This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft File: 5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json) Hash identifier: OXGufgMelnNbygV6Y5gaV2WoIBAbfzSrURZ+fy6Sdtg= Subject key identifier: 18:14:59:65:F2:9F:B5:51:93:0B:09:F5:FB:12:68:1B:9D:BE:B4:07 Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D Certificate issuer: /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d Certificate serial: 019B5AF623C63E5F4494808121C9226FA482 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft Manifest number: 1727 Signing time: Fri 26 Dec 2025 14:00:38 +0000 Manifest this update: Fri 26 Dec 2025 14:00:38 +0000 Manifest next update: Sat 27 Dec 2025 14:00:38 +0000 Files and hashes: 1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: Gd/DkT4Uj4/6O+qCrlpwEtHwQX2IPoY+qa4O7sEgIS8=) 2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:23:c6:3e:5f:44:94:80:81:21:c9:22:6f:a4:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d Validity Not Before: Dec 26 14:00:38 2025 GMT Not After : Dec 27 14:00:38 2025 GMT Subject: CN=18145965f29fb551930b09f5fb12681b9dbeb407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:74:85:c9:14:93:6d:eb:9f:61:09:0b:e5:ed: 7e:f4:31:b6:71:d1:b1:c3:f2:9a:c3:f1:d1:84:05: b3:70:68:96:2c:4f:c2:94:41:0b:ae:02:1a:1d:80: e7:66:46:6a:8a:50:b6:01:c5:ce:3c:00:45:ca:42: c5:7e:1d:5d:1e:69:d1:17:79:4e:05:63:f9:eb:7f: 6d:83:74:02:5e:4a:09:44:4b:8c:ef:9c:39:33:8c: e1:4d:bb:94:7b:19:65:c5:99:7c:d1:32:fe:55:30: 5d:58:57:33:2c:7b:a5:76:d0:f0:17:e7:fd:a8:fc: 9c:d9:b5:c7:35:6f:95:3f:8c:a1:8e:59:b0:2d:60: 5b:34:d2:94:fe:44:b2:dd:35:aa:3b:f0:34:42:a8: 7d:1e:ef:f4:d4:35:1f:da:91:a1:c6:7d:26:5d:f6: 3d:8f:55:9a:0b:20:14:80:99:9b:6a:2a:56:42:c0: 10:30:ec:0d:14:e7:b1:63:38:eb:32:08:8a:1f:3c: 55:66:5d:9f:75:57:95:59:e3:c8:fb:bd:d5:fb:13: 4c:18:52:93:7b:3b:85:24:be:78:3e:3e:21:ae:bd: b3:94:12:df:59:82:7f:a1:ae:f7:6f:7e:db:c7:96: 61:8f:db:da:1e:cb:32:cf:bb:af:fa:d5:8d:50:e0: ac:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:14:59:65:F2:9F:B5:51:93:0B:09:F5:FB:12:68:1B:9D:BE:B4:07 X509v3 Authority Key Identifier: keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:c3:e2:42:f9:ad:dc:00:11:2c:bf:e8:3d:f6:66:22:63:59: e3:ad:e6:81:a0:ef:d8:7d:7b:5c:9f:fe:fd:e7:56:e8:c6:a5: 7b:28:a9:25:a9:60:0b:4d:07:a4:d2:db:9e:86:ba:f2:8b:6e: 7e:0c:e8:36:90:9e:db:a1:83:9f:f1:63:e9:35:4e:0c:72:e9: 65:aa:a2:dd:40:c7:18:48:3c:a8:4b:4b:11:13:65:bb:a4:b6: 2a:0b:fb:bf:7c:5c:bc:0e:38:fd:24:bf:b6:3a:44:9c:0a:62: c4:d3:f2:c5:54:e4:8b:d4:94:0e:17:ec:af:c4:de:78:be:ea: ae:73:fe:a2:ca:ed:67:f5:28:a4:25:58:e3:bb:ae:f8:ea:1d: 4c:f2:cc:6f:b1:6c:39:f2:c5:c1:48:d5:56:c5:88:76:45:9f: 84:88:1a:55:a8:22:02:49:d6:44:03:9c:42:5e:54:7b:62:71: c3:29:11:86:fd:44:04:8b:06:2c:cf:c3:38:a0:a1:db:09:67: 84:da:44:7f:98:89:18:60:64:61:6f:0d:28:d4:2a:51:e0:2a: 7f:4a:4a:6f:74:b6:cc:09:a5:cb:04:d3:1c:46:db:3d:2d:75: 5b:10:fc:9f:ae:e4:5f:12:35:e9:63:ad:1d:9d:37:26:9c:8c: 7e:fd:8b:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9iPGPl9ElICBIckib6SCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2MjM0ZWQzZDhjYTk2ZGM1MThkMzVjMWU3YzkyYmViZmNm NmNlNGQwHhcNMjUxMjI2MTQwMDM4WhcNMjUxMjI3MTQwMDM4WjAzMTEwLwYDVQQD EygxODE0NTk2NWYyOWZiNTUxOTMwYjA5ZjVmYjEyNjgxYjlkYmViNDA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlXSFyRSTbeufYQkL5e1+9DG2cdGx w/Kaw/HRhAWzcGiWLE/ClEELrgIaHYDnZkZqilC2AcXOPABFykLFfh1dHmnRF3lO BWP5639tg3QCXkoJREuM75w5M4zhTbuUexllxZl80TL+VTBdWFczLHuldtDwF+f9 qPyc2bXHNW+VP4yhjlmwLWBbNNKU/kSy3TWqO/A0Qqh9Hu/01DUf2pGhxn0mXfY9 j1WaCyAUgJmbaipWQsAQMOwNFOexYzjrMgiKHzxVZl2fdVeVWePI+73V+xNMGFKT ezuFJL54Pj4hrr2zlBLfWYJ/oa73b37bx5Zhj9vaHssyz7uv+tWNUOCs9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBgUWWXyn7VRkwsJ9fsSaBudvrQHMB8GA1UdIwQY MBaAFOYjTtPYypbcUY01wefJK+v89s5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWlOTzA5aktsdHhSalRYQjU4a3I2X3oyemswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC85YjY3NGMtMzY1Ny00YzI1LTk5NTMt M2Y3MDQwOTk3NjgyLzEvNWlOTzA5aktsdHhSalRYQjU4a3I2X3oyemswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC85YjY3NGMtMzY1Ny00YzI1LTk5NTMtM2Y3MDQwOTk3Njgy LzEvNWlOTzA5aktsdHhSalRYQjU4a3I2X3oyemswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD8PiQvmt 3AARLL/oPfZmImNZ463mgaDv2H17XJ/+/edW6MaleyipJalgC00HpNLbnoa68otu fgzoNpCe26GDn/Fj6TVODHLpZaqi3UDHGEg8qEtLERNlu6S2Kgv7v3xcvA44/SS/ tjpEnApixNPyxVTki9SUDhfsr8TeeL7qrnP+osrtZ/UopCVY47uu+OodTPLMb7Fs OfLFwUjVVsWIdkWfhIgaVagiAknWRAOcQl5Ue2JxwykRhv1EBIsGLM/DOKCh2wln hNpEf5iJGGBkYW8NKNQqUeAqf0pKb3S2zAmlywTTHEbbPS11WxD8n67kXxI16WOt HZ03JpyMfv2L4g== -----END CERTIFICATE-----Generated at Fri Dec 26 21:03:59 2025 by rpki-client