This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json) Hash identifier: 8wbbzdBagvg74G/HXjRvMtQNDaZmaekoYxFHqe76CV4= Subject key identifier: D6:B7:E0:59:51:75:B5:1B:B9:6B:98:BA:72:B9:0B:7C:B7:11:19:DD Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13 Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13 Certificate serial: 019B3FED5001F30E6FF91C222E3AECEAD27B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft Manifest number: 0EFD Signing time: Sun 21 Dec 2025 08:01:15 +0000 Manifest this update: Sun 21 Dec 2025 08:01:15 +0000 Manifest next update: Mon 22 Dec 2025 08:01:15 +0000 Files and hashes: 1: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: vqWBGe1ja+yXQjIdewnkWAwHqk92OOQJaKyFk9dT+mo=) 2: hw_fy601pCnJdWJqGO21hqXw0e0.roa (hash: nKa3P8/VrIIMHKO5DiFWr4AqxiZeZFxFV2r+HmZmd+o=) 3: wu3eDFxvkuABk7iChg-PKeXLE20.roa (hash: EABKS1lR2rRtw3fRAXv+taBION+pQLSP6NQZWVabvIk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:ed:50:01:f3:0e:6f:f9:1c:22:2e:3a:ec:ea:d2:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13 Validity Not Before: Dec 21 08:01:15 2025 GMT Not After : Dec 22 08:01:15 2025 GMT Subject: CN=d6b7e0595175b51bb96b98ba72b90b7cb71119dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:89:d9:08:01:b2:b6:e2:3d:1d:0a:bb:c1:27: 18:55:09:e1:90:70:64:3a:69:e7:d6:e0:fb:2d:b9: ca:11:d7:64:a2:44:c0:cc:42:d5:b6:d2:ad:58:d3: 37:7c:c0:fd:06:25:e5:51:3a:ea:5f:84:0e:68:ce: 06:da:ec:45:1a:eb:62:d9:a6:de:6e:10:4c:76:fe: 91:8f:99:a2:89:4b:4c:a2:16:06:f6:86:c6:3b:16: d8:fc:d5:22:b1:b4:2a:dc:05:26:fb:fa:3d:76:67: 97:ce:e8:b5:0c:16:6d:f9:26:aa:ad:06:62:2a:73: 98:cf:c7:78:64:3c:d2:dc:28:59:38:96:f6:e7:38: 5f:3b:9c:e2:27:3f:45:19:97:15:43:20:8e:64:f0: 4b:ee:38:6d:86:ed:0d:c6:7c:3c:24:d7:8b:2c:2a: 16:fd:aa:46:24:aa:53:c6:8d:68:5a:d6:cc:cf:4d: 71:5b:02:50:06:3e:46:84:bb:72:fa:d2:91:1d:33: cf:00:c9:13:81:59:06:95:7d:75:d7:53:ba:c1:21: 03:ea:89:a0:29:4a:c2:8b:ea:2e:88:65:72:f4:4e: 5e:ef:d4:1a:10:81:8d:6b:13:9a:01:21:18:a2:05: 5a:09:02:a4:fc:3d:a1:10:4c:e8:69:c2:c0:2c:4f: c3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B7:E0:59:51:75:B5:1B:B9:6B:98:BA:72:B9:0B:7C:B7:11:19:DD X509v3 Authority Key Identifier: keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:af:9a:7f:52:8d:95:4e:c2:ae:60:c5:24:9b:55:43:84:e8: 22:60:2a:d2:64:b7:d8:a8:fb:69:38:90:58:b7:f1:ab:d5:c1: 84:f9:fa:3c:ff:bf:d8:53:ec:55:74:37:79:3e:dd:15:cf:cf: 47:60:67:a5:cb:9c:af:6b:4e:f6:ea:03:ed:70:76:3a:cb:75: 3c:ba:a8:35:39:0c:e3:f1:af:c2:db:8d:e5:61:28:1c:88:5c: 14:14:0c:d5:31:53:77:93:75:9e:45:e5:34:13:d8:c1:c3:80: 5f:b9:c7:3d:ee:c5:fc:f5:b5:f8:0f:b6:85:a3:85:23:77:75: 09:f2:36:af:32:65:05:39:0a:7b:70:34:2a:5e:5a:5d:a5:ba: f7:5c:15:e4:4e:ac:90:54:fc:7c:76:21:56:74:6f:b1:6b:09: ac:80:e0:ab:cf:9a:b2:d6:5b:47:fc:4c:0e:cc:eb:cd:d1:6d: ce:47:af:91:b3:01:1a:de:ab:ad:f9:2e:7c:40:80:96:d6:93: ac:73:7e:05:1b:18:59:2f:79:59:56:2c:cd:71:9b:7f:14:63: b1:a6:f7:c2:74:ee:b0:89:54:62:4c:d1:13:1e:91:74:a6:de: b6:53:41:c8:06:8d:99:59:b0:e6:40:15:e7:ec:b6:3a:c1:b4: 2c:e7:4a:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/7VAB8w5v+RwiLjrs6tJ7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMzg1YTYxNjM5OGU0MTZjNzBkY2IzMjI1NjZmOTNlM2Qy ZmJmMTMwHhcNMjUxMjIxMDgwMTE1WhcNMjUxMjIyMDgwMTE1WjAzMTEwLwYDVQQD EyhkNmI3ZTA1OTUxNzViNTFiYjk2Yjk4YmE3MmI5MGI3Y2I3MTExOWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtonZCAGytuI9HQq7wScYVQnhkHBk Omnn1uD7LbnKEddkokTAzELVttKtWNM3fMD9BiXlUTrqX4QOaM4G2uxFGuti2abe bhBMdv6Rj5miiUtMohYG9obGOxbY/NUisbQq3AUm+/o9dmeXzui1DBZt+SaqrQZi KnOYz8d4ZDzS3ChZOJb25zhfO5ziJz9FGZcVQyCOZPBL7jhthu0Nxnw8JNeLLCoW /apGJKpTxo1oWtbMz01xWwJQBj5GhLty+tKRHTPPAMkTgVkGlX1111O6wSED6omg KUrCi+ouiGVy9E5e79QaEIGNaxOaASEYogVaCQKk/D2hEEzoacLALE/DSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNa34FlRdbUbuWuYunK5C3y3ERndMB8GA1UdIwQY MBaAFP04WmFjmOQWxw3LMiVm+T49L78TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMt MzQzMDRmNWNkYTk4LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMtMzQzMDRmNWNkYTk4 LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq6+af1KN lU7CrmDFJJtVQ4ToImAq0mS32Kj7aTiQWLfxq9XBhPn6PP+/2FPsVXQ3eT7dFc/P R2Bnpcucr2tO9uoD7XB2Ost1PLqoNTkM4/GvwtuN5WEoHIhcFBQM1TFTd5N1nkXl NBPYwcOAX7nHPe7F/PW1+A+2haOFI3d1CfI2rzJlBTkKe3A0Kl5aXaW691wV5E6s kFT8fHYhVnRvsWsJrIDgq8+astZbR/xMDszrzdFtzkevkbMBGt6rrfkufECAltaT rHN+BRsYWS95WVYszXGbfxRjsab3wnTusIlUYkzREx6RdKbetlNByAaNmVmw5kAV 5+y2OsG0LOdKvA== -----END CERTIFICATE-----Generated at Sun Dec 21 13:53:15 2025 by rpki-client