This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft File: dr5GHrn3AE8poX_d3-8uLqBeua8.mft (raw, json) Hash identifier: 6Vpwy+BUDHkIilmgy/+7wqxCkep1pI3vVP3IrpTZV4Q= Subject key identifier: 31:0D:86:F4:3F:F2:62:B8:6E:8C:13:9C:B6:D8:2D:1E:25:8D:2F:FA Authority key identifier: 76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF Certificate issuer: /CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af Certificate serial: 019AF23FF4117F61E6356F50048297B34CF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft Manifest number: 16F6 Signing time: Sat 06 Dec 2025 06:01:08 +0000 Manifest this update: Sat 06 Dec 2025 06:01:08 +0000 Manifest next update: Sun 07 Dec 2025 06:01:08 +0000 Files and hashes: 1: SmenFq2eO29wVInO8xQQnEozH4M.roa (hash: NLqfCsW+19ubwmofae6n/UEN1RfOh4ZI/s4/YAFk4k4=) 2: dr5GHrn3AE8poX_d3-8uLqBeua8.crl (hash: +QerBBQ0laAYuTlLYxU4GimDPWtDDd5U4+LUCV2GyN0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:f4:11:7f:61:e6:35:6f:50:04:82:97:b3:4c:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af Validity Not Before: Dec 6 06:01:08 2025 GMT Not After : Dec 7 06:01:08 2025 GMT Subject: CN=310d86f43ff262b86e8c139cb6d82d1e258d2ffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:73:8f:60:82:e8:e0:88:18:8f:d2:39:40:f0: 4d:9f:e9:f1:e2:08:56:2c:44:e0:41:66:5c:a9:c7: 3d:48:e5:da:59:a5:b7:6b:4c:3d:9f:6f:66:7c:ca: cb:37:43:1b:e9:46:5c:8a:03:3b:2d:21:a2:08:5b: 4e:8b:d8:bb:e1:f0:d6:36:39:3e:90:3d:18:5b:9c: f7:a6:56:a7:e0:25:b1:1a:6c:5b:cf:55:f8:61:f0: 06:83:43:f3:2c:6d:82:df:35:ff:6e:14:8f:a4:d6: 7b:7e:7c:b3:6f:fa:34:e3:32:bf:de:7c:ca:53:6c: 9b:a9:5b:81:ca:ec:7a:4c:61:6f:56:41:8e:66:7f: d3:c1:6a:f0:cd:a6:1d:f2:eb:48:ab:46:1a:19:95: 09:76:51:84:f0:d3:10:a0:c3:16:8b:6a:0c:f1:8f: 91:84:1a:8d:c6:9f:75:43:22:97:1f:12:d9:50:e7: ce:ce:08:21:dd:d7:12:35:f9:23:56:6f:27:12:9a: 02:0f:d3:14:fa:02:ab:e3:eb:70:ea:85:86:93:93: 59:88:44:c1:d7:0d:e7:02:7a:f7:76:9f:ee:46:f8: 36:d3:cf:c8:f9:75:e1:42:a8:5c:b1:0c:6f:fb:1c: e4:95:65:88:bd:f7:74:cf:c1:d2:7e:74:f1:c9:4b: 84:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0D:86:F4:3F:F2:62:B8:6E:8C:13:9C:B6:D8:2D:1E:25:8D:2F:FA X509v3 Authority Key Identifier: keyid:76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:72:2e:d3:5a:cf:bd:28:86:61:59:bd:82:fd:b2:dc:13:54: 30:cb:a2:ec:db:83:f7:74:e3:ce:7e:4d:ad:b2:00:10:99:48: ca:60:da:6a:3d:76:ce:bb:7b:b7:6d:80:53:62:40:94:57:54: 88:05:de:ca:0f:fa:10:99:6c:09:ff:df:39:76:a1:25:1c:2a: 70:23:85:ec:d7:6b:60:81:c3:a1:99:2b:98:ac:e5:3f:72:d7: b0:6e:50:33:2f:34:26:d9:fe:6a:a9:4a:fb:85:47:6a:bd:43: f7:69:8f:71:f0:74:95:22:47:94:ec:e6:d6:b6:23:7a:dd:9c: 95:66:81:06:96:dd:4d:d8:1f:c1:3d:9f:51:2e:f1:06:7f:f6: 20:77:e3:10:af:02:3f:81:72:c8:1c:3c:d3:6c:1c:83:5f:65: 32:4a:95:58:c3:66:4f:08:2f:25:22:23:96:ab:0d:71:58:32: 44:2d:af:ee:12:75:f1:a6:4a:d1:cc:f6:a1:2e:09:78:de:d8: 51:53:c8:72:b0:d9:28:e6:41:39:0d:14:52:ee:56:37:90:80: 2f:e0:78:51:0a:55:a2:5d:f2:fb:62:fa:fd:7b:9f:62:3f:51: 6e:be:3e:d5:64:45:d6:02:0a:53:eb:42:fa:28:4b:20:77:3f: 13:56:15:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP/QRf2HmNW9QBIKXs0z0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YmU0NjFlYjlmNzAwNGYyOWExN2ZkZGRmZWYyZTJlYTA1 ZWI5YWYwHhcNMjUxMjA2MDYwMTA4WhcNMjUxMjA3MDYwMTA4WjAzMTEwLwYDVQQD EygzMTBkODZmNDNmZjI2MmI4NmU4YzEzOWNiNmQ4MmQxZTI1OGQyZmZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXOPYILo4IgYj9I5QPBNn+nx4ghW LETgQWZcqcc9SOXaWaW3a0w9n29mfMrLN0Mb6UZcigM7LSGiCFtOi9i74fDWNjk+ kD0YW5z3plan4CWxGmxbz1X4YfAGg0PzLG2C3zX/bhSPpNZ7fnyzb/o04zK/3nzK U2ybqVuByux6TGFvVkGOZn/TwWrwzaYd8utIq0YaGZUJdlGE8NMQoMMWi2oM8Y+R hBqNxp91QyKXHxLZUOfOzggh3dcSNfkjVm8nEpoCD9MU+gKr4+tw6oWGk5NZiETB 1w3nAnr3dp/uRvg208/I+XXhQqhcsQxv+xzklWWIvfd0z8HSfnTxyUuEBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDENhvQ/8mK4bowTnLbYLR4ljS/6MB8GA1UdIwQY MBaAFHa+Rh659wBPKaF/3d/vLi6gXrmvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHI1R0hybjNBRThwb1hfZDMtOHVMcUJldWE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9jNjgwYmYtOWI2Yy00NGQzLTgzN2Yt ODhjZmEzZGNhNmRlLzEvZHI1R0hybjNBRThwb1hfZDMtOHVMcUJldWE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9jNjgwYmYtOWI2Yy00NGQzLTgzN2YtODhjZmEzZGNhNmRl LzEvZHI1R0hybjNBRThwb1hfZDMtOHVMcUJldWE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPXIu01rP vSiGYVm9gv2y3BNUMMui7NuD93Tjzn5NrbIAEJlIymDaaj12zrt7t22AU2JAlFdU iAXeyg/6EJlsCf/fOXahJRwqcCOF7NdrYIHDoZkrmKzlP3LXsG5QMy80Jtn+aqlK +4VHar1D92mPcfB0lSJHlOzm1rYjet2clWaBBpbdTdgfwT2fUS7xBn/2IHfjEK8C P4FyyBw802wcg19lMkqVWMNmTwgvJSIjlqsNcVgyRC2v7hJ18aZK0cz2oS4JeN7Y UVPIcrDZKOZBOQ0UUu5WN5CAL+B4UQpVol3y+2L6/XufYj9Rbr4+1WRF1gIKU+tC +ihLIHc/E1YVSA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:40:00 2025 by rpki-client