This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft (raw, json) Hash identifier: ga6EMwHCFf+JtUD5f2fm1SNR7YaAAl5yVZtDNrBvOTk= Subject key identifier: 92:9C:BA:16:53:85:07:AC:27:90:D8:1D:EA:9A:65:92:A0:0F:64:ED Authority key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44 Certificate issuer: /CN=a7967d76c2d46720d4cfac0459fa3c3d22005044 Certificate serial: 019AF276EA22C1BF07D9B1B5EC31314955E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft Manifest number: 1469 Signing time: Sat 06 Dec 2025 07:01:10 +0000 Manifest this update: Sat 06 Dec 2025 07:01:10 +0000 Manifest next update: Sun 07 Dec 2025 07:01:10 +0000 Files and hashes: 1: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl (hash: P7TnDz2l35rPQGnS2aZ1Ip1c7qEdgtcqDWDZvP7Esvs=) 2: yBmdgjqKFjOC_LFP16Md73QPZaM.roa (hash: 7uCrDxR1l98wleRX/wBWwg1CUrRxAdBoi9KU5PuzGk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:ea:22:c1:bf:07:d9:b1:b5:ec:31:31:49:55:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044 Validity Not Before: Dec 6 07:01:10 2025 GMT Not After : Dec 7 07:01:10 2025 GMT Subject: CN=929cba16538507ac2790d81dea9a6592a00f64ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f2:9d:75:97:5c:77:52:0b:2c:2f:30:5a:25: 5d:67:5c:7c:a1:45:47:b4:82:41:f5:53:c3:c9:3c: ce:29:58:34:82:28:2c:36:8e:b6:a1:49:dc:dc:e6: 5d:2b:25:58:e8:f0:73:f6:2b:c7:e7:89:71:8e:c4: da:73:a9:11:e1:31:76:6d:18:35:b5:fd:6d:76:66: fa:f0:9f:54:0c:62:2b:9f:03:d4:c4:6f:cf:db:67: 0d:9b:59:96:89:20:bd:7b:13:da:3d:c6:75:b1:37: 1c:87:af:4e:e9:be:5c:35:21:a2:74:49:6f:46:d7: 0f:c5:1c:8c:45:de:b0:2b:a0:52:f9:30:38:f9:9d: fb:9e:0b:8c:3b:64:c4:f6:52:6d:cf:ae:bb:65:33: 52:3f:42:6c:82:4b:09:00:a5:34:41:74:99:e8:6d: c4:70:63:87:a6:5b:22:66:12:ed:16:ed:d7:01:b4: 1a:6d:21:fe:39:e3:db:8b:95:8e:e0:f5:bd:af:9b: 29:b4:54:ca:5d:b1:95:3e:66:8d:9d:3e:8f:68:ad: e2:fa:9f:fa:a0:24:1e:40:4c:4c:ab:55:33:95:50: 3a:f0:33:ef:de:db:42:8a:c8:82:b6:69:e3:38:1e: a5:3b:73:d1:01:e4:1a:f9:be:0c:14:77:8d:94:a4: 2e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:9C:BA:16:53:85:07:AC:27:90:D8:1D:EA:9A:65:92:A0:0F:64:ED X509v3 Authority Key Identifier: keyid:A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:5a:59:5e:be:20:6c:5a:ae:bb:f7:8b:57:76:ff:c2:4b:91: 49:0c:50:54:4c:e9:4c:27:9f:dc:1e:91:fb:da:2e:f5:dc:a5: 96:5a:95:cc:79:a6:1e:f9:3b:63:ea:13:71:cb:42:6d:22:2f: f8:5f:41:9a:83:94:8b:a5:6a:3b:9d:1f:6a:1f:13:06:6a:d7: c5:07:04:0c:66:2c:69:23:31:cf:e3:f1:b8:fe:ba:60:6d:c8: 57:b7:00:5c:e9:27:35:29:6e:12:9c:4d:d3:c7:74:b4:fe:63: ba:d3:61:fd:7f:39:af:9c:f3:2e:ea:4b:dd:3a:a6:b2:cf:e4: 02:02:d4:fd:64:3d:24:98:d2:20:5f:1e:29:1d:5d:09:c0:8b: ed:71:0b:46:b1:4b:40:7c:bf:50:c4:dc:2a:0f:ab:c5:a1:01: 9a:e5:01:1f:33:2d:08:23:96:f1:a9:eb:73:cf:30:f1:61:24: c3:1d:1f:24:46:de:99:60:ac:73:f9:af:0c:e4:a9:02:44:09: cf:4d:c3:db:ec:63:ca:66:9c:fe:ab:2d:73:09:60:06:ec:e3: 26:5b:69:46:0d:cc:5c:f2:5e:43:c4:4f:29:f9:30:a8:3d:bf: 0b:ac:49:11:bb:02:ca:08:7d:3a:a3:f0:97:fb:06:98:81:e6: bb:44:88:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryduoiwb8H2bG17DExSVXlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3OTY3ZDc2YzJkNDY3MjBkNGNmYWMwNDU5ZmEzYzNkMjIw MDUwNDQwHhcNMjUxMjA2MDcwMTEwWhcNMjUxMjA3MDcwMTEwWjAzMTEwLwYDVQQD Eyg5MjljYmExNjUzODUwN2FjMjc5MGQ4MWRlYTlhNjU5MmEwMGY2NGVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofKddZdcd1ILLC8wWiVdZ1x8oUVH tIJB9VPDyTzOKVg0gigsNo62oUnc3OZdKyVY6PBz9ivH54lxjsTac6kR4TF2bRg1 tf1tdmb68J9UDGIrnwPUxG/P22cNm1mWiSC9exPaPcZ1sTcch69O6b5cNSGidElv RtcPxRyMRd6wK6BS+TA4+Z37nguMO2TE9lJtz667ZTNSP0JsgksJAKU0QXSZ6G3E cGOHplsiZhLtFu3XAbQabSH+OePbi5WO4PW9r5sptFTKXbGVPmaNnT6PaK3i+p/6 oCQeQExMq1UzlVA68DPv3ttCisiCtmnjOB6lO3PRAeQa+b4MFHeNlKQukwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJKcuhZThQesJ5DYHeqaZZKgD2TtMB8GA1UdIwQY MBaAFKeWfXbC1Gcg1M+sBFn6PD0iAFBEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDVaOWRzTFVaeURVejZ3RVdmbzhQU0lBVUVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS84N2I3NjgtMTU0NS00OTRhLTg0Zjkt MWNmNTBhNTM2MDI2LzEvcDVaOWRzTFVaeURVejZ3RVdmbzhQU0lBVUVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS84N2I3NjgtMTU0NS00OTRhLTg0ZjktMWNmNTBhNTM2MDI2 LzEvcDVaOWRzTFVaeURVejZ3RVdmbzhQU0lBVUVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEFpZXr4g bFquu/eLV3b/wkuRSQxQVEzpTCef3B6R+9ou9dylllqVzHmmHvk7Y+oTcctCbSIv +F9BmoOUi6VqO50fah8TBmrXxQcEDGYsaSMxz+PxuP66YG3IV7cAXOknNSluEpxN 08d0tP5jutNh/X85r5zzLupL3Tqmss/kAgLU/WQ9JJjSIF8eKR1dCcCL7XELRrFL QHy/UMTcKg+rxaEBmuUBHzMtCCOW8anrc88w8WEkwx0fJEbemWCsc/mvDOSpAkQJ z03D2+xjymac/qstcwlgBuzjJltpRg3MXPJeQ8RPKfkwqD2/C6xJEbsCygh9OqPw l/sGmIHmu0SIcw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:14:10 2025 by rpki-client