This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft File: 5rtLno321mTvy3e0EEFcg0phd4I.mft (raw, json) Hash identifier: G9gcXmzKhMDegcre4Yx97W2osImLjUZVnHz7QQh/fRc= Subject key identifier: 7F:21:C4:71:1B:62:56:74:C7:DF:96:86:29:E6:48:FC:B8:BB:AE:23 Authority key identifier: E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82 Certificate issuer: /CN=e6bb4b9e8df6d664efcb77b410415c834a617782 Certificate serial: 019AF2097FD295E4BFCBFA6F5169954CFB9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft Manifest number: 054C Signing time: Sat 06 Dec 2025 05:01:39 +0000 Manifest this update: Sat 06 Dec 2025 05:01:39 +0000 Manifest next update: Sun 07 Dec 2025 05:01:39 +0000 Files and hashes: 1: 5rtLno321mTvy3e0EEFcg0phd4I.crl (hash: zLbk5QnWmXOttTosnbjogzYw9NS27j+rdUHiU/dyaoc=) 2: XkaKfqFoJaO-K5J7EjOD-dhdRPc.roa (hash: HO99X4r00WVlX046g40bOu9XiDJVwjKinGN75tp1pVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:7f:d2:95:e4:bf:cb:fa:6f:51:69:95:4c:fb:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e6bb4b9e8df6d664efcb77b410415c834a617782 Validity Not Before: Dec 6 05:01:39 2025 GMT Not After : Dec 7 05:01:39 2025 GMT Subject: CN=7f21c4711b625674c7df968629e648fcb8bbae23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:c3:53:5d:b7:8c:d0:41:6b:84:f6:95:1d: 6d:98:6d:95:9f:04:75:ee:5a:d7:be:d8:ee:2f:83: c6:65:62:30:76:cd:16:5d:d1:a9:54:3d:e1:5c:f6: b2:79:ba:dd:3c:65:e6:91:94:e8:3a:04:47:0a:28: 3b:77:82:25:91:39:a9:17:7e:bb:6f:de:b8:3a:2c: 27:ee:67:11:f9:60:05:6f:a9:4b:51:ac:c8:9c:8f: 4b:c7:ea:b8:e9:5f:8a:b0:eb:49:64:ce:e7:50:8b: 81:e8:d2:dd:22:ca:1a:ca:1e:20:c5:f5:70:f2:58: 1e:b9:12:9a:24:9d:9d:6d:19:5d:b3:7e:4c:75:ff: 5c:aa:e8:04:6a:70:5f:9c:cf:d6:2b:80:09:45:06: 31:bb:69:93:1a:2b:8a:2d:90:0d:ea:26:51:ea:bc: 09:a7:c1:54:eb:97:ed:1b:48:7b:60:fb:a0:2d:75: 58:10:54:8d:be:96:b2:61:08:89:f4:97:7d:25:3b: b8:d6:76:32:7e:e4:3d:d6:22:ca:c6:bc:df:57:d2: 96:11:99:38:fc:ef:e0:6c:f4:ff:a3:3a:a9:f4:bd: 82:70:7d:dc:9b:4e:2b:a7:60:82:55:45:24:a5:0a: 4f:03:53:9c:13:95:55:ca:f0:d3:94:e0:26:79:9a: f4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:21:C4:71:1B:62:56:74:C7:DF:96:86:29:E6:48:FC:B8:BB:AE:23 X509v3 Authority Key Identifier: keyid:E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:4c:a7:b6:94:b9:bd:44:1a:84:5b:0e:f5:51:f9:7a:ab:f5: 26:ce:00:d1:c5:97:c4:33:d8:b5:cb:8c:cf:dd:d6:c3:61:81: 39:8c:5b:80:2b:eb:84:c8:98:e1:96:61:11:a1:ca:61:7c:c5: 50:7b:39:0c:64:61:ab:3b:b0:73:1b:fe:dc:d2:3a:1e:c5:06: 52:e1:85:fd:28:4b:77:9f:14:38:8b:4e:fa:e8:2f:07:f1:87: d3:da:6f:7f:6e:4d:66:1a:7b:57:e7:3a:bd:5d:84:32:7e:9d: 61:37:f4:18:ad:55:b9:08:a2:ec:64:c1:64:a8:c0:f9:95:f6: ab:e0:a8:53:7b:21:0f:9b:df:ff:e6:be:fe:88:df:93:cd:38: 26:b4:b8:c0:b6:a5:aa:9f:08:a2:04:6e:37:a3:b0:f4:fe:ae: 96:2c:b7:42:16:20:e1:d1:81:82:d3:d5:c1:d9:b5:bf:4f:ec: 37:0b:d1:08:aa:25:a0:5b:1a:6f:68:62:57:4f:46:0e:9a:d1: 9a:cc:31:1f:2d:4d:4e:71:c8:18:a1:4f:74:3f:01:e6:21:28: d6:53:f9:34:c0:e4:0e:b4:a6:8e:95:cc:65:92:07:e1:20:0c: 47:07:69:a5:5c:ba:f8:de:8d:48:5a:f8:90:8c:c9:3c:9c:f8: 88:d8:a6:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCX/SleS/y/pvUWmVTPubMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2YmI0YjllOGRmNmQ2NjRlZmNiNzdiNDEwNDE1YzgzNGE2 MTc3ODIwHhcNMjUxMjA2MDUwMTM5WhcNMjUxMjA3MDUwMTM5WjAzMTEwLwYDVQQD Eyg3ZjIxYzQ3MTFiNjI1Njc0YzdkZjk2ODYyOWU2NDhmY2I4YmJhZTIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZfDU123jNBBa4T2lR1tmG2VnwR1 7lrXvtjuL4PGZWIwds0WXdGpVD3hXPayebrdPGXmkZToOgRHCig7d4IlkTmpF367 b964Oiwn7mcR+WAFb6lLUazInI9Lx+q46V+KsOtJZM7nUIuB6NLdIsoayh4gxfVw 8lgeuRKaJJ2dbRlds35Mdf9cqugEanBfnM/WK4AJRQYxu2mTGiuKLZAN6iZR6rwJ p8FU65ftG0h7YPugLXVYEFSNvpayYQiJ9Jd9JTu41nYyfuQ91iLKxrzfV9KWEZk4 /O/gbPT/ozqp9L2CcH3cm04rp2CCVUUkpQpPA1OcE5VVyvDTlOAmeZr0PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH8hxHEbYlZ0x9+WhinmSPy4u64jMB8GA1UdIwQY MBaAFOa7S56N9tZk78t3tBBBXINKYXeCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXJ0TG5vMzIxbVR2eTNlMEVFRmNnMHBoZDRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC81Y2EwN2EtYjI0Mi00MTQ0LWEyNjQt N2Q1NDdlYzg0MTE0LzEvNXJ0TG5vMzIxbVR2eTNlMEVFRmNnMHBoZDRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC81Y2EwN2EtYjI0Mi00MTQ0LWEyNjQtN2Q1NDdlYzg0MTE0 LzEvNXJ0TG5vMzIxbVR2eTNlMEVFRmNnMHBoZDRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh0yntpS5 vUQahFsO9VH5eqv1Js4A0cWXxDPYtcuMz93Ww2GBOYxbgCvrhMiY4ZZhEaHKYXzF UHs5DGRhqzuwcxv+3NI6HsUGUuGF/ShLd58UOItO+ugvB/GH09pvf25NZhp7V+c6 vV2EMn6dYTf0GK1VuQii7GTBZKjA+ZX2q+CoU3shD5vf/+a+/ojfk804JrS4wLal qp8IogRuN6Ow9P6uliy3QhYg4dGBgtPVwdm1v0/sNwvRCKoloFsab2hiV09GDprR mswxHy1NTnHIGKFPdD8B5iEo1lP5NMDkDrSmjpXMZZIH4SAMRwdppVy6+N6NSFr4 kIzJPJz4iNimOg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:51:14 2025 by rpki-client