This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json) Hash identifier: byE2orJzh957r4qMpraW905S+aeh6Zfr6nbnp5/Q8hI= Subject key identifier: 7E:9A:8E:2E:57:70:F7:52:00:32:53:24:38:21:96:DC:C4:3B:0C:05 Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782 Certificate serial: 019B446E98D6CD54649D62798B3BCDE97BFA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft Manifest number: 0E63 Signing time: Mon 22 Dec 2025 05:00:57 +0000 Manifest this update: Mon 22 Dec 2025 05:00:57 +0000 Manifest next update: Tue 23 Dec 2025 05:00:57 +0000 Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=) 2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: CO6MN3ju3noCHKTssrAaNYZuyKLshMmtdAr9E1vQynI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:6e:98:d6:cd:54:64:9d:62:79:8b:3b:cd:e9:7b:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782 Validity Not Before: Dec 22 05:00:57 2025 GMT Not After : Dec 23 05:00:57 2025 GMT Subject: CN=7e9a8e2e5770f75200325324382196dcc43b0c05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4d:ff:eb:66:78:7c:2d:61:03:4c:a0:3e:e3: 35:29:f2:93:be:7e:63:12:b6:38:ae:49:ef:25:ac: 26:d1:77:4c:61:ff:d2:28:30:4f:fb:ca:39:24:47: 9c:17:aa:24:3c:86:07:0b:1b:7a:85:4f:92:40:e9: 44:dd:42:6b:b2:b2:db:5e:c1:fc:12:32:b7:07:ed: 95:94:05:99:a3:5f:99:8f:3d:51:d8:06:6d:de:9b: 4d:f9:75:bb:60:4d:1e:0d:d0:d2:79:37:29:63:60: 81:75:d5:e3:e4:f9:46:52:61:71:73:e8:bc:92:1e: 44:5c:fa:4f:bb:82:04:ce:d6:e9:aa:c8:70:3a:30: 72:dd:e3:44:26:32:3e:8d:57:1a:ed:a9:25:8e:9e: f8:ff:07:34:db:99:83:2a:9d:b5:7b:75:dd:7a:c2: ca:5b:52:0b:3c:a5:1e:05:30:86:71:f2:64:72:9d: 71:1d:fe:43:0b:4d:56:a7:ca:94:38:f2:57:0b:a3: 8c:f4:a5:aa:e2:0d:1d:dc:43:28:75:97:0a:03:59: ed:62:99:14:78:72:bc:c7:8c:b7:72:92:4b:a4:3f: 06:ec:12:3b:d3:a5:5f:71:4b:e5:10:7b:41:e7:e5: bc:6e:16:63:fc:6e:a5:63:c5:94:6b:41:4e:7c:cf: ef:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9A:8E:2E:57:70:F7:52:00:32:53:24:38:21:96:DC:C4:3B:0C:05 X509v3 Authority Key Identifier: keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:82:69:e2:c8:3e:34:09:1f:7f:51:0d:53:b9:a3:11:58:ee: f8:18:ab:8e:9f:30:d6:8d:0b:b2:0e:a2:15:11:0f:3c:92:88: 93:33:06:9c:db:d4:a2:97:85:94:b2:09:3a:2b:68:f3:eb:ae: 1a:d1:a4:c6:7d:f7:2a:dc:f4:20:a7:e4:3d:9f:64:0a:c5:41: 50:90:a7:e4:f8:70:64:c8:f8:bc:98:4c:b9:6c:c7:7c:f1:70: 62:48:81:df:e4:29:1b:10:1d:47:7d:e2:ee:27:51:da:9a:80: fc:39:fc:b5:16:36:b3:69:a8:d2:a3:95:11:a4:bf:29:a6:4c: c9:8d:15:48:31:ee:88:65:47:b0:91:e9:da:a4:ae:dd:8e:32: 3a:a9:08:ef:b5:a3:8d:0b:66:db:22:47:81:87:e5:88:7d:5f: 00:a8:ca:f3:20:db:20:11:d9:f6:e6:bd:26:de:d7:23:0a:8f: af:6d:0f:10:b2:c8:26:ca:47:c2:92:05:7a:f3:30:df:a8:0b: 8e:ed:a2:72:d3:2c:05:3c:96:12:8f:cc:a2:7e:a7:a1:26:39: 99:1a:17:df:cb:52:b9:2c:73:40:a1:b1:dd:0d:d4:a2:0d:1c: b8:6a:63:93:89:34:af:26:2e:a0:22:86:d4:d9:fa:82:3f:90: 19:f3:be:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEbpjWzVRknWJ5izvN6Xv6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OGQyMzU2OTNmNjg2N2M1YjM4MTNkYTFmMzZmZTEwN2Jk MWQ3ODIwHhcNMjUxMjIyMDUwMDU3WhcNMjUxMjIzMDUwMDU3WjAzMTEwLwYDVQQD Eyg3ZTlhOGUyZTU3NzBmNzUyMDAzMjUzMjQzODIxOTZkY2M0M2IwYzA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyU3/62Z4fC1hA0ygPuM1KfKTvn5j ErY4rknvJawm0XdMYf/SKDBP+8o5JEecF6okPIYHCxt6hU+SQOlE3UJrsrLbXsH8 EjK3B+2VlAWZo1+Zjz1R2AZt3ptN+XW7YE0eDdDSeTcpY2CBddXj5PlGUmFxc+i8 kh5EXPpPu4IEztbpqshwOjBy3eNEJjI+jVca7akljp74/wc025mDKp21e3XdesLK W1ILPKUeBTCGcfJkcp1xHf5DC01Wp8qUOPJXC6OM9KWq4g0d3EModZcKA1ntYpkU eHK8x4y3cpJLpD8G7BI706VfcUvlEHtB5+W8bhZj/G6lY8WUa0FOfM/v4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH6aji5XcPdSADJTJDghltzEOwwFMB8GA1UdIwQY MBaAFHaNI1aT9oZ8WzgT2h82/hB70deCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2Yt ZTM3NmI5MjQyZWE3LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2YtZTM3NmI5MjQyZWE3 LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPYJp4sg+ NAkff1ENU7mjEVju+Birjp8w1o0Lsg6iFREPPJKIkzMGnNvUopeFlLIJOito8+uu GtGkxn33Ktz0IKfkPZ9kCsVBUJCn5PhwZMj4vJhMuWzHfPFwYkiB3+QpGxAdR33i 7idR2pqA/Dn8tRY2s2mo0qOVEaS/KaZMyY0VSDHuiGVHsJHp2qSu3Y4yOqkI77Wj jQtm2yJHgYfliH1fAKjK8yDbIBHZ9ua9Jt7XIwqPr20PELLIJspHwpIFevMw36gL ju2ictMsBTyWEo/Mon6noSY5mRoX38tSuSxzQKGx3Q3Uog0cuGpjk4k0ryYuoCKG 1Nn6gj+QGfO+Dg== -----END CERTIFICATE-----Generated at Mon Dec 22 06:48:50 2025 by rpki-client