This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft File: mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft (raw, json) Hash identifier: 8LCtPLG9BC4Wy65G+NyEX4IJ3alUhXuDPshODLE7FK4= Subject key identifier: E3:12:2E:CA:9F:26:C0:5D:66:B3:50:85:66:1A:8D:E3:14:69:E7:0C Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58 Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658 Certificate serial: 019AF5097FAD6F705BC0B40D95186BB15D1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft Manifest number: 15EB Signing time: Sat 06 Dec 2025 19:00:31 +0000 Manifest this update: Sat 06 Dec 2025 19:00:31 +0000 Manifest next update: Sun 07 Dec 2025 19:00:31 +0000 Files and hashes: 1: dUzHcv1qzeux_y2IL7xdvYNLLOQ.roa (hash: nSNOUC9fK3tMm0ddVALi9dbfVwMcfIB34jQG6rm/2t0=) 2: mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl (hash: 1NBTDRVh1vN1/4m5Ip1cja6slRWQpo0CqisAsgAX5+M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:7f:ad:6f:70:5b:c0:b4:0d:95:18:6b:b1:5d:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658 Validity Not Before: Dec 6 19:00:31 2025 GMT Not After : Dec 7 19:00:31 2025 GMT Subject: CN=e3122eca9f26c05d66b35085661a8de31469e70c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:da:5f:7d:56:a4:2f:51:d0:84:23:90:72:21: 2a:29:69:b4:98:8a:7a:59:cb:b5:df:f1:63:bc:43: fb:35:4a:66:88:c3:70:33:9c:b2:89:2e:47:c8:98: e4:5f:d5:2b:c8:66:74:db:3e:37:7b:15:d7:37:4b: 03:2d:23:37:07:c2:33:6d:5e:cb:f8:f0:ea:ea:f3: 43:62:3e:d8:4a:0c:33:e0:29:d7:50:d1:01:3b:42: b4:38:67:45:cd:4f:29:01:f3:d1:c8:31:81:25:80: 9f:ba:06:23:f2:76:fd:13:06:0b:22:87:df:ef:30: da:47:2d:70:e9:c1:6a:8c:a8:62:88:8f:58:21:99: e6:5d:06:19:87:bc:f5:19:27:7f:92:7b:62:56:46: 94:29:f1:30:cf:a4:a7:f2:ec:0d:6e:a8:70:9a:53: db:86:4b:c1:fc:a6:55:c7:38:b9:eb:69:87:9a:e4: 5a:d0:a5:d4:3c:fb:29:70:78:2a:00:e4:cb:8f:55: 29:bc:61:b5:5e:8b:30:b1:a5:28:d7:1c:4a:16:1d: f9:02:b2:c3:36:af:70:89:5b:c2:da:e7:9b:1c:33: 0f:47:89:e1:67:2c:66:53:9a:5b:63:b6:23:bd:72: 26:73:66:16:3b:6f:da:c5:61:8d:ac:11:4a:5c:90: 1a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:12:2E:CA:9F:26:C0:5D:66:B3:50:85:66:1A:8D:E3:14:69:E7:0C X509v3 Authority Key Identifier: keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:6a:17:e6:9d:23:e0:a3:a1:bc:9f:d0:c2:2d:d8:05:57:e2: 7e:83:20:5b:72:5f:5a:95:83:70:c6:0d:c9:e9:c0:4b:20:59: 20:07:f9:73:ec:a4:49:65:2b:b2:40:ee:50:8c:e4:8b:f1:ac: b3:37:d5:ce:b8:62:b4:f5:10:4b:03:fe:41:77:a0:31:aa:bc: 8b:aa:09:55:04:db:14:28:1c:d2:ce:89:fb:49:e9:b9:a2:51: 34:77:52:dc:86:f7:69:c7:d9:2c:72:ce:15:20:84:ad:ff:1b: cf:f4:f8:f0:28:18:fc:76:1b:95:67:f3:f8:2f:5c:d7:f8:11: ac:c4:85:14:44:a2:7b:fb:5a:e0:9e:79:3b:65:28:5b:c3:a6: 6f:d0:c0:d9:bb:c7:c1:2d:1c:87:b5:80:62:e5:77:bd:6c:ac: 57:07:e8:4f:27:30:68:91:b7:0a:0c:38:90:83:4e:0c:e4:20: 5f:35:c0:6e:3e:6a:45:1c:15:1f:98:3c:17:f5:8f:c1:24:d1: fc:69:7a:00:00:9e:70:ae:2f:53:b8:f9:0a:43:6d:48:c0:87: 7f:e2:0d:14:fc:ae:68:5a:d7:03:2d:94:e7:80:38:9f:ae:d5: cc:05:2c:8a:3c:8f:be:25:4b:af:7c:cd:ca:74:fc:68:c2:d2: 03:cb:a7:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CX+tb3BbwLQNlRhrsV0fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5MWI1NDIyY2Q1NTc4ZDQ3MTVlYmU0YzUwOTcyMDI1MjNk ZDU2NTgwHhcNMjUxMjA2MTkwMDMxWhcNMjUxMjA3MTkwMDMxWjAzMTEwLwYDVQQD EyhlMzEyMmVjYTlmMjZjMDVkNjZiMzUwODU2NjFhOGRlMzE0NjllNzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdpffVakL1HQhCOQciEqKWm0mIp6 Wcu13/FjvEP7NUpmiMNwM5yyiS5HyJjkX9UryGZ02z43exXXN0sDLSM3B8IzbV7L +PDq6vNDYj7YSgwz4CnXUNEBO0K0OGdFzU8pAfPRyDGBJYCfugYj8nb9EwYLIoff 7zDaRy1w6cFqjKhiiI9YIZnmXQYZh7z1GSd/kntiVkaUKfEwz6Sn8uwNbqhwmlPb hkvB/KZVxzi562mHmuRa0KXUPPspcHgqAOTLj1UpvGG1XoswsaUo1xxKFh35ArLD Nq9wiVvC2uebHDMPR4nhZyxmU5pbY7YjvXImc2YWO2/axWGNrBFKXJAaHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOMSLsqfJsBdZrNQhWYajeMUaecMMB8GA1UdIwQY MBaAFJkbVCLNVXjUcV6+TFCXICUj3VZYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy81ODExYzAtNmRhZS00ZGQ0LTk4N2Mt ZDQ2ZmZjNTAxZjM2LzEvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy81ODExYzAtNmRhZS00ZGQ0LTk4N2MtZDQ2ZmZjNTAxZjM2 LzEvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAImoX5p0j 4KOhvJ/Qwi3YBVfifoMgW3JfWpWDcMYNyenASyBZIAf5c+ykSWUrskDuUIzki/Gs szfVzrhitPUQSwP+QXegMaq8i6oJVQTbFCgc0s6J+0npuaJRNHdS3Ib3acfZLHLO FSCErf8bz/T48CgY/HYblWfz+C9c1/gRrMSFFESie/ta4J55O2UoW8Omb9DA2bvH wS0ch7WAYuV3vWysVwfoTycwaJG3Cgw4kINODOQgXzXAbj5qRRwVH5g8F/WPwSTR /Gl6AACecK4vU7j5CkNtSMCHf+INFPyuaFrXAy2U54A4n67VzAUsijyPviVLr3zN ynT8aMLSA8unYQ== -----END CERTIFICATE-----Generated at Sun Dec 7 04:52:33 2025 by rpki-client