This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft File: 0SIIZtpI4MfP--jHOjUcKkexpNs.mft (raw, json) Hash identifier: VvIRL+vn8HdPIHBUvKauRjSjQE81owU8VEUwJacE94w= Subject key identifier: B1:72:83:BE:A7:A9:0F:65:A3:E1:BC:0F:36:9F:AD:7C:7A:E5:94:99 Authority key identifier: D1:22:08:66:DA:48:E0:C7:CF:FB:E8:C7:3A:35:1C:2A:47:B1:A4:DB Certificate issuer: /CN=d1220866da48e0c7cffbe8c73a351c2a47b1a4db Certificate serial: 019B3DC77035FC03DC23E044FBF512C14A89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft Manifest number: 0511 Signing time: Sat 20 Dec 2025 22:00:38 +0000 Manifest this update: Sat 20 Dec 2025 22:00:38 +0000 Manifest next update: Sun 21 Dec 2025 22:00:38 +0000 Files and hashes: 1: 0SIIZtpI4MfP--jHOjUcKkexpNs.crl (hash: HEYTzLBSNOn+yxGyOOjlmG0npzCVH6tDftLInL+T8ZU=) 2: BtILLkhjQwKc-cBqSY27nFkJu8g.roa (hash: j7KTEXdiX1vJGa7Y4gsoM737n4p+uU95jozk1BXznCM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.crl rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:c7:70:35:fc:03:dc:23:e0:44:fb:f5:12:c1:4a:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1220866da48e0c7cffbe8c73a351c2a47b1a4db Validity Not Before: Dec 20 22:00:38 2025 GMT Not After : Dec 21 22:00:38 2025 GMT Subject: CN=b17283bea7a90f65a3e1bc0f369fad7c7ae59499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:61:c8:fb:b2:79:66:28:f8:c3:0b:3b:bb:6c: 20:60:fa:0c:73:a7:cc:16:47:42:74:1d:5a:6c:e4: 8a:1a:5a:f1:0e:1e:a4:bb:eb:d3:fb:59:35:cd:ad: 77:eb:31:70:56:3d:0b:39:2d:a1:50:1f:c0:6f:e5: a4:91:7e:fc:85:86:6a:85:ce:73:d8:a8:ed:ae:6d: 4c:ea:e8:d6:3e:c8:42:01:8d:de:05:db:a3:7e:6d: a6:b6:f4:ce:03:e3:1a:95:f4:5a:a0:69:2c:2e:cf: 5d:0d:45:fb:b6:48:1f:dc:03:77:d1:4e:7a:10:0c: b9:de:d0:6a:54:a6:74:7a:01:10:ae:3f:29:91:1c: a6:48:dd:af:32:7b:cc:c0:1c:5e:2d:39:4c:5d:70: 64:be:72:24:a3:ab:6f:fd:24:67:1e:33:21:63:a6: 03:0b:e6:bc:f1:af:10:27:a6:d0:96:c3:aa:4b:2f: e3:63:4f:0f:4a:31:90:71:25:53:75:27:52:24:b3: 3c:04:f5:b7:fb:ec:d5:af:5d:33:ba:6f:50:4c:59: 87:c4:46:dc:66:ac:94:ed:e0:81:49:4c:cc:65:b0: e1:20:be:06:0e:84:ff:e6:13:96:78:5e:44:3f:e2: c5:de:f2:b1:ff:4f:2b:1e:17:05:51:c7:92:7a:64: 46:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:72:83:BE:A7:A9:0F:65:A3:E1:BC:0F:36:9F:AD:7C:7A:E5:94:99 X509v3 Authority Key Identifier: keyid:D1:22:08:66:DA:48:E0:C7:CF:FB:E8:C7:3A:35:1C:2A:47:B1:A4:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:24:82:2f:22:04:9d:8b:9e:a0:34:e9:6c:22:15:db:3a:df: 94:4d:63:da:57:9c:a1:57:c1:ee:06:18:3d:cf:16:be:9f:70: 19:15:3f:b5:10:9a:a2:f9:4d:7a:15:b7:b4:dc:25:5f:e0:90: 23:76:07:8f:1d:c9:11:2f:0e:15:0a:e4:bd:ff:19:71:1e:25: aa:2a:16:fc:8f:b1:0f:78:b9:8e:36:65:16:2c:b3:72:6c:12: 41:f2:4c:e3:60:a0:0b:d5:8d:44:13:2a:56:32:3f:a0:92:ed: 7c:98:78:01:71:f0:05:a1:8e:82:83:a1:d4:ad:a7:28:76:e7: a6:64:06:f8:e1:6b:e0:f6:51:99:3c:b0:43:81:b4:c7:64:2f: 29:12:4b:8d:d4:25:ea:fa:fe:84:61:2c:ae:65:a5:41:d9:7b: 13:23:7f:8e:91:e3:f0:c9:d4:df:9b:c9:db:58:6a:e7:3e:40: 6c:74:68:d7:10:6f:a6:06:f8:68:ab:b3:be:21:44:ad:77:b8: b7:1b:ee:f1:c1:9c:d4:0c:25:7f:16:da:86:fe:ae:e9:be:79: c3:75:c5:b0:ed:a6:95:87:15:98:3d:b8:1b:0f:ee:a1:a3:58: 56:b6:6f:cb:f8:1d:e4:dd:1a:72:b1:6b:bd:5e:15:d5:eb:3c: 00:a1:c0:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9x3A1/APcI+BE+/USwUqJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxMjIwODY2ZGE0OGUwYzdjZmZiZThjNzNhMzUxYzJhNDdi MWE0ZGIwHhcNMjUxMjIwMjIwMDM4WhcNMjUxMjIxMjIwMDM4WjAzMTEwLwYDVQQD EyhiMTcyODNiZWE3YTkwZjY1YTNlMWJjMGYzNjlmYWQ3YzdhZTU5NDk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2HI+7J5Zij4wws7u2wgYPoMc6fM FkdCdB1abOSKGlrxDh6ku+vT+1k1za136zFwVj0LOS2hUB/Ab+WkkX78hYZqhc5z 2Kjtrm1M6ujWPshCAY3eBdujfm2mtvTOA+MalfRaoGksLs9dDUX7tkgf3AN30U56 EAy53tBqVKZ0egEQrj8pkRymSN2vMnvMwBxeLTlMXXBkvnIko6tv/SRnHjMhY6YD C+a88a8QJ6bQlsOqSy/jY08PSjGQcSVTdSdSJLM8BPW3++zVr10zum9QTFmHxEbc ZqyU7eCBSUzMZbDhIL4GDoT/5hOWeF5EP+LF3vKx/08rHhcFUceSemRGOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLFyg76nqQ9lo+G8DzafrXx65ZSZMB8GA1UdIwQY MBaAFNEiCGbaSODHz/voxzo1HCpHsaTbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFNJSVp0cEk0TWZQLS1qSE9qVWNLa2V4cE5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS82MDk1MWUtN2FiNS00NWQ4LTkwMTUt OTVlY2Q2NzE4ODg3LzEvMFNJSVp0cEk0TWZQLS1qSE9qVWNLa2V4cE5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS82MDk1MWUtN2FiNS00NWQ4LTkwMTUtOTVlY2Q2NzE4ODg3 LzEvMFNJSVp0cEk0TWZQLS1qSE9qVWNLa2V4cE5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWSSCLyIE nYueoDTpbCIV2zrflE1j2lecoVfB7gYYPc8Wvp9wGRU/tRCaovlNehW3tNwlX+CQ I3YHjx3JES8OFQrkvf8ZcR4lqioW/I+xD3i5jjZlFiyzcmwSQfJM42CgC9WNRBMq VjI/oJLtfJh4AXHwBaGOgoOh1K2nKHbnpmQG+OFr4PZRmTywQ4G0x2QvKRJLjdQl 6vr+hGEsrmWlQdl7EyN/jpHj8MnU35vJ21hq5z5AbHRo1xBvpgb4aKuzviFErXe4 txvu8cGc1Awlfxbahv6u6b55w3XFsO2mlYcVmD24Gw/uoaNYVrZvy/gd5N0acrFr vV4V1es8AKHAcw== -----END CERTIFICATE-----Generated at Sun Dec 21 00:58:37 2025 by rpki-client