This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft File: cF5128zl_N2R2KmeWhssmVuBJ3U.mft (raw, json) Hash identifier: XVXeGNDvOfMfqKxzpiqPAfr0g0GgrGSNHiSyRw2s3VM= Subject key identifier: 5F:C9:A6:4A:05:A4:81:B6:66:E6:EB:5C:6A:E1:90:18:B5:07:05:AC Authority key identifier: 70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75 Certificate issuer: /CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775 Certificate serial: 019B243EF809AEFADE3A9773E9665D377C1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft Manifest number: 1781 Signing time: Mon 15 Dec 2025 23:01:05 +0000 Manifest this update: Mon 15 Dec 2025 23:01:05 +0000 Manifest next update: Tue 16 Dec 2025 23:01:05 +0000 Files and hashes: 1: DPZDlwC5lvIBjZjDv4jWEsMDlMI.roa (hash: JSJ9xva93NHEmD/GiUVFRsLxBb1tpR6rl5zNqgBI5EE=) 2: cF5128zl_N2R2KmeWhssmVuBJ3U.crl (hash: m8QkrxMYqzmE3zpPzCGR0Hh+7ILkL9ekaWpO0yDKpGo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 23:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:3e:f8:09:ae:fa:de:3a:97:73:e9:66:5d:37:7c:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775 Validity Not Before: Dec 15 23:01:05 2025 GMT Not After : Dec 16 23:01:05 2025 GMT Subject: CN=5fc9a64a05a481b666e6eb5c6ae19018b50705ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:70:64:17:58:b0:91:81:ec:d9:1c:f0:ae:26: 3c:08:e0:02:e5:f7:c4:ed:99:2d:63:96:5b:09:e3: dc:98:70:47:b1:87:a3:a0:00:b3:bc:ae:c3:0f:2a: f0:60:aa:88:a4:10:eb:0f:b9:39:67:87:8c:81:c0: 2b:8c:b1:07:2b:a4:82:23:1e:24:ea:8d:5b:aa:eb: cf:b2:68:6a:a2:51:98:31:08:69:fd:1e:89:b5:90: 27:ec:af:04:fd:a7:ba:0c:16:a0:29:fb:87:50:58: 3a:ed:65:66:00:7a:75:88:a4:04:ee:fe:c2:3d:f9: 51:90:85:aa:65:d5:b9:43:ed:c1:aa:b2:0b:25:88: ce:19:7c:23:0f:63:79:9e:0f:8e:9e:8c:7d:61:9a: c5:52:d1:47:aa:2b:37:6f:3e:60:70:17:6a:7c:e7: 60:d7:79:c7:19:cf:70:43:73:6f:cb:16:c0:7c:42: 6a:98:18:91:ea:65:1f:48:bc:72:b2:66:e5:d9:45: 0b:a8:34:a1:37:b9:d5:f2:51:95:09:54:63:ff:23: c2:bb:17:c6:a1:9a:22:51:dc:ca:e0:51:d0:7d:e5: 87:01:7a:74:ea:9d:09:27:94:a5:70:f5:55:1d:33: 1a:94:c6:5d:5a:e2:e0:5e:e7:21:bd:ba:e5:4f:fd: ac:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C9:A6:4A:05:A4:81:B6:66:E6:EB:5C:6A:E1:90:18:B5:07:05:AC X509v3 Authority Key Identifier: keyid:70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:7e:73:a6:0a:02:e0:8e:75:11:ef:fc:e9:13:1f:d2:2e:3a: 88:df:14:d0:a1:26:9e:b3:a2:00:3e:91:34:b3:83:97:44:b6: de:6c:62:c3:d4:c8:30:c0:5e:0a:47:d1:09:c8:2f:2b:06:df: 1c:c7:aa:80:af:79:ad:ab:ea:88:db:0d:0b:98:0a:56:8b:6f: c2:81:d3:65:7c:87:67:83:a3:ab:54:d1:1d:ae:82:0f:71:7c: f2:d3:85:08:09:d5:7f:e3:2e:f2:2b:fd:bc:c6:0e:43:b9:65: 1e:33:61:34:0b:8e:b9:30:b0:3d:d1:be:05:9c:66:5e:d9:97: 33:68:23:da:06:37:72:e3:ff:76:5e:41:0b:59:c2:5d:50:dc: c9:8b:7b:3a:79:82:e0:1a:33:17:1a:11:32:c4:5b:38:68:52: 72:a8:71:6b:2e:88:b0:f0:55:4e:16:d2:be:55:0e:09:b5:fd: 76:8f:93:85:0f:1c:13:a2:3c:d2:e4:22:a6:b5:0e:c1:43:af: 36:76:15:f3:96:c9:37:e4:72:8a:ed:52:b5:31:e9:c4:69:42: 8e:37:1c:00:fc:59:89:5c:57:a4:e8:e2:d6:b0:d7:d2:42:18: e6:da:59:7b:24:3e:44:8f:c1:66:5f:eb:5d:a4:22:bd:ee:1b: 4a:eb:fd:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskPvgJrvreOpdz6WZdN3wcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwNWU3NWRiY2NlNWZjZGQ5MWQ4YTk5ZTVhMWIyYzk5NWI4 MTI3NzUwHhcNMjUxMjE1MjMwMTA1WhcNMjUxMjE2MjMwMTA1WjAzMTEwLwYDVQQD Eyg1ZmM5YTY0YTA1YTQ4MWI2NjZlNmViNWM2YWUxOTAxOGI1MDcwNWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXBkF1iwkYHs2RzwriY8COAC5ffE 7ZktY5ZbCePcmHBHsYejoACzvK7DDyrwYKqIpBDrD7k5Z4eMgcArjLEHK6SCIx4k 6o1bquvPsmhqolGYMQhp/R6JtZAn7K8E/ae6DBagKfuHUFg67WVmAHp1iKQE7v7C PflRkIWqZdW5Q+3BqrILJYjOGXwjD2N5ng+Onox9YZrFUtFHqis3bz5gcBdqfOdg 13nHGc9wQ3NvyxbAfEJqmBiR6mUfSLxysmbl2UULqDShN7nV8lGVCVRj/yPCuxfG oZoiUdzK4FHQfeWHAXp06p0JJ5SlcPVVHTMalMZdWuLgXuchvbrlT/2sMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF/JpkoFpIG2ZubrXGrhkBi1BwWsMB8GA1UdIwQY MBaAFHBeddvM5fzdkdipnlobLJlbgSd1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9jMWY0NDgtODgwOC00YTJmLWJmZmEt ZjhiNDhiYWNjZDliLzEvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC9jMWY0NDgtODgwOC00YTJmLWJmZmEtZjhiNDhiYWNjZDli LzEvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvX5zpgoC 4I51Ee/86RMf0i46iN8U0KEmnrOiAD6RNLODl0S23mxiw9TIMMBeCkfRCcgvKwbf HMeqgK95ravqiNsNC5gKVotvwoHTZXyHZ4Ojq1TRHa6CD3F88tOFCAnVf+Mu8iv9 vMYOQ7llHjNhNAuOuTCwPdG+BZxmXtmXM2gj2gY3cuP/dl5BC1nCXVDcyYt7OnmC 4BozFxoRMsRbOGhScqhxay6IsPBVThbSvlUOCbX9do+ThQ8cE6I80uQiprUOwUOv NnYV85bJN+Ryiu1StTHpxGlCjjccAPxZiVxXpOji1rDX0kIY5tpZeyQ+RI/BZl/r XaQive4bSuv94w== -----END CERTIFICATE-----Generated at Tue Dec 16 06:24:09 2025 by rpki-client