This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft (raw, json) Hash identifier: RJ8z4Y0zCMzNY1FdUj6CbrUllWsQF258Vd6nQhZBsvo= Subject key identifier: 66:F5:15:F8:F3:2C:5D:DC:38:A9:AA:8D:4A:D5:DC:11:B6:51:BF:F1 Authority key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44 Certificate issuer: /CN=a7967d76c2d46720d4cfac0459fa3c3d22005044 Certificate serial: 019B5ABF85794E74E0DEA655C6A99F576C77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft Manifest number: 149F Signing time: Fri 26 Dec 2025 13:00:59 +0000 Manifest this update: Fri 26 Dec 2025 13:00:59 +0000 Manifest next update: Sat 27 Dec 2025 13:00:59 +0000 Files and hashes: 1: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl (hash: U0Xo/wjlZvBVcDxBV0E/xCtadOQvcUBVPXzOEhElwRE=) 2: yBmdgjqKFjOC_LFP16Md73QPZaM.roa (hash: 7uCrDxR1l98wleRX/wBWwg1CUrRxAdBoi9KU5PuzGk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:85:79:4e:74:e0:de:a6:55:c6:a9:9f:57:6c:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044 Validity Not Before: Dec 26 13:00:59 2025 GMT Not After : Dec 27 13:00:59 2025 GMT Subject: CN=66f515f8f32c5ddc38a9aa8d4ad5dc11b651bff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d9:39:1f:ed:de:d1:f4:ac:69:70:7b:e5:10: 2e:98:27:34:57:86:a3:35:32:af:8c:6f:e3:25:63: a5:34:c4:2d:aa:66:09:76:19:26:24:68:5a:03:7f: ac:0f:13:7e:bf:a7:fd:71:97:46:aa:a4:f7:85:bd: 01:b9:4f:b8:52:7c:95:fe:47:ec:b3:f5:f3:72:6d: 11:6a:34:c5:c9:fa:51:8d:de:e3:6e:09:5f:9e:fa: 9a:82:53:64:8b:ff:1e:aa:bb:64:8b:f5:ff:a7:fc: 29:49:ca:cb:4b:29:79:99:4b:f3:6e:38:08:91:9f: fb:47:f5:26:cd:fa:4f:be:ea:32:52:86:66:a9:5d: cf:cc:85:25:76:82:cc:a0:c1:cc:8c:7a:4b:f9:73: 79:51:c6:f3:71:34:f2:00:d8:44:ca:16:53:b2:47: 4d:0d:ad:de:b6:f1:ae:11:35:65:03:a1:b3:6e:69: 0c:84:8e:c7:39:20:d7:9b:22:d5:8d:b9:28:30:e5: 8b:64:b1:5e:f0:5e:24:38:4b:57:c0:cc:d3:18:54: 20:d6:72:13:a4:a8:c5:14:d5:39:f0:63:14:bb:97: 93:15:c7:1b:d0:f9:b7:8d:ed:3a:e5:56:28:ff:cf: 28:ff:08:0d:3e:17:97:bf:e4:43:03:c9:cd:b6:d1: 71:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F5:15:F8:F3:2C:5D:DC:38:A9:AA:8D:4A:D5:DC:11:B6:51:BF:F1 X509v3 Authority Key Identifier: keyid:A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:31:82:76:18:16:58:d4:34:9e:0c:24:98:11:45:ea:b7:4d: a1:c3:4d:73:86:c4:2d:79:95:dc:4c:f5:9b:d0:26:79:f2:15: 35:27:f7:33:8d:2f:6d:77:93:bd:fd:10:04:4a:80:2d:80:e8: 54:8d:2d:b0:83:6d:15:6f:41:2c:89:16:cd:ab:96:6b:c0:88: 3f:46:01:d5:66:36:c4:2c:5d:5d:c8:67:92:ea:c0:a5:84:79: 82:da:3b:30:9c:80:3e:e3:fe:0b:30:86:54:74:33:7f:e5:a0: 16:b0:16:73:25:fc:d2:bd:05:3a:bb:bf:92:27:e9:bf:02:c1: 25:87:1e:86:f7:02:24:7a:32:8c:9b:7f:05:b0:d8:76:ad:34: 61:bb:cb:30:c2:da:5b:9d:05:54:c9:a8:15:5e:e0:83:6e:d8: fa:a4:ad:64:8a:da:69:e1:74:14:d2:c0:11:4e:d9:4e:f3:bd: cb:38:08:45:56:93:d5:b6:94:94:cc:8a:3d:1b:66:3e:45:a6: 90:73:39:67:ba:cc:c1:e8:70:79:31:bd:dc:83:b7:d8:60:c8: e2:4d:83:77:47:b1:be:4b:0e:92:fe:a1:f7:6d:76:80:fe:61: d1:56:a5:f4:65:88:44:20:08:63:b1:b6:63:e4:3b:0f:eb:4b: 07:69:f1:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav4V5TnTg3qZVxqmfV2x3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3OTY3ZDc2YzJkNDY3MjBkNGNmYWMwNDU5ZmEzYzNkMjIw MDUwNDQwHhcNMjUxMjI2MTMwMDU5WhcNMjUxMjI3MTMwMDU5WjAzMTEwLwYDVQQD Eyg2NmY1MTVmOGYzMmM1ZGRjMzhhOWFhOGQ0YWQ1ZGMxMWI2NTFiZmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29k5H+3e0fSsaXB75RAumCc0V4aj NTKvjG/jJWOlNMQtqmYJdhkmJGhaA3+sDxN+v6f9cZdGqqT3hb0BuU+4UnyV/kfs s/Xzcm0RajTFyfpRjd7jbglfnvqaglNki/8eqrtki/X/p/wpScrLSyl5mUvzbjgI kZ/7R/UmzfpPvuoyUoZmqV3PzIUldoLMoMHMjHpL+XN5UcbzcTTyANhEyhZTskdN Da3etvGuETVlA6GzbmkMhI7HOSDXmyLVjbkoMOWLZLFe8F4kOEtXwMzTGFQg1nIT pKjFFNU58GMUu5eTFccb0Pm3je065VYo/88o/wgNPheXv+RDA8nNttFxjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGb1FfjzLF3cOKmqjUrV3BG2Ub/xMB8GA1UdIwQY MBaAFKeWfXbC1Gcg1M+sBFn6PD0iAFBEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDVaOWRzTFVaeURVejZ3RVdmbzhQU0lBVUVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS84N2I3NjgtMTU0NS00OTRhLTg0Zjkt MWNmNTBhNTM2MDI2LzEvcDVaOWRzTFVaeURVejZ3RVdmbzhQU0lBVUVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS84N2I3NjgtMTU0NS00OTRhLTg0ZjktMWNmNTBhNTM2MDI2 LzEvcDVaOWRzTFVaeURVejZ3RVdmbzhQU0lBVUVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvzGCdhgW WNQ0ngwkmBFF6rdNocNNc4bELXmV3Ez1m9AmefIVNSf3M40vbXeTvf0QBEqALYDo VI0tsINtFW9BLIkWzauWa8CIP0YB1WY2xCxdXchnkurApYR5gto7MJyAPuP+CzCG VHQzf+WgFrAWcyX80r0FOru/kifpvwLBJYcehvcCJHoyjJt/BbDYdq00YbvLMMLa W50FVMmoFV7gg27Y+qStZIraaeF0FNLAEU7ZTvO9yzgIRVaT1baUlMyKPRtmPkWm kHM5Z7rMwehweTG93IO32GDI4k2Dd0exvksOkv6h9212gP5h0Val9GWIRCAIY7G2 Y+Q7D+tLB2nxXQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:17 2025 by rpki-client