This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft File: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft (raw, json) Hash identifier: Bx0Mqy5haPw6wHEej1d+n7K84aHaNGkqPRqRqcZ//9M= Subject key identifier: DD:B2:24:68:24:06:0D:8B:13:DE:A5:79:7C:3D:84:67:C1:14:08:AB Authority key identifier: AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82 Certificate issuer: /CN=af9b2cefe389a1ae49756edc2b3293e58830cb82 Certificate serial: 019B3EDA2BA7D22AAA05FFDDAC3693F891D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft Manifest number: 0466 Signing time: Sun 21 Dec 2025 03:00:43 +0000 Manifest this update: Sun 21 Dec 2025 03:00:43 +0000 Manifest next update: Mon 22 Dec 2025 03:00:43 +0000 Files and hashes: 1: HlRrYVzs80ZJA5_JZ3csPGXIkEY.roa (hash: 2WA22A/U8/r4tDX+UDoYIX+va554GCdeOFSCw5V25j8=) 2: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl (hash: kuZZN9sND7JOHp3jJ7IHW0pwDtBAQQk9Dfd55r+TALs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 03:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:da:2b:a7:d2:2a:aa:05:ff:dd:ac:36:93:f8:91:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af9b2cefe389a1ae49756edc2b3293e58830cb82 Validity Not Before: Dec 21 03:00:43 2025 GMT Not After : Dec 22 03:00:43 2025 GMT Subject: CN=ddb2246824060d8b13dea5797c3d8467c11408ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:c5:63:80:dc:6b:fa:cb:5d:e9:0b:ca:ed:98: 97:5f:14:38:27:26:ef:c3:0b:57:9c:e2:2d:5a:c7: 15:a7:20:b6:14:de:f3:9b:08:77:e9:dd:04:9f:d0: 73:3d:e9:b3:ed:c7:b2:57:4e:4d:19:b8:50:00:a5: d2:0d:fa:42:3e:66:f7:86:96:0d:a4:78:57:da:22: ce:0b:62:32:01:06:38:ea:85:9e:8a:83:5a:a5:d3: 19:72:d5:7f:01:7d:e0:97:33:15:23:bb:bc:b8:33: 0b:31:db:8d:a9:2e:bb:b4:ff:67:4b:24:c0:54:a1: 42:80:cb:57:19:f0:7a:c3:36:ac:e6:62:98:a0:66: 5c:90:f4:7b:99:f3:92:69:a1:11:ac:4c:22:90:56: f5:22:4a:f1:03:15:59:e3:a5:0f:d8:32:bf:58:31: 18:4d:96:0d:95:f2:f3:0a:21:37:06:9c:cf:d7:80: 0e:76:02:6d:4f:9d:78:9d:9e:7c:e7:29:e5:3e:3f: 75:6d:e5:79:34:60:a8:1f:95:a3:c1:d8:de:25:7f: 65:66:ae:16:9d:b5:e8:4d:b2:a1:74:b4:d3:6d:35: b3:ae:bf:52:f1:b5:96:e0:c6:d3:ab:62:09:aa:d6: 80:aa:ff:23:47:70:31:3e:cc:53:9c:82:fd:d4:0d: fc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B2:24:68:24:06:0D:8B:13:DE:A5:79:7C:3D:84:67:C1:14:08:AB X509v3 Authority Key Identifier: keyid:AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b7:8c:c0:97:fe:7b:fa:02:d5:90:a7:f7:c7:c7:bf:47:df: 16:f0:d6:65:06:b1:0d:1c:ee:ad:49:11:14:67:89:90:da:c2: c9:49:96:87:a6:5c:e3:29:01:8e:01:db:5e:cb:02:76:88:bf: c0:c6:0e:6a:e7:cd:7c:ec:3d:1d:96:bf:2a:2c:95:3e:63:4a: bb:77:64:1d:67:68:74:f1:b1:ff:61:de:05:1d:cf:4d:86:ef: bf:98:f1:4e:dc:5f:32:07:0a:07:6b:bb:70:6a:fc:df:35:c0: ef:cc:21:28:11:74:91:12:2c:09:2f:84:5c:7b:ed:90:de:7e: cb:c5:5d:ea:3b:e2:2c:2f:ae:f3:d1:eb:5e:28:5a:fc:f8:55: 7c:47:b9:66:8c:82:c1:1b:bd:4b:06:bb:a2:f2:bc:57:c3:e4: 29:95:93:39:35:36:f3:f1:37:c6:cd:63:2d:88:48:b5:17:5f: 69:18:3d:55:20:85:b6:1c:30:5b:3f:67:d3:7e:42:4d:07:47: 6c:d5:64:10:df:e2:2c:70:75:9b:c4:72:89:b6:e5:c7:13:b0: fb:63:cb:78:e6:65:0b:77:cc:70:91:4a:d6:c0:d9:e2:3b:99: 8c:a2:cd:4c:1c:70:dd:90:6f:4f:82:75:ec:f0:78:1b:06:a1: 48:0f:0c:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+2iun0iqqBf/drDaT+JHWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmOWIyY2VmZTM4OWExYWU0OTc1NmVkYzJiMzI5M2U1ODgz MGNiODIwHhcNMjUxMjIxMDMwMDQzWhcNMjUxMjIyMDMwMDQzWjAzMTEwLwYDVQQD EyhkZGIyMjQ2ODI0MDYwZDhiMTNkZWE1Nzk3YzNkODQ2N2MxMTQwOGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhMVjgNxr+std6QvK7ZiXXxQ4Jybv wwtXnOItWscVpyC2FN7zmwh36d0En9BzPemz7ceyV05NGbhQAKXSDfpCPmb3hpYN pHhX2iLOC2IyAQY46oWeioNapdMZctV/AX3glzMVI7u8uDMLMduNqS67tP9nSyTA VKFCgMtXGfB6wzas5mKYoGZckPR7mfOSaaERrEwikFb1IkrxAxVZ46UP2DK/WDEY TZYNlfLzCiE3BpzP14AOdgJtT514nZ585ynlPj91beV5NGCoH5WjwdjeJX9lZq4W nbXoTbKhdLTTbTWzrr9S8bWW4MbTq2IJqtaAqv8jR3AxPsxTnIL91A38NwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN2yJGgkBg2LE96leXw9hGfBFAirMB8GA1UdIwQY MBaAFK+bLO/jiaGuSXVu3Csyk+WIMMuCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9iZjBiZmUtOTU1NC00YjdlLTk1ZGEt NDY5NjE5ZDRlY2RiLzEvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9iZjBiZmUtOTU1NC00YjdlLTk1ZGEtNDY5NjE5ZDRlY2Ri LzEvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK7eMwJf+ e/oC1ZCn98fHv0ffFvDWZQaxDRzurUkRFGeJkNrCyUmWh6Zc4ykBjgHbXssCdoi/ wMYOaufNfOw9HZa/KiyVPmNKu3dkHWdodPGx/2HeBR3PTYbvv5jxTtxfMgcKB2u7 cGr83zXA78whKBF0kRIsCS+EXHvtkN5+y8Vd6jviLC+u89HrXiha/PhVfEe5ZoyC wRu9Swa7ovK8V8PkKZWTOTU28/E3xs1jLYhItRdfaRg9VSCFthwwWz9n035CTQdH bNVkEN/iLHB1m8RyibblxxOw+2PLeOZlC3fMcJFK1sDZ4juZjKLNTBxw3ZBvT4J1 7PB4GwahSA8Mmw== -----END CERTIFICATE-----Generated at Sun Dec 21 10:47:32 2025 by rpki-client