This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft File: D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json) Hash identifier: AJ+Uh4ybeg3AFSu/T6JL6pQQ/9qp7vYMZuPfhe04N2I= Subject key identifier: AF:ED:8F:C4:42:7A:B7:04:D9:4D:CD:5F:2F:54:A5:04:10:CB:C5:D6 Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96 Certificate issuer: /CN=0fdee7944ac4da3111295d81e29deba00c163a96 Certificate serial: 019B40C8E3FC2956B089B8C2E7C514CDF00B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft Manifest number: 1185 Signing time: Sun 21 Dec 2025 12:01:05 +0000 Manifest this update: Sun 21 Dec 2025 12:01:05 +0000 Manifest next update: Mon 22 Dec 2025 12:01:05 +0000 Files and hashes: 1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: eJ24qI+M7oXoPpREoEhOd06/FY9f1n+Q/bdid49TyX8=) 2: Fe73gwKx3TfChZQCePRdIEAemH0.roa (hash: qBzf7ILpA60OZzhZbHEoimpJXoZWWGpm51oGlU43AdU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 12:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:c8:e3:fc:29:56:b0:89:b8:c2:e7:c5:14:cd:f0:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96 Validity Not Before: Dec 21 12:01:05 2025 GMT Not After : Dec 22 12:01:05 2025 GMT Subject: CN=afed8fc4427ab704d94dcd5f2f54a50410cbc5d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:40:8f:63:a3:10:3d:38:60:cf:2a:2c:4a:14: 90:d5:f1:44:06:5e:01:a1:1b:ed:a6:14:47:8a:27: dc:3b:3b:87:63:94:4d:3e:80:91:ab:a5:15:e7:bf: 0e:49:54:2b:f9:8e:22:d9:8f:2f:ee:25:88:e4:bb: ce:92:04:c7:63:01:3a:f1:d3:d5:0e:72:13:34:62: 12:50:30:20:6b:88:6d:cb:9a:74:9b:b5:23:04:6b: 6d:87:e0:81:d3:83:0d:b1:92:58:f9:15:3b:70:ed: 03:89:be:63:0e:a3:1a:1c:2d:61:8b:8a:9f:45:82: 0e:8f:bb:80:1e:0f:58:0e:8b:25:9c:3c:dd:c2:31: 98:f7:14:99:df:a6:bf:20:a3:f6:64:e4:ca:33:8e: df:a0:45:95:4f:8a:f3:2c:6e:14:49:34:cc:f9:a2: 7f:b2:a5:c1:cd:66:6b:ca:66:ff:c1:ce:69:fb:63: f7:b9:7b:57:fd:d8:a0:2d:55:2f:cb:c7:b0:87:70: f0:30:8e:0d:e8:c1:fe:81:86:bf:18:91:df:d4:17: 9f:11:06:4f:a6:89:2c:a9:08:1f:6d:4c:c6:30:b4: 8d:99:6f:da:a6:89:c6:ff:6c:f1:07:43:d1:e4:06: 67:ca:e0:88:97:e9:02:77:d3:82:a1:aa:84:7c:3b: 5f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:ED:8F:C4:42:7A:B7:04:D9:4D:CD:5F:2F:54:A5:04:10:CB:C5:D6 X509v3 Authority Key Identifier: keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:13:09:20:4b:db:66:b8:dc:69:88:d0:2b:7e:64:b5:d3:3d: 32:4d:38:f0:5c:d8:5a:1a:6c:82:8c:44:3d:22:5c:cb:e5:b9: 3d:bc:1f:22:2d:5f:17:55:0f:86:ea:7f:2d:2f:8b:4b:0f:f6: 37:77:ea:0f:7e:56:f0:cf:b7:03:4b:a1:1c:60:e1:60:9f:de: 5c:ec:45:d6:82:6b:61:28:e0:90:b5:fc:57:3a:7c:7a:48:4f: 3f:b2:46:02:9c:4f:04:2f:ec:fc:ea:47:fe:47:f4:6c:6f:ba: dc:b6:95:ad:73:34:04:85:18:fc:a9:2c:c6:43:f6:16:b8:bd: 5b:18:67:26:41:5f:fe:96:1a:e6:e3:48:40:40:7a:d7:63:4f: 49:ad:f0:cb:47:38:ad:85:f9:5e:0c:f5:62:7d:23:76:b1:6f: 8f:50:00:da:60:ed:06:1e:a5:1f:e2:59:de:13:9b:f4:76:f1: dd:4d:b6:4f:50:a6:af:13:07:f4:d0:d0:0d:40:d8:f2:68:86: bd:9e:95:05:4b:a1:41:97:63:c0:f2:3c:6a:44:6c:63:ef:e5: 3f:d5:b5:89:e2:85:6d:43:79:8b:15:ce:18:0b:15:f3:df:a5: d1:81:b3:89:35:54:e3:ea:16:c0:6b:51:df:e2:5b:38:aa:19: 6b:f7:e0:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAyOP8KVawibjC58UUzfALMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmZGVlNzk0NGFjNGRhMzExMTI5NWQ4MWUyOWRlYmEwMGMx NjNhOTYwHhcNMjUxMjIxMTIwMTA1WhcNMjUxMjIyMTIwMTA1WjAzMTEwLwYDVQQD EyhhZmVkOGZjNDQyN2FiNzA0ZDk0ZGNkNWYyZjU0YTUwNDEwY2JjNWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0CPY6MQPThgzyosShSQ1fFEBl4B oRvtphRHiifcOzuHY5RNPoCRq6UV578OSVQr+Y4i2Y8v7iWI5LvOkgTHYwE68dPV DnITNGISUDAga4hty5p0m7UjBGtth+CB04MNsZJY+RU7cO0Dib5jDqMaHC1hi4qf RYIOj7uAHg9YDoslnDzdwjGY9xSZ36a/IKP2ZOTKM47foEWVT4rzLG4USTTM+aJ/ sqXBzWZrymb/wc5p+2P3uXtX/digLVUvy8ewh3DwMI4N6MH+gYa/GJHf1BefEQZP poksqQgfbUzGMLSNmW/aponG/2zxB0PR5AZnyuCIl+kCd9OCoaqEfDtfuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK/tj8RCercE2U3NXy9UpQQQy8XWMB8GA1UdIwQY MBaAFA/e55RKxNoxESldgeKd66AMFjqWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDk3bmxFckUyakVSS1YyQjRwM3JvQXdXT3BZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS81NDRiZWEtZjFlYy00NjY2LTgxYzAt NzhhNGQ2NTY5M2ZlLzEvRDk3bmxFckUyakVSS1YyQjRwM3JvQXdXT3BZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS81NDRiZWEtZjFlYy00NjY2LTgxYzAtNzhhNGQ2NTY5M2Zl LzEvRDk3bmxFckUyakVSS1YyQjRwM3JvQXdXT3BZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHBMJIEvb ZrjcaYjQK35ktdM9Mk048FzYWhpsgoxEPSJcy+W5PbwfIi1fF1UPhup/LS+LSw/2 N3fqD35W8M+3A0uhHGDhYJ/eXOxF1oJrYSjgkLX8Vzp8ekhPP7JGApxPBC/s/OpH /kf0bG+63LaVrXM0BIUY/KksxkP2Fri9WxhnJkFf/pYa5uNIQEB612NPSa3wy0c4 rYX5Xgz1Yn0jdrFvj1AA2mDtBh6lH+JZ3hOb9Hbx3U22T1CmrxMH9NDQDUDY8miG vZ6VBUuhQZdjwPI8akRsY+/lP9W1ieKFbUN5ixXOGAsV89+l0YGziTVU4+oWwGtR 3+JbOKoZa/fgDg== -----END CERTIFICATE-----Generated at Sun Dec 21 20:56:37 2025 by rpki-client