This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft File: v5gt73eibXzBlHOzpAZNzFIX5HE.mft (raw, json) Hash identifier: Op3ZunoT5RVxsKKqyTh4ffZ0mF1JWOT9y4rggjoG288= Subject key identifier: 99:48:EC:4D:D7:FC:14:0A:EA:98:31:70:64:82:59:1D:DA:1F:A6:B4 Authority key identifier: BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71 Certificate issuer: /CN=bf982def77a26d7cc19473b3a4064dcc5217e471 Certificate serial: 019B43252A8ADB89C94ACE82EAEC17E691DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft Manifest number: 178C Signing time: Sun 21 Dec 2025 23:01:07 +0000 Manifest this update: Sun 21 Dec 2025 23:01:07 +0000 Manifest next update: Mon 22 Dec 2025 23:01:07 +0000 Files and hashes: 1: JoXkjArh1eQOEzJmDg5eyKhlAZU.roa (hash: IpnTumi25Jm35YnmbE0mTeFwDsMDbPll4BvRMHinz6I=) 2: v5gt73eibXzBlHOzpAZNzFIX5HE.crl (hash: d2tcQBAxU3j3XDkglezJf8ttkUmcrFmh4hbWPx/tlOI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:25:2a:8a:db:89:c9:4a:ce:82:ea:ec:17:e6:91:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf982def77a26d7cc19473b3a4064dcc5217e471 Validity Not Before: Dec 21 23:01:07 2025 GMT Not After : Dec 22 23:01:07 2025 GMT Subject: CN=9948ec4dd7fc140aea9831706482591dda1fa6b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7b:b8:ab:00:88:20:1c:44:17:af:ba:21:db: 99:de:be:46:d5:b2:2b:f2:91:9f:f8:dd:1c:54:f6: fe:74:8d:b9:f7:b4:29:e8:25:a1:90:4b:cf:f4:7f: 98:60:47:66:0c:26:4b:68:7d:33:83:2c:47:79:da: 4a:1a:20:ac:d0:cb:15:5e:0b:53:af:bf:9d:83:3e: 66:a8:21:14:fe:18:8c:f0:e2:3c:b6:ba:28:3d:ad: a9:5b:69:de:25:36:01:05:9a:3b:25:10:3d:87:14: 5b:20:4b:9a:48:3f:30:15:4e:ec:79:28:8d:b4:32: 22:1e:b7:e1:9d:ac:a4:01:d2:a4:03:c3:b9:cb:15: 7c:a9:e2:6f:a7:75:5c:a0:26:67:d8:88:f4:8c:a0: cf:a6:2b:1a:62:fd:fb:89:03:21:2d:1e:db:65:68: 89:df:dd:1f:8d:1b:15:06:01:02:7c:16:38:c8:9d: 43:ce:09:fe:46:60:5f:3b:9e:5b:ba:a8:c6:30:85: 5f:72:15:ad:1d:d8:9e:c3:11:46:13:d7:24:17:8a: 18:dc:1c:b3:f8:31:8c:8b:f0:8a:db:cd:2f:21:2d: 0b:30:78:60:35:1f:19:53:fa:ab:a2:79:8f:6b:6c: e4:5e:3a:71:e2:0f:d0:45:6b:ae:dd:4c:02:6c:ba: 33:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:48:EC:4D:D7:FC:14:0A:EA:98:31:70:64:82:59:1D:DA:1F:A6:B4 X509v3 Authority Key Identifier: keyid:BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:98:ff:3e:15:20:7e:5a:61:10:c8:33:cd:e3:ea:b1:d1:bb: 7e:99:61:30:58:8a:c6:71:62:0c:c0:7f:94:e3:7e:ee:77:75: 24:bf:d1:e1:8b:be:4a:0e:0d:85:39:a3:99:b7:e7:e3:90:eb: 02:63:54:2a:0d:ca:97:2e:fa:f6:5b:cb:f0:99:90:2b:a9:91: b5:8b:c1:57:88:a3:8a:94:54:84:41:16:7a:f5:d7:a9:50:19: db:df:10:be:c4:63:5c:ae:09:9f:8a:9b:49:ad:51:95:13:72: 6b:82:d4:ae:51:68:c0:b8:a3:34:43:68:c8:00:86:9c:d3:bb: 14:13:ef:dc:e2:36:3a:b7:3a:b8:f8:3d:16:8f:e1:78:3c:d1: 83:b6:74:76:61:30:9f:d3:50:7b:fa:8a:41:ce:3d:31:df:b0: 01:84:fb:26:8c:41:b1:29:fd:e0:dd:9e:55:31:11:a2:a2:39: 66:cf:58:59:2e:42:89:75:c0:8b:a1:41:6f:31:ad:0e:96:fa: 93:e1:3f:5a:21:8a:a2:5c:b6:77:45:02:a4:07:1c:e3:8e:84: d7:4b:c2:a2:9a:15:de:c2:d6:b1:cb:4c:1a:1d:fd:f6:c8:01: 91:1d:69:ac:36:1b:4a:68:00:33:51:4f:16:75:04:9d:10:3a: 13:18:98:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDJSqK24nJSs6C6uwX5pHcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmOTgyZGVmNzdhMjZkN2NjMTk0NzNiM2E0MDY0ZGNjNTIx N2U0NzEwHhcNMjUxMjIxMjMwMTA3WhcNMjUxMjIyMjMwMTA3WjAzMTEwLwYDVQQD Eyg5OTQ4ZWM0ZGQ3ZmMxNDBhZWE5ODMxNzA2NDgyNTkxZGRhMWZhNmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnu4qwCIIBxEF6+6IduZ3r5G1bIr 8pGf+N0cVPb+dI2597Qp6CWhkEvP9H+YYEdmDCZLaH0zgyxHedpKGiCs0MsVXgtT r7+dgz5mqCEU/hiM8OI8trooPa2pW2neJTYBBZo7JRA9hxRbIEuaSD8wFU7seSiN tDIiHrfhnaykAdKkA8O5yxV8qeJvp3VcoCZn2Ij0jKDPpisaYv37iQMhLR7bZWiJ 390fjRsVBgECfBY4yJ1Dzgn+RmBfO55buqjGMIVfchWtHdiewxFGE9ckF4oY3Byz +DGMi/CK280vIS0LMHhgNR8ZU/qronmPa2zkXjpx4g/QRWuu3UwCbLozTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJlI7E3X/BQK6pgxcGSCWR3aH6a0MB8GA1UdIwQY MBaAFL+YLe93om18wZRzs6QGTcxSF+RxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjVndDczZWliWHpCbEhPenBBWk56RklYNUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9hZmEwOTEtYjE2Zi00NTI3LThiMDAt MWRkYWMyYjA4NDA0LzEvdjVndDczZWliWHpCbEhPenBBWk56RklYNUhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9hZmEwOTEtYjE2Zi00NTI3LThiMDAtMWRkYWMyYjA4NDA0 LzEvdjVndDczZWliWHpCbEhPenBBWk56RklYNUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcpj/PhUg flphEMgzzePqsdG7fplhMFiKxnFiDMB/lON+7nd1JL/R4Yu+Sg4NhTmjmbfn45Dr AmNUKg3Kly769lvL8JmQK6mRtYvBV4ijipRUhEEWevXXqVAZ298QvsRjXK4Jn4qb Sa1RlRNya4LUrlFowLijNENoyACGnNO7FBPv3OI2Orc6uPg9Fo/heDzRg7Z0dmEw n9NQe/qKQc49Md+wAYT7JoxBsSn94N2eVTERoqI5Zs9YWS5CiXXAi6FBbzGtDpb6 k+E/WiGKoly2d0UCpAcc446E10vCopoV3sLWsctMGh399sgBkR1prDYbSmgAM1FP FnUEnRA6ExiYFw== -----END CERTIFICATE-----Generated at Mon Dec 22 03:58:56 2025 by rpki-client