This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json) Hash identifier: XTsT9OBxqC8g9IogiSaVRn6hT3p4oahLDzxRjEBp3Nw= Subject key identifier: 0F:E6:33:EB:23:DE:E8:65:3A:86:C0:93:6D:3D:93:22:B5:EA:64:3F Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5 Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5 Certificate serial: 019B492726693D3181F331B908FEA8542D64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft Manifest number: 15B0 Signing time: Tue 23 Dec 2025 03:01:01 +0000 Manifest this update: Tue 23 Dec 2025 03:01:01 +0000 Manifest next update: Wed 24 Dec 2025 03:01:01 +0000 Files and hashes: 1: 2v9WLSFviNLhCEs3PI8ghWfG43g.roa (hash: s4HF4L3IMaVI3bReAfOPFKeWOp26BrTGFcFThVgszh4=) 2: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: oUMZvxGXTctq28nev8qNwqjOlhAHG2CaLZpehOHZdXU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:27:26:69:3d:31:81:f3:31:b9:08:fe:a8:54:2d:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5 Validity Not Before: Dec 23 03:01:01 2025 GMT Not After : Dec 24 03:01:01 2025 GMT Subject: CN=0fe633eb23dee8653a86c0936d3d9322b5ea643f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:64:37:49:b3:30:6b:7e:11:c8:83:d4:09:6b: d3:83:65:b3:d2:ef:b5:b9:83:50:f8:e4:0a:35:f8: b5:b7:05:7f:b3:a6:a9:13:42:ad:38:5d:d1:b4:d5: 2d:dd:36:41:cb:17:be:5a:25:7e:90:83:1c:68:06: ae:44:a3:fa:ce:d1:6a:57:2e:65:ce:2f:b4:22:8e: d5:c1:e8:af:16:12:ee:de:46:d9:eb:b7:43:71:f9: 13:0d:e2:8e:eb:f3:e2:1b:b6:fd:30:4a:cf:48:6c: 9d:74:1d:27:16:4f:c0:68:95:91:42:fd:ce:5a:24: 68:86:c6:96:d4:ca:f8:2d:18:1e:44:6f:ea:93:ed: e0:1c:9f:9d:b0:1e:28:33:7f:6b:2a:f7:10:2f:7a: 67:4f:5a:3d:46:08:55:08:be:7a:53:22:1d:0c:4a: 45:cf:e7:e4:b7:95:a4:b1:ba:23:62:e7:49:aa:73: e1:eb:3a:55:f8:20:3d:a4:7c:69:12:45:19:e7:f3: 64:6e:14:08:25:74:b6:92:5b:e1:92:62:c1:33:53: 66:08:52:67:9c:88:25:a7:34:42:8e:63:11:eb:60: 02:6c:df:2b:50:45:fe:a4:b2:87:79:05:88:ff:e7: 25:77:ef:13:58:5e:16:57:55:b7:b6:3a:a8:cd:c6: 24:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E6:33:EB:23:DE:E8:65:3A:86:C0:93:6D:3D:93:22:B5:EA:64:3F X509v3 Authority Key Identifier: keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:61:42:3f:ec:9f:8d:9b:74:3a:1e:c4:5c:81:03:f5:83:29: 39:80:ef:c2:15:90:8f:cc:fd:29:57:c1:4c:8c:ff:33:7b:1a: c1:1f:2a:63:7e:49:1d:09:c0:08:27:c0:17:7e:36:69:58:02: fd:42:ef:ba:68:ad:3e:cd:3e:c3:71:87:24:d7:ea:9d:af:4e: 94:83:3c:30:41:2a:aa:a8:40:26:be:0a:24:0a:d9:b4:40:71: e3:b3:cb:d1:95:30:68:13:71:c3:24:ef:c0:a1:0b:34:27:73: fe:b5:d9:ba:8e:3b:1d:d5:ee:da:b9:23:de:de:67:41:a8:92: 15:f1:ff:f4:b7:83:23:fa:86:82:3b:b9:d2:cb:46:8d:7a:e1: db:85:2c:46:44:f9:96:ae:1a:a7:61:a1:db:30:51:d4:bb:43: fc:80:9f:dd:29:5e:11:42:df:a5:f7:58:1a:43:3f:ab:9b:17: f8:53:cc:75:73:db:26:97:37:fe:93:7d:9a:4b:db:05:af:d7: 99:aa:46:9c:ad:8b:f7:fd:be:d0:5b:4a:26:7b:e0:ec:40:ca: 6d:e4:12:4a:01:b2:f4:da:28:6d:e8:c7:15:08:48:cc:f2:e3: 63:e0:a8:bd:42:1b:52:aa:7c:05:a9:da:94:d8:70:23:1e:24: f4:2a:f2:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJJyZpPTGB8zG5CP6oVC1kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2Y2U2MzdkNDdiNzgwMDRkMGNjZmFlMzcxZTY4MTg3Njhh YzNmYTUwHhcNMjUxMjIzMDMwMTAxWhcNMjUxMjI0MDMwMTAxWjAzMTEwLwYDVQQD EygwZmU2MzNlYjIzZGVlODY1M2E4NmMwOTM2ZDNkOTMyMmI1ZWE2NDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGQ3SbMwa34RyIPUCWvTg2Wz0u+1 uYNQ+OQKNfi1twV/s6apE0KtOF3RtNUt3TZByxe+WiV+kIMcaAauRKP6ztFqVy5l zi+0Io7VweivFhLu3kbZ67dDcfkTDeKO6/PiG7b9MErPSGyddB0nFk/AaJWRQv3O WiRohsaW1Mr4LRgeRG/qk+3gHJ+dsB4oM39rKvcQL3pnT1o9RghVCL56UyIdDEpF z+fkt5WksbojYudJqnPh6zpV+CA9pHxpEkUZ5/NkbhQIJXS2klvhkmLBM1NmCFJn nIglpzRCjmMR62ACbN8rUEX+pLKHeQWI/+cld+8TWF4WV1W3tjqozcYk2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA/mM+sj3uhlOobAk209kyK16mQ/MB8GA1UdIwQY MBaAFHbOY31Ht4AE0Mz643HmgYdorD+lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYt ODQwODgxYTRkMzBkLzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYtODQwODgxYTRkMzBk LzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe2FCP+yf jZt0Oh7EXIED9YMpOYDvwhWQj8z9KVfBTIz/M3sawR8qY35JHQnACCfAF342aVgC /ULvumitPs0+w3GHJNfqna9OlIM8MEEqqqhAJr4KJArZtEBx47PL0ZUwaBNxwyTv wKELNCdz/rXZuo47HdXu2rkj3t5nQaiSFfH/9LeDI/qGgju50stGjXrh24UsRkT5 lq4ap2Gh2zBR1LtD/ICf3SleEULfpfdYGkM/q5sX+FPMdXPbJpc3/pN9mkvbBa/X mapGnK2L9/2+0FtKJnvg7EDKbeQSSgGy9NoobejHFQhIzPLjY+CovUIbUqp8Bana lNhwIx4k9Cry5w== -----END CERTIFICATE-----Generated at Tue Dec 23 09:40:18 2025 by rpki-client