This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json) Hash identifier: dMYXEEfxRmiguJfBhWFf1hedIEsbDXKmjYxz3mYxjMg= Subject key identifier: EA:3D:A2:70:BB:49:5A:07:32:EF:9D:BA:DF:D0:7E:1B:8F:7D:E0:AE Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782 Certificate serial: 019B25887AE08B8A1E21A72E54E1B1C10C26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft Manifest number: 0E53 Signing time: Tue 16 Dec 2025 05:00:59 +0000 Manifest this update: Tue 16 Dec 2025 05:00:59 +0000 Manifest next update: Wed 17 Dec 2025 05:00:59 +0000 Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=) 2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: yB8c04FIMe++Hv/stpbWH5Zh8D/9knAdRFcJo5zYiYs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 05:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:88:7a:e0:8b:8a:1e:21:a7:2e:54:e1:b1:c1:0c:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782 Validity Not Before: Dec 16 05:00:59 2025 GMT Not After : Dec 17 05:00:59 2025 GMT Subject: CN=ea3da270bb495a0732ef9dbadfd07e1b8f7de0ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c9:83:6b:b8:fa:eb:d4:fa:e2:e0:26:70:d9: 07:d2:fb:6b:55:ae:a9:15:dc:c5:ee:e3:47:34:cc: 3e:b5:fd:2d:ef:58:e2:bd:f1:85:6f:68:27:91:5c: 3a:c4:c4:27:f3:46:60:23:d1:9e:3a:9d:b5:b8:68: 24:79:79:42:cf:a1:a0:26:ca:35:b6:8d:d9:4a:4f: b6:ef:a1:53:7c:fd:18:74:21:fc:99:81:0d:f5:86: 7b:4b:fb:39:f7:66:a4:3c:17:20:09:44:2b:cf:aa: 0b:83:57:9c:da:bf:ca:b9:89:f2:72:9c:0c:70:b4: 49:2f:72:f1:df:50:e1:74:4f:52:7b:22:1b:78:6a: 2a:76:b7:ca:99:5f:28:f8:af:b4:2b:83:be:34:06: a5:22:17:45:16:07:98:d6:4d:19:62:99:9c:e3:50: 9a:d3:be:16:d1:d0:29:c7:d0:80:0d:c9:4b:6b:e9: 14:12:a4:0f:d6:63:51:27:40:2f:68:1d:76:13:f2: cb:e5:67:de:a0:db:7c:72:ac:21:22:b5:61:e9:d5: 88:bd:c0:71:97:ba:c3:b8:09:10:c2:b5:d8:56:31: 52:46:1b:69:75:c0:a0:3f:42:83:94:fb:96:cb:33: da:e3:ea:5f:ff:e0:86:4d:90:ae:0c:0e:b9:7e:58: 38:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:3D:A2:70:BB:49:5A:07:32:EF:9D:BA:DF:D0:7E:1B:8F:7D:E0:AE X509v3 Authority Key Identifier: keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:f6:ff:19:98:36:5c:0d:45:e8:c9:56:d0:54:20:47:cd:8c: f1:84:6f:93:af:1c:fa:fd:79:fb:05:e3:b0:fd:d6:80:52:92: 85:8e:e5:6b:45:a9:61:07:6d:29:2d:a9:50:7a:64:41:4c:d0: d5:d9:69:71:8f:52:fb:f6:74:48:a6:9e:00:00:e6:af:74:3b: cf:4e:43:a8:40:2e:59:d6:f2:9c:9a:ef:51:d4:8c:41:d4:0a: 7a:09:5f:2b:d1:c5:c7:ee:84:6b:41:92:b1:8e:d1:79:cb:6c: 96:b3:e7:02:67:0e:87:84:3c:28:87:05:07:21:35:6d:dd:cd: ef:88:0a:05:d8:89:49:a1:82:34:55:7e:41:89:2e:23:d2:cf: d4:be:e2:1d:46:4d:20:b0:2a:8d:9a:30:7f:c0:42:f3:2c:ce: 1c:a1:ff:1f:b8:c8:f2:1e:be:63:46:ab:94:5c:0d:9c:13:dc: c6:e8:35:2d:86:8e:3f:45:cf:c0:41:32:57:83:1c:a1:3d:86: 54:fc:ac:51:4a:56:21:93:a7:65:33:7d:5c:b0:7d:16:8a:e6: e2:5d:e3:37:78:93:3c:05:8d:ed:41:86:ac:b7:e8:a0:f3:0f: 50:97:7a:89:e7:9c:24:dc:3e:aa:7b:1f:29:81:80:85:a4:c9: 92:90:4f:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsliHrgi4oeIacuVOGxwQwmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OGQyMzU2OTNmNjg2N2M1YjM4MTNkYTFmMzZmZTEwN2Jk MWQ3ODIwHhcNMjUxMjE2MDUwMDU5WhcNMjUxMjE3MDUwMDU5WjAzMTEwLwYDVQQD EyhlYTNkYTI3MGJiNDk1YTA3MzJlZjlkYmFkZmQwN2UxYjhmN2RlMGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcmDa7j669T64uAmcNkH0vtrVa6p FdzF7uNHNMw+tf0t71jivfGFb2gnkVw6xMQn80ZgI9GeOp21uGgkeXlCz6GgJso1 to3ZSk+276FTfP0YdCH8mYEN9YZ7S/s592akPBcgCUQrz6oLg1ec2r/KuYnycpwM cLRJL3Lx31DhdE9SeyIbeGoqdrfKmV8o+K+0K4O+NAalIhdFFgeY1k0ZYpmc41Ca 074W0dApx9CADclLa+kUEqQP1mNRJ0AvaB12E/LL5WfeoNt8cqwhIrVh6dWIvcBx l7rDuAkQwrXYVjFSRhtpdcCgP0KDlPuWyzPa4+pf/+CGTZCuDA65flg4ewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOo9onC7SVoHMu+dut/QfhuPfeCuMB8GA1UdIwQY MBaAFHaNI1aT9oZ8WzgT2h82/hB70deCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2Yt ZTM3NmI5MjQyZWE3LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2YtZTM3NmI5MjQyZWE3 LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVPb/GZg2 XA1F6MlW0FQgR82M8YRvk68c+v15+wXjsP3WgFKShY7la0WpYQdtKS2pUHpkQUzQ 1dlpcY9S+/Z0SKaeAADmr3Q7z05DqEAuWdbynJrvUdSMQdQKeglfK9HFx+6Ea0GS sY7RectslrPnAmcOh4Q8KIcFByE1bd3N74gKBdiJSaGCNFV+QYkuI9LP1L7iHUZN ILAqjZowf8BC8yzOHKH/H7jI8h6+Y0arlFwNnBPcxug1LYaOP0XPwEEyV4McoT2G VPysUUpWIZOnZTN9XLB9Form4l3jN3iTPAWN7UGGrLfooPMPUJd6ieecJNw+qnsf KYGAhaTJkpBP6A== -----END CERTIFICATE-----Generated at Tue Dec 16 12:14:48 2025 by rpki-client