This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft File: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft (raw, json) Hash identifier: 5eqXd0igMdOvA6dkdOx/4/y3TEbK2KFGUOjJhOv5M3U= Subject key identifier: 17:20:80:74:EE:ED:69:65:1A:6E:3B:9C:E5:E4:49:5B:C3:57:92:20 Authority key identifier: B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9 Certificate issuer: /CN=b393df877bf2f0cf01a9718973eaeee87b0697d9 Certificate serial: 019B6F8FD7F5B9538AC90AF8AC5015E129D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft Manifest number: 117E Signing time: Tue 30 Dec 2025 14:00:56 +0000 Manifest this update: Tue 30 Dec 2025 14:00:56 +0000 Manifest next update: Wed 31 Dec 2025 14:00:56 +0000 Files and hashes: 1: GhdbZGuzA1z36-UUonZ5zaCX38Q.roa (hash: gEgIQ1ixFSRgI4FI7VMbdhgtgY8jLC1wmNutDGTQS80=) 2: NItMcfmuUtS9SnSR4ZKm4r93TXs.roa (hash: F3sutapYp582NIFvW6vfwf2KF7d5dSaqH83k0FhwJoc=) 3: QCQJObKakvoo4ygnw5Fh20FS0Ts.roa (hash: pr5RHo/glhDEkjitYcq1TogKj+NW5j/LUqIM2EWPEaw=) 4: UVdJ6rkBr4eKgNxEkOLstufV6r8.roa (hash: +gXeK3tudL2I9QvUvgp4q5Jq/oJHp1PYKMtr+laCpNs=) 5: VtsYZXVJAZoFqneDgMrcdY1ZLqo.roa (hash: iydD1kql5GaDH+9KnMFCTe4zA6F46avj8WklVHWfoCY=) 6: YaM_6GNAfAUY1a7EBWWPiZdkY80.roa (hash: imYp4kHblD7OJu3xkBBiybF6gSfL+pAE8EuXrkCO7Ws=) 7: eulbDis-0B0z9GbHcqEo9NdV9rU.roa (hash: r5N8Yg0+954vST6YgvvV4VsOdx/dWOgqxmrlpu8jwtw=) 8: peZQPUG6EREQXk9fJ6XL9FgtEhs.roa (hash: dkv5IIQlSg33elfikzY5ije40KJ3f2E2+53gSCvVzhE=) 9: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl (hash: NsIcQ4wLvs7KF3QvYgON69391VhdWKiohfiQv753iEE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6f:8f:d7:f5:b9:53:8a:c9:0a:f8:ac:50:15:e1:29:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b393df877bf2f0cf01a9718973eaeee87b0697d9 Validity Not Before: Dec 30 14:00:56 2025 GMT Not After : Dec 31 14:00:56 2025 GMT Subject: CN=17208074eeed69651a6e3b9ce5e4495bc3579220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a8:10:b2:cd:f2:65:48:06:f7:b4:60:66:a7: d6:ac:80:b9:75:63:27:a8:05:c3:59:da:6f:7d:8d: e8:85:14:1a:d5:ad:ba:dc:a9:67:22:4b:f2:33:49: 80:1a:25:03:aa:b9:3b:3d:14:ce:3d:25:ef:01:df: 01:bb:66:24:c5:f5:12:67:ef:da:ed:d3:d6:cc:c4: dd:42:b9:b6:53:7e:54:96:c2:d0:4e:9a:46:eb:2a: 07:88:cd:ee:bc:be:5d:d6:cb:71:7e:4d:52:81:87: ef:7e:36:a4:00:c9:bc:d5:cb:60:40:ee:38:39:31: 19:28:38:48:b7:2b:4d:2f:7c:91:fa:e0:22:84:c8: f6:36:d5:ce:a6:8c:09:07:17:30:04:93:40:48:f0: 1e:1d:a9:32:97:85:fd:c4:3d:2c:ca:58:08:8f:be: 4d:e1:03:b6:30:38:7d:59:ea:3d:c3:ef:41:85:09: ee:ec:e2:5c:59:5c:97:75:cf:57:ff:28:65:63:83: bc:cf:d4:ea:eb:f9:26:f4:80:07:d9:2e:50:8a:17: 1e:3d:fb:cd:dc:7b:68:ee:3d:48:6c:c4:a3:e1:52: 1a:a6:c8:1b:93:70:d1:f1:02:a8:fe:cd:b4:02:7c: 89:71:c0:e4:53:96:35:e3:85:23:27:2a:5c:0c:2a: 38:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:20:80:74:EE:ED:69:65:1A:6E:3B:9C:E5:E4:49:5B:C3:57:92:20 X509v3 Authority Key Identifier: keyid:B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:c2:e2:09:77:4b:f4:f0:9b:45:68:08:62:1e:81:d9:4c:4b: 49:fa:fb:40:e3:b5:35:b2:d2:db:61:a6:60:b6:a9:ec:05:c9: 09:8a:26:49:9a:d4:e5:06:09:f5:f1:7f:25:76:63:30:94:7d: 14:4f:3c:e7:07:25:b1:4c:59:c1:1d:dc:64:aa:45:10:e0:91: 06:ef:ea:72:01:aa:56:49:54:3b:69:1a:77:0a:f5:42:02:67: 7d:b8:70:9c:b8:92:bf:0f:e0:c4:53:45:18:fd:b6:80:8c:28: e8:76:19:f6:5e:c9:46:18:c6:c0:63:87:dc:c0:34:1c:5b:fb: 99:6a:51:1f:ac:de:7b:b6:c3:81:f7:83:66:d8:ee:67:53:db: 04:a0:27:ca:cf:88:eb:17:1d:9a:c4:e9:6a:17:2b:f0:5c:0a: 44:50:fc:4e:97:f3:78:66:e7:c7:57:f0:6c:3d:d4:ba:ac:c7: 79:15:a8:cb:0b:c0:20:c2:29:9f:14:23:7c:97:4f:dd:fa:14: 7b:9c:c5:bc:59:ac:bd:4e:dd:c9:d2:60:0c:ec:06:b1:72:91: 7b:c5:f9:90:d5:64:61:87:65:16:c8:f9:f1:dc:a3:b5:56:9b: fb:6f:70:c0:8c:6d:73:ce:f4:01:cd:ef:5b:40:53:57:cc:6b: 63:6a:33:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtvj9f1uVOKyQr4rFAV4SnSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzOTNkZjg3N2JmMmYwY2YwMWE5NzE4OTczZWFlZWU4N2Iw Njk3ZDkwHhcNMjUxMjMwMTQwMDU2WhcNMjUxMjMxMTQwMDU2WjAzMTEwLwYDVQQD EygxNzIwODA3NGVlZWQ2OTY1MWE2ZTNiOWNlNWU0NDk1YmMzNTc5MjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlagQss3yZUgG97RgZqfWrIC5dWMn qAXDWdpvfY3ohRQa1a263KlnIkvyM0mAGiUDqrk7PRTOPSXvAd8Bu2YkxfUSZ+/a 7dPWzMTdQrm2U35UlsLQTppG6yoHiM3uvL5d1stxfk1SgYfvfjakAMm81ctgQO44 OTEZKDhItytNL3yR+uAihMj2NtXOpowJBxcwBJNASPAeHakyl4X9xD0sylgIj75N 4QO2MDh9Weo9w+9BhQnu7OJcWVyXdc9X/yhlY4O8z9Tq6/km9IAH2S5QihcePfvN 3Hto7j1IbMSj4VIapsgbk3DR8QKo/s20AnyJccDkU5Y144UjJypcDCo4jwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBcggHTu7WllGm47nOXkSVvDV5IgMB8GA1UdIwQY MBaAFLOT34d78vDPAalxiXPq7uh7BpfZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczVQZmgzdnk4TThCcVhHSmMtcnU2SHNHbDlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi85Mzc1ZTMtMzc3ZS00YjcwLWJhMzYt Mzk2YmM3MjBlMmI0LzEvczVQZmgzdnk4TThCcVhHSmMtcnU2SHNHbDlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi85Mzc1ZTMtMzc3ZS00YjcwLWJhMzYtMzk2YmM3MjBlMmI0 LzEvczVQZmgzdnk4TThCcVhHSmMtcnU2SHNHbDlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk8LiCXdL 9PCbRWgIYh6B2UxLSfr7QOO1NbLS22GmYLap7AXJCYomSZrU5QYJ9fF/JXZjMJR9 FE885wclsUxZwR3cZKpFEOCRBu/qcgGqVklUO2kadwr1QgJnfbhwnLiSvw/gxFNF GP22gIwo6HYZ9l7JRhjGwGOH3MA0HFv7mWpRH6zee7bDgfeDZtjuZ1PbBKAnys+I 6xcdmsTpahcr8FwKRFD8TpfzeGbnx1fwbD3UuqzHeRWoywvAIMIpnxQjfJdP3foU e5zFvFmsvU7dydJgDOwGsXKRe8X5kNVkYYdlFsj58dyjtVab+29wwIxtc870Ac3v W0BTV8xrY2ozkA== -----END CERTIFICATE-----Generated at Wed Dec 31 00:03:14 2025 by rpki-client