This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft File: mrL5l1qR5xN52hAOyEvUSgooDZs.mft (raw, json) Hash identifier: sn/Pi5arPU0XLCkHe7i9zHaYbiE/lSQQ0LbuZN5HQLk= Subject key identifier: E6:5B:A9:02:96:B3:94:23:EF:56:5C:4D:78:44:0B:9A:85:8B:B6:58 Authority key identifier: 9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B Certificate issuer: /CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b Certificate serial: 019B4994BDE26AEC11339B74FC79F7B31BAA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft Manifest number: 14D3 Signing time: Tue 23 Dec 2025 05:00:43 +0000 Manifest this update: Tue 23 Dec 2025 05:00:43 +0000 Manifest next update: Wed 24 Dec 2025 05:00:43 +0000 Files and hashes: 1: PbBhRej558nP-vCP2i5bq2vF02I.roa (hash: k4y0Lkz3mWSRjZ9l7iXnliVmD502EHJIpmvxtHIQNOU=) 2: mrL5l1qR5xN52hAOyEvUSgooDZs.crl (hash: dgFqXrzK+4HYcJ6FwU39IsHiGTNTes1AtiZIN9aD32w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 05:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:94:bd:e2:6a:ec:11:33:9b:74:fc:79:f7:b3:1b:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b Validity Not Before: Dec 23 05:00:43 2025 GMT Not After : Dec 24 05:00:43 2025 GMT Subject: CN=e65ba90296b39423ef565c4d78440b9a858bb658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e1:cb:51:38:85:38:1d:e9:a2:a8:26:70:e9: 61:8b:2f:db:00:78:2b:82:2c:df:2b:f8:3b:98:76: 4b:57:b3:d5:cf:3e:7b:d5:aa:d0:67:b5:9b:fb:ef: 93:04:c8:69:b9:d2:9c:8e:1e:00:ec:da:c6:9b:52: e3:85:d7:01:96:9c:72:3e:70:4f:c3:26:a1:5f:33: 3b:67:15:2f:aa:a4:6f:81:54:32:16:77:4f:a0:a8: 2b:ac:06:30:3f:83:70:17:2d:63:27:44:10:2e:7b: aa:52:90:9e:99:8b:10:6e:7c:9e:6e:f1:4e:72:4a: f7:bb:4d:0f:f0:2f:bc:ac:f9:0d:8c:d0:30:53:0e: 1d:43:b1:d1:27:87:fc:54:d0:4f:f1:02:93:6d:fd: 22:63:b5:31:a8:7b:a9:e9:89:cd:12:61:90:52:7b: f4:21:6a:3a:64:75:bb:2e:4c:dd:07:c5:e5:7e:4b: bf:02:a5:b0:fb:b1:d2:7e:bd:cc:04:3d:a7:cc:bb: 62:54:e4:ec:70:43:b6:21:2d:18:a0:a5:2c:4f:3d: ad:7c:d3:a1:b3:18:8b:08:37:12:a8:12:cc:a1:53: 53:60:0c:55:3a:74:81:cf:bd:20:e5:07:5e:12:9b: 70:53:20:ed:f5:de:03:5f:96:3d:d4:e6:86:32:04: 0b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:5B:A9:02:96:B3:94:23:EF:56:5C:4D:78:44:0B:9A:85:8B:B6:58 X509v3 Authority Key Identifier: keyid:9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:cb:8f:e1:d8:5f:52:31:29:41:40:e6:a7:08:ee:6f:c7:7d: c1:a0:a6:19:e1:3e:9c:80:97:a7:94:04:63:ec:f2:b7:36:5b: 2b:09:5c:10:9d:dc:80:16:15:85:30:4a:88:78:67:48:b2:33: 56:25:84:9f:27:3e:ab:52:fc:0c:1d:35:d3:0a:51:f4:7b:73: 48:ad:b5:cd:15:d0:7d:c1:34:08:52:e1:26:10:48:37:57:b9: c6:f2:43:ff:2d:48:df:7c:d8:ad:ce:0a:72:95:86:2d:6e:43: f1:c5:15:6c:96:4f:41:27:be:fb:84:2b:12:c2:2d:b2:43:b4: ef:e5:df:82:4a:21:04:f9:7c:ed:4f:f1:23:c5:3f:54:27:61: 10:f8:d0:12:2b:dd:ee:ed:bb:68:a8:3b:a4:2c:46:33:b0:5a: 11:7b:66:79:91:4b:d7:66:51:5b:1d:1f:fb:b4:af:9a:5b:59: 5f:55:43:91:fa:1f:23:97:d1:b5:f0:81:19:b8:ef:30:9d:92: ab:05:42:ea:62:a7:28:44:14:38:30:46:7e:b6:7f:ac:41:05: 65:bb:59:ba:20:85:be:dd:a0:ad:4b:51:dd:c8:08:59:63:df: 85:4a:81:af:53:ce:de:1f:b5:17:94:74:fe:2f:81:f8:fe:f3: 53:cf:5c:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJlL3iauwRM5t0/Hn3sxuqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhYjJmOTk3NWE5MWU3MTM3OWRhMTAwZWM4NGJkNDRhMGEy ODBkOWIwHhcNMjUxMjIzMDUwMDQzWhcNMjUxMjI0MDUwMDQzWjAzMTEwLwYDVQQD EyhlNjViYTkwMjk2YjM5NDIzZWY1NjVjNGQ3ODQ0MGI5YTg1OGJiNjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+HLUTiFOB3poqgmcOlhiy/bAHgr gizfK/g7mHZLV7PVzz571arQZ7Wb+++TBMhpudKcjh4A7NrGm1LjhdcBlpxyPnBP wyahXzM7ZxUvqqRvgVQyFndPoKgrrAYwP4NwFy1jJ0QQLnuqUpCemYsQbnyebvFO ckr3u00P8C+8rPkNjNAwUw4dQ7HRJ4f8VNBP8QKTbf0iY7UxqHup6YnNEmGQUnv0 IWo6ZHW7LkzdB8Xlfku/AqWw+7HSfr3MBD2nzLtiVOTscEO2IS0YoKUsTz2tfNOh sxiLCDcSqBLMoVNTYAxVOnSBz70g5QdeEptwUyDt9d4DX5Y91OaGMgQLmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOZbqQKWs5Qj71ZcTXhEC5qFi7ZYMB8GA1UdIwQY MBaAFJqy+ZdakecTedoQDshL1EoKKA2bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXJMNWwxcVI1eE41MmhBT3lFdlVTZ29vRFpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8wN2E0ODctMjZjYi00YjE4LWJiMzkt MTVmZTA2ZmZmOGJjLzEvbXJMNWwxcVI1eE41MmhBT3lFdlVTZ29vRFpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS8wN2E0ODctMjZjYi00YjE4LWJiMzktMTVmZTA2ZmZmOGJj LzEvbXJMNWwxcVI1eE41MmhBT3lFdlVTZ29vRFpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeMuP4dhf UjEpQUDmpwjub8d9waCmGeE+nICXp5QEY+zytzZbKwlcEJ3cgBYVhTBKiHhnSLIz ViWEnyc+q1L8DB010wpR9HtzSK21zRXQfcE0CFLhJhBIN1e5xvJD/y1I33zYrc4K cpWGLW5D8cUVbJZPQSe++4QrEsItskO07+XfgkohBPl87U/xI8U/VCdhEPjQEivd 7u27aKg7pCxGM7BaEXtmeZFL12ZRWx0f+7SvmltZX1VDkfofI5fRtfCBGbjvMJ2S qwVC6mKnKEQUODBGfrZ/rEEFZbtZuiCFvt2grUtR3cgIWWPfhUqBr1PO3h+1F5R0 /i+B+P7zU89cuA== -----END CERTIFICATE-----Generated at Tue Dec 23 14:36:33 2025 by rpki-client