This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft File: N5fgOfAlolqm6ZI5HZJCYGmbpns.mft (raw, json) Hash identifier: GNL3PJuBP4NvIhKNVw8X0v7xOw0HWohTs2gGdvylQxo= Subject key identifier: 2B:6C:6B:08:AE:02:C9:9C:04:CE:4B:3F:A8:08:28:67:56:2A:6B:1E Authority key identifier: 37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B Certificate issuer: /CN=3797e039f025a25aa6e992391d924260699ba67b Certificate serial: 019B342045414602C3481BE284C48430F03C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft Manifest number: 10FE Signing time: Fri 19 Dec 2025 01:01:28 +0000 Manifest this update: Fri 19 Dec 2025 01:01:28 +0000 Manifest next update: Sat 20 Dec 2025 01:01:28 +0000 Files and hashes: 1: N5fgOfAlolqm6ZI5HZJCYGmbpns.crl (hash: zI3y0g5rpRwhE0pSjeUETK80pJFh0QfIbwEnyWt8eGk=) 2: sVzqlUVXrHqVsVw4yhzSu1oYIjM.roa (hash: HaD8do3X9duYtx96VIyzNjLwjQlO2MrTlBSjfqbB5ec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:20:45:41:46:02:c3:48:1b:e2:84:c4:84:30:f0:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3797e039f025a25aa6e992391d924260699ba67b Validity Not Before: Dec 19 01:01:28 2025 GMT Not After : Dec 20 01:01:28 2025 GMT Subject: CN=2b6c6b08ae02c99c04ce4b3fa8082867562a6b1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a2:49:df:0b:9a:89:e7:5f:b1:e1:3e:42:e1: bf:d3:74:a2:19:02:f5:a2:31:47:4d:a1:a3:55:db: 60:d4:b1:4b:e4:e3:4e:82:de:68:1e:e2:d2:0b:8e: dc:e5:7e:4e:e0:7a:c7:be:e9:26:f5:7d:f2:8e:2c: f5:13:e9:07:67:a9:c0:a1:62:e3:fb:1e:0c:c8:46: 3c:dc:ac:9b:24:9f:6b:0d:a6:d5:7c:8e:25:15:c0: d9:f2:f5:64:8a:56:5a:cf:44:98:5c:d0:f3:c1:31: fe:1e:55:e9:c4:70:31:2e:0f:ef:da:31:b9:1c:c2: eb:10:1d:b0:d4:b8:33:2f:12:81:da:0f:f1:ae:18: ac:b0:c9:b7:57:b0:e6:e9:e0:00:be:a5:e1:4d:a2: 61:06:11:0b:c9:02:81:75:5e:fe:8a:d7:35:0a:fb: 8a:87:8a:24:82:d4:5c:97:55:11:70:c5:44:41:e6: b0:92:f1:d3:0b:b3:d0:56:4c:57:46:67:d9:79:c1: 56:03:6e:9e:4e:9f:e8:ef:fa:c1:86:10:cb:84:77: 35:eb:fc:80:14:9f:bc:7b:1a:b7:0f:6e:f7:d8:22: 8d:ac:cb:51:2e:d9:d9:7b:8c:e5:41:a5:a3:09:f3: c3:7e:74:04:3b:65:fa:43:36:b1:32:d3:07:11:63: 6e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:6C:6B:08:AE:02:C9:9C:04:CE:4B:3F:A8:08:28:67:56:2A:6B:1E X509v3 Authority Key Identifier: keyid:37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:05:2f:5a:e6:1d:bd:c5:a5:62:15:4c:7b:b0:6f:62:7d:99: 61:ba:55:fb:b2:1e:e1:84:f1:c3:1b:80:00:e1:ad:35:23:67: df:98:52:cc:c7:ae:d8:f5:14:85:22:e4:98:4b:7e:53:40:a7: 0d:83:15:dc:21:2e:c0:3d:65:c9:ef:1c:d4:b1:43:08:b6:db: f8:4d:90:eb:ef:10:eb:e9:29:bd:e7:7f:51:a5:be:0a:cb:24: 27:52:39:ef:a8:a1:42:8e:dc:ae:86:11:ac:1f:1c:6b:c4:a0: 86:a0:23:47:ab:50:76:31:8d:d5:c4:b6:26:89:c9:fc:70:8f: 20:a4:23:5a:7a:1e:63:f3:52:3e:43:25:b0:5c:91:9d:fc:f9: 91:d8:51:35:f0:3e:f7:ca:d1:1a:6c:99:13:8b:10:fd:4b:66: 53:e6:42:dc:a5:e4:63:48:2f:6d:2e:fa:f2:92:f1:76:91:21: c6:9c:f7:57:d1:50:f4:87:14:f5:f1:c8:83:3e:46:77:40:3c: 01:18:30:e2:95:95:44:68:f9:d4:d0:05:da:43:70:f9:0e:b9: b3:d7:11:a4:de:1d:01:31:05:3b:44:6b:ff:f4:92:86:31:d8: 6d:58:4b:6d:85:05:25:25:54:1d:a2:cc:67:be:f6:b4:3b:be: 4e:35:12:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0IEVBRgLDSBvihMSEMPA8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3OTdlMDM5ZjAyNWEyNWFhNmU5OTIzOTFkOTI0MjYwNjk5 YmE2N2IwHhcNMjUxMjE5MDEwMTI4WhcNMjUxMjIwMDEwMTI4WjAzMTEwLwYDVQQD EygyYjZjNmIwOGFlMDJjOTljMDRjZTRiM2ZhODA4Mjg2NzU2MmE2YjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnqJJ3wuaiedfseE+QuG/03SiGQL1 ojFHTaGjVdtg1LFL5ONOgt5oHuLSC47c5X5O4HrHvukm9X3yjiz1E+kHZ6nAoWLj +x4MyEY83KybJJ9rDabVfI4lFcDZ8vVkilZaz0SYXNDzwTH+HlXpxHAxLg/v2jG5 HMLrEB2w1LgzLxKB2g/xrhissMm3V7Dm6eAAvqXhTaJhBhELyQKBdV7+itc1CvuK h4okgtRcl1URcMVEQeawkvHTC7PQVkxXRmfZecFWA26eTp/o7/rBhhDLhHc16/yA FJ+8exq3D2732CKNrMtRLtnZe4zlQaWjCfPDfnQEO2X6QzaxMtMHEWNunQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCtsawiuAsmcBM5LP6gIKGdWKmseMB8GA1UdIwQY MBaAFDeX4DnwJaJapumSOR2SQmBpm6Z7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjVmZ09mQWxvbHFtNlpJNUhaSkNZR21icG5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8wYWJiOGEtOTc5OC00YmY4LWJhZTEt YzFjMDVjZGI3ODQxLzEvTjVmZ09mQWxvbHFtNlpJNUhaSkNZR21icG5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8wYWJiOGEtOTc5OC00YmY4LWJhZTEtYzFjMDVjZGI3ODQx LzEvTjVmZ09mQWxvbHFtNlpJNUhaSkNZR21icG5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbwUvWuYd vcWlYhVMe7BvYn2ZYbpV+7Ie4YTxwxuAAOGtNSNn35hSzMeu2PUUhSLkmEt+U0Cn DYMV3CEuwD1lye8c1LFDCLbb+E2Q6+8Q6+kpved/UaW+CsskJ1I576ihQo7croYR rB8ca8SghqAjR6tQdjGN1cS2JonJ/HCPIKQjWnoeY/NSPkMlsFyRnfz5kdhRNfA+ 98rRGmyZE4sQ/UtmU+ZC3KXkY0gvbS768pLxdpEhxpz3V9FQ9IcU9fHIgz5Gd0A8 ARgw4pWVRGj51NAF2kNw+Q65s9cRpN4dATEFO0Rr//SShjHYbVhLbYUFJSVUHaLM Z772tDu+TjUSaQ== -----END CERTIFICATE-----Generated at Fri Dec 19 07:53:35 2025 by rpki-client