This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft File: 25Kd7FwPI63Zuu7qe7OayHpykIM.mft (raw, json) Hash identifier: Ajx0cp5HMrKv2kTa+sYWAk9cyBfhBBGi5z1jzxJnVyA= Subject key identifier: B5:48:B9:AD:AA:EC:6A:D1:1F:43:65:42:C0:EE:11:AB:83:5D:53:3B Authority key identifier: DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83 Certificate issuer: /CN=db929dec5c0f23add9baeeea7bb39ac87a729083 Certificate serial: 019AF12E456D6224141375456C9DEC0764B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft Manifest number: 1765 Signing time: Sat 06 Dec 2025 01:02:12 +0000 Manifest this update: Sat 06 Dec 2025 01:02:12 +0000 Manifest next update: Sun 07 Dec 2025 01:02:12 +0000 Files and hashes: 1: 25Kd7FwPI63Zuu7qe7OayHpykIM.crl (hash: 2EgxOXFzJ4QwghdaHGxeBLyyohBfWGyJZ9Ykjkcg3nQ=) 2: N4n5sfqwVKR0MtRKu60VkuVT8t8.roa (hash: 7oA83Z9SKqiyh1q+LTyv1yKzsMJNh3uvhrwtOfQSMtU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:45:6d:62:24:14:13:75:45:6c:9d:ec:07:64:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db929dec5c0f23add9baeeea7bb39ac87a729083 Validity Not Before: Dec 6 01:02:12 2025 GMT Not After : Dec 7 01:02:12 2025 GMT Subject: CN=b548b9adaaec6ad11f436542c0ee11ab835d533b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:f0:3f:8e:bd:09:46:f8:45:d2:ba:7e:a2:d7: 29:54:59:f4:88:45:5d:40:40:31:bd:11:c3:fd:ff: 83:3e:a2:a1:c8:dc:c1:6d:b4:4c:c1:63:b8:f4:6b: 24:b5:76:2f:26:d4:27:ee:93:e3:fd:28:ae:37:dd: cc:6f:31:38:2c:6f:c1:46:8d:46:f9:01:47:69:e3: db:03:89:91:7a:de:11:9e:3a:94:00:84:c6:4a:1e: 2f:09:62:d9:52:81:7b:9e:6e:26:7d:7a:02:a8:f7: 90:55:71:a7:2b:d9:7a:a1:07:d7:ca:d6:c7:3c:8e: 54:f3:58:0c:6a:92:c5:14:2d:a1:d4:78:0b:46:12: cf:cc:e6:51:4e:e7:51:2a:9e:fd:9e:fb:0a:f1:87: e3:18:74:1e:43:dc:0e:e4:ad:1a:11:ec:b5:c1:f7: c9:3a:ec:20:a4:62:28:fb:48:57:10:38:ce:ce:74: 02:d2:2b:75:70:f3:da:bd:f1:cb:0c:57:cf:23:43: d8:23:6a:50:06:a4:93:b3:5a:0c:9d:cb:62:01:93: 06:57:ed:4c:fd:54:1a:ff:63:65:ce:08:a8:61:39: ae:2d:2b:90:10:a6:53:93:d7:23:56:28:90:e9:40: a5:d4:f6:3e:3d:13:91:41:cc:e6:ad:3a:37:66:95: 85:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:48:B9:AD:AA:EC:6A:D1:1F:43:65:42:C0:EE:11:AB:83:5D:53:3B X509v3 Authority Key Identifier: keyid:DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:52:de:24:e0:07:fc:7e:f8:95:d5:e5:38:1c:4d:d8:28:da: c7:bd:c8:67:9b:33:ba:0b:8d:cf:b7:dc:18:0f:f6:b6:b0:c4: 18:e8:e1:54:29:1f:82:b7:23:25:01:82:74:60:4b:22:3e:41: c5:35:b8:00:4b:41:8b:26:f5:15:b8:ec:6f:6a:39:93:02:39: 0a:4c:68:ee:51:a7:df:69:60:bd:49:ce:c0:27:19:8d:d7:19: dd:83:c9:4a:41:1c:fd:2c:f1:fb:ee:89:c9:66:6c:c0:be:05: 54:f7:be:f5:80:08:39:ef:cd:e4:25:b0:77:99:b7:88:83:0d: 46:7f:bc:30:4c:6b:68:01:86:2f:21:69:e1:e6:cb:92:2e:de: 50:60:d2:5c:fe:29:31:7e:50:e6:79:d0:54:be:48:6d:d4:b8: 58:7e:a7:27:67:4b:49:2f:4f:8a:86:c2:16:b6:19:68:2a:1e: d0:95:c3:fd:a9:c1:fc:2b:64:be:2e:7a:45:b3:c2:28:fb:b3: 58:81:9f:81:de:86:9f:29:cb:38:b9:ff:44:5a:88:a2:73:2f: 3f:6b:9d:a2:73:ec:2a:c5:5a:aa:b9:a0:36:76:ec:ca:69:17: 11:6b:b4:b8:18:39:89:f3:59:14:ba:41:c1:c2:4b:5c:5a:a1: 7b:49:4d:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLkVtYiQUE3VFbJ3sB2S3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiOTI5ZGVjNWMwZjIzYWRkOWJhZWVlYTdiYjM5YWM4N2E3 MjkwODMwHhcNMjUxMjA2MDEwMjEyWhcNMjUxMjA3MDEwMjEyWjAzMTEwLwYDVQQD EyhiNTQ4YjlhZGFhZWM2YWQxMWY0MzY1NDJjMGVlMTFhYjgzNWQ1MzNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkPA/jr0JRvhF0rp+otcpVFn0iEVd QEAxvRHD/f+DPqKhyNzBbbRMwWO49GsktXYvJtQn7pPj/SiuN93MbzE4LG/BRo1G +QFHaePbA4mRet4RnjqUAITGSh4vCWLZUoF7nm4mfXoCqPeQVXGnK9l6oQfXytbH PI5U81gMapLFFC2h1HgLRhLPzOZRTudRKp79nvsK8YfjGHQeQ9wO5K0aEey1wffJ OuwgpGIo+0hXEDjOznQC0it1cPPavfHLDFfPI0PYI2pQBqSTs1oMnctiAZMGV+1M /VQa/2NlzgioYTmuLSuQEKZTk9cjViiQ6UCl1PY+PRORQczmrTo3ZpWF+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLVIua2q7GrRH0NlQsDuEauDXVM7MB8GA1UdIwQY MBaAFNuSnexcDyOt2bru6nuzmsh6cpCDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjVLZDdGd1BJNjNadXU3cWU3T2F5SHB5a0lNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9iZTVmZmYtYzkxMS00NTdjLTk1ZmMt ZDMwYjdlMjVhZTBiLzEvMjVLZDdGd1BJNjNadXU3cWU3T2F5SHB5a0lNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My9iZTVmZmYtYzkxMS00NTdjLTk1ZmMtZDMwYjdlMjVhZTBi LzEvMjVLZDdGd1BJNjNadXU3cWU3T2F5SHB5a0lNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAllLeJOAH /H74ldXlOBxN2Cjax73IZ5szuguNz7fcGA/2trDEGOjhVCkfgrcjJQGCdGBLIj5B xTW4AEtBiyb1Fbjsb2o5kwI5Ckxo7lGn32lgvUnOwCcZjdcZ3YPJSkEc/Szx++6J yWZswL4FVPe+9YAIOe/N5CWwd5m3iIMNRn+8MExraAGGLyFp4ebLki7eUGDSXP4p MX5Q5nnQVL5IbdS4WH6nJ2dLSS9PiobCFrYZaCoe0JXD/anB/Ctkvi56RbPCKPuz WIGfgd6GnynLOLn/RFqIonMvP2udonPsKsVaqrmgNnbsymkXEWu0uBg5ifNZFLpB wcJLXFqhe0lN3A== -----END CERTIFICATE-----Generated at Sat Dec 6 11:06:29 2025 by rpki-client