This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json) Hash identifier: +5mJO/j2VVoO9lIIjp55QrD6+KTmm7Hn0BH/xic8JRU= Subject key identifier: 57:80:19:68:18:FA:8A:A3:36:09:F1:47:36:10:89:94:E8:BD:E8:A5 Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce Certificate serial: 019AF1D266E6E926AC9375C39EC71A56975C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 04:01:29 +0000 Manifest this update: Sat 06 Dec 2025 04:01:29 +0000 Manifest next update: Sun 07 Dec 2025 04:01:29 +0000 Files and hashes: 1: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: ZcNI2OfX4ClDZet4odn7nEVVCbHoYgj6PysUM0Zw9g0=) 2: 5JInjtJs-s2-yK_dBCuc4HDNHSk.roa (hash: JUxQOg0RzN7jHCpHsSZf+phi3+AooD9Ty47K9VLPoKw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:66:e6:e9:26:ac:93:75:c3:9e:c7:1a:56:97:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce Validity Not Before: Dec 6 04:01:29 2025 GMT Not After : Dec 7 04:01:29 2025 GMT Subject: CN=5780196818fa8aa33609f14736108994e8bde8a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7b:27:8f:f9:2e:5f:06:96:fd:ab:bd:8b:b5: c8:d2:73:2f:76:a1:94:a9:6b:f4:aa:ae:5a:94:c9: 7a:e7:3a:9e:89:d3:f9:2e:c8:8f:2a:fd:a8:73:32: 5e:a1:2d:ec:eb:a6:74:9b:c1:db:8b:88:7f:47:70: fc:c5:e0:09:a6:af:68:dc:18:63:42:f9:9c:02:25: ff:ad:f2:8f:8b:fa:71:a6:d5:c9:d1:15:4f:f3:a7: 69:a5:c1:ec:80:46:b2:1b:b7:10:aa:a0:bf:57:04: 58:02:b2:33:34:23:69:52:5d:7e:00:32:74:bb:1e: 12:9b:31:25:72:92:1d:86:66:2a:2d:70:e8:1b:e5: de:f5:f8:65:65:30:f4:02:a0:59:e8:40:88:7d:4d: 65:3a:e8:31:f8:aa:bc:21:ab:b3:3f:af:d2:34:79: fd:87:30:bd:66:df:88:62:70:9c:b7:b8:c9:2f:54: 16:34:d8:b0:57:4c:e7:ca:59:19:f6:1c:37:d9:00: 1b:79:85:84:95:ef:92:9b:82:17:16:2e:18:04:6f: 6f:68:46:a5:b1:cf:6d:11:84:f6:cd:b8:f8:b6:26: ed:80:50:da:74:31:3f:a8:93:f5:f7:01:66:c5:69: aa:87:2c:0d:59:82:38:77:43:8d:ee:5b:f4:63:9b: 7a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:80:19:68:18:FA:8A:A3:36:09:F1:47:36:10:89:94:E8:BD:E8:A5 X509v3 Authority Key Identifier: keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:92:af:3a:09:f8:51:ae:88:7e:91:72:81:fe:38:74:c8:71: e1:19:9b:b3:fd:e9:43:93:00:66:ac:96:ba:64:5e:ce:da:58: ca:4d:86:62:c6:00:52:6e:40:b6:83:98:e9:cd:bc:a6:84:b5: 84:54:7b:36:87:20:45:8e:2f:f9:0f:5c:0b:5f:b7:b7:f0:16: af:9e:e8:e4:95:da:ab:13:e1:dd:4d:b7:dd:d6:bb:e4:5b:c3: 36:2f:2c:a0:ea:9b:76:e0:fd:07:93:41:84:76:6e:02:30:33: f9:93:e4:cb:fc:38:b1:fd:33:4e:21:91:d1:60:eb:38:02:30: cc:00:5a:02:4f:5c:a8:27:99:28:85:02:84:32:b7:a7:eb:46: f0:ba:59:b7:58:e6:21:36:46:ee:8f:b1:d4:b2:d8:cd:12:84: 53:8c:30:86:a5:ce:7d:d4:e1:22:84:53:f2:e5:de:f4:a8:66: fc:63:13:85:e6:ba:bf:80:16:50:50:d2:c2:f0:6a:28:9d:69: 35:87:38:43:99:1a:14:3a:2e:b2:b1:fc:ec:5d:95:32:c7:c5: 9e:78:60:b7:03:a3:3c:60:6f:f7:07:de:2f:32:39:ba:62:b2: 27:45:91:15:33:ee:d4:12:ab:d0:7d:f5:0d:b9:e4:ac:6e:a2: ed:80:21:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0mbm6Sask3XDnscaVpdcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyYWU1ZTMzODc5NGU2MGQ1ZDhiNTIzYmRiMmI2OGVjNGFj NzYyY2UwHhcNMjUxMjA2MDQwMTI5WhcNMjUxMjA3MDQwMTI5WjAzMTEwLwYDVQQD Eyg1NzgwMTk2ODE4ZmE4YWEzMzYwOWYxNDczNjEwODk5NGU4YmRlOGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXsnj/kuXwaW/au9i7XI0nMvdqGU qWv0qq5alMl65zqeidP5LsiPKv2oczJeoS3s66Z0m8Hbi4h/R3D8xeAJpq9o3Bhj QvmcAiX/rfKPi/pxptXJ0RVP86dppcHsgEayG7cQqqC/VwRYArIzNCNpUl1+ADJ0 ux4SmzElcpIdhmYqLXDoG+Xe9fhlZTD0AqBZ6ECIfU1lOugx+Kq8IauzP6/SNHn9 hzC9Zt+IYnCct7jJL1QWNNiwV0znylkZ9hw32QAbeYWEle+Sm4IXFi4YBG9vaEal sc9tEYT2zbj4tibtgFDadDE/qJP19wFmxWmqhywNWYI4d0ON7lv0Y5t6bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFeAGWgY+oqjNgnxRzYQiZToveilMB8GA1UdIwQY MBaAFNKuXjOHlOYNXYtSO9sraOxKx2LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYt OGQ4ZTllYTE0MzI1LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYtOGQ4ZTllYTE0MzI1 LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX5KvOgn4 Ua6IfpFygf44dMhx4Rmbs/3pQ5MAZqyWumReztpYyk2GYsYAUm5AtoOY6c28poS1 hFR7NocgRY4v+Q9cC1+3t/AWr57o5JXaqxPh3U233da75FvDNi8soOqbduD9B5NB hHZuAjAz+ZPky/w4sf0zTiGR0WDrOAIwzABaAk9cqCeZKIUChDK3p+tG8LpZt1jm ITZG7o+x1LLYzRKEU4wwhqXOfdThIoRT8uXe9Khm/GMThea6v4AWUFDSwvBqKJ1p NYc4Q5kaFDousrH87F2VMsfFnnhgtwOjPGBv9wfeLzI5umKyJ0WRFTPu1BKr0H31 DbnkrG6i7YAhjg== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:25 2025 by rpki-client