This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.mft File: i5epFTYKSH1c9dXGZeW_4f_1Np8.mft (raw, json) Hash identifier: ahCF48YpHSaCjjMgdYGhW9Utzm+X+G3TYwOtgI+Nzzc= Subject key identifier: 10:7A:C9:8A:3B:8D:E7:B4:09:34:E5:A7:E6:95:9B:FB:2A:12:C9:53 Authority key identifier: 8B:97:A9:15:36:0A:48:7D:5C:F5:D5:C6:65:E5:BF:E1:FF:F5:36:9F Certificate issuer: /CN=8b97a915360a487d5cf5d5c665e5bfe1fff5369f Certificate serial: 019AF12E1DA89591AF2ADEF9549712A0A9CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5epFTYKSH1c9dXGZeW_4f_1Np8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.mft Manifest number: 05FE Signing time: Sat 06 Dec 2025 01:02:02 +0000 Manifest this update: Sat 06 Dec 2025 01:02:02 +0000 Manifest next update: Sun 07 Dec 2025 01:02:02 +0000 Files and hashes: 1: i5epFTYKSH1c9dXGZeW_4f_1Np8.crl (hash: 6J/UdF6dWfdWnlfhqR1M8csmRk7q323MGJgbMbB5/qc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.mft rsync://rpki.ripe.net/repository/DEFAULT/i5epFTYKSH1c9dXGZeW_4f_1Np8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:1d:a8:95:91:af:2a:de:f9:54:97:12:a0:a9:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b97a915360a487d5cf5d5c665e5bfe1fff5369f Validity Not Before: Dec 6 01:02:02 2025 GMT Not After : Dec 7 01:02:02 2025 GMT Subject: CN=107ac98a3b8de7b40934e5a7e6959bfb2a12c953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6a:5e:42:8c:ab:ed:52:d8:3b:14:59:ac:3d: 52:78:02:e4:72:1c:ca:66:be:27:b2:7a:e4:41:fb: 44:e3:18:fa:09:28:c2:73:c8:fc:e9:ea:ca:2e:99: 87:6b:f8:e3:e2:7b:b5:3f:1c:73:d3:fc:24:f7:24: bb:d0:ae:35:01:ea:59:74:7a:8e:e3:f1:1d:18:14: d9:ce:37:f5:26:b1:6d:8a:77:bf:21:da:9b:34:9a: fe:d3:28:f2:de:0c:b6:bf:34:2d:40:2a:51:92:ee: 97:f6:f4:6b:74:93:a8:73:46:f2:19:44:99:ea:7e: c3:0c:ff:98:8b:7f:0e:32:1e:5d:cc:29:ae:33:b6: b4:83:e7:29:b2:88:21:48:9f:94:f6:91:81:e3:72: 55:cd:28:2a:3e:5f:56:70:8c:b3:a2:10:c3:4a:fc: 1c:20:a8:43:ce:e4:1d:e6:62:83:39:66:92:7b:c8: da:fc:f0:f3:4d:53:03:0a:ee:2e:c7:09:1d:7e:01: 96:af:76:3f:9d:0b:2d:58:d0:b0:a4:1b:7b:7e:71: 62:12:17:b5:52:48:29:94:60:26:aa:f1:fa:cb:39: d7:60:40:b8:ba:31:e7:e3:8e:7e:ec:7b:7f:04:9d: 90:2c:59:c3:f8:68:12:23:56:94:70:c9:ca:1c:5d: 51:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:7A:C9:8A:3B:8D:E7:B4:09:34:E5:A7:E6:95:9B:FB:2A:12:C9:53 X509v3 Authority Key Identifier: keyid:8B:97:A9:15:36:0A:48:7D:5C:F5:D5:C6:65:E5:BF:E1:FF:F5:36:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5epFTYKSH1c9dXGZeW_4f_1Np8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:d7:de:9d:8d:be:7c:aa:0b:83:98:16:37:26:d3:64:d6:c8: c7:03:3a:cd:ab:83:ff:ba:70:c9:3a:25:a4:82:0a:31:79:04: 90:71:fd:4e:1a:94:99:43:82:73:8e:f5:ef:b2:c7:05:34:aa: 2f:fa:76:46:27:6a:1a:f1:c8:80:26:7c:70:62:6b:b3:ed:73: 64:86:f2:eb:32:b6:20:cb:4e:a5:81:d8:70:fa:09:b9:c4:f0: eb:ab:81:60:63:8c:07:a0:a4:a7:df:13:9f:2f:34:8c:29:ea: d4:0a:c4:5d:ef:7b:20:fb:52:cc:c8:2e:04:0c:e5:3f:dd:f1: 61:19:5a:19:24:0d:05:90:15:89:5e:ee:83:73:d9:fc:8f:6f: 0d:da:65:30:42:ff:cd:58:0b:ca:d6:05:3f:27:5f:bb:7c:49: 41:b6:c9:d0:0c:5e:bd:7f:05:3d:57:79:cd:cb:0e:de:c8:13: d1:99:65:a4:64:e2:5c:b8:85:1b:0c:4c:5f:10:b5:3a:2e:63: 0d:44:ea:a2:ec:6a:cb:1c:3c:96:7f:e1:e1:10:24:62:1a:e3: 06:c1:ca:8b:b2:45:e0:13:c7:09:4f:4a:ea:ca:e4:a7:8a:b8: a5:47:7b:d2:19:1a:17:0e:2a:b1:e1:e5:9c:07:8e:4c:d4:44: 13:e7:ad:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLh2olZGvKt75VJcSoKnNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiOTdhOTE1MzYwYTQ4N2Q1Y2Y1ZDVjNjY1ZTViZmUxZmZm NTM2OWYwHhcNMjUxMjA2MDEwMjAyWhcNMjUxMjA3MDEwMjAyWjAzMTEwLwYDVQQD EygxMDdhYzk4YTNiOGRlN2I0MDkzNGU1YTdlNjk1OWJmYjJhMTJjOTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2peQoyr7VLYOxRZrD1SeALkchzK Zr4nsnrkQftE4xj6CSjCc8j86erKLpmHa/jj4nu1Pxxz0/wk9yS70K41AepZdHqO 4/EdGBTZzjf1JrFtine/IdqbNJr+0yjy3gy2vzQtQCpRku6X9vRrdJOoc0byGUSZ 6n7DDP+Yi38OMh5dzCmuM7a0g+cpsoghSJ+U9pGB43JVzSgqPl9WcIyzohDDSvwc IKhDzuQd5mKDOWaSe8ja/PDzTVMDCu4uxwkdfgGWr3Y/nQstWNCwpBt7fnFiEhe1 UkgplGAmqvH6yznXYEC4ujHn445+7Ht/BJ2QLFnD+GgSI1aUcMnKHF1R2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBB6yYo7jee0CTTlp+aVm/sqEslTMB8GA1UdIwQY MBaAFIuXqRU2Ckh9XPXVxmXlv+H/9TafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTVlcEZUWUtTSDFjOWRYR1plV180Zl8xTnA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy83ZDRhMjktMDIzZi00MmQ3LWFhYjct ZDg3YjM2MWFjZDg5LzEvaTVlcEZUWUtTSDFjOWRYR1plV180Zl8xTnA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy83ZDRhMjktMDIzZi00MmQ3LWFhYjctZDg3YjM2MWFjZDg5 LzEvaTVlcEZUWUtTSDFjOWRYR1plV180Zl8xTnA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZtfenY2+ fKoLg5gWNybTZNbIxwM6zauD/7pwyTolpIIKMXkEkHH9ThqUmUOCc47177LHBTSq L/p2RidqGvHIgCZ8cGJrs+1zZIby6zK2IMtOpYHYcPoJucTw66uBYGOMB6Ckp98T ny80jCnq1ArEXe97IPtSzMguBAzlP93xYRlaGSQNBZAViV7ug3PZ/I9vDdplMEL/ zVgLytYFPydfu3xJQbbJ0AxevX8FPVd5zcsO3sgT0ZllpGTiXLiFGwxMXxC1Oi5j DUTqouxqyxw8ln/h4RAkYhrjBsHKi7JF4BPHCU9K6srkp4q4pUd70hkaFw4qseHl nAeOTNREE+et9A== -----END CERTIFICATE-----Generated at Sat Dec 6 11:06:41 2025 by rpki-client