This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft File: d53x3kOsymHuwDTOomi0ZUzBXKw.mft (raw, json) Hash identifier: q2vESgtGwgPksumFnNZc2bCaaLf/gWO6XoeLTVrzmoE= Subject key identifier: 5F:6D:2C:9B:E1:7F:C8:3B:FD:55:6F:4D:A3:AB:D2:B5:82:90:2E:43 Authority key identifier: 77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC Certificate issuer: /CN=779df1de43acca61eec034cea268b4654cc15cac Certificate serial: 019B2C66B4F61953F9370A55F99730EB29D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft Manifest number: 1781 Signing time: Wed 17 Dec 2025 13:01:27 +0000 Manifest this update: Wed 17 Dec 2025 13:01:27 +0000 Manifest next update: Thu 18 Dec 2025 13:01:27 +0000 Files and hashes: 1: 0vZUeITqxhjYTZ09-IZPJQyJrFs.roa (hash: XWy8JIsvHPb13TWVq0G62lkPYB9FumkdweR7BRskWwI=) 2: d53x3kOsymHuwDTOomi0ZUzBXKw.crl (hash: 60dwYXOExMrsAEXBKgsbmQVH7ICBsvmacPK/mzVPOT4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 13:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:66:b4:f6:19:53:f9:37:0a:55:f9:97:30:eb:29:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=779df1de43acca61eec034cea268b4654cc15cac Validity Not Before: Dec 17 13:01:27 2025 GMT Not After : Dec 18 13:01:27 2025 GMT Subject: CN=5f6d2c9be17fc83bfd556f4da3abd2b582902e43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:42:8c:61:cb:53:2c:a0:be:32:fb:46:7f:06: 38:c9:bc:41:59:fd:e9:40:0d:70:74:43:d5:52:94: e8:35:20:e2:b5:58:02:ba:e6:77:da:aa:63:09:62: 6f:78:ba:af:25:f4:ca:bc:38:ca:1b:d8:a6:1a:50: 6e:ce:32:9b:eb:65:67:b0:14:31:68:15:0c:4f:12: 54:61:57:6a:fe:28:ea:33:24:03:bf:2d:f8:59:6a: f7:b7:60:06:ef:05:2b:f7:d2:da:4e:50:15:61:55: 43:2c:66:23:56:a9:6e:16:ec:59:c2:57:4b:3d:75: 8a:3b:67:6b:43:1b:b5:ef:04:b1:f2:43:a5:83:77: a7:b5:67:60:85:7a:35:84:92:c5:22:0a:df:a6:41: 2b:f9:ce:9c:d2:2e:8b:95:55:b7:31:97:4b:9e:1e: 88:c1:26:6c:9e:c9:00:d4:f3:b1:3b:8d:af:6c:5c: 74:10:f8:60:1c:a9:6c:22:06:92:6a:88:14:4e:ff: 8a:63:85:0a:5e:37:8c:dc:05:ce:f8:43:7c:c6:77: 23:d6:63:e3:b1:f7:30:e1:6a:eb:43:3a:04:2d:77: 83:41:a8:ad:bb:7f:12:5c:c5:aa:4e:f4:df:14:d7: e9:f3:3f:80:92:6d:21:8c:aa:3f:13:fa:fe:0a:b8: da:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:6D:2C:9B:E1:7F:C8:3B:FD:55:6F:4D:A3:AB:D2:B5:82:90:2E:43 X509v3 Authority Key Identifier: keyid:77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:8a:f8:bc:ec:85:23:64:e7:9c:6b:89:63:2d:08:8e:de:65: 9d:43:21:22:3c:38:04:a6:35:44:ea:af:b5:f2:84:11:b9:06: 27:61:4e:5e:00:31:6e:df:07:09:04:c2:ea:55:17:be:5a:47: 73:9b:17:46:0b:01:54:a2:f8:0e:c8:eb:ff:82:e4:9e:c1:be: ae:bd:32:59:af:fa:e7:bd:0a:9e:54:43:fd:25:45:47:17:b1: c5:c4:f8:6a:cf:43:8f:a0:ac:1d:97:61:a6:6e:03:b0:d7:a0: d7:1b:89:e8:95:d2:ab:01:89:51:e4:be:7e:72:64:37:a4:c6: 38:79:a1:f5:78:37:cf:d4:1b:47:4e:78:a7:e8:c4:20:c1:90: 73:1b:86:43:19:35:bb:37:98:42:53:32:9b:7f:81:be:ec:7e: 58:2a:85:30:25:dd:b4:cc:73:57:12:5f:7e:fd:fa:57:7c:36: 4b:01:95:b7:41:ff:ef:a4:f1:76:d1:15:4e:09:58:8d:0a:d7: 68:d8:b3:67:36:25:ff:bc:3f:fc:a0:b1:94:89:e6:c6:b5:e9: 1a:57:b3:66:6f:17:25:5a:6d:92:b1:a8:40:93:a5:e5:2b:8e: 39:52:e6:c7:aa:6c:76:d2:ce:ba:35:c3:f4:ef:9d:4d:54:89: 46:81:ed:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZssZrT2GVP5NwpV+Zcw6ynRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3OWRmMWRlNDNhY2NhNjFlZWMwMzRjZWEyNjhiNDY1NGNj MTVjYWMwHhcNMjUxMjE3MTMwMTI3WhcNMjUxMjE4MTMwMTI3WjAzMTEwLwYDVQQD Eyg1ZjZkMmM5YmUxN2ZjODNiZmQ1NTZmNGRhM2FiZDJiNTgyOTAyZTQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAikKMYctTLKC+MvtGfwY4ybxBWf3p QA1wdEPVUpToNSDitVgCuuZ32qpjCWJveLqvJfTKvDjKG9imGlBuzjKb62VnsBQx aBUMTxJUYVdq/ijqMyQDvy34WWr3t2AG7wUr99LaTlAVYVVDLGYjVqluFuxZwldL PXWKO2drQxu17wSx8kOlg3entWdghXo1hJLFIgrfpkEr+c6c0i6LlVW3MZdLnh6I wSZsnskA1POxO42vbFx0EPhgHKlsIgaSaogUTv+KY4UKXjeM3AXO+EN8xncj1mPj sfcw4WrrQzoELXeDQaitu38SXMWqTvTfFNfp8z+Akm0hjKo/E/r+Crja2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF9tLJvhf8g7/VVvTaOr0rWCkC5DMB8GA1UdIwQY MBaAFHed8d5DrMph7sA0zqJotGVMwVysMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDUzeDNrT3N5bUh1d0RUT29taTBaVXpCWEt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8zYWY0OGEtMDYxNi00YzMyLWJiNDAt NGI5YWU0MWIzZDJmLzEvZDUzeDNrT3N5bUh1d0RUT29taTBaVXpCWEt3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS8zYWY0OGEtMDYxNi00YzMyLWJiNDAtNGI5YWU0MWIzZDJm LzEvZDUzeDNrT3N5bUh1d0RUT29taTBaVXpCWEt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHIr4vOyF I2TnnGuJYy0Ijt5lnUMhIjw4BKY1ROqvtfKEEbkGJ2FOXgAxbt8HCQTC6lUXvlpH c5sXRgsBVKL4Dsjr/4LknsG+rr0yWa/6570KnlRD/SVFRxexxcT4as9Dj6CsHZdh pm4DsNeg1xuJ6JXSqwGJUeS+fnJkN6TGOHmh9Xg3z9QbR054p+jEIMGQcxuGQxk1 uzeYQlMym3+Bvux+WCqFMCXdtMxzVxJffv36V3w2SwGVt0H/76TxdtEVTglYjQrX aNizZzYl/7w//KCxlInmxrXpGlezZm8XJVptkrGoQJOl5SuOOVLmx6psdtLOujXD 9O+dTVSJRoHtLQ== -----END CERTIFICATE-----Generated at Wed Dec 17 21:58:54 2025 by rpki-client