This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft File: f5kYyrbx817xteWDyyg56bdIsVg.mft (raw, json) Hash identifier: 7F78pnFb6G2jAxHu/AzfiycvlWHijYTxyuKqPLJshy8= Subject key identifier: 75:61:14:13:30:73:80:30:4D:2D:68:E1:DC:26:0B:AE:1E:1F:17:42 Authority key identifier: 7F:99:18:CA:B6:F1:F3:5E:F1:B5:E5:83:CB:28:39:E9:B7:48:B1:58 Certificate issuer: /CN=7f9918cab6f1f35ef1b5e583cb2839e9b748b158 Certificate serial: 019AF12D9D488CC3E911E3B508A09B80B6F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft Manifest number: 1435 Signing time: Sat 06 Dec 2025 01:01:29 +0000 Manifest this update: Sat 06 Dec 2025 01:01:29 +0000 Manifest next update: Sun 07 Dec 2025 01:01:29 +0000 Files and hashes: 1: f5kYyrbx817xteWDyyg56bdIsVg.crl (hash: Xnu/qk8zF7hE9X5CDIhoRwnSYY8Gcs52wI5IiULU/9U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.crl rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:9d:48:8c:c3:e9:11:e3:b5:08:a0:9b:80:b6:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f9918cab6f1f35ef1b5e583cb2839e9b748b158 Validity Not Before: Dec 6 01:01:29 2025 GMT Not After : Dec 7 01:01:29 2025 GMT Subject: CN=75611413307380304d2d68e1dc260bae1e1f1742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:44:c2:ca:67:0f:e5:18:b7:29:8e:17:b8:81: ba:81:7b:f7:43:0c:68:cb:aa:ab:c1:a5:e9:5e:15: 16:b2:3a:6e:25:6b:b5:71:cd:aa:9b:43:7b:b7:84: 7b:74:89:40:d1:b6:b2:2e:b8:2f:66:68:4f:e9:d8: 8d:57:ad:c1:f1:1b:3f:ec:00:53:59:b1:ef:85:22: d1:57:eb:49:ab:24:c4:68:a0:0d:b1:85:1b:0e:b5: b1:14:80:12:08:7c:eb:e0:1e:e3:c0:89:ea:de:ed: 5b:99:0e:85:15:26:99:62:89:11:2b:66:bc:5c:61: a5:c1:ec:d5:30:2f:52:f9:37:71:02:ef:53:9c:83: 7f:af:39:b4:c5:6b:63:9d:f0:cc:1c:34:c6:05:86: 95:e7:e5:09:d1:b9:ee:58:36:db:b3:5a:e9:7d:f0: 0c:a7:4a:09:47:35:6a:60:0d:f0:3c:e2:74:ea:8d: b0:e0:8b:93:6a:1b:80:d6:c2:90:c9:2f:29:fa:eb: 36:50:6d:0d:1c:45:26:a5:c9:2d:26:d0:95:e9:15: cc:58:69:ce:f6:e7:3b:bd:02:11:2b:94:a1:11:57: 0c:1c:61:38:5e:d6:4a:c5:22:07:37:2d:80:cc:3a: 66:38:27:48:ea:28:be:a3:dc:4a:1b:a4:4a:cc:7a: 10:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:61:14:13:30:73:80:30:4D:2D:68:E1:DC:26:0B:AE:1E:1F:17:42 X509v3 Authority Key Identifier: keyid:7F:99:18:CA:B6:F1:F3:5E:F1:B5:E5:83:CB:28:39:E9:B7:48:B1:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ed:d2:e8:32:95:79:ea:68:63:c4:1f:3f:46:d9:15:87:a1: ac:62:18:23:cb:44:18:c3:1f:82:a7:0e:aa:b4:34:b4:6c:63: f9:b4:a8:11:8b:47:ff:9b:75:79:5b:3d:b1:49:cb:60:5a:38: fb:a1:4d:c0:c8:f1:6a:0d:23:e5:72:d7:b6:90:f8:1a:8b:af: bf:d2:6a:6a:7d:55:20:50:a9:b2:03:69:8d:32:6f:93:95:54: 93:10:40:74:39:f0:3b:37:8c:d4:91:33:8b:2f:54:1a:89:a3: 90:93:48:7d:26:0e:de:af:17:1a:59:80:e2:13:e9:9e:6a:2c: ca:3f:66:5e:6a:97:c4:d8:d9:b0:1c:c4:6d:49:5b:31:27:ec: e9:ee:b7:96:0e:91:ac:b8:a8:9f:51:5b:93:cd:05:ac:36:82: eb:04:25:7d:3c:43:96:9a:4c:6e:60:82:6a:ad:07:b4:ff:33: 3e:30:b9:fb:83:a1:e5:67:aa:4f:0e:e1:80:a5:db:3d:57:d6: 48:f2:be:eb:a1:1d:43:8d:79:73:d7:c2:8d:dc:4c:bd:82:9f: d3:04:ce:db:3f:a3:3f:0e:d8:43:e9:fb:74:8d:79:a5:88:df: e5:a9:d3:f8:cc:46:e2:fb:e5:9f:8f:7f:ce:ce:dc:30:18:3f: 8b:7a:79:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLZ1IjMPpEeO1CKCbgLb2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmOTkxOGNhYjZmMWYzNWVmMWI1ZTU4M2NiMjgzOWU5Yjc0 OGIxNTgwHhcNMjUxMjA2MDEwMTI5WhcNMjUxMjA3MDEwMTI5WjAzMTEwLwYDVQQD Eyg3NTYxMTQxMzMwNzM4MDMwNGQyZDY4ZTFkYzI2MGJhZTFlMWYxNzQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0TCymcP5Ri3KY4XuIG6gXv3Qwxo y6qrwaXpXhUWsjpuJWu1cc2qm0N7t4R7dIlA0bayLrgvZmhP6diNV63B8Rs/7ABT WbHvhSLRV+tJqyTEaKANsYUbDrWxFIASCHzr4B7jwInq3u1bmQ6FFSaZYokRK2a8 XGGlwezVMC9S+TdxAu9TnIN/rzm0xWtjnfDMHDTGBYaV5+UJ0bnuWDbbs1rpffAM p0oJRzVqYA3wPOJ06o2w4IuTahuA1sKQyS8p+us2UG0NHEUmpcktJtCV6RXMWGnO 9uc7vQIRK5ShEVcMHGE4XtZKxSIHNy2AzDpmOCdI6ii+o9xKG6RKzHoQDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHVhFBMwc4AwTS1o4dwmC64eHxdCMB8GA1UdIwQY MBaAFH+ZGMq28fNe8bXlg8soOem3SLFYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZjVrWXlyYng4MTd4dGVXRHl5ZzU2YmRJc1ZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9kZjgyZmEtMTE4ZC00MjE5LWJhMTYt MWE5NjgzYzlkNmNiLzEvZjVrWXlyYng4MTd4dGVXRHl5ZzU2YmRJc1ZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9kZjgyZmEtMTE4ZC00MjE5LWJhMTYtMWE5NjgzYzlkNmNi LzEvZjVrWXlyYng4MTd4dGVXRHl5ZzU2YmRJc1ZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW+3S6DKV eepoY8QfP0bZFYehrGIYI8tEGMMfgqcOqrQ0tGxj+bSoEYtH/5t1eVs9sUnLYFo4 +6FNwMjxag0j5XLXtpD4Gouvv9Jqan1VIFCpsgNpjTJvk5VUkxBAdDnwOzeM1JEz iy9UGomjkJNIfSYO3q8XGlmA4hPpnmosyj9mXmqXxNjZsBzEbUlbMSfs6e63lg6R rLion1Fbk80FrDaC6wQlfTxDlppMbmCCaq0HtP8zPjC5+4Oh5WeqTw7hgKXbPVfW SPK+66EdQ415c9fCjdxMvYKf0wTO2z+jPw7YQ+n7dI15pYjf5anT+MxG4vvln49/ zs7cMBg/i3p5jA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:02:55 2025 by rpki-client