This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft File: d5KQMR5unPpeUX-rsNlvqaccPaE.mft (raw, json) Hash identifier: eSH7GFbIIl5kSWGVvkBMOV1hyVqtJAD16Ic11KK+hsw= Subject key identifier: F9:DE:C7:DC:B6:29:A0:63:00:A4:99:FD:C1:32:EE:AD:C6:A9:43:EA Authority key identifier: 77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1 Certificate issuer: /CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1 Certificate serial: 019B22F4EA13D3154304FDCBB67237113733 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft Manifest number: 177A Signing time: Mon 15 Dec 2025 17:00:34 +0000 Manifest this update: Mon 15 Dec 2025 17:00:34 +0000 Manifest next update: Tue 16 Dec 2025 17:00:34 +0000 Files and hashes: 1: LOkJgQnrVhTjIGglVDZP2nXIS3k.roa (hash: w0AA95RC5IbPZCqkTY536mw4aIKSxO5pRstC+7ehig8=) 2: d5KQMR5unPpeUX-rsNlvqaccPaE.crl (hash: PGMB71mUwckawMlfijNl9louz3OTVdVCbiOK757cnLU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:f4:ea:13:d3:15:43:04:fd:cb:b6:72:37:11:37:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1 Validity Not Before: Dec 15 17:00:34 2025 GMT Not After : Dec 16 17:00:34 2025 GMT Subject: CN=f9dec7dcb629a06300a499fdc132eeadc6a943ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b7:db:48:89:eb:19:14:cd:12:5d:6c:38:72: 61:91:d4:c4:dd:c3:51:36:03:c8:f8:2d:e0:9c:fe: f0:56:08:85:70:de:c5:24:93:32:43:50:a8:cb:e9: e8:2a:8f:ec:9f:f0:0d:05:fa:5f:bb:80:d6:17:cd: 1a:19:05:9c:5d:dd:8d:17:00:0d:e5:16:45:53:32: 38:d9:fc:67:3e:d1:8c:44:3c:0c:a1:b8:38:66:e6: 47:66:90:74:9c:9b:b7:28:24:4f:b2:7d:54:ac:9e: 35:6e:39:65:05:de:21:bc:cb:3a:0c:4e:43:31:d7: 82:df:fa:5b:2d:85:28:07:cd:16:31:34:7b:b1:69: 15:3f:ec:d1:9c:eb:88:66:f3:aa:c9:9c:17:98:69: 6c:d1:6c:c2:2b:66:88:29:13:8a:54:f3:13:c9:0c: 34:0c:ff:e6:9e:be:46:6f:c5:26:9d:9c:52:1d:a2: 8b:3e:11:ed:b1:09:96:a6:8a:62:c5:fd:3e:89:66: 82:51:e2:54:5a:b7:b7:55:fe:36:ab:93:11:c3:18: 3e:93:71:34:e0:39:38:63:e2:cb:e2:3a:8a:64:17: 4e:16:b3:10:fe:5c:ce:3e:fb:05:53:50:3c:a4:26: b5:f2:9d:73:93:02:77:f3:62:6a:c2:45:f7:41:ac: 12:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:DE:C7:DC:B6:29:A0:63:00:A4:99:FD:C1:32:EE:AD:C6:A9:43:EA X509v3 Authority Key Identifier: keyid:77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:39:42:9c:fc:3a:bb:ce:40:48:c3:70:56:84:f6:0e:9c:fa: 2f:44:d5:7a:d0:82:07:32:a1:fc:ab:34:b6:7f:f5:c8:39:de: 3d:d9:be:ba:7e:71:80:9f:bf:0e:d0:9b:c6:16:cb:1d:32:f0: c9:1a:81:d9:68:15:c0:99:69:bc:b2:ec:2f:55:a8:b0:1f:ec: d3:f6:ef:0b:7d:d8:6d:94:e6:49:c5:15:47:d3:a0:23:1a:9f: 92:f0:b4:8c:e4:d0:67:e5:29:35:7c:2c:3e:77:73:39:f4:60: 3c:4a:3a:f9:60:ee:c3:80:b8:03:ec:2e:44:16:23:84:26:59: e2:94:d8:d4:64:42:35:92:80:df:67:86:39:85:76:7b:ed:ec: 31:ed:51:64:80:c4:57:6e:7b:41:a2:90:7f:e8:51:dc:a7:a3: 5a:94:84:9c:23:c2:05:b8:48:d1:45:2d:28:00:c3:3e:51:54: 92:a8:25:90:ac:a7:ee:f5:b3:5b:df:79:be:f6:c9:1e:52:fb: 11:c1:3e:1e:f0:4c:65:55:66:f7:dc:90:52:55:12:2e:4d:e4: 77:4e:0e:fe:f9:d4:6e:32:82:49:64:29:c6:69:15:31:ee:ee: 54:d7:41:7a:09:8c:e7:bb:6c:97:8e:80:68:c2:10:3a:84:88: 59:61:12:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsi9OoT0xVDBP3LtnI3ETczMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3OTI5MDMxMWU2ZTljZmE1ZTUxN2ZhYmIwZDk2ZmE5YTcx YzNkYTEwHhcNMjUxMjE1MTcwMDM0WhcNMjUxMjE2MTcwMDM0WjAzMTEwLwYDVQQD EyhmOWRlYzdkY2I2MjlhMDYzMDBhNDk5ZmRjMTMyZWVhZGM2YTk0M2VhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrfbSInrGRTNEl1sOHJhkdTE3cNR NgPI+C3gnP7wVgiFcN7FJJMyQ1Coy+noKo/sn/ANBfpfu4DWF80aGQWcXd2NFwAN 5RZFUzI42fxnPtGMRDwMobg4ZuZHZpB0nJu3KCRPsn1UrJ41bjllBd4hvMs6DE5D MdeC3/pbLYUoB80WMTR7sWkVP+zRnOuIZvOqyZwXmGls0WzCK2aIKROKVPMTyQw0 DP/mnr5Gb8UmnZxSHaKLPhHtsQmWpopixf0+iWaCUeJUWre3Vf42q5MRwxg+k3E0 4Dk4Y+LL4jqKZBdOFrMQ/lzOPvsFU1A8pCa18p1zkwJ382JqwkX3QawS7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPnex9y2KaBjAKSZ/cEy7q3GqUPqMB8GA1UdIwQY MBaAFHeSkDEebpz6XlF/q7DZb6mnHD2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDVLUU1SNXVuUHBlVVgtcnNObHZxYWNjUGFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9iOGUwM2UtYzM5OC00ZWVlLTg5Mzkt ZjkwOWQ3OWE0NGFkLzEvZDVLUU1SNXVuUHBlVVgtcnNObHZxYWNjUGFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9iOGUwM2UtYzM5OC00ZWVlLTg5MzktZjkwOWQ3OWE0NGFk LzEvZDVLUU1SNXVuUHBlVVgtcnNObHZxYWNjUGFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFDlCnPw6 u85ASMNwVoT2Dpz6L0TVetCCBzKh/Ks0tn/1yDnePdm+un5xgJ+/DtCbxhbLHTLw yRqB2WgVwJlpvLLsL1WosB/s0/bvC33YbZTmScUVR9OgIxqfkvC0jOTQZ+UpNXws PndzOfRgPEo6+WDuw4C4A+wuRBYjhCZZ4pTY1GRCNZKA32eGOYV2e+3sMe1RZIDE V257QaKQf+hR3KejWpSEnCPCBbhI0UUtKADDPlFUkqglkKyn7vWzW995vvbJHlL7 EcE+HvBMZVVm99yQUlUSLk3kd04O/vnUbjKCSWQpxmkVMe7uVNdBegmM57tsl46A aMIQOoSIWWESeQ== -----END CERTIFICATE-----Generated at Mon Dec 15 23:32:34 2025 by rpki-client