This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.mft File: V25aWVM8ptDwtIgH0Md-FWhgTl4.mft (raw, json) Hash identifier: z3Hr58boTtWYUdpKL8pQYPtWMWFkQuVzW/sK6m6K3w0= Subject key identifier: 5D:B8:D2:EC:0D:B9:CC:7C:AA:57:B6:EC:95:C1:F2:CB:1D:F1:1A:2B Authority key identifier: 57:6E:5A:59:53:3C:A6:D0:F0:B4:88:07:D0:C7:7E:15:68:60:4E:5E Certificate issuer: /CN=576e5a59533ca6d0f0b48807d0c77e1568604e5e Certificate serial: 019B59E36AD4AD84BD3F2BBEB7C079FD3558 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V25aWVM8ptDwtIgH0Md-FWhgTl4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.mft Manifest number: 07D8 Signing time: Fri 26 Dec 2025 09:00:34 +0000 Manifest this update: Fri 26 Dec 2025 09:00:34 +0000 Manifest next update: Sat 27 Dec 2025 09:00:34 +0000 Files and hashes: 1: V25aWVM8ptDwtIgH0Md-FWhgTl4.crl (hash: 9JSkn6ij9Iqvqhni3N6EAypbAUl85gDK4nAyxpZJv8w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.mft rsync://rpki.ripe.net/repository/DEFAULT/V25aWVM8ptDwtIgH0Md-FWhgTl4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:6a:d4:ad:84:bd:3f:2b:be:b7:c0:79:fd:35:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=576e5a59533ca6d0f0b48807d0c77e1568604e5e Validity Not Before: Dec 26 09:00:34 2025 GMT Not After : Dec 27 09:00:34 2025 GMT Subject: CN=5db8d2ec0db9cc7caa57b6ec95c1f2cb1df11a2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:45:e8:35:15:79:82:96:3b:99:82:92:8c:7d: 2c:01:ec:2f:7c:28:32:3c:3a:a7:46:8f:be:b8:d1: b8:d5:c3:29:71:a5:6a:ee:da:99:cb:e9:34:e9:64: 00:47:d2:4e:3f:55:65:98:05:bd:a2:33:8a:3c:7d: d3:9b:43:5d:30:2b:f0:c7:25:94:b2:1b:f2:a1:30: d4:97:65:79:85:18:83:fd:98:da:cc:4a:5d:2b:1f: 9c:bc:12:9e:a9:f5:e3:5d:2d:7d:51:c4:79:ae:e7: 1a:78:c6:8f:b7:e2:06:33:9d:48:09:bd:8b:83:a0: e5:cb:12:b0:8c:46:46:8e:8e:f2:55:b9:23:da:01: 65:78:93:81:3a:2b:62:3b:a9:70:37:31:7f:7b:7a: 9a:d4:96:da:da:df:07:1f:d9:a0:7d:b5:98:e9:56: 50:dd:04:83:af:64:4f:c6:69:60:7f:48:60:cd:6c: f4:ca:d7:fe:a5:be:64:1d:5b:66:59:a6:e7:9f:f6: ca:7c:d0:04:e6:65:7a:3c:4f:fd:25:b4:0c:fd:18: 19:90:50:1c:e4:b7:78:39:f2:56:aa:50:49:ef:34: 42:43:d4:a6:60:ed:0e:d0:99:a5:93:64:ab:dd:e7: e8:03:ad:17:89:32:6d:54:78:2e:bd:0a:3b:28:db: 0d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B8:D2:EC:0D:B9:CC:7C:AA:57:B6:EC:95:C1:F2:CB:1D:F1:1A:2B X509v3 Authority Key Identifier: keyid:57:6E:5A:59:53:3C:A6:D0:F0:B4:88:07:D0:C7:7E:15:68:60:4E:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V25aWVM8ptDwtIgH0Md-FWhgTl4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:a0:58:7a:4e:a8:3b:66:cc:41:43:dc:59:7e:ed:e9:1d:fa: 03:54:52:68:e9:97:c1:6f:f7:68:cc:ff:36:72:cf:08:72:f8: 93:08:1e:38:19:01:3e:54:9d:d5:a0:37:32:e4:27:59:75:73: 08:e7:ba:60:b6:b2:d4:ae:69:f0:86:02:1f:ae:36:b8:d9:23: d6:32:5f:d7:91:bb:1a:fc:0a:b8:a6:83:b9:0d:53:b4:73:aa: 45:2e:ef:78:a7:6f:7a:89:25:b7:ce:9c:e9:88:89:2e:c1:4a: b3:e5:04:d9:8b:fc:b2:54:71:43:25:b4:72:d3:61:08:91:b6: 78:23:f1:09:b9:12:17:6c:53:7b:29:6c:8c:54:b1:02:88:b3: 01:03:a2:44:83:a6:87:31:ba:e8:3f:08:fb:c4:67:29:a8:7d: 56:81:5e:41:32:90:55:0a:1d:e7:00:6a:37:67:94:86:e5:46: 67:ca:aa:1b:f0:b4:2f:d0:46:a4:20:a5:25:7e:0c:63:34:29: 7d:03:e5:56:12:60:ee:00:e0:85:2b:22:9d:2a:23:2b:e3:92: 42:2e:ce:d7:09:9d:f4:6d:dd:29:03:f5:14:81:24:62:64:1d: cc:14:3e:77:dc:91:28:72:ac:be:7f:91:4a:9f:4a:9f:6a:63: f2:ec:cf:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ42rUrYS9Pyu+t8B5/TVYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3NmU1YTU5NTMzY2E2ZDBmMGI0ODgwN2QwYzc3ZTE1Njg2 MDRlNWUwHhcNMjUxMjI2MDkwMDM0WhcNMjUxMjI3MDkwMDM0WjAzMTEwLwYDVQQD Eyg1ZGI4ZDJlYzBkYjljYzdjYWE1N2I2ZWM5NWMxZjJjYjFkZjExYTJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEXoNRV5gpY7mYKSjH0sAewvfCgy PDqnRo++uNG41cMpcaVq7tqZy+k06WQAR9JOP1VlmAW9ojOKPH3Tm0NdMCvwxyWU shvyoTDUl2V5hRiD/ZjazEpdKx+cvBKeqfXjXS19UcR5rucaeMaPt+IGM51ICb2L g6DlyxKwjEZGjo7yVbkj2gFleJOBOitiO6lwNzF/e3qa1Jba2t8HH9mgfbWY6VZQ 3QSDr2RPxmlgf0hgzWz0ytf+pb5kHVtmWabnn/bKfNAE5mV6PE/9JbQM/RgZkFAc 5Ld4OfJWqlBJ7zRCQ9SmYO0O0Jmlk2Sr3efoA60XiTJtVHguvQo7KNsNgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF240uwNucx8qle27JXB8ssd8RorMB8GA1UdIwQY MBaAFFduWllTPKbQ8LSIB9DHfhVoYE5eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjI1YVdWTThwdER3dElnSDBNZC1GV2hnVGw0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS84ZDIxMTMtM2VjMC00NDQ1LThkZmUt N2FkYjQwZGNhN2JkLzEvVjI1YVdWTThwdER3dElnSDBNZC1GV2hnVGw0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS84ZDIxMTMtM2VjMC00NDQ1LThkZmUtN2FkYjQwZGNhN2Jk LzEvVjI1YVdWTThwdER3dElnSDBNZC1GV2hnVGw0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlKBYek6o O2bMQUPcWX7t6R36A1RSaOmXwW/3aMz/NnLPCHL4kwgeOBkBPlSd1aA3MuQnWXVz COe6YLay1K5p8IYCH642uNkj1jJf15G7GvwKuKaDuQ1TtHOqRS7veKdveoklt86c 6YiJLsFKs+UE2Yv8slRxQyW0ctNhCJG2eCPxCbkSF2xTeylsjFSxAoizAQOiRIOm hzG66D8I+8RnKah9VoFeQTKQVQod5wBqN2eUhuVGZ8qqG/C0L9BGpCClJX4MYzQp fQPlVhJg7gDghSsinSojK+OSQi7O1wmd9G3dKQP1FIEkYmQdzBQ+d9yRKHKsvn+R Sp9Kn2pj8uzP+g== -----END CERTIFICATE-----Generated at Fri Dec 26 14:05:55 2025 by rpki-client