This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: XYA3dVKt3/GJZ0fAE2O6M33uZF/nbz00g07bj/m6fn8= Subject key identifier: 7F:A5:A4:AE:4A:BE:F6:B5:FA:94:D2:C2:6C:B8:1B:6C:E8:E2:70:FC Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019B4248FF945DE0F4443AF8E4640E9EF9C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 1278 Signing time: Sun 21 Dec 2025 19:00:38 +0000 Manifest this update: Sun 21 Dec 2025 19:00:38 +0000 Manifest next update: Mon 22 Dec 2025 19:00:38 +0000 Files and hashes: 1: 1-i_ESwYWDKjvxe-cLQFb33q5Qu0.roa (hash: MWN71QN/v297mIABIQi0BIqexEx6vQv3LxWHulQ1lh0=) 2: 3uMGCa1hGu4z3o3-_G7z4ipL-iU.roa (hash: W9UTR4UDUFmqfh0USMFmsobpW7zQlT5fd2b07I+b238=) 3: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: g/4FU9mf9dawPeFrMC3sAhWRyTPapGxlXNnFedPggxc=) 4: 53Cd6ksm6jJ9RlO5imUtuWj1rJA.roa (hash: cQll3lCbJxJtoxzsBZdQMm8ZJ1gmBBCp3yO2flYfKKU=) 5: 5aybWk2Ky5dF88Dl5BHsEFM1SO0.roa (hash: H+JwBN0SZWGViTYdzpWvA1lltG+ihuV8ot5mKPyc2Ag=) 6: D51k8Yufzem8ogKjVaG-BE3-N9Q.roa (hash: LfZnqpQQPapIc1GbVrcmd90U2aDXCgwED1y7JLo14nI=) 7: EEzCfGegHPEpdqTqvMRMlcFre1Y.roa (hash: uwoju1vAFdOs3H0Q+w/qT7aEQBJpMP98DiaXonyIQ9M=) 8: EQAhdlSS1FIFJlau-mazb3tbQD8.roa (hash: EYIWh35VYrIjFevk0wSjam09x/CTgAsspbJddnJMeDU=) 9: PLzlfTmqAL1rzlLN1TFrpHpYMVU.roa (hash: INujx6I3LZF9XIVr4zE9W5J6NHU6IlkfUKgf+j8aJrU=) 10: QCPaGZ8bi2Da50RQ4k8ya1w0dq4.roa (hash: UeTuehE3XWxqnHJAwNv7xL7hPz4xW2vyEJKj+BsbTow=) 11: aAu5S5IbLCTcHF2sjNSq_YvIkRs.roa (hash: Ofs8Vq4O2KmWTmDnq5aKJmZojKw/IVecQ8WTuC45ixk=) 12: fjY_g_wwgFPVt57q0tJYGzzoSDw.roa (hash: qq4Ldl54/taiWut/8vwq9PH71gezdeLMf1VMPmsHUe8=) 13: nOw141dLNmkj2u2FTqG2Wvc-gVM.roa (hash: CQnQRUA/+q6ZVbEZKZtps04sWUzpVEunbxRhthCLZIQ=) 14: pw1_qD5J6o76enPdGNTr_4Viub8.roa (hash: L6pLEncIISYEMGBKzu7DbyUXVYEOgT4kfh4modTEATA=) 15: qigZWtFurHaD054OcaOqq49am_w.roa (hash: Sa19eTl0ldE9k7oxfeYcou5g3EZnF3X8bF0Hbur3zdE=) 16: tRNXUlx68rKP9UOE-hhExB1kws8.roa (hash: +Hd3tIKng2pbogIxn1dcX/j1LNU33NvuDwSbS4tdpEA=) 17: ve2cUb4I36o88cUncaHeOHK5tGk.roa (hash: 6gTupRG97QR/JQvN8ay2tdbOI4Q3EMkpnACGQxjxniI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 19:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:48:ff:94:5d:e0:f4:44:3a:f8:e4:64:0e:9e:f9:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Dec 21 19:00:38 2025 GMT Not After : Dec 22 19:00:38 2025 GMT Subject: CN=7fa5a4ae4abef6b5fa94d2c26cb81b6ce8e270fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:0b:ba:32:9a:7b:e5:53:c5:7d:52:a6:a9:8c: 65:88:c7:21:ad:ad:53:76:36:e8:d0:14:ae:74:5d: b9:8e:31:8b:0a:c5:e5:b1:dc:af:03:b8:0f:3a:6b: 01:85:5b:24:9b:23:38:b9:60:6f:15:cb:10:51:de: be:60:0b:ef:49:43:9f:28:9b:d4:57:4e:ea:1c:17: c6:a0:d6:03:56:8d:7b:f0:6a:d3:65:9e:9a:1d:b2: 3c:3a:e8:01:e0:9d:94:31:09:2d:c7:8c:7e:67:7c: f7:bd:3a:e9:9d:67:7d:f0:6f:fc:53:77:fd:28:16: 00:48:32:9c:34:ee:54:9f:7f:3a:44:01:ed:8b:06: 73:51:a7:49:b6:3b:e2:41:d0:41:4d:e8:70:1e:8c: f2:92:2a:ee:00:9f:c2:b5:ca:ea:ae:a8:1f:7a:30: 39:fb:a5:c9:48:a5:f5:91:c1:dc:a6:ed:5e:5b:50: e3:cc:35:6b:9a:72:e3:27:58:16:5b:21:a9:e9:2c: a3:4b:e4:b2:7a:44:8b:e0:61:11:b0:fe:81:c6:7a: 61:5a:c0:b6:05:1a:ca:62:6c:fa:87:51:c9:e7:ef: 16:5c:7c:3f:e1:f1:02:57:66:11:ef:38:3f:10:f0: c6:71:13:f2:b8:b4:52:1e:bc:7f:6c:f3:19:7d:83: 44:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A5:A4:AE:4A:BE:F6:B5:FA:94:D2:C2:6C:B8:1B:6C:E8:E2:70:FC X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:21:78:be:df:c9:e4:b3:0c:a8:e1:6e:11:15:55:e6:a7:c2: 3b:52:8d:9c:26:8b:cf:5e:41:26:65:e6:db:91:92:02:44:ca: 24:60:87:f0:00:4c:d4:4d:91:0e:f6:20:01:e3:93:81:93:36: 20:91:15:8e:fd:dc:ea:a0:93:a0:82:d8:ec:5f:97:26:65:73: fb:ed:25:97:36:3a:94:71:c2:bc:0a:09:50:e4:89:3d:84:c6: 00:d4:3e:6e:8a:2e:95:0d:dc:92:5a:e3:2c:ba:40:c3:81:ae: 2f:61:01:20:40:b8:6c:1e:c3:42:fa:3a:52:45:0e:89:e1:72: 31:e9:c3:bd:7e:5e:6d:c9:7d:e3:c8:cc:59:6d:de:57:36:1f: fd:54:59:b3:ee:cf:e4:2c:23:84:7a:40:72:d2:0e:45:63:36: f8:47:6d:46:3e:c0:8d:7a:d7:28:56:20:a2:5b:55:3c:ed:9e: 15:2b:7a:8b:2a:19:14:98:0c:11:dc:1b:73:ff:ea:a7:17:4d: e9:4b:78:fd:e2:d4:08:74:bd:87:7e:9a:b1:ac:20:e2:bd:4c: 11:63:18:d7:d4:0e:04:e1:c8:fa:ef:37:df:e5:8b:26:74:1f: 54:9d:60:db:3a:fa:56:3a:7b:24:e8:c8:a3:93:0f:d7:5d:28: b7:ba:75:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCSP+UXeD0RDr45GQOnvnCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjUxMjIxMTkwMDM4WhcNMjUxMjIyMTkwMDM4WjAzMTEwLwYDVQQD Eyg3ZmE1YTRhZTRhYmVmNmI1ZmE5NGQyYzI2Y2I4MWI2Y2U4ZTI3MGZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhAu6Mpp75VPFfVKmqYxliMchra1T djbo0BSudF25jjGLCsXlsdyvA7gPOmsBhVskmyM4uWBvFcsQUd6+YAvvSUOfKJvU V07qHBfGoNYDVo178GrTZZ6aHbI8OugB4J2UMQktx4x+Z3z3vTrpnWd98G/8U3f9 KBYASDKcNO5Un386RAHtiwZzUadJtjviQdBBTehwHozykiruAJ/CtcrqrqgfejA5 +6XJSKX1kcHcpu1eW1DjzDVrmnLjJ1gWWyGp6SyjS+SyekSL4GERsP6BxnphWsC2 BRrKYmz6h1HJ5+8WXHw/4fECV2YR7zg/EPDGcRPyuLRSHrx/bPMZfYNE2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+lpK5Kvva1+pTSwmy4G2zo4nD8MB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYSF4vt/J 5LMMqOFuERVV5qfCO1KNnCaLz15BJmXm25GSAkTKJGCH8ABM1E2RDvYgAeOTgZM2 IJEVjv3c6qCToILY7F+XJmVz++0llzY6lHHCvAoJUOSJPYTGANQ+booulQ3cklrj LLpAw4GuL2EBIEC4bB7DQvo6UkUOieFyMenDvX5ebcl948jMWW3eVzYf/VRZs+7P 5CwjhHpActIORWM2+EdtRj7AjXrXKFYgoltVPO2eFSt6iyoZFJgMEdwbc//qpxdN 6Ut4/eLUCHS9h36asawg4r1MEWMY19QOBOHI+u833+WLJnQfVJ1g2zr6Vjp7JOjI o5MP110ot7p1hQ== -----END CERTIFICATE-----Generated at Mon Dec 22 00:10:09 2025 by rpki-client