This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft File: T5mJlOtWGejymrO956sq0U6r_P0.mft (raw, json) Hash identifier: NLYowEX2TbxqETY33DzY/kVkBiGB6rgV3IVcIqTfV34= Subject key identifier: 99:19:9C:D6:AF:BA:AF:1F:AB:1E:BD:55:47:0F:DE:F1:94:B6:6E:9B Authority key identifier: 4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD Certificate issuer: /CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd Certificate serial: 019B341FCA877BB0A22FFF9FEFAEF4C21782 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft Manifest number: 177F Signing time: Fri 19 Dec 2025 01:00:57 +0000 Manifest this update: Fri 19 Dec 2025 01:00:57 +0000 Manifest next update: Sat 20 Dec 2025 01:00:57 +0000 Files and hashes: 1: T5mJlOtWGejymrO956sq0U6r_P0.crl (hash: /vPk9hUEVn3MPtvuLmErCecR2PB0CuUlHwWxkX8QITU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:1f:ca:87:7b:b0:a2:2f:ff:9f:ef:ae:f4:c2:17:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd Validity Not Before: Dec 19 01:00:57 2025 GMT Not After : Dec 20 01:00:57 2025 GMT Subject: CN=99199cd6afbaaf1fab1ebd55470fdef194b66e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c0:90:3e:5e:d7:93:0d:55:cb:ab:92:f1:df: f9:65:19:08:6e:89:d5:d1:c9:37:38:e8:c3:ec:b7: 69:b6:77:a4:5a:f8:9f:be:2a:7e:f5:58:80:aa:ff: 20:7d:1b:6c:45:a1:ab:d3:d4:40:d8:f9:e2:b4:d7: 1a:96:33:84:65:40:a8:92:a8:ea:64:ef:f9:02:36: 0d:e6:cb:4b:28:50:ec:27:e0:ea:13:dd:58:98:7c: 56:26:00:0f:78:f9:02:82:23:69:63:b5:44:85:1c: 55:89:73:83:ac:03:97:20:9d:5d:51:7c:c2:30:62: 27:7f:ed:b3:79:15:d9:b8:39:07:ac:a3:82:60:3a: dc:75:04:04:52:9e:f0:7d:15:d2:ac:50:39:e6:8c: c2:f8:b8:9d:c3:77:47:f3:ac:e1:a2:21:a6:3a:8f: 46:a0:59:03:a4:30:72:61:bf:d2:8f:bc:ed:5b:e5: d4:89:f7:44:d7:d9:60:67:2d:cd:16:2d:cf:f9:69: cd:01:b2:1f:14:f0:26:3b:11:77:21:b6:12:54:13: 23:c9:cd:6d:9a:8a:8c:b1:a2:ea:78:23:61:e0:0b: 18:4d:f0:7a:2d:cf:42:9c:ce:10:7e:ca:a1:99:7a: 9f:66:97:05:62:5c:7c:b6:f5:4f:20:78:1c:71:10: 51:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:19:9C:D6:AF:BA:AF:1F:AB:1E:BD:55:47:0F:DE:F1:94:B6:6E:9B X509v3 Authority Key Identifier: keyid:4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:27:0c:79:90:ca:e0:ee:38:ed:40:63:8b:65:06:92:f9:a0: 4d:67:2e:f6:82:46:2f:59:65:6b:48:f4:25:29:4a:c3:ec:1d: 5f:25:ce:78:e1:cb:5d:b2:12:38:5d:50:96:94:b5:d6:a8:d1: 77:39:3d:c6:3f:af:c1:bd:c0:4f:2c:d8:5f:0b:cf:0d:92:f3: ba:d2:bf:52:62:9a:3f:49:12:14:fd:61:70:a0:f8:2c:82:6c: 55:48:58:c5:f6:09:ed:d7:77:f1:05:8a:c2:5e:29:5e:15:45: 38:e6:aa:b1:f3:f7:e6:bb:2a:93:15:61:36:58:ab:c9:05:1f: de:a6:06:dd:ee:67:0a:75:fe:9a:5b:06:6d:0c:61:69:85:3f: 6d:6b:f9:44:a2:9d:bb:d0:20:97:da:1b:f4:b1:7a:01:8a:d7: c5:76:78:24:a8:0f:8e:db:21:f1:67:5d:b2:04:c3:56:75:46: 28:4b:a5:bd:2b:82:e4:01:c3:e4:1b:50:d8:18:16:7c:0c:b5: 60:d8:02:25:9c:38:13:61:22:f7:c2:00:a8:f9:8c:bb:9f:e6: 6f:68:16:14:2a:fa:b4:a9:87:56:86:0e:40:b7:c8:cf:ff:2d: 48:4c:38:db:47:f0:30:4f:a7:74:6b:a5:95:29:21:66:ad:0f: b8:ab:80:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0H8qHe7CiL/+f7670wheCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmOTk4OTk0ZWI1NjE5ZThmMjlhYjNiZGU3YWIyYWQxNGVh YmZjZmQwHhcNMjUxMjE5MDEwMDU3WhcNMjUxMjIwMDEwMDU3WjAzMTEwLwYDVQQD Eyg5OTE5OWNkNmFmYmFhZjFmYWIxZWJkNTU0NzBmZGVmMTk0YjY2ZTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcCQPl7Xkw1Vy6uS8d/5ZRkIbonV 0ck3OOjD7LdptnekWvifvip+9ViAqv8gfRtsRaGr09RA2PnitNcaljOEZUCokqjq ZO/5AjYN5stLKFDsJ+DqE91YmHxWJgAPePkCgiNpY7VEhRxViXODrAOXIJ1dUXzC MGInf+2zeRXZuDkHrKOCYDrcdQQEUp7wfRXSrFA55ozC+Lidw3dH86zhoiGmOo9G oFkDpDByYb/Sj7ztW+XUifdE19lgZy3NFi3P+WnNAbIfFPAmOxF3IbYSVBMjyc1t moqMsaLqeCNh4AsYTfB6Lc9CnM4QfsqhmXqfZpcFYlx8tvVPIHgccRBRZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJkZnNavuq8fqx69VUcP3vGUtm6bMB8GA1UdIwQY MBaAFE+ZiZTrVhno8pqzveerKtFOq/z9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDVtSmxPdFdHZWp5bXJPOTU2c3EwVTZyX1AwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M0ODctZjhmYi00MDM1LTllMjgt NDQ2OGQxMmYzMjJiLzEvVDVtSmxPdFdHZWp5bXJPOTU2c3EwVTZyX1AwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC81M2M0ODctZjhmYi00MDM1LTllMjgtNDQ2OGQxMmYzMjJi LzEvVDVtSmxPdFdHZWp5bXJPOTU2c3EwVTZyX1AwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEicMeZDK 4O447UBji2UGkvmgTWcu9oJGL1lla0j0JSlKw+wdXyXOeOHLXbISOF1QlpS11qjR dzk9xj+vwb3ATyzYXwvPDZLzutK/UmKaP0kSFP1hcKD4LIJsVUhYxfYJ7dd38QWK wl4pXhVFOOaqsfP35rsqkxVhNliryQUf3qYG3e5nCnX+mlsGbQxhaYU/bWv5RKKd u9Agl9ob9LF6AYrXxXZ4JKgPjtsh8WddsgTDVnVGKEulvSuC5AHD5BtQ2BgWfAy1 YNgCJZw4E2Ei98IAqPmMu5/mb2gWFCr6tKmHVoYOQLfIz/8tSEw420fwME+ndGul lSkhZq0PuKuAww== -----END CERTIFICATE-----Generated at Fri Dec 19 07:53:40 2025 by rpki-client