This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json) Hash identifier: ouXok08ZFF7XaFY2N625VKmXGTJdCy6+T9z0h9SrxqQ= Subject key identifier: 27:0B:60:2E:59:CD:3A:21:13:84:34:EB:50:20:24:91:FD:D5:12:E6 Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc Certificate serial: 019AF50B3DF2C123CA3DD6212304441BD3BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft Manifest number: 0580 Signing time: Sat 06 Dec 2025 19:02:25 +0000 Manifest this update: Sat 06 Dec 2025 19:02:25 +0000 Manifest next update: Sun 07 Dec 2025 19:02:25 +0000 Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: +9Vda0bueIchn29FxjanaYUA+8Ux7AMOn7D5Y/YrGDw=) 2: ynJSD2xc-CykfYa79BP9jQj40kM.roa (hash: fMb/laTqYN39Vwte4hGLXjRHIufJPIqxfdcZimxGcGk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:3d:f2:c1:23:ca:3d:d6:21:23:04:44:1b:d3:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc Validity Not Before: Dec 6 19:02:25 2025 GMT Not After : Dec 7 19:02:25 2025 GMT Subject: CN=270b602e59cd3a21138434eb50202491fdd512e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8b:18:36:f5:1c:b8:35:44:46:44:33:a1:d3: 00:fc:0c:50:8d:54:62:fa:13:4b:5d:15:09:0c:a8: 92:5c:54:e2:90:47:93:39:ba:bd:7d:4e:1e:dd:29: fc:af:60:7f:f7:9f:e3:2b:db:cc:fe:ea:1f:e4:7a: 14:a0:55:03:37:78:b1:bf:72:88:30:ac:6b:aa:1b: b6:e0:e9:d6:5a:8a:45:58:4f:27:67:11:7e:76:f5: 1e:55:78:c4:b2:62:35:b8:35:3b:24:76:9c:59:63: ed:61:d4:bc:b7:95:75:3a:e0:c9:fa:6a:38:7c:02: c0:76:67:ad:18:23:d5:e9:7e:21:16:ae:52:53:8d: 47:4a:98:be:19:2a:a8:24:bb:5e:f1:aa:5f:ff:e7: 82:26:ad:21:c6:da:b7:49:64:b2:47:d6:c7:ff:4e: 28:d4:5b:55:8d:bb:df:9a:f9:9d:ea:f6:45:b9:db: 0f:82:c8:51:75:72:c8:31:56:d3:eb:e7:7f:50:ab: 11:0f:f7:51:04:5b:38:5f:2e:ea:42:09:5b:94:1b: 61:5e:5d:19:a4:2c:46:8b:c4:9e:6b:85:d6:35:79: 04:f6:f9:ed:a6:01:0d:86:27:6d:06:fe:1e:6a:cd: ea:22:e8:67:77:e1:5c:26:86:d0:fb:3d:f1:e9:e7: d4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:0B:60:2E:59:CD:3A:21:13:84:34:EB:50:20:24:91:FD:D5:12:E6 X509v3 Authority Key Identifier: keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:c8:58:1b:13:21:c8:1d:15:a8:30:d2:db:21:ec:03:a9:6c: 4e:64:63:c9:a7:3d:3e:1c:aa:79:26:8e:92:3f:ea:68:76:9b: bf:4b:9e:8c:7f:0f:56:56:de:54:c1:bb:54:fc:a9:74:d3:1c: 83:ab:7f:8e:9d:81:1f:ac:cc:9e:15:ce:e3:da:d1:56:05:a6: 21:2d:f5:ac:b9:86:17:82:8e:39:85:c6:c4:1f:63:3e:57:7a: fd:3f:08:14:d2:c9:3c:cf:13:6c:19:c5:54:2e:ef:89:5d:c2: 12:43:24:9b:05:a9:c9:08:91:9c:dc:63:ac:dd:e2:1c:60:21: dd:42:61:56:af:16:12:da:e3:5b:d3:1e:2d:bd:c1:fb:62:74: 84:2d:e8:96:b9:bb:65:60:32:dd:a1:23:f7:b0:45:30:25:de: ea:35:77:45:4a:51:10:8a:87:09:79:47:2b:e0:5e:40:a9:73: f6:ce:55:de:be:dd:fd:ea:bf:55:01:36:70:0d:0c:59:7b:bd: 51:6d:72:a9:b3:bd:f3:22:c2:ad:06:7e:40:0a:20:bb:6c:f6: 68:02:16:df:97:f4:2c:55:b8:5a:a4:99:91:31:42:bc:45:31: 0a:2f:79:14:77:45:56:fb:41:a9:d5:4d:1e:60:5e:8d:01:fd: 0f:7f:9f:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Cz3ywSPKPdYhIwREG9O/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NzM5ZjA4NDQyZTIyNDQ2NjIxYjg5YTU3NjM5YjM1NDJi YTM0ZGMwHhcNMjUxMjA2MTkwMjI1WhcNMjUxMjA3MTkwMjI1WjAzMTEwLwYDVQQD EygyNzBiNjAyZTU5Y2QzYTIxMTM4NDM0ZWI1MDIwMjQ5MWZkZDUxMmU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzosYNvUcuDVERkQzodMA/AxQjVRi +hNLXRUJDKiSXFTikEeTObq9fU4e3Sn8r2B/95/jK9vM/uof5HoUoFUDN3ixv3KI MKxrqhu24OnWWopFWE8nZxF+dvUeVXjEsmI1uDU7JHacWWPtYdS8t5V1OuDJ+mo4 fALAdmetGCPV6X4hFq5SU41HSpi+GSqoJLte8apf/+eCJq0hxtq3SWSyR9bH/04o 1FtVjbvfmvmd6vZFudsPgshRdXLIMVbT6+d/UKsRD/dRBFs4Xy7qQglblBthXl0Z pCxGi8Sea4XWNXkE9vntpgENhidtBv4eas3qIuhnd+FcJobQ+z3x6efUcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCcLYC5ZzTohE4Q061AgJJH91RLmMB8GA1UdIwQY MBaAFOdznwhELiJEZiG4mldjmzVCujTcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTNPZkNFUXVJa1JtSWJpYVYyT2JOVUs2Tk53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9lMjBkNTktNDQ1NC00ZWM4LTk2Nzct NWYyYmYyMmUxODlkLzEvNTNPZkNFUXVJa1JtSWJpYVYyT2JOVUs2Tk53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9lMjBkNTktNDQ1NC00ZWM4LTk2NzctNWYyYmYyMmUxODlk LzEvNTNPZkNFUXVJa1JtSWJpYVYyT2JOVUs2Tk53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL8hYGxMh yB0VqDDS2yHsA6lsTmRjyac9PhyqeSaOkj/qaHabv0uejH8PVlbeVMG7VPypdNMc g6t/jp2BH6zMnhXO49rRVgWmIS31rLmGF4KOOYXGxB9jPld6/T8IFNLJPM8TbBnF VC7viV3CEkMkmwWpyQiRnNxjrN3iHGAh3UJhVq8WEtrjW9MeLb3B+2J0hC3olrm7 ZWAy3aEj97BFMCXe6jV3RUpREIqHCXlHK+BeQKlz9s5V3r7d/eq/VQE2cA0MWXu9 UW1yqbO98yLCrQZ+QAogu2z2aAIW35f0LFW4WqSZkTFCvEUxCi95FHdFVvtBqdVN HmBejQH9D3+fww== -----END CERTIFICATE-----Generated at Sat Dec 6 21:01:54 2025 by rpki-client