This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft File: pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft (raw, json) Hash identifier: G2qwCtxdTzUuWhuZjyVWjSqQqnNg0QVv2IZJh6THqIY= Subject key identifier: B2:D5:E8:FA:78:28:11:33:AB:F0:DE:7E:65:87:97:78:3B:39:BA:B4 Authority key identifier: A5:2F:65:24:08:5F:A1:0E:8C:09:8A:C2:B5:82:8A:1F:88:C6:91:3C Certificate issuer: /CN=a52f6524085fa10e8c098ac2b5828a1f88c6913c Certificate serial: 019B330D194F55D63DAA46F586924CC18EB9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft Manifest number: 1784 Signing time: Thu 18 Dec 2025 20:00:55 +0000 Manifest this update: Thu 18 Dec 2025 20:00:55 +0000 Manifest next update: Fri 19 Dec 2025 20:00:55 +0000 Files and hashes: 1: d9zp6AZxGUIdUrJzz8idXxXqkvw.roa (hash: FfoXAw9lK5hBRkyqnfyBrRUYHwvSIXzUheL45ZXlndI=) 2: pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl (hash: ehZedJj2e/m6R5F6V1L6MSomSZxTDgTucSJvsq7R+Ug=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:19:4f:55:d6:3d:aa:46:f5:86:92:4c:c1:8e:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a52f6524085fa10e8c098ac2b5828a1f88c6913c Validity Not Before: Dec 18 20:00:55 2025 GMT Not After : Dec 19 20:00:55 2025 GMT Subject: CN=b2d5e8fa78281133abf0de7e658797783b39bab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3e:df:73:7e:4a:3c:fc:69:7c:a7:38:36:d4: 86:fc:c5:81:99:76:f0:a1:41:18:0d:b7:be:48:a2: 2d:e9:ae:b3:09:b8:24:60:a4:4f:8e:37:de:95:92: 28:df:39:12:b6:96:8a:b6:52:a3:89:59:a5:ea:66: 41:47:1b:b0:cd:40:97:a1:fe:3b:e0:fb:5b:23:66: 5d:09:d1:75:99:e9:a3:6f:28:24:22:21:12:27:dd: ca:18:33:1d:ab:b1:82:8b:71:73:d0:89:cd:37:c0: 74:df:d0:92:9e:cb:73:20:6a:3c:64:b1:1a:1d:00: 42:28:6a:11:f8:76:32:f9:43:8b:63:66:bf:be:86: d1:fd:e8:b5:ca:2b:ac:bb:8f:25:cb:2d:3c:23:34: d8:33:59:b9:90:66:ee:bb:60:19:81:7c:50:00:8c: 8a:09:09:d8:bf:74:04:37:db:5c:f0:c1:a3:57:c7: 89:cd:4c:6c:cb:cd:3e:04:38:30:fd:e7:43:27:1c: f6:47:d2:13:bc:d7:1d:67:04:4e:61:59:39:8e:f0: bb:94:78:cd:0a:5e:c5:1d:c6:72:de:dd:4a:00:72: 2d:3b:94:aa:79:20:61:23:5d:eb:93:76:e4:12:b4: 59:0b:1e:bb:eb:25:0c:24:6c:20:ea:5b:31:9b:36: d9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D5:E8:FA:78:28:11:33:AB:F0:DE:7E:65:87:97:78:3B:39:BA:B4 X509v3 Authority Key Identifier: keyid:A5:2F:65:24:08:5F:A1:0E:8C:09:8A:C2:B5:82:8A:1F:88:C6:91:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:25:4d:30:33:76:d2:c6:c2:84:4b:af:a5:74:ce:81:78:46: 1a:c0:7a:98:ec:f2:dc:d6:40:c9:41:b3:d5:c4:cf:36:4c:11: 01:3e:8d:25:ad:49:f1:29:e0:fe:a5:c2:4d:7b:0c:5f:f1:04: 0d:fb:a0:ee:4d:cb:49:99:ad:ba:dd:16:0e:56:1f:68:cc:88: b1:e2:09:bd:21:ef:ce:05:7a:c4:5e:8d:14:6e:dd:1f:21:21: 9b:22:9d:78:28:d0:95:9f:21:a7:b6:12:a4:c5:04:58:b8:2c: 07:c5:6f:20:dc:27:5e:00:00:44:52:cc:c5:ee:3a:23:4a:07: 1e:0e:dc:b0:64:b7:06:fa:6f:13:ba:47:b4:10:9e:79:5a:27: 68:07:cb:a6:db:11:69:20:12:af:52:49:ef:de:6e:d5:f1:0a: 64:f9:71:3c:87:eb:9b:3e:75:b3:e6:32:d3:15:18:ad:4a:d3: 3c:23:9a:8e:31:62:4e:19:d7:51:f8:ed:f1:5d:8a:a2:b4:3a: 33:53:13:b1:b9:67:7a:b7:91:63:14:8c:94:ed:2b:91:16:51: 3d:1b:ed:15:60:3d:c4:9c:16:36:66:a1:33:47:e6:ce:20:ff: e3:44:42:45:ad:44:a8:bf:f3:76:dc:4c:3b:7b:7b:84:bf:1d: 3c:77:72:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDRlPVdY9qkb1hpJMwY65MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1MmY2NTI0MDg1ZmExMGU4YzA5OGFjMmI1ODI4YTFmODhj NjkxM2MwHhcNMjUxMjE4MjAwMDU1WhcNMjUxMjE5MjAwMDU1WjAzMTEwLwYDVQQD EyhiMmQ1ZThmYTc4MjgxMTMzYWJmMGRlN2U2NTg3OTc3ODNiMzliYWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArz7fc35KPPxpfKc4NtSG/MWBmXbw oUEYDbe+SKIt6a6zCbgkYKRPjjfelZIo3zkStpaKtlKjiVml6mZBRxuwzUCXof47 4PtbI2ZdCdF1memjbygkIiESJ93KGDMdq7GCi3Fz0InNN8B039CSnstzIGo8ZLEa HQBCKGoR+HYy+UOLY2a/vobR/ei1yiusu48lyy08IzTYM1m5kGbuu2AZgXxQAIyK CQnYv3QEN9tc8MGjV8eJzUxsy80+BDgw/edDJxz2R9ITvNcdZwROYVk5jvC7lHjN Cl7FHcZy3t1KAHItO5SqeSBhI13rk3bkErRZCx676yUMJGwg6lsxmzbZIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLLV6Pp4KBEzq/DefmWHl3g7Obq0MB8GA1UdIwQY MBaAFKUvZSQIX6EOjAmKwrWCih+IxpE8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFM5bEpBaGZvUTZNQ1lyQ3RZS0tINGpHa1R3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8wZTQ1MDYtMTc0Zi00NDBhLWEzMWMt YmZmZjUxNDIwNTNmLzEvcFM5bEpBaGZvUTZNQ1lyQ3RZS0tINGpHa1R3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC8wZTQ1MDYtMTc0Zi00NDBhLWEzMWMtYmZmZjUxNDIwNTNm LzEvcFM5bEpBaGZvUTZNQ1lyQ3RZS0tINGpHa1R3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAByVNMDN2 0sbChEuvpXTOgXhGGsB6mOzy3NZAyUGz1cTPNkwRAT6NJa1J8Sng/qXCTXsMX/EE Dfug7k3LSZmtut0WDlYfaMyIseIJvSHvzgV6xF6NFG7dHyEhmyKdeCjQlZ8hp7YS pMUEWLgsB8VvINwnXgAARFLMxe46I0oHHg7csGS3BvpvE7pHtBCeeVonaAfLptsR aSASr1JJ795u1fEKZPlxPIfrmz51s+Yy0xUYrUrTPCOajjFiThnXUfjt8V2KorQ6 M1MTsblnereRYxSMlO0rkRZRPRvtFWA9xJwWNmahM0fmziD/40RCRa1EqL/zdtxM O3t7hL8dPHdy+g== -----END CERTIFICATE-----Generated at Fri Dec 19 01:24:48 2025 by rpki-client