This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json) Hash identifier: XDnjvBCBdYMc/tNshrqsGdtPrwpirgL6WSGKBcekOwA= Subject key identifier: 83:E4:FC:13:C6:AC:87:BF:99:72:62:70:85:59:DF:BA:6C:E9:50:22 Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782 Certificate serial: 019B38D8524EEEE792EB7950914EDEE5F7E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft Manifest number: 0E5D Signing time: Fri 19 Dec 2025 23:00:59 +0000 Manifest this update: Fri 19 Dec 2025 23:00:59 +0000 Manifest next update: Sat 20 Dec 2025 23:00:59 +0000 Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=) 2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: EAHJIE00wbHad1C7qsNZj70gmjA8vhryJ/IgBxsJeD0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:d8:52:4e:ee:e7:92:eb:79:50:91:4e:de:e5:f7:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782 Validity Not Before: Dec 19 23:00:59 2025 GMT Not After : Dec 20 23:00:59 2025 GMT Subject: CN=83e4fc13c6ac87bf997262708559dfba6ce95022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b2:11:7e:6d:7e:a4:ec:72:cf:d3:46:57:bb: 82:5a:69:93:c0:ce:94:f0:ac:c6:8b:da:11:58:6c: e4:b1:93:fe:6b:66:a7:64:4c:50:68:4e:e3:09:6f: 77:bc:31:f6:9b:2f:8a:f0:4d:0a:46:73:ab:85:b6: ef:73:a0:ad:db:d4:e6:fd:66:20:cc:b4:15:5c:5e: 04:41:e3:3c:a0:2b:2a:e3:fd:0c:31:12:83:c8:93: a5:03:20:74:b9:fe:11:ab:4d:e7:97:70:a7:13:76: c0:cf:a2:49:50:64:50:af:9f:af:3e:b4:8a:07:f1: 71:bd:eb:f8:62:c6:dd:bd:12:bb:e1:f7:bd:55:31: 9a:42:72:44:de:b5:6f:d5:0a:f7:0f:3b:55:8d:30: 2e:e3:93:a7:47:35:9e:0d:34:1b:0d:b0:77:f6:41: d3:a8:2f:ab:88:1b:b1:62:d1:d2:b7:6e:67:eb:d2: 51:22:f7:6a:80:fe:f4:99:14:35:1d:77:2e:1d:b1: 2a:6a:fc:ea:62:95:e2:f9:ac:7d:5e:9a:99:3a:8c: d2:bc:d6:a1:55:34:b6:6e:37:bc:3a:ba:a3:35:1d: 8f:79:f9:74:11:41:0b:60:76:b2:d6:10:4a:89:ea: f7:9e:5f:1b:be:7e:81:68:7a:b8:8b:18:97:fb:06: 86:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E4:FC:13:C6:AC:87:BF:99:72:62:70:85:59:DF:BA:6C:E9:50:22 X509v3 Authority Key Identifier: keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:71:a2:fb:52:f1:7b:71:0a:63:63:5a:3e:8f:7e:44:fc:40: ab:8d:5b:c3:3c:b1:e8:3f:fd:87:91:e5:32:96:d8:6c:40:6e: 6d:d3:5f:c2:49:bd:a7:1b:60:ce:e8:23:0b:2e:d8:0d:cc:72: c7:c1:9a:ba:3f:fe:e7:4c:f0:8d:a4:72:b4:27:ce:cc:07:19: b2:73:6f:43:30:55:c7:82:40:fd:01:60:6a:d5:5c:a6:67:29: ad:95:db:9b:3a:6e:29:aa:6f:86:29:a0:a8:fd:9a:90:15:61: a7:42:e0:ed:2a:ca:8b:11:ad:f7:18:38:a3:10:f5:79:8e:27: 9b:05:4e:ee:8e:e4:80:bb:60:34:b0:75:c7:fb:f7:80:93:c5: c6:25:0c:d2:00:c3:dc:2b:ed:76:4c:ea:e8:1e:44:47:72:03: bb:88:9f:23:7e:d2:90:5d:4a:23:6c:96:20:0e:59:ad:13:12: 85:3e:8e:64:b6:cc:f7:bd:45:ec:a1:b9:d5:c8:3b:c8:3f:dd: 74:88:f2:e1:2d:ee:c3:fd:7b:ae:d0:3c:21:c2:27:75:e1:83: bf:d9:8c:c0:56:0b:f8:7d:e4:c1:87:3f:68:77:05:3c:60:ce: 88:8c:af:81:af:82:68:dc:64:0e:47:e5:49:ae:98:2f:43:78: 54:70:2f:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs42FJO7ueS63lQkU7e5ffoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OGQyMzU2OTNmNjg2N2M1YjM4MTNkYTFmMzZmZTEwN2Jk MWQ3ODIwHhcNMjUxMjE5MjMwMDU5WhcNMjUxMjIwMjMwMDU5WjAzMTEwLwYDVQQD Eyg4M2U0ZmMxM2M2YWM4N2JmOTk3MjYyNzA4NTU5ZGZiYTZjZTk1MDIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1LIRfm1+pOxyz9NGV7uCWmmTwM6U 8KzGi9oRWGzksZP+a2anZExQaE7jCW93vDH2my+K8E0KRnOrhbbvc6Ct29Tm/WYg zLQVXF4EQeM8oCsq4/0MMRKDyJOlAyB0uf4Rq03nl3CnE3bAz6JJUGRQr5+vPrSK B/Fxvev4YsbdvRK74fe9VTGaQnJE3rVv1Qr3DztVjTAu45OnRzWeDTQbDbB39kHT qC+riBuxYtHSt25n69JRIvdqgP70mRQ1HXcuHbEqavzqYpXi+ax9XpqZOozSvNah VTS2bje8OrqjNR2Pefl0EUELYHay1hBKier3nl8bvn6BaHq4ixiX+waGSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIPk/BPGrIe/mXJicIVZ37ps6VAiMB8GA1UdIwQY MBaAFHaNI1aT9oZ8WzgT2h82/hB70deCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2Yt ZTM3NmI5MjQyZWE3LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2YtZTM3NmI5MjQyZWE3 LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdHGi+1Lx e3EKY2NaPo9+RPxAq41bwzyx6D/9h5HlMpbYbEBubdNfwkm9pxtgzugjCy7YDcxy x8Gauj/+50zwjaRytCfOzAcZsnNvQzBVx4JA/QFgatVcpmcprZXbmzpuKapvhimg qP2akBVhp0Lg7SrKixGt9xg4oxD1eY4nmwVO7o7kgLtgNLB1x/v3gJPFxiUM0gDD 3Cvtdkzq6B5ER3IDu4ifI37SkF1KI2yWIA5ZrRMShT6OZLbM971F7KG51cg7yD/d dIjy4S3uw/17rtA8IcIndeGDv9mMwFYL+H3kwYc/aHcFPGDOiIyvga+CaNxkDkfl Sa6YL0N4VHAvDQ== -----END CERTIFICATE-----Generated at Sat Dec 20 00:19:34 2025 by rpki-client