This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft File: 25ebiYwPWDTLyDimmgXjq-jAKQM.mft (raw, json) Hash identifier: 1dfm42ohAacuN84WUzVhhvGO25OEPZ7KA+03QG2TfKs= Subject key identifier: 50:16:3C:63:37:8A:1A:AB:22:A5:0B:12:BF:60:52:49:FE:8A:5D:16 Authority key identifier: DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03 Certificate issuer: /CN=db979b898c0f5834cbc838a69a05e3abe8c02903 Certificate serial: 019B360E646FA10AA6263BA0108329EA717F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft Manifest number: 0B17 Signing time: Fri 19 Dec 2025 10:01:11 +0000 Manifest this update: Fri 19 Dec 2025 10:01:11 +0000 Manifest next update: Sat 20 Dec 2025 10:01:11 +0000 Files and hashes: 1: 25ebiYwPWDTLyDimmgXjq-jAKQM.crl (hash: FCRSd/6L7t8vH9w5sTpoy6LGhr818vmFJ1RzmcQROcQ=) 2: kQI24cv0NZjcs-NoEtkNWQr945M.roa (hash: lv4kdfvUyBf5e1wmjHgM1hbCJlTmhLUys8Yvw75WiAo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:0e:64:6f:a1:0a:a6:26:3b:a0:10:83:29:ea:71:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db979b898c0f5834cbc838a69a05e3abe8c02903 Validity Not Before: Dec 19 10:01:11 2025 GMT Not After : Dec 20 10:01:11 2025 GMT Subject: CN=50163c63378a1aab22a50b12bf605249fe8a5d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:59:f7:ff:0b:a4:c6:71:cb:b3:34:b3:7c:6e: 21:b8:87:a5:c7:be:bd:00:3e:e9:d1:b5:96:62:50: 88:2d:20:0b:b7:a1:ce:bb:c8:43:92:71:62:3c:99: c6:ea:74:6c:b6:53:43:d7:4a:70:b4:c1:3f:cf:61: 40:d0:37:cc:a7:35:6a:4d:1f:56:a9:cd:de:7b:3b: 58:b2:43:be:5d:d2:ee:27:35:30:47:87:e9:bb:64: 6e:66:71:4f:b1:68:d4:07:58:cd:bc:fa:94:7a:1f: b2:76:0f:e7:25:36:b7:7c:58:f4:8a:9f:6a:58:1a: 98:d1:88:07:dc:e8:59:2d:b4:85:67:8f:7b:cc:00: a0:1d:68:8d:7f:2d:eb:3d:90:49:3b:30:2f:55:09: f5:97:0f:73:14:44:b3:ea:90:40:07:f8:81:70:f2: 10:21:25:46:03:c3:92:db:5e:fb:39:b3:96:6a:28: aa:97:f7:35:c9:07:6a:c4:b7:66:6c:92:46:33:28: fc:6c:c0:84:35:8b:e3:a3:06:5a:76:d1:2c:9c:86: 43:57:cb:89:6c:f9:53:a8:14:6f:b0:83:50:06:b3: 2a:e1:58:88:16:35:cc:0d:d0:65:41:39:28:40:46: 25:55:ca:fd:c6:8c:73:b7:ea:b4:d3:39:c9:b4:94: 71:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:16:3C:63:37:8A:1A:AB:22:A5:0B:12:BF:60:52:49:FE:8A:5D:16 X509v3 Authority Key Identifier: keyid:DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:0a:91:18:08:14:21:d7:b5:83:a1:8e:7e:d6:84:89:05:5e: 32:3b:e6:5f:23:e0:ab:d9:65:02:e2:9d:4c:48:af:25:68:64: 68:9f:e6:0c:4c:89:b8:42:d0:88:c9:e9:6b:a0:5a:8c:56:b8: 91:10:86:cb:5f:e0:3c:48:67:f4:89:5d:c9:2c:d8:54:96:5f: ad:bb:8c:d7:11:bd:f5:64:b0:95:60:b1:d9:5e:e1:6e:f6:7d: 7f:d9:3c:aa:b4:9e:6d:67:6c:db:f1:b6:0a:a8:0a:c2:39:90: b4:3e:6f:1d:9b:a5:d5:4c:a0:0b:07:a6:6f:09:a8:f5:ca:9a: cd:67:9c:1f:52:b7:30:c4:7c:0b:0d:c8:ca:9b:c0:72:cf:49: 1c:4f:bf:02:e2:be:55:a7:a4:34:a4:4e:69:e4:3b:98:6b:27: 10:0c:37:e2:9d:e1:06:68:33:65:f0:6a:fb:03:35:ff:3c:99: 5d:a8:56:74:b4:c5:43:c8:cf:a8:be:b4:dc:80:14:30:ae:e9: a6:df:be:7d:ca:a2:f3:3f:78:b0:af:1d:52:de:c8:e5:cd:1a: a8:1a:74:a5:e9:34:04:d4:8c:82:55:9f:77:9a:8e:00:8b:aa: 3c:0d:ab:56:ca:84:69:4f:8d:af:bd:8c:5a:15:ad:f6:82:35: 1f:c4:c6:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2DmRvoQqmJjugEIMp6nF/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiOTc5Yjg5OGMwZjU4MzRjYmM4MzhhNjlhMDVlM2FiZThj MDI5MDMwHhcNMjUxMjE5MTAwMTExWhcNMjUxMjIwMTAwMTExWjAzMTEwLwYDVQQD Eyg1MDE2M2M2MzM3OGExYWFiMjJhNTBiMTJiZjYwNTI0OWZlOGE1ZDE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyln3/wukxnHLszSzfG4huIelx769 AD7p0bWWYlCILSALt6HOu8hDknFiPJnG6nRstlND10pwtME/z2FA0DfMpzVqTR9W qc3eeztYskO+XdLuJzUwR4fpu2RuZnFPsWjUB1jNvPqUeh+ydg/nJTa3fFj0ip9q WBqY0YgH3OhZLbSFZ497zACgHWiNfy3rPZBJOzAvVQn1lw9zFESz6pBAB/iBcPIQ ISVGA8OS2177ObOWaiiql/c1yQdqxLdmbJJGMyj8bMCENYvjowZadtEsnIZDV8uJ bPlTqBRvsINQBrMq4ViIFjXMDdBlQTkoQEYlVcr9xoxzt+q00znJtJRxkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFAWPGM3ihqrIqULEr9gUkn+il0WMB8GA1UdIwQY MBaAFNuXm4mMD1g0y8g4ppoF46vowCkDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjVlYmlZd1BXRFRMeURpbW1nWGpxLWpBS1FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9kNWZkZTYtMTk1MS00N2I4LWEzMjUt NGNiMjU3ZWUxOTJjLzEvMjVlYmlZd1BXRFRMeURpbW1nWGpxLWpBS1FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9kNWZkZTYtMTk1MS00N2I4LWEzMjUtNGNiMjU3ZWUxOTJj LzEvMjVlYmlZd1BXRFRMeURpbW1nWGpxLWpBS1FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJgqRGAgU Ide1g6GOftaEiQVeMjvmXyPgq9llAuKdTEivJWhkaJ/mDEyJuELQiMnpa6BajFa4 kRCGy1/gPEhn9IldySzYVJZfrbuM1xG99WSwlWCx2V7hbvZ9f9k8qrSebWds2/G2 CqgKwjmQtD5vHZul1UygCwembwmo9cqazWecH1K3MMR8Cw3IypvAcs9JHE+/AuK+ VaekNKROaeQ7mGsnEAw34p3hBmgzZfBq+wM1/zyZXahWdLTFQ8jPqL603IAUMK7p pt++fcqi8z94sK8dUt7I5c0aqBp0pek0BNSMglWfd5qOAIuqPA2rVsqEaU+Nr72M WhWt9oI1H8TGyw== -----END CERTIFICATE-----Generated at Fri Dec 19 13:15:44 2025 by rpki-client