This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft File: 5e_Rhp7q_m-fA8s0GGibywxpE3A.mft (raw, json) Hash identifier: UT0Y0krRM2A8PzZK3KItTs+Ri7E8zHNrIiPpViVr8u4= Subject key identifier: C1:E6:62:4A:79:92:94:91:25:68:3E:83:27:E7:DC:CD:9A:76:76:46 Authority key identifier: E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70 Certificate issuer: /CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370 Certificate serial: 019AF31B4A0FC9A4D557FB3D95833F340D3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft Manifest number: 117D Signing time: Sat 06 Dec 2025 10:00:43 +0000 Manifest this update: Sat 06 Dec 2025 10:00:43 +0000 Manifest next update: Sun 07 Dec 2025 10:00:43 +0000 Files and hashes: 1: 5e_Rhp7q_m-fA8s0GGibywxpE3A.crl (hash: j8hfibRWqF/TuiLwyl6+N1jr6goSUJsVDgT7yEg9Nks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:4a:0f:c9:a4:d5:57:fb:3d:95:83:3f:34:0d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370 Validity Not Before: Dec 6 10:00:43 2025 GMT Not After : Dec 7 10:00:43 2025 GMT Subject: CN=c1e6624a7992949125683e8327e7dccd9a767646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:56:1a:81:8d:32:ba:96:b8:a6:d0:19:86:7b: 6a:48:93:29:61:70:8e:5a:0a:be:26:ba:8a:73:e8: 8e:05:f1:5e:ee:50:9d:ed:73:5d:98:8a:41:2c:ea: 44:cc:9e:b6:d7:7b:20:ba:4b:fe:18:a5:8e:06:69: 4c:23:3f:bf:f4:44:1b:68:d9:86:f9:b9:5e:6f:ce: 25:d0:73:e2:10:bb:c5:dc:65:db:74:3f:b7:4d:d1: 6d:1f:ee:0b:ae:6a:d6:75:e4:64:ca:e9:36:5a:b4: 00:86:49:33:1d:7b:68:03:4b:72:56:ac:79:77:91: ff:52:3c:5e:b6:c9:5f:3a:10:02:10:e0:4c:a5:09: 5a:40:46:e9:1d:86:c4:59:f5:38:2e:39:fa:01:68: bc:d7:4a:49:60:61:e9:06:45:98:a8:cc:51:49:d8: 23:d7:f9:6c:2e:bb:c8:9d:75:76:9a:8e:09:ee:b1: b8:ba:c3:13:0a:74:63:53:c3:f5:da:0b:3b:5e:3c: a8:0e:8c:9a:65:0f:7e:a6:c8:bb:bb:d0:a6:bf:28: f9:89:72:92:d2:82:e0:44:4b:87:6e:93:e3:12:0c: 06:09:6c:c2:58:8c:62:ab:f5:23:c5:ef:6c:a0:fb: 82:da:11:6f:72:27:8d:ce:7f:d5:db:d5:21:f8:b3: 2b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E6:62:4A:79:92:94:91:25:68:3E:83:27:E7:DC:CD:9A:76:76:46 X509v3 Authority Key Identifier: keyid:E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:3a:9a:1b:0b:2a:2b:ee:f7:38:91:3b:be:2c:49:6a:36:1f: da:ca:cb:e0:f6:ce:e3:83:04:6b:b3:fe:61:0f:02:01:2f:b2: ea:94:46:4a:a9:d8:ef:40:15:87:68:47:a2:fb:1c:4e:8e:ad: 4e:9d:8f:e9:d1:93:4a:1e:d9:d1:40:a5:28:6e:59:4b:62:9e: a6:84:39:7b:0b:8b:9d:53:9b:e1:fd:13:3b:d7:c2:c6:78:f0: 35:0e:78:77:59:65:dd:87:77:bd:2f:9c:0b:b2:9d:6e:8f:e9: f7:24:3f:1b:d7:d6:74:db:66:b6:43:42:31:2d:97:f9:67:0f: 88:f1:d8:f2:45:5c:a1:ab:68:9f:5d:dc:22:e8:95:b8:01:a6: eb:32:d2:f4:d6:d7:04:bf:5b:20:5c:f5:56:cf:48:95:26:91: 58:cf:64:ce:b1:3f:62:17:81:cb:6e:38:e1:93:ad:05:2e:92: bf:55:2e:69:43:bb:c3:9b:bd:08:a9:f8:47:25:fd:60:ab:0c: 9c:98:1f:06:45:d3:bb:ff:8f:30:e2:0f:6c:e1:4f:56:29:57: 63:58:d9:0d:b5:03:8f:bf:27:74:6a:15:c5:52:cc:23:61:ba: 4d:31:13:73:73:d7:57:a0:f4:72:38:30:59:5d:48:22:a3:30: ba:0b:87:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG0oPyaTVV/s9lYM/NA09MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZWZkMTg2OWVlYWZlNmY5ZjAzY2IzNDE4Njg5YmNiMGM2 OTEzNzAwHhcNMjUxMjA2MTAwMDQzWhcNMjUxMjA3MTAwMDQzWjAzMTEwLwYDVQQD EyhjMWU2NjI0YTc5OTI5NDkxMjU2ODNlODMyN2U3ZGNjZDlhNzY3NjQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFYagY0yupa4ptAZhntqSJMpYXCO Wgq+JrqKc+iOBfFe7lCd7XNdmIpBLOpEzJ6213sgukv+GKWOBmlMIz+/9EQbaNmG +bleb84l0HPiELvF3GXbdD+3TdFtH+4LrmrWdeRkyuk2WrQAhkkzHXtoA0tyVqx5 d5H/UjxetslfOhACEOBMpQlaQEbpHYbEWfU4Ljn6AWi810pJYGHpBkWYqMxRSdgj 1/lsLrvInXV2mo4J7rG4usMTCnRjU8P12gs7XjyoDoyaZQ9+psi7u9Cmvyj5iXKS 0oLgREuHbpPjEgwGCWzCWIxiq/Ujxe9soPuC2hFvcieNzn/V29Uh+LMrLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMHmYkp5kpSRJWg+gyfn3M2adnZGMB8GA1UdIwQY MBaAFOXv0Yae6v5vnwPLNBhom8sMaRNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWVfUmhwN3FfbS1mQThzMEdHaWJ5d3hwRTNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9iNDdiZGEtNjViNi00YTQyLTk5MGYt MDI0OTM1ZGRiOGM2LzEvNWVfUmhwN3FfbS1mQThzMEdHaWJ5d3hwRTNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9iNDdiZGEtNjViNi00YTQyLTk5MGYtMDI0OTM1ZGRiOGM2 LzEvNWVfUmhwN3FfbS1mQThzMEdHaWJ5d3hwRTNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAITqaGwsq K+73OJE7vixJajYf2srL4PbO44MEa7P+YQ8CAS+y6pRGSqnY70AVh2hHovscTo6t Tp2P6dGTSh7Z0UClKG5ZS2KepoQ5ewuLnVOb4f0TO9fCxnjwNQ54d1ll3Yd3vS+c C7Kdbo/p9yQ/G9fWdNtmtkNCMS2X+WcPiPHY8kVcoaton13cIuiVuAGm6zLS9NbX BL9bIFz1Vs9IlSaRWM9kzrE/YheBy2444ZOtBS6Sv1UuaUO7w5u9CKn4RyX9YKsM nJgfBkXTu/+PMOIPbOFPVilXY1jZDbUDj78ndGoVxVLMI2G6TTETc3PXV6D0cjgw WV1IIqMwuguH2g== -----END CERTIFICATE-----Generated at Sat Dec 6 13:37:06 2025 by rpki-client