This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft File: Mns0IMJQE3legioq5Q043B04J5M.mft (raw, json) Hash identifier: F8hLlZV1hwWSCg/pkTh95jb8jVJjPvqaz94yMQVfu1Q= Subject key identifier: F8:A1:25:20:C5:AB:8B:20:61:C7:B1:6A:E3:3E:B8:70:77:4D:E5:E5 Authority key identifier: 32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93 Certificate issuer: /CN=327b3420c25013795e822a2ae50d38dc1d382793 Certificate serial: 019B3F7F1B3F41F3718EE6BC525E9475565B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft Manifest number: 178A Signing time: Sun 21 Dec 2025 06:00:53 +0000 Manifest this update: Sun 21 Dec 2025 06:00:53 +0000 Manifest next update: Mon 22 Dec 2025 06:00:53 +0000 Files and hashes: 1: Mns0IMJQE3legioq5Q043B04J5M.crl (hash: TXK8cquRj4T1aowf6GIddMKgnu7Y/wLvE4d7lJ8nArE=) 2: v9geoE7KmWCRnCztGaTkN5bSNF0.roa (hash: yJ1Hvyh5t82gNQ9PRDa/lCyqTlzjssbfVD5EEeI11lA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7f:1b:3f:41:f3:71:8e:e6:bc:52:5e:94:75:56:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=327b3420c25013795e822a2ae50d38dc1d382793 Validity Not Before: Dec 21 06:00:53 2025 GMT Not After : Dec 22 06:00:53 2025 GMT Subject: CN=f8a12520c5ab8b2061c7b16ae33eb870774de5e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:23:4b:94:28:ec:4a:bf:74:23:55:03:fc:b4: 74:5d:fc:e0:f5:c9:de:9a:fd:49:7b:6c:20:5d:6d: 2c:78:88:27:47:59:cd:3c:03:22:eb:12:e6:b8:37: 72:94:11:0f:99:86:76:1a:b6:ef:a1:56:7d:56:f3: 1b:5a:ca:da:83:b4:95:08:9e:69:c4:c5:af:e6:00: 20:8c:c9:d6:76:7f:b2:82:11:c3:63:69:b1:9d:cc: f8:8a:7a:15:31:00:fc:2e:ad:bd:0e:55:a4:bb:e4: 6d:31:34:4d:e7:70:ec:f8:85:54:ca:8f:8f:d1:35: 03:23:fa:ea:ba:e1:51:28:26:7a:8a:10:16:d6:4c: d3:95:59:14:2a:91:b7:d7:d4:00:f5:03:33:0d:9e: 4b:60:e2:b9:c3:31:e7:3e:4a:8e:bc:4e:84:08:e6: 74:b9:b6:8c:64:65:ef:66:3e:39:a7:19:9d:49:96: d9:0d:41:16:83:f1:52:36:15:47:02:1a:01:a5:f8: 9e:d7:01:27:68:9c:95:e0:ed:b6:c8:1d:af:2a:5e: d0:9f:48:9f:03:82:ab:10:d1:a1:3c:f0:a9:36:dd: ed:da:fe:9a:0e:c8:24:d5:b1:a8:41:a8:ad:2b:60: 40:8f:56:94:85:b3:4a:f8:67:9c:05:9a:52:52:ad: 75:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A1:25:20:C5:AB:8B:20:61:C7:B1:6A:E3:3E:B8:70:77:4D:E5:E5 X509v3 Authority Key Identifier: keyid:32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:41:9c:79:8c:b1:eb:f2:8c:fb:8e:9e:a7:73:40:5e:6a:b8: 8d:4d:07:c6:50:e2:5a:04:f0:05:2f:6c:69:4f:26:4c:b8:c0: a4:9a:25:ff:03:06:ed:a9:24:27:6c:9b:55:9d:1d:d0:d0:5d: b4:ad:b8:bf:57:1c:9e:4c:27:08:37:e9:39:97:8e:8e:bd:a3: f6:e6:3e:5b:2d:81:29:fb:fe:89:a7:bf:0a:8c:e6:97:bf:49: 19:56:ba:60:5f:54:8c:b9:50:39:68:21:56:78:75:c3:f6:8b: 7a:8a:a9:f0:b7:8b:5d:85:d0:df:87:bc:b0:9c:df:20:51:bc: f6:5c:ad:c3:b3:88:87:fd:95:96:7e:ae:17:31:f8:35:27:5d: 5f:a9:af:5d:fe:b1:f3:c5:ce:83:9d:0e:ce:fd:f3:b2:2b:d1: 0a:cb:68:f2:d5:f5:dc:1c:5b:57:ce:e4:c4:e8:b1:6a:b8:04: de:de:d1:6a:20:06:36:9b:67:83:a5:10:47:fb:ea:43:a4:10: 1e:82:70:9b:8f:7a:f7:c8:16:e2:2b:f0:6f:f4:ca:63:df:f4: 16:2d:0b:a0:ed:6b:e0:d9:99:05:48:3c:41:68:d7:b0:58:f8: cd:2d:00:12:08:54:92:f7:71:40:06:90:34:d7:b1:7e:3b:a3: 9e:16:78:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/fxs/QfNxjua8Ul6UdVZbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyN2IzNDIwYzI1MDEzNzk1ZTgyMmEyYWU1MGQzOGRjMWQz ODI3OTMwHhcNMjUxMjIxMDYwMDUzWhcNMjUxMjIyMDYwMDUzWjAzMTEwLwYDVQQD EyhmOGExMjUyMGM1YWI4YjIwNjFjN2IxNmFlMzNlYjg3MDc3NGRlNWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCNLlCjsSr90I1UD/LR0Xfzg9cne mv1Je2wgXW0seIgnR1nNPAMi6xLmuDdylBEPmYZ2GrbvoVZ9VvMbWsrag7SVCJ5p xMWv5gAgjMnWdn+yghHDY2mxncz4inoVMQD8Lq29DlWku+RtMTRN53Ds+IVUyo+P 0TUDI/rquuFRKCZ6ihAW1kzTlVkUKpG319QA9QMzDZ5LYOK5wzHnPkqOvE6ECOZ0 ubaMZGXvZj45pxmdSZbZDUEWg/FSNhVHAhoBpfie1wEnaJyV4O22yB2vKl7Qn0if A4KrENGhPPCpNt3t2v6aDsgk1bGoQaitK2BAj1aUhbNK+GecBZpSUq11YwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPihJSDFq4sgYcexauM+uHB3TeXlMB8GA1UdIwQY MBaAFDJ7NCDCUBN5XoIqKuUNONwdOCeTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8zNjMxZTAtNTZkNy00YzI5LTk1YzQt NjY4MmIwN2ZhOTQ3LzEvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My8zNjMxZTAtNTZkNy00YzI5LTk1YzQtNjY4MmIwN2ZhOTQ3 LzEvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPUGceYyx 6/KM+46ep3NAXmq4jU0HxlDiWgTwBS9saU8mTLjApJol/wMG7akkJ2ybVZ0d0NBd tK24v1ccnkwnCDfpOZeOjr2j9uY+Wy2BKfv+iae/Cozml79JGVa6YF9UjLlQOWgh Vnh1w/aLeoqp8LeLXYXQ34e8sJzfIFG89lytw7OIh/2Vln6uFzH4NSddX6mvXf6x 88XOg50Ozv3zsivRCsto8tX13BxbV87kxOixargE3t7RaiAGNptng6UQR/vqQ6QQ HoJwm49698gW4ivwb/TKY9/0Fi0LoO1r4NmZBUg8QWjXsFj4zS0AEghUkvdxQAaQ NNexfjujnhZ44w== -----END CERTIFICATE-----Generated at Sun Dec 21 11:27:34 2025 by rpki-client