This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: wFyEvMY7ldjCo+CK8bbKZ8FelWSzJr/QfBEyvhBbMho= Subject key identifier: A5:C1:A2:4C:B6:71:05:C7:CD:81:4A:55:C8:2D:C0:21:57:8D:74:BD Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019AF31B30A98BD64BA73998B9ECB5EDFEA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 124F Signing time: Sat 06 Dec 2025 10:00:36 +0000 Manifest this update: Sat 06 Dec 2025 10:00:36 +0000 Manifest next update: Sun 07 Dec 2025 10:00:36 +0000 Files and hashes: 1: 1-i_ESwYWDKjvxe-cLQFb33q5Qu0.roa (hash: MWN71QN/v297mIABIQi0BIqexEx6vQv3LxWHulQ1lh0=) 2: 3uMGCa1hGu4z3o3-_G7z4ipL-iU.roa (hash: W9UTR4UDUFmqfh0USMFmsobpW7zQlT5fd2b07I+b238=) 3: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: PXW0R3KETgkEew94EvrzsdIXa72+pI73WtZkRxR8OOY=) 4: 53Cd6ksm6jJ9RlO5imUtuWj1rJA.roa (hash: cQll3lCbJxJtoxzsBZdQMm8ZJ1gmBBCp3yO2flYfKKU=) 5: 5aybWk2Ky5dF88Dl5BHsEFM1SO0.roa (hash: H+JwBN0SZWGViTYdzpWvA1lltG+ihuV8ot5mKPyc2Ag=) 6: D51k8Yufzem8ogKjVaG-BE3-N9Q.roa (hash: LfZnqpQQPapIc1GbVrcmd90U2aDXCgwED1y7JLo14nI=) 7: EEzCfGegHPEpdqTqvMRMlcFre1Y.roa (hash: uwoju1vAFdOs3H0Q+w/qT7aEQBJpMP98DiaXonyIQ9M=) 8: EQAhdlSS1FIFJlau-mazb3tbQD8.roa (hash: EYIWh35VYrIjFevk0wSjam09x/CTgAsspbJddnJMeDU=) 9: PLzlfTmqAL1rzlLN1TFrpHpYMVU.roa (hash: INujx6I3LZF9XIVr4zE9W5J6NHU6IlkfUKgf+j8aJrU=) 10: QCPaGZ8bi2Da50RQ4k8ya1w0dq4.roa (hash: UeTuehE3XWxqnHJAwNv7xL7hPz4xW2vyEJKj+BsbTow=) 11: aAu5S5IbLCTcHF2sjNSq_YvIkRs.roa (hash: Ofs8Vq4O2KmWTmDnq5aKJmZojKw/IVecQ8WTuC45ixk=) 12: fjY_g_wwgFPVt57q0tJYGzzoSDw.roa (hash: qq4Ldl54/taiWut/8vwq9PH71gezdeLMf1VMPmsHUe8=) 13: nOw141dLNmkj2u2FTqG2Wvc-gVM.roa (hash: CQnQRUA/+q6ZVbEZKZtps04sWUzpVEunbxRhthCLZIQ=) 14: pw1_qD5J6o76enPdGNTr_4Viub8.roa (hash: L6pLEncIISYEMGBKzu7DbyUXVYEOgT4kfh4modTEATA=) 15: qigZWtFurHaD054OcaOqq49am_w.roa (hash: Sa19eTl0ldE9k7oxfeYcou5g3EZnF3X8bF0Hbur3zdE=) 16: tRNXUlx68rKP9UOE-hhExB1kws8.roa (hash: +Hd3tIKng2pbogIxn1dcX/j1LNU33NvuDwSbS4tdpEA=) 17: ve2cUb4I36o88cUncaHeOHK5tGk.roa (hash: 6gTupRG97QR/JQvN8ay2tdbOI4Q3EMkpnACGQxjxniI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:30:a9:8b:d6:4b:a7:39:98:b9:ec:b5:ed:fe:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Dec 6 10:00:36 2025 GMT Not After : Dec 7 10:00:36 2025 GMT Subject: CN=a5c1a24cb67105c7cd814a55c82dc021578d74bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ac:d9:16:5e:97:66:60:df:b1:7c:75:31:aa: f0:21:b7:cd:45:4a:b9:c9:7c:86:fb:e8:43:5f:74: 95:97:b2:69:a2:f3:8e:ff:a6:e8:df:e6:eb:5f:aa: ad:9b:cf:80:4a:34:a1:9e:8b:b8:6d:c9:cc:c6:83: ed:aa:d1:5a:7a:3c:06:c7:01:78:78:00:44:75:c8: 88:02:06:ed:97:f5:26:fd:d9:7c:8a:f6:1c:f6:37: c0:ac:2f:92:a6:79:0c:37:26:ec:74:16:b4:54:8d: d0:fa:14:44:9d:ff:8f:00:a8:5b:01:d8:b8:4b:ae: 14:05:af:50:81:99:7f:06:a2:73:93:f7:54:07:ea: 2c:f9:5b:5e:67:db:95:9c:2e:d5:a7:06:f5:da:59: af:c5:5c:a9:50:6c:26:21:95:42:95:c4:32:f2:19: 93:a2:64:af:8a:b7:9b:59:2e:1d:8a:4d:22:54:70: 87:92:f1:3a:24:8a:b6:f1:49:e4:69:f3:47:c1:af: 08:4c:d1:f5:68:a7:33:73:e8:fe:1e:f3:2a:d7:dd: 6b:27:6a:39:69:92:6b:55:bc:ba:64:3e:17:6c:1a: ec:81:50:36:d9:7b:3b:03:26:6a:93:5d:00:03:01: 4a:96:86:d4:17:48:03:0e:60:1d:07:95:49:8e:3d: 55:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C1:A2:4C:B6:71:05:C7:CD:81:4A:55:C8:2D:C0:21:57:8D:74:BD X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:77:cc:8f:84:47:6c:7d:17:b5:18:8a:93:04:2f:8d:c9:c9: 33:dd:c6:20:aa:56:6e:ad:a9:c2:12:f6:3e:0b:8d:48:72:25: 23:2d:0a:91:70:dd:a9:a9:58:2c:ab:0a:65:10:8c:e5:7b:95: 14:e4:a0:c4:10:61:10:b2:2e:f9:8c:d5:93:fb:be:e9:80:19: 8a:34:1c:ca:35:2f:fd:71:e0:9a:09:39:cd:ff:53:de:57:4f: 03:0f:92:5e:b0:41:10:73:bf:9a:9b:e6:0b:70:0b:a6:eb:32: b8:34:32:6d:34:b4:7e:b6:8c:db:59:fa:d5:70:fa:59:af:f2: 89:04:b9:f8:55:e4:fe:a7:75:d0:ca:6b:b9:11:04:f9:37:c0: 63:42:35:d5:2f:83:7d:d9:6d:6a:46:8f:43:cd:0a:36:ed:6a: ff:43:13:9a:f4:6a:5a:8a:0b:0f:34:33:34:76:1a:cc:f4:a7: 75:ac:67:22:ba:38:2b:07:ae:da:6f:0f:02:6f:88:dc:f1:24: 22:0a:03:bf:93:de:01:7c:1c:8f:89:96:80:af:f6:50:6d:39: 4a:8c:5e:c4:0f:30:39:43:5d:1d:4a:5e:7c:7e:d6:60:51:66: 4e:54:8e:49:55:eb:23:1b:a7:1e:6e:48:56:e9:61:91:08:48: b2:ed:ed:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzGzCpi9ZLpzmYuey17f6hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjUxMjA2MTAwMDM2WhcNMjUxMjA3MTAwMDM2WjAzMTEwLwYDVQQD EyhhNWMxYTI0Y2I2NzEwNWM3Y2Q4MTRhNTVjODJkYzAyMTU3OGQ3NGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApazZFl6XZmDfsXx1MarwIbfNRUq5 yXyG++hDX3SVl7JpovOO/6bo3+brX6qtm8+ASjShnou4bcnMxoPtqtFaejwGxwF4 eABEdciIAgbtl/Um/dl8ivYc9jfArC+SpnkMNybsdBa0VI3Q+hREnf+PAKhbAdi4 S64UBa9QgZl/BqJzk/dUB+os+VteZ9uVnC7Vpwb12lmvxVypUGwmIZVClcQy8hmT omSvirebWS4dik0iVHCHkvE6JIq28UnkafNHwa8ITNH1aKczc+j+HvMq191rJ2o5 aZJrVby6ZD4XbBrsgVA22Xs7AyZqk10AAwFKlobUF0gDDmAdB5VJjj1VNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKXBoky2cQXHzYFKVcgtwCFXjXS9MB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfnfMj4RH bH0XtRiKkwQvjcnJM93GIKpWbq2pwhL2PguNSHIlIy0KkXDdqalYLKsKZRCM5XuV FOSgxBBhELIu+YzVk/u+6YAZijQcyjUv/XHgmgk5zf9T3ldPAw+SXrBBEHO/mpvm C3ALpusyuDQybTS0fraM21n61XD6Wa/yiQS5+FXk/qd10MpruREE+TfAY0I11S+D fdltakaPQ80KNu1q/0MTmvRqWooLDzQzNHYazPSndaxnIro4Kweu2m8PAm+I3PEk IgoDv5PeAXwcj4mWgK/2UG05SoxexA8wOUNdHUpefH7WYFFmTlSOSVXrIxunHm5I VulhkQhIsu3tWQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:38:54 2025 by rpki-client