This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft File: 5HZ7Uea0grnnp0g2YqXb7huNhaA.mft (raw, json) Hash identifier: D5I4K3i3YrmwD04+Phtx2avS8IeWigaYpyO0lZhUBCk= Subject key identifier: FC:1A:3C:F6:FB:7B:D6:BE:6D:D4:58:A6:6A:66:77:F9:9F:56:34:69 Authority key identifier: E4:76:7B:51:E6:B4:82:B9:E7:A7:48:36:62:A5:DB:EE:1B:8D:85:A0 Certificate issuer: /CN=e4767b51e6b482b9e7a7483662a5dbee1b8d85a0 Certificate serial: 019B5A5207584AD4C8033729138D105924BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft Manifest number: 1796 Signing time: Fri 26 Dec 2025 11:01:23 +0000 Manifest this update: Fri 26 Dec 2025 11:01:23 +0000 Manifest next update: Sat 27 Dec 2025 11:01:23 +0000 Files and hashes: 1: 1-2kAM8E1UL_Pvf9Vzt6AdGfyh8o.roa (hash: Ohp9jg/lWKCAW1pqYiDBNHfJGsbI7n6Nnedeq9nVw0Y=) 2: 5HZ7Uea0grnnp0g2YqXb7huNhaA.crl (hash: 6aor0T1VdJjuuJed4hb3JzPaiuTf0otvqmILgk/6R7o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:52:07:58:4a:d4:c8:03:37:29:13:8d:10:59:24:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4767b51e6b482b9e7a7483662a5dbee1b8d85a0 Validity Not Before: Dec 26 11:01:23 2025 GMT Not After : Dec 27 11:01:23 2025 GMT Subject: CN=fc1a3cf6fb7bd6be6dd458a66a6677f99f563469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c9:af:72:b3:8f:80:37:a9:d5:1b:3a:7f:d9: 61:73:3e:69:6c:f2:3e:65:3b:6e:28:66:b2:77:b3: 1c:8c:90:07:02:b9:47:68:13:23:cd:1d:8c:9d:f8: 8a:f1:dc:15:a4:6b:c6:97:51:34:21:5a:b9:52:d6: 59:aa:33:22:b6:8c:92:17:4e:ef:04:b4:0e:81:e1: 31:61:cf:33:59:13:cf:17:53:c6:ff:c4:36:c5:52: 4d:3e:e5:5e:8d:28:4d:f9:a9:7f:20:82:0c:63:14: 1a:07:2f:ab:e1:9a:4b:ab:45:70:3d:62:3f:22:18: 91:a2:79:d1:f2:63:2c:9e:49:76:f3:dd:62:1d:ac: 02:16:73:ed:a8:6b:39:57:63:3b:42:e9:ff:4c:b1: 68:55:77:55:7f:01:31:17:ae:f5:5f:cd:34:db:c7: 73:af:8a:3b:5a:fa:15:19:b8:e1:ba:60:8a:a6:93: 8b:4f:a4:d3:09:27:28:dc:2f:27:b8:75:6a:f2:01: af:f4:9b:11:b9:b5:4b:73:2c:08:49:04:26:99:d6: 2c:3d:fa:f2:46:2a:ae:25:9e:ad:77:6b:4a:e2:fc: 97:98:7f:50:ef:4d:7c:3a:62:0f:fd:00:18:a5:23: 70:4b:6d:1b:38:8e:9c:9a:b3:6f:e3:b0:27:cf:e0: ec:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:1A:3C:F6:FB:7B:D6:BE:6D:D4:58:A6:6A:66:77:F9:9F:56:34:69 X509v3 Authority Key Identifier: keyid:E4:76:7B:51:E6:B4:82:B9:E7:A7:48:36:62:A5:DB:EE:1B:8D:85:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:01:79:39:b9:62:6a:b4:dc:55:a2:6b:0a:c2:2d:78:78:5a: 75:f9:c4:c0:db:b4:b0:79:9c:82:f6:56:87:83:f0:0f:ed:65: 29:9c:1d:75:18:44:15:50:c0:ca:08:d4:75:88:eb:81:be:6f: eb:53:38:a0:88:d2:c9:4c:72:91:4b:17:ec:20:a0:ae:c9:c0: dc:aa:2e:7f:d5:c2:e1:08:7e:41:ad:16:04:ed:f6:c0:7e:ba: a6:72:28:58:50:b2:88:a0:a4:36:50:4a:97:82:ac:26:70:36: 29:81:b4:b1:31:b4:96:8a:5c:22:33:d5:54:ff:1c:d1:05:93: 3c:58:49:7f:4c:cc:e3:f1:0e:30:e7:7d:6d:d5:71:02:51:fa: ce:09:b9:10:02:b3:23:72:b7:0a:ab:c4:03:ca:7e:16:52:16: 22:a0:27:db:b5:7f:a7:a6:40:bd:28:3b:51:e6:e5:b1:59:6c: a7:f5:3f:a7:3b:43:75:82:49:51:71:ba:e8:ef:f1:a8:55:fa: 1f:18:3c:a4:21:3d:34:5a:b1:cb:00:8f:7e:1a:82:08:77:33: 2c:64:96:03:a6:13:58:c6:4f:01:3e:d3:f6:ac:a7:1a:1c:ad: 1e:b3:23:83:05:df:fd:08:0b:b4:dd:21:c0:08:f1:26:3b:57: 22:8c:01:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUgdYStTIAzcpE40QWSS+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0NzY3YjUxZTZiNDgyYjllN2E3NDgzNjYyYTVkYmVlMWI4 ZDg1YTAwHhcNMjUxMjI2MTEwMTIzWhcNMjUxMjI3MTEwMTIzWjAzMTEwLwYDVQQD EyhmYzFhM2NmNmZiN2JkNmJlNmRkNDU4YTY2YTY2NzdmOTlmNTYzNDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMmvcrOPgDep1Rs6f9lhcz5pbPI+ ZTtuKGayd7McjJAHArlHaBMjzR2MnfiK8dwVpGvGl1E0IVq5UtZZqjMitoySF07v BLQOgeExYc8zWRPPF1PG/8Q2xVJNPuVejShN+al/IIIMYxQaBy+r4ZpLq0VwPWI/ IhiRonnR8mMsnkl2891iHawCFnPtqGs5V2M7Qun/TLFoVXdVfwExF671X80028dz r4o7WvoVGbjhumCKppOLT6TTCSco3C8nuHVq8gGv9JsRubVLcywISQQmmdYsPfry RiquJZ6td2tK4vyXmH9Q7018OmIP/QAYpSNwS20bOI6cmrNv47Anz+Ds/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPwaPPb7e9a+bdRYpmpmd/mfVjRpMB8GA1UdIwQY MBaAFOR2e1HmtIK556dINmKl2+4bjYWgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUhaN1VlYTBncm5ucDBnMllxWGI3aHVOaGFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy83NDU3NjgtYmE4MC00ZTc2LWExZDgt YmRiZTE2ODA2NjE2LzEvNUhaN1VlYTBncm5ucDBnMllxWGI3aHVOaGFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy83NDU3NjgtYmE4MC00ZTc2LWExZDgtYmRiZTE2ODA2NjE2 LzEvNUhaN1VlYTBncm5ucDBnMllxWGI3aHVOaGFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdQF5Obli arTcVaJrCsIteHhadfnEwNu0sHmcgvZWh4PwD+1lKZwddRhEFVDAygjUdYjrgb5v 61M4oIjSyUxykUsX7CCgrsnA3Kouf9XC4Qh+Qa0WBO32wH66pnIoWFCyiKCkNlBK l4KsJnA2KYG0sTG0lopcIjPVVP8c0QWTPFhJf0zM4/EOMOd9bdVxAlH6zgm5EAKz I3K3CqvEA8p+FlIWIqAn27V/p6ZAvSg7UeblsVlsp/U/pztDdYJJUXG66O/xqFX6 Hxg8pCE9NFqxywCPfhqCCHczLGSWA6YTWMZPAT7T9qynGhytHrMjgwXf/QgLtN0h wAjxJjtXIowB+Q== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:19 2025 by rpki-client