This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft File: 5k3j63dco74tVQPJyc07crvNpJs.mft (raw, json) Hash identifier: CbdP+BEtWq7LM2GWgUSI5/OQ8fYo0w3IZ4YjDljorYM= Subject key identifier: A6:AD:27:B6:77:F7:E3:9B:CF:98:C7:34:43:87:EE:44:0B:2D:9E:E3 Authority key identifier: E6:4D:E3:EB:77:5C:A3:BE:2D:55:03:C9:C9:CD:3B:72:BB:CD:A4:9B Certificate issuer: /CN=e64de3eb775ca3be2d5503c9c9cd3b72bbcda49b Certificate serial: 019B0E5BB24BDBB13857004DC17CC15CA279 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5k3j63dco74tVQPJyc07crvNpJs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft Manifest number: 23 Signing time: Thu 11 Dec 2025 17:00:49 +0000 Manifest this update: Thu 11 Dec 2025 17:00:49 +0000 Manifest next update: Fri 12 Dec 2025 17:00:49 +0000 Files and hashes: 1: 31LqXCpHojYx6Rt887DjR163xxo.roa (hash: Fk0wJvz9kNK6jsX7wBhWeVOLH39ghJFDMdON8iP/W5M=) 2: 5k3j63dco74tVQPJyc07crvNpJs.crl (hash: qoHZtYTljpPudnu5n9UOq4bR3zHoWovTzCx6RkSMw2o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft rsync://rpki.ripe.net/repository/DEFAULT/5k3j63dco74tVQPJyc07crvNpJs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5b:b2:4b:db:b1:38:57:00:4d:c1:7c:c1:5c:a2:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e64de3eb775ca3be2d5503c9c9cd3b72bbcda49b Validity Not Before: Dec 11 17:00:49 2025 GMT Not After : Dec 12 17:00:49 2025 GMT Subject: CN=a6ad27b677f7e39bcf98c7344387ee440b2d9ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:bf:5c:01:6c:59:a8:70:38:56:68:55:e2:45: c4:db:83:5c:42:ee:d1:0a:2c:0a:fb:14:fe:d1:e1: ec:92:15:7b:7a:bd:a0:dc:16:48:c9:ee:cd:27:fe: 57:1c:de:36:44:af:0f:d2:f9:22:88:f1:0f:5b:20: 45:9d:00:36:6e:24:56:4f:ec:eb:c5:7f:c1:4f:7a: d6:42:30:84:b3:2c:09:13:8c:dc:9b:46:6f:a3:29: f5:f3:0b:d4:de:eb:24:fd:31:d9:b5:8b:7b:56:e9: e5:72:9a:a4:84:6f:01:df:e5:99:50:4a:6e:3e:d4: b1:7a:1a:8e:aa:2b:64:de:a9:8e:4b:8c:7d:e0:76: 6d:78:f4:aa:af:1e:71:2c:4e:2c:8b:66:eb:7e:c3: 36:24:dc:89:e4:b1:6c:76:e8:df:00:87:d9:27:31: c2:5c:67:3f:d7:b7:7e:3d:29:79:2e:0c:5f:87:9f: e0:df:94:b2:93:e9:a0:7b:71:99:d5:70:18:51:67: e5:f0:30:9c:ec:a6:f9:23:08:5d:46:81:c0:a9:83: 20:11:c6:8d:9a:f4:ef:17:5a:fd:49:06:cc:16:70: 19:a9:4d:2d:41:90:bf:98:5f:69:92:bb:00:61:c4: d6:24:c4:e8:57:90:dc:45:62:18:31:b0:f3:a4:75: 59:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:AD:27:B6:77:F7:E3:9B:CF:98:C7:34:43:87:EE:44:0B:2D:9E:E3 X509v3 Authority Key Identifier: keyid:E6:4D:E3:EB:77:5C:A3:BE:2D:55:03:C9:C9:CD:3B:72:BB:CD:A4:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5k3j63dco74tVQPJyc07crvNpJs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:0c:39:f7:69:0f:60:e0:a6:b5:1b:76:19:83:02:78:b8:f8: fb:5a:3e:b6:6f:8d:99:0f:53:9e:03:cb:db:11:0a:37:4c:3e: 0a:90:61:0e:7a:2b:6d:b8:53:86:33:ca:56:b2:85:cc:e0:22: bb:de:a9:ab:77:18:84:13:dd:a9:90:83:4c:95:1d:a9:3f:96: fc:ee:33:74:4d:d0:df:41:3b:5d:a6:f3:da:8f:cc:50:cc:f6: c7:9a:1d:63:8b:76:8a:2e:e7:06:0c:2c:2b:c0:b4:ab:61:be: cc:d0:df:d8:03:d6:41:bb:6a:97:fd:6a:40:fe:51:42:e0:0e: b2:d3:38:ce:70:62:3d:c7:a5:f0:0a:3c:3d:61:0d:86:ff:c7: 29:3c:6e:a4:0a:c4:dd:6d:a7:b5:f3:54:50:05:fa:e7:c9:75: 25:45:86:ff:f2:c3:13:89:84:8f:07:dd:04:4f:a9:cc:b7:43: d0:84:a5:cd:00:86:9a:66:16:0d:85:47:3f:1f:f7:dd:13:c3: 0a:4d:05:00:24:51:83:f1:f5:ee:9a:c5:0f:8b:9d:93:33:41: d5:17:14:0e:9f:05:f3:6d:71:53:26:30:22:a9:46:df:f3:21: 74:f1:86:db:ab:68:b7:e9:55:be:5e:ee:e6:e6:6f:0b:50:cf: 22:d1:de:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOW7JL27E4VwBNwXzBXKJ5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2NGRlM2ViNzc1Y2EzYmUyZDU1MDNjOWM5Y2QzYjcyYmJj ZGE0OWIwHhcNMjUxMjExMTcwMDQ5WhcNMjUxMjEyMTcwMDQ5WjAzMTEwLwYDVQQD EyhhNmFkMjdiNjc3ZjdlMzliY2Y5OGM3MzQ0Mzg3ZWU0NDBiMmQ5ZWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjr9cAWxZqHA4VmhV4kXE24NcQu7R CiwK+xT+0eHskhV7er2g3BZIye7NJ/5XHN42RK8P0vkiiPEPWyBFnQA2biRWT+zr xX/BT3rWQjCEsywJE4zcm0Zvoyn18wvU3usk/THZtYt7VunlcpqkhG8B3+WZUEpu PtSxehqOqitk3qmOS4x94HZtePSqrx5xLE4si2brfsM2JNyJ5LFsdujfAIfZJzHC XGc/17d+PSl5Lgxfh5/g35Syk+mge3GZ1XAYUWfl8DCc7Kb5IwhdRoHAqYMgEcaN mvTvF1r9SQbMFnAZqU0tQZC/mF9pkrsAYcTWJMToV5DcRWIYMbDzpHVZNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKatJ7Z39+Obz5jHNEOH7kQLLZ7jMB8GA1UdIwQY MBaAFOZN4+t3XKO+LVUDycnNO3K7zaSbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWszajYzZGNvNzR0VlFQSnljMDdjcnZOcEpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS8wNWNlOWQtNmRhZS00NzA5LTk3MWYt MzQxNjU4MjQzYjRlLzEvNWszajYzZGNvNzR0VlFQSnljMDdjcnZOcEpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS8wNWNlOWQtNmRhZS00NzA5LTk3MWYtMzQxNjU4MjQzYjRl LzEvNWszajYzZGNvNzR0VlFQSnljMDdjcnZOcEpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsAw592kP YOCmtRt2GYMCeLj4+1o+tm+NmQ9TngPL2xEKN0w+CpBhDnorbbhThjPKVrKFzOAi u96pq3cYhBPdqZCDTJUdqT+W/O4zdE3Q30E7Xabz2o/MUMz2x5odY4t2ii7nBgws K8C0q2G+zNDf2APWQbtql/1qQP5RQuAOstM4znBiPcel8Ao8PWENhv/HKTxupArE 3W2ntfNUUAX658l1JUWG//LDE4mEjwfdBE+pzLdD0ISlzQCGmmYWDYVHPx/33RPD Ck0FACRRg/H17prFD4udkzNB1RcUDp8F821xUyYwIqlG3/MhdPGG26tot+lVvl7u 5uZvC1DPItHeTA== -----END CERTIFICATE-----Generated at Thu Dec 11 20:29:30 2025 by rpki-client