5:3e:e1:8d:fe:10:49:11:d8:69:6e:e5:37:f2:f8:2e: 76:f4:a5:3f:fd:3e:46:6c:f4:d0:ed:81:8e:4c:8b:f3:18:0f: d9:62:4a:6a:03:78:ae:0c:24:2c:c2:06:aa:cc:09:62:47:b8: 8e:38:33:a2:2f:d3:c7:97:53:4c:f9:29:61:9b:88:5d:45:f5: d4:31:c2:e2:d8:5c:f5:b5:79:d6:bb:33:dc:68:88:a0:e4:90: 57:72:51:0c:fc:41:28:51:88:10:a8:89:46:68:47:65:45:c1: d6:f8:bf:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsw5+xjW7xX7C8kJvlWwKZtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYWQwOGFjODYyZGI2YWUwYmIwYjg4MGFlYzA1NWVkYmNi YjgyZmMwHhcNMjUxMjE4MTAwMTA0WhcNMjUxMjE5MTAwMTA0WjAzMTEwLwYDVQQD EyhjYjVhYzA5NTkwZTgxZmIxMmE2OWEyODY5NDkwNTE3MDNlMzRlOGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjcWW8zlGvePimHYHlHEMKPKwyFpW 0HCF6QUZMWnUMoKd65gIvjHvgatmGCkYC9lxYagpoO7+UjcU/teJYh/VxZgEIV6/ a0fWixKYnHAsHNDycoyOFa8rhNxXFsOUOd6CoIMu/VHA13qXjRxDqQ/ALB4erWtz KVxf9X7huP9BlymJeyt7AOVt3Ng1Xv0EeHQmAEDuU/YIrEXXn7uIe1e/ABGMSyix pCH5PHJA5VWnnGQkVg5O9ul/P6Yc+KjvWHOmm3mxZ+h8vn0VL07xGOEUCY+InoV9 WSJScjqWrHEIQap5jFGc4DuIpRXP+BJsIbHFKe8z7shGsgtTTZfVQqC6kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMtawJWQ6B+xKmmihpSQUXA+NOjbMB8GA1UdIwQY MBaAFL+tCKyGLbauC7C4gK7AVe28u4L8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjYwSXJJWXR0cTRMc0xpQXJzQlY3Ynk3Z3Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9kNWRjNjEtODgyYi00NjM2LWFmZjEt MWZiM2Y4MTc2MDhmLzEvdjYwSXJJWXR0cTRMc0xpQXJzQlY3Ynk3Z3Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9kNWRjNjEtODgyYi00NjM2LWFmZjEtMWZiM2Y4MTc2MDhm LzEvdjYwSXJJWXR0cTRMc0xpQXJzQlY3Ynk3Z3Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV1dCjZgG TblbLQOC504s74NTL7zimLRshQZ4B03gqZzvHUyPLzpzU4ArQJ5uRMkAA+y9WKlj rTAH9M+xTOkFJt2EAXlkyjwR8ucdQCHYkBArMy1BEe+bXuYzK5up+lJO3fVDr49h xP0F5buXWMwCK6PlKRS2s0hZ27zydHEUGuFIzmXTHa4DEk68r8elPc/tfKS1PuGN /hBJEdhpbuU38vgudvSlP/0+Rmz00O2BjkyL8xgP2WJKagN4rgwkLMIGqswJYke4 jjgzoi/Tx5dTTPkpYZuIXUX11DHC4thc9bV51rsz3GiIoOSQV3JRDPxBKFGIEKiJ RmhHZUXB1vi/Tw== -----END CERTIFICATE-----Generated at Thu Dec 18 14:52:26 2025 by rpki-client