This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft File: Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft (raw, json) Hash identifier: mJV32ZRVbjy2fzn2aJwCVxTPF9kBpEjRJHX76XproFE= Subject key identifier: 00:59:7B:66:B6:F0:E5:B9:76:59:37:F6:72:B2:62:6B:DF:CB:89:68 Authority key identifier: 0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42 Certificate issuer: /CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042 Certificate serial: 019B3C7EC6C0EE5D72E53E2634C89B44130F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft Manifest number: 178F Signing time: Sat 20 Dec 2025 16:01:39 +0000 Manifest this update: Sat 20 Dec 2025 16:01:39 +0000 Manifest next update: Sun 21 Dec 2025 16:01:39 +0000 Files and hashes: 1: 03R0VF3AsIUztN8h2zD8N2flDJY.roa (hash: 1xiwS0dYiDHRwMXNwpfOsM1AyiKMBufOaNLQPQKn/9E=) 2: Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl (hash: xi6lBz0STG3cOa8/7nKUTIgawPJJ7Cw0443p7m8cpzA=) 3: Es9DToahcsj0ahEtb--Fy2u42F4.roa (hash: nfMwvWvI1T9eF9JsdtFDjnCaRTVkyNEeCBV5LJRL/I0=) 4: Kk55CxMuRoABHPQT4nyNv0rGWGc.roa (hash: lvAnBMqzmoB6sfauO06Jjpq1kAnKY/291ymOUVXS2fc=) 5: Qa5zEwk763K1EispcaZSdgxy5B4.roa (hash: 1hv3iMS5WTQuyU34tHM2fX7wAkcRaS7Ns9UFZhwEs8w=) 6: ls30qglQhlzT6rdumlShksLULN4.roa (hash: QEAqfnuTNOFE0+L1NYjaIvQVrbFOKL5GAQ0VuflmL9E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 16:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7e:c6:c0:ee:5d:72:e5:3e:26:34:c8:9b:44:13:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042 Validity Not Before: Dec 20 16:01:39 2025 GMT Not After : Dec 21 16:01:39 2025 GMT Subject: CN=00597b66b6f0e5b9765937f672b2626bdfcb8968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:36:98:90:c2:04:f0:2a:46:b2:7b:14:ad:bb: f7:cb:c3:0b:b2:65:5d:08:fb:63:cd:cc:c6:4b:4d: 8e:cd:cb:70:5d:04:f2:9a:f1:f2:1b:cd:10:79:2b: 1f:e3:1b:a6:a8:47:64:a2:cc:6a:5b:ab:12:b4:6b: 4e:89:ff:e7:34:71:71:6b:d7:f8:7d:85:2a:6f:15: 37:0f:f5:b8:6d:4c:b1:87:3e:ae:27:30:48:e6:5c: 3a:d2:86:e2:80:2e:ae:06:13:59:d3:f5:e4:3a:f2: 29:ae:5f:c5:e9:55:e8:34:9b:57:80:52:14:58:df: ce:47:61:1c:27:f0:f6:53:93:94:99:d3:76:e5:b5: ef:96:03:e7:a1:56:b8:fe:ac:ca:3e:2d:58:f8:e0: d2:eb:34:0c:78:8a:e6:c2:31:76:b1:e3:34:61:08: 60:e8:3e:96:4f:5a:97:5d:33:c4:dc:ff:0f:92:da: b7:04:45:02:1c:1b:82:1a:84:a7:8c:12:33:d4:bb: bb:a7:38:f7:7c:de:f9:ee:d9:8a:e6:d1:e1:f5:b8: 4b:dc:d9:3c:3f:27:d7:d4:4e:a6:1e:a2:5f:76:a9: 01:97:5d:b9:f4:b5:82:01:e9:ed:3c:18:96:f4:5f: b2:90:29:70:dd:01:ee:b8:e4:df:50:ac:65:2c:33: 79:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:59:7B:66:B6:F0:E5:B9:76:59:37:F6:72:B2:62:6B:DF:CB:89:68 X509v3 Authority Key Identifier: keyid:0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e0:bf:41:6d:1f:b8:da:37:c9:b5:f8:cc:62:46:0f:a8:38: 56:c7:17:72:aa:e6:99:47:a5:21:23:c9:d6:2d:55:75:76:c1: e8:83:69:0e:c7:c0:43:ba:3c:68:ca:a3:07:05:04:02:1b:74: e6:ad:26:14:7b:d7:19:15:88:0a:02:ec:87:c4:af:d3:03:64: 1e:13:e5:80:b0:cf:fe:c5:ac:fa:5e:5b:63:15:af:13:59:ff: 0f:9d:e1:ea:7a:42:79:6a:c4:8b:fb:d9:bc:d1:ed:e5:49:ae: c3:90:db:b6:ba:3e:d6:79:e0:fb:6d:fc:8e:ea:9e:5a:5b:f1: 64:6b:23:27:b5:d3:f2:85:30:5c:c3:c8:3b:dc:89:61:92:b2: f8:3c:5c:cd:30:9e:cd:c9:51:a5:dd:64:24:44:43:54:fb:79: 4d:fb:d3:f3:16:74:18:af:a7:8e:dd:7d:e7:54:c0:0d:a4:fd: 1a:8c:ae:bb:78:07:07:68:36:f5:ec:91:db:9b:01:99:72:3d: ed:4c:47:33:a8:a4:ef:e7:e3:88:fa:28:c9:3d:dc:1f:f4:fa: ce:2c:28:d6:c7:01:49:ae:84:f3:76:6a:0c:c6:f7:ee:25:2b: 27:bc:d5:21:9d:48:3d:74:00:d2:90:19:cf:7a:cb:bd:c5:ce: 98:cc:c8:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8fsbA7l1y5T4mNMibRBMPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMmU0ZmQyMTlmNWI3N2NlODBjZGZhZjllM2E2NDQxZGVj NTAwNDIwHhcNMjUxMjIwMTYwMTM5WhcNMjUxMjIxMTYwMTM5WjAzMTEwLwYDVQQD EygwMDU5N2I2NmI2ZjBlNWI5NzY1OTM3ZjY3MmIyNjI2YmRmY2I4OTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjaYkMIE8CpGsnsUrbv3y8MLsmVd CPtjzczGS02OzctwXQTymvHyG80QeSsf4xumqEdkosxqW6sStGtOif/nNHFxa9f4 fYUqbxU3D/W4bUyxhz6uJzBI5lw60obigC6uBhNZ0/XkOvIprl/F6VXoNJtXgFIU WN/OR2EcJ/D2U5OUmdN25bXvlgPnoVa4/qzKPi1Y+ODS6zQMeIrmwjF2seM0YQhg 6D6WT1qXXTPE3P8Pktq3BEUCHBuCGoSnjBIz1Lu7pzj3fN757tmK5tHh9bhL3Nk8 PyfX1E6mHqJfdqkBl1259LWCAentPBiW9F+ykClw3QHuuOTfUKxlLDN5lwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFABZe2a28OW5dlk39nKyYmvfy4loMB8GA1UdIwQY MBaAFA4uT9IZ9bd86Azfr546ZEHexQBCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9lMTEyMjQtNjFjNy00Nzg2LTg2ZTkt MjM4ZmVlNjkyNDMwLzEvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS9lMTEyMjQtNjFjNy00Nzg2LTg2ZTktMjM4ZmVlNjkyNDMw LzEvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK+C/QW0f uNo3ybX4zGJGD6g4VscXcqrmmUelISPJ1i1VdXbB6INpDsfAQ7o8aMqjBwUEAht0 5q0mFHvXGRWICgLsh8Sv0wNkHhPlgLDP/sWs+l5bYxWvE1n/D53h6npCeWrEi/vZ vNHt5Umuw5Dbtro+1nng+238juqeWlvxZGsjJ7XT8oUwXMPIO9yJYZKy+DxczTCe zclRpd1kJERDVPt5TfvT8xZ0GK+njt1951TADaT9Goyuu3gHB2g29eyR25sBmXI9 7UxHM6ik7+fjiPooyT3cH/T6ziwo1scBSa6E83ZqDMb37iUrJ7zVIZ1IPXQA0pAZ z3rLvcXOmMzI/g== -----END CERTIFICATE-----Generated at Sun Dec 21 02:10:51 2025 by rpki-client