This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json) Hash identifier: jCOo9QoZFTS6dPdjpiiMzyU8n1Ucx9B3CkMj88W9zV8= Subject key identifier: 0E:A7:10:AC:81:DC:33:30:67:80:1A:96:4B:EB:ED:B2:C8:7F:5A:4D Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce Certificate serial: 019B29D325E50A747E862D0889A91C5755EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft Manifest number: 1780 Signing time: Wed 17 Dec 2025 01:01:02 +0000 Manifest this update: Wed 17 Dec 2025 01:01:02 +0000 Manifest next update: Thu 18 Dec 2025 01:01:02 +0000 Files and hashes: 1: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: AS+nvw5iO2yzunINRMDSYPQCG/TIoc3RyZNQ+4HldKc=) 2: 5JInjtJs-s2-yK_dBCuc4HDNHSk.roa (hash: JUxQOg0RzN7jHCpHsSZf+phi3+AooD9Ty47K9VLPoKw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:29:d3:25:e5:0a:74:7e:86:2d:08:89:a9:1c:57:55:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce Validity Not Before: Dec 17 01:01:02 2025 GMT Not After : Dec 18 01:01:02 2025 GMT Subject: CN=0ea710ac81dc333067801a964bebedb2c87f5a4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f6:62:9d:ae:6a:d6:af:09:ec:3c:88:f3:65: c2:a2:58:3e:40:ba:65:af:ba:6f:62:a6:79:64:a1: bb:07:2f:0b:36:ff:f0:48:51:33:40:f1:2e:1a:f1: d5:80:fc:23:ea:76:c6:41:24:f2:0e:da:8f:75:13: 99:d6:36:49:b1:57:04:bd:c9:73:d1:d6:6a:3c:e8: 68:db:92:6f:df:fe:25:c0:86:f9:f7:c8:f4:38:73: 92:43:1f:06:34:cc:d6:14:55:0a:42:cf:cb:ed:3c: 30:55:b0:2c:d5:8d:aa:6e:d3:bb:21:ca:9c:25:17: 76:ca:fb:56:79:01:10:ff:c2:d5:90:ef:65:24:0f: 01:fb:ba:7c:f7:28:99:40:69:15:63:09:e7:6e:f4: 52:ba:7b:62:3b:aa:82:f8:00:72:98:f3:68:2e:0f: 9b:0b:fe:60:57:23:b5:1e:37:52:ea:ba:65:81:b7: 9b:64:62:c3:36:d6:a4:80:c5:6d:32:7f:3e:86:a9: 1d:15:d7:ea:af:0e:8d:55:11:f0:82:52:9b:ff:ae: 41:fd:9d:ca:99:31:a3:e6:04:46:ea:53:dd:f6:86: c5:fc:e7:d7:da:b0:09:6b:37:e8:60:35:92:9d:2a: bc:50:e5:82:82:01:95:3d:4b:a7:65:79:4d:69:1b: c6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A7:10:AC:81:DC:33:30:67:80:1A:96:4B:EB:ED:B2:C8:7F:5A:4D X509v3 Authority Key Identifier: keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:d3:65:c0:37:f3:de:bd:e9:47:db:e7:80:24:2a:32:d3:a5: dc:7f:32:07:93:1a:82:a6:8c:7d:59:fd:53:4c:24:08:97:fd: 74:d6:74:b3:3c:f6:50:a9:22:9a:e6:d7:52:76:28:f0:09:12: 6f:c0:1a:eb:8b:47:62:c3:c3:4e:9a:eb:a0:1a:1a:b2:5c:0f: 0a:9d:61:44:33:75:73:9d:f6:0e:7f:27:46:cb:16:98:a6:98: a9:ec:46:a9:63:bf:43:5d:0f:5a:10:f7:e9:50:1e:69:67:05: d5:6a:9b:1d:64:94:bf:24:93:fa:c2:fd:db:30:d5:57:6d:12: ff:2b:25:f8:df:16:11:97:bb:b3:c8:20:41:37:90:b0:89:05: 65:de:73:68:6a:c5:b2:62:f9:ea:86:a8:2e:ff:8c:44:92:51: 2a:34:13:e3:41:8f:09:c2:72:c5:24:3f:59:a4:5f:32:91:d9: e0:e9:83:e4:de:30:b3:72:c4:7f:a1:d0:74:6a:67:4e:82:f1: 9a:ed:13:d9:8e:ce:b9:45:ae:5b:b5:05:35:d4:18:f7:62:2d: 26:28:f9:cf:12:9f:f2:58:fd:dc:e3:82:ec:57:b8:02:70:c7: 8f:33:16:ec:92:59:d6:bb:d2:fb:85:40:3f:4f:f8:cd:15:0f: 92:2f:3d:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsp0yXlCnR+hi0IiakcV1XsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyYWU1ZTMzODc5NGU2MGQ1ZDhiNTIzYmRiMmI2OGVjNGFj NzYyY2UwHhcNMjUxMjE3MDEwMTAyWhcNMjUxMjE4MDEwMTAyWjAzMTEwLwYDVQQD EygwZWE3MTBhYzgxZGMzMzMwNjc4MDFhOTY0YmViZWRiMmM4N2Y1YTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPZina5q1q8J7DyI82XColg+QLpl r7pvYqZ5ZKG7By8LNv/wSFEzQPEuGvHVgPwj6nbGQSTyDtqPdROZ1jZJsVcEvclz 0dZqPOho25Jv3/4lwIb598j0OHOSQx8GNMzWFFUKQs/L7TwwVbAs1Y2qbtO7Icqc JRd2yvtWeQEQ/8LVkO9lJA8B+7p89yiZQGkVYwnnbvRSuntiO6qC+ABymPNoLg+b C/5gVyO1HjdS6rplgbebZGLDNtakgMVtMn8+hqkdFdfqrw6NVRHwglKb/65B/Z3K mTGj5gRG6lPd9obF/OfX2rAJazfoYDWSnSq8UOWCggGVPUunZXlNaRvGswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6nEKyB3DMwZ4Aalkvr7bLIf1pNMB8GA1UdIwQY MBaAFNKuXjOHlOYNXYtSO9sraOxKx2LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYt OGQ4ZTllYTE0MzI1LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYtOGQ4ZTllYTE0MzI1 LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAtNlwDfz 3r3pR9vngCQqMtOl3H8yB5MagqaMfVn9U0wkCJf9dNZ0szz2UKkimubXUnYo8AkS b8Aa64tHYsPDTprroBoaslwPCp1hRDN1c532Dn8nRssWmKaYqexGqWO/Q10PWhD3 6VAeaWcF1WqbHWSUvyST+sL92zDVV20S/ysl+N8WEZe7s8ggQTeQsIkFZd5zaGrF smL56oaoLv+MRJJRKjQT40GPCcJyxSQ/WaRfMpHZ4OmD5N4ws3LEf6HQdGpnToLx mu0T2Y7OuUWuW7UFNdQY92ItJij5zxKf8lj93OOC7Fe4AnDHjzMW7JJZ1rvS+4VA P0/4zRUPki89wQ== -----END CERTIFICATE-----Generated at Wed Dec 17 06:17:58 2025 by rpki-client