This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft File: 5oClYQES3yA5h_MvDl4VrTXnENI.mft (raw, json) Hash identifier: O6BiBE5eumpZjyXygkwrzVcf2QmaPUKHfaA1Vx1rVQk= Subject key identifier: 91:71:D6:94:B3:6A:47:A6:EC:1F:3A:8F:ED:B1:42:6A:7F:4D:79:0E Authority key identifier: E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2 Certificate issuer: /CN=e680a5610112df203987f32f0e5e15ad35e710d2 Certificate serial: 019B3B6BB8D5796333FA6B04948E82598051 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft Manifest number: 0761 Signing time: Sat 20 Dec 2025 11:01:13 +0000 Manifest this update: Sat 20 Dec 2025 11:01:13 +0000 Manifest next update: Sun 21 Dec 2025 11:01:13 +0000 Files and hashes: 1: 5oClYQES3yA5h_MvDl4VrTXnENI.crl (hash: J90qZ0bU/g6/cblmm9Ky6MUsp49DjHxzLXeCoTTLAQw=) 2: DhNK6wzjByDnasFkDiVozXApAMA.roa (hash: axPPgHJK+DsZDTes1Z8jvmiFkJ86vZLUMhnI7D0ebHM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 11:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:6b:b8:d5:79:63:33:fa:6b:04:94:8e:82:59:80:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e680a5610112df203987f32f0e5e15ad35e710d2 Validity Not Before: Dec 20 11:01:13 2025 GMT Not After : Dec 21 11:01:13 2025 GMT Subject: CN=9171d694b36a47a6ec1f3a8fedb1426a7f4d790e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:98:d9:31:61:1f:d3:61:32:cb:3a:b3:6a:d4: 26:f8:f6:96:50:e8:bd:75:ff:6c:c9:87:0a:9b:bf: 8e:22:a5:44:24:30:55:30:85:be:b8:df:68:ea:f0: 6b:6c:7c:b5:3b:db:d1:ef:7c:ed:7e:e1:29:c8:2f: b9:bb:c6:6c:6b:70:42:b6:53:dc:09:46:30:70:34: 8a:8a:a3:8d:a9:cf:18:7e:8f:c3:93:35:ea:c1:1d: ea:71:ea:48:2a:ee:82:75:7f:c7:2d:b4:7e:3b:86: e0:23:af:2f:b3:79:01:aa:13:96:e6:74:8a:a9:c2: 8f:06:58:1f:e9:f3:9f:b5:69:0d:1b:2e:c3:28:68: 90:13:4c:9b:7c:5b:ec:16:94:1b:18:95:c1:07:46: be:b1:e2:03:09:5f:2f:99:05:9f:24:70:7d:88:49: 5a:a2:90:23:26:65:06:25:2f:9b:b8:11:7e:79:40: 88:0e:b3:aa:c4:37:39:ec:16:4b:70:bb:ee:17:8d: 91:96:cc:d3:c7:82:62:43:13:62:af:b1:67:5a:22: 47:39:49:26:da:af:bd:ae:62:5a:60:09:8f:89:79: 4f:89:63:22:43:4d:d4:69:42:cb:2d:b6:16:e5:e5: 65:a0:89:c2:77:60:ae:5d:06:8f:be:0e:a9:3b:80: 65:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:71:D6:94:B3:6A:47:A6:EC:1F:3A:8F:ED:B1:42:6A:7F:4D:79:0E X509v3 Authority Key Identifier: keyid:E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:2e:2c:fb:55:42:e9:2a:bd:3f:f3:b8:80:79:3c:91:3c:c3: 15:51:c8:15:ea:9f:95:c3:56:de:d6:49:3a:dc:b5:3e:33:11: fb:ed:50:0e:32:62:d9:d4:f5:73:f7:ed:b0:fb:83:53:96:0e: 45:77:77:33:6d:1d:36:1b:b1:bf:8c:db:f8:92:a7:d8:26:f0: 0d:30:35:76:e1:87:5c:60:be:ee:93:e8:c4:62:6e:9d:47:69: 7a:09:45:03:c5:24:68:9e:eb:a6:9d:a1:e8:8c:33:b6:8e:2f: 8a:bb:40:cb:6b:ed:ed:12:1c:93:62:a6:ba:0f:6d:b8:0a:88: 61:c1:ae:83:e0:6c:4f:e5:1b:82:c2:4d:87:93:a0:db:aa:4f: f4:c7:14:6a:0d:f1:80:70:f8:3a:8b:7b:bf:f8:63:b7:44:ae: 45:11:2b:c4:14:3d:f7:d6:7f:fd:22:52:cb:ac:76:e9:90:cf: 9f:36:84:85:23:fc:60:c6:ad:46:e7:6b:57:cd:3b:e3:85:a6: 0f:4d:0e:6c:01:32:84:ad:5a:8c:ff:d2:4f:3c:2d:95:eb:d6: d5:b0:aa:d0:b4:6c:4c:13:a7:42:6b:04:6d:30:cb:34:07:df: df:90:98:df:88:84:af:70:42:56:ec:99:a7:b3:4b:49:d5:1d: 52:5f:8d:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7a7jVeWMz+msElI6CWYBRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2ODBhNTYxMDExMmRmMjAzOTg3ZjMyZjBlNWUxNWFkMzVl NzEwZDIwHhcNMjUxMjIwMTEwMTEzWhcNMjUxMjIxMTEwMTEzWjAzMTEwLwYDVQQD Eyg5MTcxZDY5NGIzNmE0N2E2ZWMxZjNhOGZlZGIxNDI2YTdmNGQ3OTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJjZMWEf02EyyzqzatQm+PaWUOi9 df9syYcKm7+OIqVEJDBVMIW+uN9o6vBrbHy1O9vR73ztfuEpyC+5u8Zsa3BCtlPc CUYwcDSKiqONqc8Yfo/DkzXqwR3qcepIKu6CdX/HLbR+O4bgI68vs3kBqhOW5nSK qcKPBlgf6fOftWkNGy7DKGiQE0ybfFvsFpQbGJXBB0a+seIDCV8vmQWfJHB9iEla opAjJmUGJS+buBF+eUCIDrOqxDc57BZLcLvuF42RlszTx4JiQxNir7FnWiJHOUkm 2q+9rmJaYAmPiXlPiWMiQ03UaULLLbYW5eVloInCd2CuXQaPvg6pO4Bl3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJFx1pSzakem7B86j+2xQmp/TXkOMB8GA1UdIwQY MBaAFOaApWEBEt8gOYfzLw5eFa015xDSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNW9DbFlRRVMzeUE1aF9NdkRsNFZyVFhuRU5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9iNDBkMjUtZjQ0NC00ZjYwLWIxNjIt ZDE1MDJmN2NmMjM0LzEvNW9DbFlRRVMzeUE1aF9NdkRsNFZyVFhuRU5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS9iNDBkMjUtZjQ0NC00ZjYwLWIxNjItZDE1MDJmN2NmMjM0 LzEvNW9DbFlRRVMzeUE1aF9NdkRsNFZyVFhuRU5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARy4s+1VC 6Sq9P/O4gHk8kTzDFVHIFeqflcNW3tZJOty1PjMR++1QDjJi2dT1c/ftsPuDU5YO RXd3M20dNhuxv4zb+JKn2CbwDTA1duGHXGC+7pPoxGJunUdpeglFA8UkaJ7rpp2h 6Iwzto4virtAy2vt7RIck2Kmug9tuAqIYcGug+BsT+UbgsJNh5Og26pP9McUag3x gHD4Oot7v/hjt0SuRRErxBQ999Z//SJSy6x26ZDPnzaEhSP8YMatRudrV80744Wm D00ObAEyhK1ajP/STzwtlevW1bCq0LRsTBOnQmsEbTDLNAff35CY34iEr3BCVuyZ p7NLSdUdUl+NpQ== -----END CERTIFICATE-----Generated at Sat Dec 20 21:09:30 2025 by rpki-client