This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft File: 05SToXmX0x6NWqbMyaa9dX8VwDA.mft (raw, json) Hash identifier: 6GRvfTxYRGKTGHksO7qCXHS6o31bD444gi2A5XJVcM0= Subject key identifier: B2:95:AC:C3:36:68:05:2F:30:64:1D:15:E5:1F:E8:2D:55:34:B2:9A Authority key identifier: D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30 Certificate issuer: /CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030 Certificate serial: 019B330D2E2073066AA7E49C98801E369185 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft Manifest number: 1785 Signing time: Thu 18 Dec 2025 20:01:00 +0000 Manifest this update: Thu 18 Dec 2025 20:01:00 +0000 Manifest next update: Fri 19 Dec 2025 20:01:00 +0000 Files and hashes: 1: 05SToXmX0x6NWqbMyaa9dX8VwDA.crl (hash: UeAVLVHXiQx75XDo3QQM3uYSyCfZLsGAErzpo6HUdE8=) 2: q-MJPgpoCVNAGtgvIouNXgLENzk.roa (hash: BsC2KZYLnHn1uQcqBwkrRXQi/zA43li7q/QWJIEDjzs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:2e:20:73:06:6a:a7:e4:9c:98:80:1e:36:91:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030 Validity Not Before: Dec 18 20:01:00 2025 GMT Not After : Dec 19 20:01:00 2025 GMT Subject: CN=b295acc33668052f30641d15e51fe82d5534b29a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:69:7e:df:2d:d9:87:5c:89:fc:42:27:a5:36: 9a:09:f7:c2:88:8a:9e:47:19:49:92:43:84:a1:7a: 46:26:ae:3b:26:96:9c:c8:46:f4:49:20:81:ef:ef: 56:d3:48:08:a0:46:3a:eb:30:52:98:bb:27:d4:c0: cb:5d:2f:89:0a:8f:db:34:4b:75:63:a8:eb:04:0b: aa:02:dd:ba:b8:bd:08:77:30:7b:2b:8e:52:a4:8c: 2b:49:c9:ec:ec:6a:e3:6d:5d:34:ad:03:91:fa:de: 77:f6:e1:42:eb:30:b1:92:b1:f7:ff:10:7f:2d:b4: 0b:6b:5e:da:6b:8e:0a:0b:7d:eb:02:3d:b2:6c:f5: 7d:97:a1:23:a5:b1:7e:97:89:d2:9c:57:c2:c3:f3: 2b:42:4a:a4:ad:b8:44:12:ee:c8:aa:81:ad:68:ae: e1:55:05:9a:d4:ec:34:99:cd:cd:d9:b8:13:f1:3d: 2a:73:60:03:c7:d2:3f:db:de:42:8b:06:d2:bc:e0: 3d:d6:79:c0:d1:5c:21:ef:6c:d1:54:d0:e9:19:b8: 41:d9:2b:45:71:dd:d6:51:7d:95:c6:6c:b0:81:a5: d4:72:53:90:5c:d6:37:d4:7f:ff:50:59:ec:2e:b1: 8d:1a:75:d0:8c:60:2c:e1:eb:e5:7d:06:da:fb:c5: 93:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:95:AC:C3:36:68:05:2F:30:64:1D:15:E5:1F:E8:2D:55:34:B2:9A X509v3 Authority Key Identifier: keyid:D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:96:70:6a:7c:c2:1e:05:29:73:3b:ea:65:ca:3b:68:c0:14: d7:c9:e9:5b:db:b8:59:d2:85:8e:39:39:c6:34:de:59:61:75: 77:c5:51:e6:08:89:bf:e4:a5:de:6f:ff:66:fd:3e:02:8f:3b: ea:9f:bf:a2:83:2b:f9:42:3f:d4:d6:4b:70:f4:dd:57:6a:01: 1a:57:5b:d2:d7:26:2d:1b:93:8e:61:5d:1d:e2:e0:e6:03:51: 5c:63:a3:ed:45:d4:34:de:7b:7d:4c:8a:d3:13:65:85:c9:c8: 76:63:73:e2:56:59:97:8d:ff:99:83:a8:cd:4a:28:80:43:8d: c4:83:4c:d1:69:91:66:0c:19:d7:3e:bc:b3:b0:5f:24:b7:bf: 42:bc:82:41:8a:c3:3d:4c:a5:75:1f:5c:15:0f:11:03:56:05: 98:7b:d7:af:da:5d:57:15:f8:9f:7f:ac:b0:6b:e6:9f:21:5a: 75:eb:38:af:48:71:42:c9:11:fd:2e:de:d5:11:6a:a1:ae:22: 8a:f3:75:90:70:f4:b9:72:b6:1c:9e:c7:e0:75:52:89:6a:8f: 7d:24:f4:ff:a0:0e:b1:eb:98:5e:d3:f0:9e:e0:d2:61:4a:6c: c3:ee:98:88:0e:3b:55:82:7b:ac:fe:6c:76:0d:2b:4d:b8:04: ff:ae:ac:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDS4gcwZqp+ScmIAeNpGFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzOTQ5M2ExNzk5N2QzMWU4ZDVhYTZjY2M5YTZiZDc1N2Yx NWMwMzAwHhcNMjUxMjE4MjAwMTAwWhcNMjUxMjE5MjAwMTAwWjAzMTEwLwYDVQQD EyhiMjk1YWNjMzM2NjgwNTJmMzA2NDFkMTVlNTFmZTgyZDU1MzRiMjlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGl+3y3Zh1yJ/EInpTaaCffCiIqe RxlJkkOEoXpGJq47JpacyEb0SSCB7+9W00gIoEY66zBSmLsn1MDLXS+JCo/bNEt1 Y6jrBAuqAt26uL0IdzB7K45SpIwrScns7GrjbV00rQOR+t539uFC6zCxkrH3/xB/ LbQLa17aa44KC33rAj2ybPV9l6EjpbF+l4nSnFfCw/MrQkqkrbhEEu7IqoGtaK7h VQWa1Ow0mc3N2bgT8T0qc2ADx9I/295CiwbSvOA91nnA0Vwh72zRVNDpGbhB2StF cd3WUX2VxmywgaXUclOQXNY31H//UFnsLrGNGnXQjGAs4evlfQba+8WTAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLKVrMM2aAUvMGQdFeUf6C1VNLKaMB8GA1UdIwQY MBaAFNOUk6F5l9MejVqmzMmmvXV/FcAwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDVTVG9YbVgweDZOV3FiTXlhYTlkWDhWd0RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lODA0ZTQtN2YzMC00MDQ5LTk0OGIt OTc5MjMyOTdjZGE3LzEvMDVTVG9YbVgweDZOV3FiTXlhYTlkWDhWd0RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9lODA0ZTQtN2YzMC00MDQ5LTk0OGItOTc5MjMyOTdjZGE3 LzEvMDVTVG9YbVgweDZOV3FiTXlhYTlkWDhWd0RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArJZwanzC HgUpczvqZco7aMAU18npW9u4WdKFjjk5xjTeWWF1d8VR5giJv+Sl3m//Zv0+Ao87 6p+/ooMr+UI/1NZLcPTdV2oBGldb0tcmLRuTjmFdHeLg5gNRXGOj7UXUNN57fUyK 0xNlhcnIdmNz4lZZl43/mYOozUoogEONxINM0WmRZgwZ1z68s7BfJLe/QryCQYrD PUyldR9cFQ8RA1YFmHvXr9pdVxX4n3+ssGvmnyFades4r0hxQskR/S7e1RFqoa4i ivN1kHD0uXK2HJ7H4HVSiWqPfST0/6AOseuYXtPwnuDSYUpsw+6YiA47VYJ7rP5s dg0rTbgE/66sCg== -----END CERTIFICATE-----Generated at Fri Dec 19 05:44:13 2025 by rpki-client