This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json) Hash identifier: sbc7CAf3KPXWrscED5X6+BUn4RlD+rL841v9PpNuSmA= Subject key identifier: 15:2F:76:3C:79:52:5F:96:88:B3:A8:4E:2F:CA:3F:FB:BD:15:E7:19 Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5 Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5 Certificate serial: 019B1A29B9722AD27019DE240C144947D4CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft Manifest number: 1554 Signing time: Sun 14 Dec 2025 00:01:40 +0000 Manifest this update: Sun 14 Dec 2025 00:01:40 +0000 Manifest next update: Mon 15 Dec 2025 00:01:40 +0000 Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: 4k0Ez3rRZqWy8GOoDA1VwN4SzoUHUTfaPvucgcA1xi8=) 2: O_uEU5a5hFxcQ9cF5vOgcBailtI.roa (hash: am+LoRbwPcUWGmyLF541pRdLLSbuzmsIRCZ85z19J6M=) 3: _MZl5mAk0VStSl6-Iutzl1XZEmc.roa (hash: GAxNehsNlSM4VBui+WLkl0ufFvlsHnC2diPLD2P3m8s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:29:b9:72:2a:d2:70:19:de:24:0c:14:49:47:d4:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5 Validity Not Before: Dec 14 00:01:40 2025 GMT Not After : Dec 15 00:01:40 2025 GMT Subject: CN=152f763c79525f9688b3a84e2fca3ffbbd15e719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:76:39:b7:32:4b:2a:fd:fd:c4:b1:b4:2c:f8: 79:14:7b:92:e4:07:ff:e0:68:54:a1:77:76:30:d7: dc:2a:d8:64:24:09:cf:1a:90:db:dd:15:11:50:dc: 4e:04:52:ca:76:2f:d1:4f:2f:2c:ae:99:56:5d:cf: 72:4a:38:47:af:7e:fe:4f:41:b6:c1:b5:2c:f7:dc: 6c:bb:8b:49:ae:52:6b:aa:f9:06:0e:a9:68:1e:f4: af:07:51:09:33:cb:2e:d7:ed:37:79:ce:8d:ce:bf: 83:17:04:e0:4f:e6:ec:d4:b8:3d:81:10:e5:ba:f6: 67:7a:9d:cf:bb:b4:f4:78:7a:9c:be:28:a2:0a:11: d0:4e:7a:dc:7c:bb:ad:4f:c0:3e:30:0d:b7:5f:cf: e0:91:84:ab:4e:0b:97:67:05:cd:80:e7:f2:0f:ce: 9a:fc:0f:d6:ae:93:aa:9f:f1:7b:55:90:11:1a:1f: bc:83:59:db:07:77:50:e3:d1:7b:02:0a:e8:6c:32: 17:dc:e7:d3:dd:30:05:bf:ab:bc:d0:6b:4a:c4:b6: da:9a:9c:e5:10:4d:bc:9e:c1:c9:b4:51:1d:9a:e6: 48:72:38:21:58:c4:12:7d:f1:6c:38:01:91:19:70: 11:fe:fe:06:06:e6:a6:0b:27:61:6d:0f:f3:1b:83: bc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:2F:76:3C:79:52:5F:96:88:B3:A8:4E:2F:CA:3F:FB:BD:15:E7:19 X509v3 Authority Key Identifier: keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:98:f4:0a:27:58:31:81:b0:2f:12:e9:40:82:41:36:8f:cb: 73:00:69:86:3f:07:08:df:85:98:7c:77:8d:f9:63:63:80:3e: 02:43:c1:e7:b5:20:b5:dd:a9:27:49:60:2c:c3:e6:32:98:d6: dd:17:25:78:bf:1a:3e:02:ce:2d:17:f3:b6:57:97:62:3f:75: 41:08:69:15:62:f8:28:b9:34:7c:09:15:5a:c9:2a:df:71:a5: a7:f8:c5:df:39:33:d9:42:e1:a2:1f:ee:d0:c4:f0:63:b9:5d: b3:d4:ed:9e:e0:f5:1e:47:65:df:cd:f8:cf:f4:d3:34:0f:cd: c7:df:52:a5:85:0a:2f:fa:39:ae:54:d1:7c:31:1a:8f:bb:89: 49:2a:98:ad:ff:24:f2:dc:87:53:42:1d:82:9b:6e:59:49:9e: 25:fd:ee:fc:d1:a9:16:e0:3e:67:22:47:d6:4a:20:ae:71:5d: ec:a4:1e:ad:e1:2f:98:ff:00:6d:9f:3c:f9:eb:9a:a9:29:d0: f3:aa:d2:ac:0f:32:bc:57:23:16:b0:27:7f:f8:27:35:51:f4: 54:e7:79:07:3d:2f:e2:7b:79:eb:30:98:46:f1:0d:39:14:b3: c5:9d:de:75:12:e2:4b:10:9e:63:5a:49:2b:31:09:75:fc:f7: 01:80:1d:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaKblyKtJwGd4kDBRJR9TKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNjViZDIxYzY4MzIwN2RhMGMzOWZiMzc5ODUzNWFmNDll MGJmZjUwHhcNMjUxMjE0MDAwMTQwWhcNMjUxMjE1MDAwMTQwWjAzMTEwLwYDVQQD EygxNTJmNzYzYzc5NTI1Zjk2ODhiM2E4NGUyZmNhM2ZmYmJkMTVlNzE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XY5tzJLKv39xLG0LPh5FHuS5Af/ 4GhUoXd2MNfcKthkJAnPGpDb3RURUNxOBFLKdi/RTy8srplWXc9ySjhHr37+T0G2 wbUs99xsu4tJrlJrqvkGDqloHvSvB1EJM8su1+03ec6Nzr+DFwTgT+bs1Lg9gRDl uvZnep3Pu7T0eHqcviiiChHQTnrcfLutT8A+MA23X8/gkYSrTguXZwXNgOfyD86a /A/WrpOqn/F7VZARGh+8g1nbB3dQ49F7AgrobDIX3OfT3TAFv6u80GtKxLbampzl EE28nsHJtFEdmuZIcjghWMQSffFsOAGRGXAR/v4GBuamCydhbQ/zG4O8bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBUvdjx5Ul+WiLOoTi/KP/u9FecZMB8GA1UdIwQY MBaAFA9lvSHGgyB9oMOfs3mFNa9J4L/1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDJXOUljYURJSDJndzUtemVZVTFyMG5ndl9VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS80YTk5OWYtZDFmYS00ODg3LWJhZTgt ZTIzZjEwZTRiOTFjLzEvRDJXOUljYURJSDJndzUtemVZVTFyMG5ndl9VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS80YTk5OWYtZDFmYS00ODg3LWJhZTgtZTIzZjEwZTRiOTFj LzEvRDJXOUljYURJSDJndzUtemVZVTFyMG5ndl9VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARpj0CidY MYGwLxLpQIJBNo/LcwBphj8HCN+FmHx3jfljY4A+AkPB57Ugtd2pJ0lgLMPmMpjW 3RcleL8aPgLOLRfztleXYj91QQhpFWL4KLk0fAkVWskq33Glp/jF3zkz2ULhoh/u 0MTwY7lds9TtnuD1Hkdl3834z/TTNA/Nx99SpYUKL/o5rlTRfDEaj7uJSSqYrf8k 8tyHU0IdgptuWUmeJf3u/NGpFuA+ZyJH1kogrnFd7KQereEvmP8AbZ88+euaqSnQ 86rSrA8yvFcjFrAnf/gnNVH0VOd5Bz0v4nt56zCYRvENORSzxZ3edRLiSxCeY1pJ KzEJdfz3AYAdJA== -----END CERTIFICATE-----Generated at Sun Dec 14 06:12:58 2025 by rpki-client