This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft File: t1ELZRv73wnISGqBNiAABb77SX0.mft (raw, json) Hash identifier: T0SrtmaNthqLQBeU18exl9f9BpUHxT4W8Ak2OVbE8G4= Subject key identifier: FE:5C:72:BA:6B:8F:90:EF:BE:27:FA:1D:B2:6D:EA:D6:E8:59:EF:B4 Authority key identifier: B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D Certificate issuer: /CN=b7510b651bfbdf09c8486a8136200005befb497d Certificate serial: 019B5ABF70A9B7175FC9B93C933094173A42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft Manifest number: 0E17 Signing time: Fri 26 Dec 2025 13:00:54 +0000 Manifest this update: Fri 26 Dec 2025 13:00:54 +0000 Manifest next update: Sat 27 Dec 2025 13:00:54 +0000 Files and hashes: 1: Jiow1t-Pk1ZOtI6Aqeh1RaSW3p4.roa (hash: DYR6jlP51Fl43ZL0B6qnJrGHJROyqbTA9KSRORts0Uo=) 2: t1ELZRv73wnISGqBNiAABb77SX0.crl (hash: 1gNfEApQFODUx2uv88o1OPOtADXCjinPD4kjMQTeEPs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:70:a9:b7:17:5f:c9:b9:3c:93:30:94:17:3a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b7510b651bfbdf09c8486a8136200005befb497d Validity Not Before: Dec 26 13:00:54 2025 GMT Not After : Dec 27 13:00:54 2025 GMT Subject: CN=fe5c72ba6b8f90efbe27fa1db26dead6e859efb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:ee:49:7a:67:c4:74:85:ff:e4:01:c6:8e: 86:b7:f0:21:89:42:9e:67:ed:2f:74:3a:f2:ae:bf: 4e:c2:fb:59:9c:6d:bd:90:91:d1:fa:47:05:be:24: ad:41:04:e3:8f:ed:83:eb:53:cf:ef:77:82:f7:23: 80:c7:96:23:0e:06:09:22:e1:96:f3:ed:64:0d:9c: 79:3c:d1:ef:1f:68:07:26:81:16:2a:6d:b5:20:04: 07:b0:0c:df:cb:cc:cb:9f:a1:b5:ec:a9:de:b0:88: 9f:0d:7e:a3:f1:d5:80:c5:05:e9:7c:5e:b5:95:39: 43:a0:d3:69:a5:97:81:b0:5e:28:5a:b7:50:cc:48: 8d:76:50:d6:8e:ff:86:27:5b:b0:60:9e:f8:48:d4: e8:b7:8e:2d:5c:91:ca:36:26:7d:46:18:ff:c5:c8: c1:58:d1:28:28:83:42:cc:12:38:3f:fd:ed:1f:44: e0:e0:7c:ab:81:f3:54:39:c6:3c:5e:bf:eb:11:cc: 82:1b:3a:2b:50:87:3b:08:9d:e2:77:c0:00:dc:ad: 9f:dd:eb:da:a2:38:8f:86:47:e4:75:c6:6d:1a:78: b6:ef:37:47:0a:db:25:b6:13:f8:d7:8d:06:3f:22: dd:9d:30:c9:88:85:06:b1:32:ce:69:51:b1:31:e9: 52:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:5C:72:BA:6B:8F:90:EF:BE:27:FA:1D:B2:6D:EA:D6:E8:59:EF:B4 X509v3 Authority Key Identifier: keyid:B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:2e:8b:da:cf:20:73:21:fc:d3:9f:44:7f:f6:33:1f:c1:e5: ea:8f:fe:75:d7:ed:72:c9:a4:8b:60:6d:f5:6a:4f:62:9c:9b: 0e:32:36:a8:21:64:c6:b0:2b:7b:74:4a:d0:7c:ae:6a:cf:b1: f4:d7:5e:51:c5:ee:87:fa:34:53:64:61:7c:28:0c:a0:19:95: 97:24:be:f4:17:fd:e1:5f:1f:6c:f6:77:2f:74:8d:c1:a0:55: 25:91:d5:32:15:02:ce:b5:ad:9e:48:8e:e2:ab:92:b0:d0:8e: 7d:7e:f3:59:63:ee:3a:6f:bb:0e:c9:c1:0d:94:8a:c5:e3:c3: 5e:78:73:12:7d:21:b4:84:fe:d7:c5:14:41:07:47:75:22:f0: cf:93:41:89:7c:b8:ae:df:a3:90:bb:09:7b:b8:80:86:2f:66: 98:18:7f:02:33:92:14:82:a4:58:fe:46:51:f3:3a:03:4f:c9: da:d2:bd:83:01:b9:8a:46:68:4f:6c:cb:45:f9:d8:00:3f:b0: 1c:56:ac:92:68:d6:71:d0:c1:b5:ea:3f:44:86:82:04:d9:9e: 36:8a:6f:c9:3b:7e:6e:86:93:c0:66:c2:58:b4:d2:19:ab:a7: de:6d:59:88:76:78:a4:68:26:fc:cb:b6:7c:b0:f3:11:42:8d: 2e:10:72:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav3Cptxdfybk8kzCUFzpCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NTEwYjY1MWJmYmRmMDljODQ4NmE4MTM2MjAwMDA1YmVm YjQ5N2QwHhcNMjUxMjI2MTMwMDU0WhcNMjUxMjI3MTMwMDU0WjAzMTEwLwYDVQQD EyhmZTVjNzJiYTZiOGY5MGVmYmUyN2ZhMWRiMjZkZWFkNmU4NTllZmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWHuSXpnxHSF/+QBxo6Gt/AhiUKe Z+0vdDryrr9OwvtZnG29kJHR+kcFviStQQTjj+2D61PP73eC9yOAx5YjDgYJIuGW 8+1kDZx5PNHvH2gHJoEWKm21IAQHsAzfy8zLn6G17KnesIifDX6j8dWAxQXpfF61 lTlDoNNppZeBsF4oWrdQzEiNdlDWjv+GJ1uwYJ74SNTot44tXJHKNiZ9Rhj/xcjB WNEoKINCzBI4P/3tH0Tg4HyrgfNUOcY8Xr/rEcyCGzorUIc7CJ3id8AA3K2f3eva ojiPhkfkdcZtGni27zdHCtslthP4140GPyLdnTDJiIUGsTLOaVGxMelS9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP5ccrprj5Dvvif6HbJt6tboWe+0MB8GA1UdIwQY MBaAFLdRC2Ub+98JyEhqgTYgAAW++0l9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFFTFpSdjczd25JU0dxQk5pQUFCYjc3U1gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iZmYxYzMtMDA4NC00MmJiLWJjZjct MmNiODg3N2ZkOTcwLzEvdDFFTFpSdjczd25JU0dxQk5pQUFCYjc3U1gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9iZmYxYzMtMDA4NC00MmJiLWJjZjctMmNiODg3N2ZkOTcw LzEvdDFFTFpSdjczd25JU0dxQk5pQUFCYjc3U1gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOC6L2s8g cyH8059Ef/YzH8Hl6o/+ddftcsmki2Bt9WpPYpybDjI2qCFkxrAre3RK0Hyuas+x 9NdeUcXuh/o0U2RhfCgMoBmVlyS+9Bf94V8fbPZ3L3SNwaBVJZHVMhUCzrWtnkiO 4quSsNCOfX7zWWPuOm+7DsnBDZSKxePDXnhzEn0htIT+18UUQQdHdSLwz5NBiXy4 rt+jkLsJe7iAhi9mmBh/AjOSFIKkWP5GUfM6A0/J2tK9gwG5ikZoT2zLRfnYAD+w HFaskmjWcdDBteo/RIaCBNmeNopvyTt+boaTwGbCWLTSGaun3m1ZiHZ4pGgm/Mu2 fLDzEUKNLhBy2A== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:53 2025 by rpki-client