This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft File: _RHEZUr3AuWW61DRP6SG202bzgo.mft (raw, json) Hash identifier: cwZl0JGqDujCTDbDai3DZQDCOMu/ddxehdSRD4c5k2g= Subject key identifier: BA:30:52:84:2D:1E:C9:EE:ED:A2:77:1F:CA:FB:81:7D:45:D7:FB:35 Authority key identifier: FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A Certificate issuer: /CN=fd11c4654af702e596eb50d13fa486db4d9bce0a Certificate serial: 019B3E6C1D67AFF59A41DF2579B2064A5575 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft Manifest number: 1789 Signing time: Sun 21 Dec 2025 01:00:31 +0000 Manifest this update: Sun 21 Dec 2025 01:00:31 +0000 Manifest next update: Mon 22 Dec 2025 01:00:31 +0000 Files and hashes: 1: W3jKuxB_RcgliKc6SOrb-E9lQW4.roa (hash: flRFJj0cuA1GRJx+AJmEhdqQRbsG/XKga+ETKIMZCEI=) 2: _RHEZUr3AuWW61DRP6SG202bzgo.crl (hash: 54GGiyfoDrs7jr6/yYcPGDfdPWdMIKFBB7YuLkCdKOA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:1d:67:af:f5:9a:41:df:25:79:b2:06:4a:55:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd11c4654af702e596eb50d13fa486db4d9bce0a Validity Not Before: Dec 21 01:00:31 2025 GMT Not After : Dec 22 01:00:31 2025 GMT Subject: CN=ba3052842d1ec9eeeda2771fcafb817d45d7fb35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:50:9e:aa:25:61:7e:29:4f:66:41:1a:d1:4e: 90:68:2b:a1:ae:e3:1f:b7:1f:f6:61:1c:1e:45:a8: 2d:d0:22:4c:82:ae:d4:11:7c:34:e5:82:5e:77:2e: f4:21:2c:a8:45:7b:c6:fe:80:c2:0f:06:df:69:88: db:a7:08:bd:b8:e2:b7:dd:b5:0d:1f:7a:9f:e7:5a: 4c:39:d0:8a:b5:4e:fd:01:96:43:40:b9:b4:15:6b: 1c:30:fe:b8:48:02:f8:bf:d2:5c:c3:ba:f6:91:64: 61:fd:16:51:c3:81:98:d4:7d:e6:da:7f:47:ad:1b: 1d:4f:d6:df:59:7c:45:21:2d:6e:e6:c7:83:0a:70: 5e:45:85:96:1c:fc:4c:ad:41:c9:ad:f4:2b:ef:1e: 17:e7:a7:10:61:f1:62:c6:bd:78:9c:87:3e:52:c4: e0:69:dd:01:34:e3:88:7e:66:62:3f:d0:13:e7:f6: ed:ab:84:81:80:8e:86:30:0d:84:ab:7f:ee:1d:ed: bf:1f:ca:e5:89:8b:54:90:ca:59:4b:f0:ea:b2:96: 78:65:f3:c2:0d:06:fa:fe:b7:96:08:0b:45:43:93: 1c:64:ee:de:00:35:68:e6:2a:0d:cd:9a:78:e1:d3: 34:8f:08:f3:68:b8:78:25:a0:8c:eb:f0:e8:4c:9e: b0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:30:52:84:2D:1E:C9:EE:ED:A2:77:1F:CA:FB:81:7D:45:D7:FB:35 X509v3 Authority Key Identifier: keyid:FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:b7:c9:4f:e2:45:44:63:99:74:ca:e2:08:ac:c9:64:ec:11: 89:31:d0:d2:11:f2:35:49:75:ae:a8:4d:c7:a0:0b:65:c4:81: 1e:64:33:5d:60:a8:06:54:91:48:54:40:71:e8:bc:10:ad:70: ef:41:9d:92:df:3c:4b:87:61:20:44:9a:00:25:da:83:67:59: fc:12:96:87:08:ab:16:9b:96:ab:32:26:ac:18:ea:d7:38:6a: 91:bf:ea:89:14:60:45:5e:6a:f4:1e:99:90:4a:23:5f:7d:77: 78:35:9e:bb:b6:58:ea:96:a0:cf:39:14:76:05:5d:70:6a:93: 98:83:d3:bb:0a:14:fa:4a:ef:b6:97:82:72:d8:72:ce:ae:1f: 98:5e:d8:b5:dc:59:f0:4e:09:a5:12:38:1b:f8:8c:08:82:e8: dc:37:47:73:df:29:de:52:64:48:74:df:12:36:8e:71:88:b2: b5:e1:c7:f7:89:62:fb:e5:69:0e:91:61:dd:2e:75:a7:3e:e3: 41:03:49:0c:db:d1:f7:77:26:9c:d5:09:1e:a4:b5:2b:d0:99: fe:80:19:92:64:97:fe:55:1b:7b:5d:3b:8a:23:9f:56:69:67: d5:ae:22:ef:3e:87:a7:4c:13:04:13:1f:25:ab:5c:51:3c:b3: 7f:53:32:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bB1nr/WaQd8lebIGSlV1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMTFjNDY1NGFmNzAyZTU5NmViNTBkMTNmYTQ4NmRiNGQ5 YmNlMGEwHhcNMjUxMjIxMDEwMDMxWhcNMjUxMjIyMDEwMDMxWjAzMTEwLwYDVQQD EyhiYTMwNTI4NDJkMWVjOWVlZWRhMjc3MWZjYWZiODE3ZDQ1ZDdmYjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/lCeqiVhfilPZkEa0U6QaCuhruMf tx/2YRweRagt0CJMgq7UEXw05YJedy70ISyoRXvG/oDCDwbfaYjbpwi9uOK33bUN H3qf51pMOdCKtU79AZZDQLm0FWscMP64SAL4v9Jcw7r2kWRh/RZRw4GY1H3m2n9H rRsdT9bfWXxFIS1u5seDCnBeRYWWHPxMrUHJrfQr7x4X56cQYfFixr14nIc+UsTg ad0BNOOIfmZiP9AT5/btq4SBgI6GMA2Eq3/uHe2/H8rliYtUkMpZS/DqspZ4ZfPC DQb6/reWCAtFQ5McZO7eADVo5ioNzZp44dM0jwjzaLh4JaCM6/DoTJ6wYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLowUoQtHsnu7aJ3H8r7gX1F1/s1MB8GA1UdIwQY MBaAFP0RxGVK9wLllutQ0T+khttNm84KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1JIRVpVcjNBdVdXNjFEUlA2U0cyMDJiemdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81ZTMxODUtMzhjNS00YTViLWJmMjQt Yzk1M2UzMzk4YzYzLzEvX1JIRVpVcjNBdVdXNjFEUlA2U0cyMDJiemdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC81ZTMxODUtMzhjNS00YTViLWJmMjQtYzk1M2UzMzk4YzYz LzEvX1JIRVpVcjNBdVdXNjFEUlA2U0cyMDJiemdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB7fJT+JF RGOZdMriCKzJZOwRiTHQ0hHyNUl1rqhNx6ALZcSBHmQzXWCoBlSRSFRAcei8EK1w 70Gdkt88S4dhIESaACXag2dZ/BKWhwirFpuWqzImrBjq1zhqkb/qiRRgRV5q9B6Z kEojX313eDWeu7ZY6pagzzkUdgVdcGqTmIPTuwoU+krvtpeCcthyzq4fmF7YtdxZ 8E4JpRI4G/iMCILo3DdHc98p3lJkSHTfEjaOcYiyteHH94li++VpDpFh3S51pz7j QQNJDNvR93cmnNUJHqS1K9CZ/oAZkmSX/lUbe107iiOfVmln1a4i7z6Hp0wTBBMf JatcUTyzf1MyoQ== -----END CERTIFICATE-----Generated at Sun Dec 21 09:15:18 2025 by rpki-client