This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft File: 5LDTY6ChegaEUahRRc5PpGTX-hs.mft (raw, json) Hash identifier: GekD0rEyeBuzNvCwmwvV6rJEKTEJ1z/ljuegdlbW4oY= Subject key identifier: 30:7E:82:DA:F5:25:05:FC:3A:A7:AE:E7:7A:65:79:FE:C2:B2:3C:63 Authority key identifier: E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B Certificate issuer: /CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b Certificate serial: 019AF12E28EE3B8D1E7BAA9FAF9D74CBF095 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft Manifest number: 1092 Signing time: Sat 06 Dec 2025 01:02:05 +0000 Manifest this update: Sat 06 Dec 2025 01:02:05 +0000 Manifest next update: Sun 07 Dec 2025 01:02:05 +0000 Files and hashes: 1: 5LDTY6ChegaEUahRRc5PpGTX-hs.crl (hash: J7QelVstnYmZTBtrEuL40KQ7C9zfag9nXTuRcPolG98=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:28:ee:3b:8d:1e:7b:aa:9f:af:9d:74:cb:f0:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b Validity Not Before: Dec 6 01:02:05 2025 GMT Not After : Dec 7 01:02:05 2025 GMT Subject: CN=307e82daf52505fc3aa7aee77a6579fec2b23c63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:79:df:22:01:21:5a:60:77:ed:34:ed:27:cf: cc:7f:aa:17:26:fa:97:af:df:32:54:28:be:ba:64: ad:1d:f8:6c:dc:27:05:9f:e0:a3:a0:ce:20:11:d8: 9d:4e:dd:dc:65:d5:e6:92:ca:db:a5:c0:d2:e3:5e: a0:43:80:63:18:1d:fc:61:17:66:61:04:30:d1:02: 4f:bc:8e:c3:93:93:12:7d:be:06:61:86:5c:74:2a: 84:f7:01:8e:4f:b2:eb:3a:32:a0:f2:b2:2d:e3:f8: 5a:d9:e9:0c:c5:cc:d0:37:6c:2f:a3:4f:cc:03:42: 6c:ef:b8:a9:2a:e7:de:05:52:c8:89:31:88:86:35: f4:1e:15:b3:0b:30:4d:5c:3f:32:c1:cb:ff:bd:05: 2f:b4:26:9b:80:d5:e6:bf:90:bb:b4:ea:84:c6:40: 1b:f7:41:9a:2c:40:5c:2e:0e:47:0f:73:48:48:84: d3:57:c9:2e:b0:ed:c1:16:08:f0:50:0b:d3:5a:0a: 90:8d:96:c5:12:2f:53:d8:b4:8e:22:75:be:52:aa: 09:9a:59:c7:fe:9b:f5:f1:4c:df:c7:cb:ca:da:de: cb:9e:a3:5b:99:42:82:6f:18:43:bf:1c:43:ba:47: e9:16:99:ed:5b:32:96:54:1e:39:50:19:81:d7:b0: 3b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7E:82:DA:F5:25:05:FC:3A:A7:AE:E7:7A:65:79:FE:C2:B2:3C:63 X509v3 Authority Key Identifier: keyid:E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:9f:b0:27:73:92:58:26:ce:06:e8:a3:12:4c:35:24:1a:5e: 42:6b:c5:b1:ab:72:f5:7b:cc:54:f8:2a:c1:db:ec:ca:ed:7f: d8:94:48:35:fe:09:46:80:f4:91:20:c2:80:21:6b:66:2d:12: 85:ba:b9:f3:66:c9:66:b2:8a:0a:89:1c:88:27:68:9c:8d:42: 90:ae:82:62:b0:56:4b:f7:55:11:f1:cd:b8:a4:40:bc:55:d3: ee:38:5d:61:0b:ce:c9:4b:2e:b9:84:62:65:9e:b6:d9:ce:08: 39:c7:47:f9:5b:62:80:d0:ff:86:a5:6d:3d:24:fa:d3:4e:2a: a2:e4:50:eb:36:9a:29:76:cd:5c:72:38:4e:c2:09:78:6e:15: 35:e1:a4:da:24:04:99:e4:36:0e:02:32:a5:b2:5a:02:89:74: 61:39:f6:28:5d:92:3e:6a:dd:9e:87:9f:bc:da:c2:df:a6:6e: df:0b:cd:7b:10:04:23:cf:fb:83:31:12:cf:49:53:a1:4f:11: ab:df:1e:27:78:70:83:aa:4e:87:1c:76:2e:ac:d5:d4:a5:25: a4:2d:98:58:3f:12:da:88:52:7e:c0:b4:65:a3:da:24:a0:68: c1:cf:6b:0a:b9:cc:8f:a5:3d:0e:cd:09:e5:c2:e2:d8:d4:95: 99:6b:fb:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLijuO40ee6qfr510y/CVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0YjBkMzYzYTBhMTdhMDY4NDUxYTg1MTQ1Y2U0ZmE0NjRk N2ZhMWIwHhcNMjUxMjA2MDEwMjA1WhcNMjUxMjA3MDEwMjA1WjAzMTEwLwYDVQQD EygzMDdlODJkYWY1MjUwNWZjM2FhN2FlZTc3YTY1NzlmZWMyYjIzYzYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HnfIgEhWmB37TTtJ8/Mf6oXJvqX r98yVCi+umStHfhs3CcFn+CjoM4gEdidTt3cZdXmksrbpcDS416gQ4BjGB38YRdm YQQw0QJPvI7Dk5MSfb4GYYZcdCqE9wGOT7LrOjKg8rIt4/ha2ekMxczQN2wvo0/M A0Js77ipKufeBVLIiTGIhjX0HhWzCzBNXD8ywcv/vQUvtCabgNXmv5C7tOqExkAb 90GaLEBcLg5HD3NISITTV8kusO3BFgjwUAvTWgqQjZbFEi9T2LSOInW+UqoJmlnH /pv18Uzfx8vK2t7LnqNbmUKCbxhDvxxDukfpFpntWzKWVB45UBmB17A7NwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDB+gtr1JQX8Oqeu53plef7CsjxjMB8GA1UdIwQY MBaAFOSw02OgoXoGhFGoUUXOT6Rk1/obMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS80NzUzZDMtYTFlOS00ZmQ1LWFlZmUt N2M3ZDhhNzhhOTYzLzEvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS80NzUzZDMtYTFlOS00ZmQ1LWFlZmUtN2M3ZDhhNzhhOTYz LzEvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN5+wJ3OS WCbOBuijEkw1JBpeQmvFsaty9XvMVPgqwdvsyu1/2JRINf4JRoD0kSDCgCFrZi0S hbq582bJZrKKCokciCdonI1CkK6CYrBWS/dVEfHNuKRAvFXT7jhdYQvOyUsuuYRi ZZ622c4IOcdH+VtigND/hqVtPST6004qouRQ6zaaKXbNXHI4TsIJeG4VNeGk2iQE meQ2DgIypbJaAol0YTn2KF2SPmrdnoefvNrC36Zu3wvNexAEI8/7gzESz0lToU8R q98eJ3hwg6pOhxx2LqzV1KUlpC2YWD8S2ohSfsC0ZaPaJKBowc9rCrnMj6U9Ds0J 5cLi2NSVmWv7qw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:46 2025 by rpki-client