This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft File: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft (raw, json) Hash identifier: 4utkb2gxn2Y6SK2OE2iYohWQFoijjMFPtkwW9/phqQ8= Subject key identifier: 8D:99:7F:FB:82:45:F3:69:B3:25:02:19:40:CB:07:58:E0:CA:8F:C9 Authority key identifier: AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82 Certificate issuer: /CN=af9b2cefe389a1ae49756edc2b3293e58830cb82 Certificate serial: 019B35323365DE005F8DB11659C1A55636C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft Manifest number: 0461 Signing time: Fri 19 Dec 2025 06:00:40 +0000 Manifest this update: Fri 19 Dec 2025 06:00:40 +0000 Manifest next update: Sat 20 Dec 2025 06:00:40 +0000 Files and hashes: 1: HlRrYVzs80ZJA5_JZ3csPGXIkEY.roa (hash: 2WA22A/U8/r4tDX+UDoYIX+va554GCdeOFSCw5V25j8=) 2: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl (hash: xFOYHGGJHdaOzFz/+GYIzn+JZPffNgqRVHk8vk8tmmw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:33:65:de:00:5f:8d:b1:16:59:c1:a5:56:36:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af9b2cefe389a1ae49756edc2b3293e58830cb82 Validity Not Before: Dec 19 06:00:40 2025 GMT Not After : Dec 20 06:00:40 2025 GMT Subject: CN=8d997ffb8245f369b325021940cb0758e0ca8fc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:61:67:98:ca:2c:c9:af:d5:00:93:0c:86:3f: 26:3a:0b:3f:8d:a0:91:9b:60:d3:05:f8:cb:84:74: bf:a5:11:c9:0c:6f:53:35:b7:63:29:d2:72:69:85: bd:8a:fc:55:e3:7d:88:ca:f4:87:35:73:65:9b:a0: e2:a8:9b:09:8c:87:4e:e9:00:a9:e4:7e:c4:fc:f6: 0c:4d:48:f6:2a:25:5c:fa:2f:e0:d6:ad:19:4f:51: b7:4d:56:18:e3:f2:ec:1b:65:20:24:c1:aa:96:d2: 2b:71:7a:9c:af:0c:6c:56:ae:c2:0b:e9:8e:51:be: 23:8b:b6:e5:6b:fd:07:aa:0d:22:12:5c:67:3c:0f: 75:8d:cb:14:91:a9:83:8e:a0:bf:ee:6e:67:e5:c9: de:2e:20:f6:12:a5:99:68:36:cf:a0:60:09:5d:3f: 45:a0:c2:6a:76:7e:73:47:c9:26:13:2f:c0:b4:17: 0c:51:b6:92:79:40:0e:0c:12:67:3d:2e:48:24:42: a5:ad:aa:39:26:0d:41:4d:a8:2c:da:f5:ef:d8:2b: 29:dd:72:c5:b6:80:39:61:18:63:ab:02:82:55:e3: 94:29:9e:5f:3c:38:56:5f:20:1f:8d:45:4e:f5:da: f6:f5:e8:e6:5e:53:b2:4e:da:8b:71:e0:8d:02:f9: 37:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:99:7F:FB:82:45:F3:69:B3:25:02:19:40:CB:07:58:E0:CA:8F:C9 X509v3 Authority Key Identifier: keyid:AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:67:08:50:2a:17:1c:00:f0:79:90:71:d7:8f:88:22:62:96: db:c7:04:af:3c:28:5f:c7:2f:a3:b5:eb:82:88:6e:f7:a5:63: ce:85:ea:0d:ac:f5:04:21:2a:2a:43:5f:c7:2a:65:d2:b5:09: 0f:82:e7:0b:3a:91:fb:b7:d9:5d:74:cd:a5:14:3b:6d:47:78: d1:73:76:f6:65:b7:92:7a:7c:49:7e:43:b2:5d:98:29:93:94: 4d:ef:b2:df:60:cb:f5:fb:c4:ff:ed:4e:e4:e8:68:26:f6:98: 47:cc:19:dc:07:f0:f9:01:9e:78:c9:88:65:29:12:aa:7f:3b: 04:19:c3:71:ea:b8:ab:53:40:aa:96:e7:48:20:f2:3b:90:bd: 80:3f:98:f1:f0:d0:6c:b4:a9:74:61:90:4c:af:23:99:78:fc: 37:e1:62:d0:e2:5b:21:ce:4e:e9:de:ad:4c:cd:f0:54:bc:80: 21:22:05:37:19:a1:ef:16:8e:05:6a:5a:cf:fc:96:df:d2:09: a7:13:f6:1a:fc:0c:91:ff:e6:6d:0e:f8:3c:de:57:6f:42:72: f4:cd:6b:1b:c5:06:16:20:4f:20:6c:81:23:cb:50:af:b9:23: a9:9b:b4:1f:47:ca:5c:68:6c:d0:71:ac:6f:72:0f:fd:9b:de: 2f:33:a9:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MjNl3gBfjbEWWcGlVjbHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmOWIyY2VmZTM4OWExYWU0OTc1NmVkYzJiMzI5M2U1ODgz MGNiODIwHhcNMjUxMjE5MDYwMDQwWhcNMjUxMjIwMDYwMDQwWjAzMTEwLwYDVQQD Eyg4ZDk5N2ZmYjgyNDVmMzY5YjMyNTAyMTk0MGNiMDc1OGUwY2E4ZmM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2FnmMosya/VAJMMhj8mOgs/jaCR m2DTBfjLhHS/pRHJDG9TNbdjKdJyaYW9ivxV432IyvSHNXNlm6DiqJsJjIdO6QCp 5H7E/PYMTUj2KiVc+i/g1q0ZT1G3TVYY4/LsG2UgJMGqltIrcXqcrwxsVq7CC+mO Ub4ji7bla/0Hqg0iElxnPA91jcsUkamDjqC/7m5n5cneLiD2EqWZaDbPoGAJXT9F oMJqdn5zR8kmEy/AtBcMUbaSeUAODBJnPS5IJEKlrao5Jg1BTags2vXv2Csp3XLF toA5YRhjqwKCVeOUKZ5fPDhWXyAfjUVO9dr29ejmXlOyTtqLceCNAvk3RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI2Zf/uCRfNpsyUCGUDLB1jgyo/JMB8GA1UdIwQY MBaAFK+bLO/jiaGuSXVu3Csyk+WIMMuCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9iZjBiZmUtOTU1NC00YjdlLTk1ZGEt NDY5NjE5ZDRlY2RiLzEvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9iZjBiZmUtOTU1NC00YjdlLTk1ZGEtNDY5NjE5ZDRlY2Ri LzEvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAImcIUCoX HADweZBx14+IImKW28cErzwoX8cvo7Xrgohu96VjzoXqDaz1BCEqKkNfxypl0rUJ D4LnCzqR+7fZXXTNpRQ7bUd40XN29mW3knp8SX5Dsl2YKZOUTe+y32DL9fvE/+1O 5OhoJvaYR8wZ3Afw+QGeeMmIZSkSqn87BBnDceq4q1NAqpbnSCDyO5C9gD+Y8fDQ bLSpdGGQTK8jmXj8N+Fi0OJbIc5O6d6tTM3wVLyAISIFNxmh7xaOBWpaz/yW39IJ pxP2GvwMkf/mbQ74PN5Xb0Jy9M1rG8UGFiBPIGyBI8tQr7kjqZu0H0fKXGhs0HGs b3IP/ZveLzOpwQ== -----END CERTIFICATE-----Generated at Fri Dec 19 15:24:41 2025 by rpki-client