This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft File: 0KpKGno60j-q4q6un6YZTwISgSk.mft (raw, json) Hash identifier: NpOxuZ9smVyeHKxGrqsfWWURGZ0OPNIqjeQB6DTj4yY= Subject key identifier: 57:25:1F:6D:5F:4D:50:B7:B5:C1:0E:41:29:98:AA:53:42:0E:4E:41 Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29 Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129 Certificate serial: 019B3F1171E8915AA386D826B12BC1BC9922 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft Manifest number: 03A5 Signing time: Sun 21 Dec 2025 04:01:06 +0000 Manifest this update: Sun 21 Dec 2025 04:01:06 +0000 Manifest next update: Mon 22 Dec 2025 04:01:06 +0000 Files and hashes: 1: 0KpKGno60j-q4q6un6YZTwISgSk.crl (hash: OPtNfhywOvgrG9BJ/amyGegMuYu8PrHz4BIeNvRVjno=) 2: 2mOIvyxqACEFmIkGDLPkH-bc67w.roa (hash: a5V4lxFeCQH7YtlBbiNtuF1rDDvq1OPE/o43ZTFdAYQ=) 3: BPcKYotNA4ZeZvm82W73v75zPQs.roa (hash: oHpWOGTj/PoKbHsHCYFs8uXPSnbHGEoV8KY7k9zJBk4=) 4: GkxGrjdz0A7AWmifnWDimQZWI38.roa (hash: tHXJR2KGAG4wHE8bdFOYoF9Jdtd+4jQD2aXhMHJzWK8=) 5: ief4j2bb-cAvwzzS1T0xB8OgxGk.roa (hash: cv2vWMrY2M65pVapU15+XFEE8tVsd4Na8PnjBxEQRuA=) 6: wkwsgzJc2eo9ng8QQ8kvMc3qjbc.roa (hash: +iuoTytPo6r5GmeijHeI4hmWR8iJmhnqPLAkE9k79sI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:11:71:e8:91:5a:a3:86:d8:26:b1:2b:c1:bc:99:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129 Validity Not Before: Dec 21 04:01:06 2025 GMT Not After : Dec 22 04:01:06 2025 GMT Subject: CN=57251f6d5f4d50b7b5c10e412998aa53420e4e41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:40:f3:2b:38:fc:70:3a:c0:3d:f3:9f:cf:86: 9d:f6:97:2b:8e:81:d1:d1:e8:ac:f7:5f:41:65:88: 4c:58:e3:d6:12:a5:44:5e:42:f0:5d:2b:eb:85:5e: 37:68:6f:2e:14:98:5d:16:86:20:66:9e:0b:54:72: 8b:15:fb:c6:c0:7a:1d:6a:c9:62:54:80:5a:f3:c6: b6:10:3d:8f:49:89:3a:1d:4d:0a:59:67:25:eb:11: a1:81:31:0c:11:67:c0:4a:53:07:49:64:46:e5:4d: 15:79:11:0c:a5:93:80:d3:19:2f:5c:34:74:1c:ef: 45:fd:ff:f1:31:0b:ee:4e:14:b1:0f:bd:31:bf:3b: f2:db:ce:a1:bc:e8:d5:52:23:2a:a2:b4:36:df:ae: 82:ed:07:6a:f1:1a:db:54:46:ec:0d:b0:d1:1f:fa: 60:93:fc:78:b8:68:56:3d:12:a1:ec:ed:7a:7b:e0: 93:33:ef:f4:f2:c0:fa:5a:91:42:8f:b4:fd:0f:62: 81:66:7a:a2:de:ee:cf:eb:a0:4f:b9:02:c3:cd:93: 5a:df:fa:3f:cb:a2:f8:03:8e:cc:c0:02:61:af:00: 2d:5a:36:58:56:ea:d7:c3:c8:11:3e:ff:c4:da:ad: fb:c4:58:77:41:ea:05:e2:69:14:4a:20:36:f5:ba: b1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:25:1F:6D:5F:4D:50:B7:B5:C1:0E:41:29:98:AA:53:42:0E:4E:41 X509v3 Authority Key Identifier: keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:9b:23:69:65:f2:8d:7c:0b:f7:d9:a3:2d:94:37:51:14:70: bb:f9:04:dd:9d:0d:ba:26:29:50:b6:ca:cd:a1:0b:bf:c6:b9: e9:09:25:04:b9:ff:c7:42:79:2f:b9:b3:09:f1:89:9c:2d:57: 47:db:a6:94:47:55:e3:31:53:dd:51:25:76:12:06:75:46:01: cc:50:3a:14:8d:e1:2b:16:22:ee:62:5c:bf:da:02:24:b6:0b: cc:65:c3:25:36:e3:6f:c4:fb:31:d3:56:76:a6:54:22:af:30: d8:a3:86:38:0d:1b:d4:14:47:f6:be:0b:a6:f5:69:75:28:5f: 73:06:27:ab:6f:ce:fb:d0:20:a3:48:20:d2:33:84:69:96:b5: d1:df:bd:53:8a:e3:06:3e:49:4a:38:3b:f4:d7:dd:e6:cf:a3: 6f:0d:8e:c9:21:25:b2:07:99:eb:0f:bf:3f:f3:94:57:79:7d: 09:d7:4f:3b:da:56:fb:25:c9:70:b7:2d:ba:fc:01:28:7a:66: 6c:06:db:0c:30:9b:d7:39:1a:07:7e:15:d6:5c:43:1e:9b:88: 52:af:e6:13:d1:0c:f2:46:ca:97:75:92:b1:66:db:16:55:ef: 8b:eb:41:4a:26:58:90:ec:64:3a:42:14:59:03:d7:aa:b5:12: ab:d7:82:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/EXHokVqjhtgmsSvBvJkiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYWE0YTFhN2EzYWQyM2ZhYWUyYWVhZTlmYTYxOTRmMDIx MjgxMjkwHhcNMjUxMjIxMDQwMTA2WhcNMjUxMjIyMDQwMTA2WjAzMTEwLwYDVQQD Eyg1NzI1MWY2ZDVmNGQ1MGI3YjVjMTBlNDEyOTk4YWE1MzQyMGU0ZTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz0DzKzj8cDrAPfOfz4ad9pcrjoHR 0eis919BZYhMWOPWEqVEXkLwXSvrhV43aG8uFJhdFoYgZp4LVHKLFfvGwHodasli VIBa88a2ED2PSYk6HU0KWWcl6xGhgTEMEWfASlMHSWRG5U0VeREMpZOA0xkvXDR0 HO9F/f/xMQvuThSxD70xvzvy286hvOjVUiMqorQ2366C7Qdq8RrbVEbsDbDRH/pg k/x4uGhWPRKh7O16e+CTM+/08sD6WpFCj7T9D2KBZnqi3u7P66BPuQLDzZNa3/o/ y6L4A47MwAJhrwAtWjZYVurXw8gRPv/E2q37xFh3QeoF4mkUSiA29bqxSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFclH21fTVC3tcEOQSmYqlNCDk5BMB8GA1UdIwQY MBaAFNCqShp6OtI/quKurp+mGU8CEoEpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS83NjU1NmUtYTFkOC00ZTBhLTg0Njgt MjIxNGYxOGViMzI5LzEvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS83NjU1NmUtYTFkOC00ZTBhLTg0NjgtMjIxNGYxOGViMzI5 LzEvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX5sjaWXy jXwL99mjLZQ3URRwu/kE3Z0NuiYpULbKzaELv8a56QklBLn/x0J5L7mzCfGJnC1X R9umlEdV4zFT3VEldhIGdUYBzFA6FI3hKxYi7mJcv9oCJLYLzGXDJTbjb8T7MdNW dqZUIq8w2KOGOA0b1BRH9r4LpvVpdShfcwYnq2/O+9Ago0gg0jOEaZa10d+9U4rj Bj5JSjg79Nfd5s+jbw2OySElsgeZ6w+/P/OUV3l9CddPO9pW+yXJcLctuvwBKHpm bAbbDDCb1zkaB34V1lxDHpuIUq/mE9EM8kbKl3WSsWbbFlXvi+tBSiZYkOxkOkIU WQPXqrUSq9eC+Q== -----END CERTIFICATE-----Generated at Sun Dec 21 10:21:02 2025 by rpki-client