This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft File: ORxdMzEUXsjicYdvgEIge50Ay2Q.mft (raw, json) Hash identifier: G7TwDJkWicP+OX9hFrriSVtICvJwub5gqu8A2BjFHVU= Subject key identifier: A5:27:1C:85:FA:E3:AD:E8:7F:94:5A:29:F7:4F:27:4B:6E:D8:60:04 Authority key identifier: 39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64 Certificate issuer: /CN=391c5d3331145ec8e271876f8042207b9d00cb64 Certificate serial: 019B5C406BDFAE9D19005DC6410DEDBFCD56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft Manifest number: 106F Signing time: Fri 26 Dec 2025 20:01:24 +0000 Manifest this update: Fri 26 Dec 2025 20:01:24 +0000 Manifest next update: Sat 27 Dec 2025 20:01:24 +0000 Files and hashes: 1: ORxdMzEUXsjicYdvgEIge50Ay2Q.crl (hash: kiiHkvsAObB9RzmJcfbrpV7+M7mIgEnsEHhuo+wNOwg=) 2: OST4PzA3ppU9tim3_KfBBcrqcgQ.roa (hash: 7aAkIwPTKpTiRriNWV3feZU6/0BHu+h2F1+5PEi7g88=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:40:6b:df:ae:9d:19:00:5d:c6:41:0d:ed:bf:cd:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=391c5d3331145ec8e271876f8042207b9d00cb64 Validity Not Before: Dec 26 20:01:24 2025 GMT Not After : Dec 27 20:01:24 2025 GMT Subject: CN=a5271c85fae3ade87f945a29f74f274b6ed86004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cf:58:21:64:02:75:c9:47:c0:e7:d9:db:a9: 46:ce:9b:cd:31:d6:df:08:48:44:df:13:5c:da:18: 74:e9:a1:f6:dd:34:d6:6c:57:08:43:7f:9f:83:bf: 1f:d0:94:c5:e1:09:bc:a5:8f:17:73:7d:4b:b1:f2: ff:0f:e6:a0:52:95:75:d0:d7:2d:35:97:af:bd:91: 85:9f:db:af:05:ff:c9:6d:10:61:a3:d5:d2:b3:f8: 17:ed:2a:7c:09:a7:81:23:7b:a2:46:de:0a:1b:55: 93:99:4d:1e:cc:fc:51:9a:4d:fa:1d:c8:38:38:7b: 47:d7:21:15:86:23:f5:45:fe:2c:22:95:2c:6c:ff: f6:94:6d:1d:ef:c6:82:12:b3:fb:1d:a5:f8:9b:9d: 8c:e6:00:64:aa:6d:73:76:1a:58:88:e6:29:c6:5a: 16:19:16:62:ca:13:31:de:75:b0:f8:50:e4:6d:ed: d2:58:1f:8c:5d:36:47:46:37:97:54:07:3c:44:0a: 23:12:1e:eb:cd:32:78:39:e2:9e:a9:81:f0:fb:9b: 89:8b:7a:33:de:27:f3:7d:2f:7d:fc:5d:6a:d0:2b: 68:db:bc:b0:9f:94:6a:d0:86:70:b7:ec:2d:5c:42: e7:f0:9e:38:ba:c8:20:5d:e4:2a:15:ff:c7:65:ef: f6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:27:1C:85:FA:E3:AD:E8:7F:94:5A:29:F7:4F:27:4B:6E:D8:60:04 X509v3 Authority Key Identifier: keyid:39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:f0:a1:73:91:23:3d:ff:79:98:a3:a5:59:c4:05:3e:d7:16: c3:df:49:3c:4f:26:a3:9a:eb:cb:66:63:66:5c:d7:a4:f8:86: 66:25:9d:82:2e:3f:7a:f9:a1:25:5e:7e:b6:51:dd:95:c4:f7: 34:84:30:2b:95:ca:8e:12:45:a5:aa:51:42:77:2c:bf:98:a1: 9b:ce:2a:3d:9a:07:6f:b0:f5:d9:ca:43:05:97:e6:7a:2d:f8: 12:57:aa:27:23:4b:e7:07:39:3e:a7:05:4a:26:a5:59:00:cd: 90:d1:1c:b9:7d:6c:fd:e4:25:84:d7:27:ea:ca:60:fe:b9:6d: ca:2f:15:e5:ba:0f:b5:6f:15:d5:41:da:a4:17:56:81:78:73: 31:ce:f0:3e:ca:ff:02:f8:89:f9:56:b4:ec:9a:4d:d4:8d:bd: 31:d6:95:e4:f1:2c:ca:4c:a0:98:0e:d3:07:f5:69:1a:5e:7a: 6d:3c:3a:d1:81:e1:ac:be:56:e3:21:56:b9:69:b0:d1:75:2e: ee:02:09:5f:af:c6:ce:9d:e7:56:25:c2:6a:95:11:ec:96:1a: 27:8f:dc:3a:6e:54:57:f2:d1:4c:f2:4b:3d:68:14:c0:5d:96: 5f:32:c4:58:19:50:27:b8:81:cf:1a:73:b2:ee:27:64:73:3d: 90:2f:eb:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcQGvfrp0ZAF3GQQ3tv81WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MWM1ZDMzMzExNDVlYzhlMjcxODc2ZjgwNDIyMDdiOWQw MGNiNjQwHhcNMjUxMjI2MjAwMTI0WhcNMjUxMjI3MjAwMTI0WjAzMTEwLwYDVQQD EyhhNTI3MWM4NWZhZTNhZGU4N2Y5NDVhMjlmNzRmMjc0YjZlZDg2MDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAws9YIWQCdclHwOfZ26lGzpvNMdbf CEhE3xNc2hh06aH23TTWbFcIQ3+fg78f0JTF4Qm8pY8Xc31LsfL/D+agUpV10Nct NZevvZGFn9uvBf/JbRBho9XSs/gX7Sp8CaeBI3uiRt4KG1WTmU0ezPxRmk36Hcg4 OHtH1yEVhiP1Rf4sIpUsbP/2lG0d78aCErP7HaX4m52M5gBkqm1zdhpYiOYpxloW GRZiyhMx3nWw+FDkbe3SWB+MXTZHRjeXVAc8RAojEh7rzTJ4OeKeqYHw+5uJi3oz 3ifzfS99/F1q0Cto27ywn5Rq0IZwt+wtXELn8J44usggXeQqFf/HZe/2jQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKUnHIX6463of5RaKfdPJ0tu2GAEMB8GA1UdIwQY MBaAFDkcXTMxFF7I4nGHb4BCIHudAMtkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1J4ZE16RVVYc2ppY1lkdmdFSWdlNTBBeTJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8wNTg2MjQtZGU3Ny00MjI0LWI1NDAt Y2EzMzUwZTc2MGNiLzEvT1J4ZE16RVVYc2ppY1lkdmdFSWdlNTBBeTJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC8wNTg2MjQtZGU3Ny00MjI0LWI1NDAtY2EzMzUwZTc2MGNi LzEvT1J4ZE16RVVYc2ppY1lkdmdFSWdlNTBBeTJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPPChc5Ej Pf95mKOlWcQFPtcWw99JPE8mo5rry2ZjZlzXpPiGZiWdgi4/evmhJV5+tlHdlcT3 NIQwK5XKjhJFpapRQncsv5ihm84qPZoHb7D12cpDBZfmei34EleqJyNL5wc5PqcF SialWQDNkNEcuX1s/eQlhNcn6spg/rltyi8V5boPtW8V1UHapBdWgXhzMc7wPsr/ AviJ+Va07JpN1I29MdaV5PEsykygmA7TB/VpGl56bTw60YHhrL5W4yFWuWmw0XUu 7gIJX6/Gzp3nViXCapUR7JYaJ4/cOm5UV/LRTPJLPWgUwF2WXzLEWBlQJ7iBzxpz su4nZHM9kC/rLQ== -----END CERTIFICATE-----Generated at Sat Dec 27 04:26:29 2025 by rpki-client