This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.mft File: 5weSQnGbdzi4P0kUerH1gp93ahU.mft (raw, json) Hash identifier: WD/SCk/0kVGy7rNOu9ELIqkLGDQ8ZwJio1/HcBKJ8SU= Subject key identifier: B2:B3:A9:77:54:20:7A:17:8F:61:9E:A5:DA:93:38:78:66:BF:6A:DD Authority key identifier: E7:07:92:42:71:9B:77:38:B8:3F:49:14:7A:B1:F5:82:9F:77:6A:15 Certificate issuer: /CN=e7079242719b7738b83f49147ab1f5829f776a15 Certificate serial: 019AF5E5ACEF75278D64DA87CB53958337AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5weSQnGbdzi4P0kUerH1gp93ahU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.mft Manifest number: 012E Signing time: Sat 06 Dec 2025 23:01:01 +0000 Manifest this update: Sat 06 Dec 2025 23:01:01 +0000 Manifest next update: Sun 07 Dec 2025 23:01:01 +0000 Files and hashes: 1: 5weSQnGbdzi4P0kUerH1gp93ahU.crl (hash: jeFoWu4RugNyHhdYKgHFbPENeRe1mJO6lsKMhdZNu/k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.mft rsync://rpki.ripe.net/repository/DEFAULT/5weSQnGbdzi4P0kUerH1gp93ahU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:ac:ef:75:27:8d:64:da:87:cb:53:95:83:37:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7079242719b7738b83f49147ab1f5829f776a15 Validity Not Before: Dec 6 23:01:01 2025 GMT Not After : Dec 7 23:01:01 2025 GMT Subject: CN=b2b3a97754207a178f619ea5da93387866bf6add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e8:0f:6a:78:57:19:00:c9:7b:65:29:81:70: 24:2f:f8:0c:f7:35:8a:2a:9c:33:c8:1e:cd:3f:3b: 68:15:21:90:bd:20:91:7a:e1:5b:1b:4a:d5:0d:3f: 30:6d:b8:d7:29:3c:df:d1:42:3d:e7:29:5a:d8:91: 1b:00:6c:4a:89:d0:c1:f0:f9:07:be:b4:d7:0b:1a: 12:c8:99:e4:73:47:fb:90:13:5e:ce:7e:42:4c:d0: 9a:79:50:1b:32:d5:ad:55:75:61:59:8d:28:bc:89: 40:f1:35:c9:c7:df:3e:25:76:04:20:6a:9a:aa:a2: df:83:55:45:df:64:55:b2:79:2d:c4:bb:f7:d7:8f: 9d:38:b8:a4:f9:0e:4c:94:3c:23:31:a2:6d:3e:ce: cd:1a:fa:2d:5a:5f:2c:98:77:00:7a:6d:3e:b2:25: c5:7b:bd:b7:00:cc:52:9f:64:ef:fd:9f:a8:37:f7: 1f:7f:d4:59:37:45:82:56:45:ce:31:41:38:8a:14: 76:cc:ad:18:67:4e:77:4c:c6:c7:c7:9e:5d:4e:dd: f2:e4:58:86:87:35:93:ee:0b:b6:9e:d7:e4:b4:78: 83:71:00:8e:dc:2a:a7:81:1d:97:27:30:86:87:47: 08:08:33:c7:65:9f:e3:9e:87:82:9e:cc:e6:d4:75: 39:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B3:A9:77:54:20:7A:17:8F:61:9E:A5:DA:93:38:78:66:BF:6A:DD X509v3 Authority Key Identifier: keyid:E7:07:92:42:71:9B:77:38:B8:3F:49:14:7A:B1:F5:82:9F:77:6A:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5weSQnGbdzi4P0kUerH1gp93ahU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:f6:6d:0c:47:cd:ed:e0:cf:47:7b:cb:dd:7c:17:4d:b6:ad: 72:a5:80:85:f3:11:4d:15:63:a6:50:b0:31:ec:46:1a:53:e2: 4b:a5:19:04:f5:7d:fd:70:40:a1:b3:0d:e2:2f:6e:af:b8:7d: 77:30:e7:22:de:aa:e7:04:e6:7e:11:d2:29:27:62:be:59:a2: d9:32:13:c8:c9:53:35:9f:45:00:2d:2a:bb:3d:33:fb:33:d5: f7:3f:d8:14:5f:af:e6:1e:32:2d:55:db:59:a0:19:4f:23:ac: ed:e6:de:f5:86:d0:a4:43:ae:99:6f:2d:39:7e:b6:fe:08:78: 29:bf:a2:57:98:4d:c8:52:05:f5:ed:7c:9a:a2:7f:4a:93:9f: 20:72:b4:d9:99:c6:90:8b:72:38:01:9c:71:b7:f1:7c:1b:58: b9:f4:72:b5:65:d6:1a:37:08:1f:f6:f9:ed:84:3a:7b:4f:48: 37:20:4f:3c:47:71:75:0e:74:44:ff:c0:c3:24:b2:99:62:3c: 11:2b:43:c2:c0:9c:b7:5c:af:bd:19:7e:b2:0b:c9:68:9b:ab: ae:3e:73:f1:c0:c5:6a:85:0a:4c:d7:fc:ee:f9:a5:bd:1e:c3: d2:fe:08:93:c2:19:fe:1b:79:48:c3:70:32:32:1b:ec:dc:2d: ba:9d:24:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15azvdSeNZNqHy1OVgzetMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3MDc5MjQyNzE5Yjc3MzhiODNmNDkxNDdhYjFmNTgyOWY3 NzZhMTUwHhcNMjUxMjA2MjMwMTAxWhcNMjUxMjA3MjMwMTAxWjAzMTEwLwYDVQQD EyhiMmIzYTk3NzU0MjA3YTE3OGY2MTllYTVkYTkzMzg3ODY2YmY2YWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvOgPanhXGQDJe2UpgXAkL/gM9zWK KpwzyB7NPztoFSGQvSCReuFbG0rVDT8wbbjXKTzf0UI95yla2JEbAGxKidDB8PkH vrTXCxoSyJnkc0f7kBNezn5CTNCaeVAbMtWtVXVhWY0ovIlA8TXJx98+JXYEIGqa qqLfg1VF32RVsnktxLv314+dOLik+Q5MlDwjMaJtPs7NGvotWl8smHcAem0+siXF e723AMxSn2Tv/Z+oN/cff9RZN0WCVkXOMUE4ihR2zK0YZ053TMbHx55dTt3y5FiG hzWT7gu2ntfktHiDcQCO3CqngR2XJzCGh0cICDPHZZ/jnoeCnszm1HU5owIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLKzqXdUIHoXj2GepdqTOHhmv2rdMB8GA1UdIwQY MBaAFOcHkkJxm3c4uD9JFHqx9YKfd2oVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXdlU1FuR2Jkemk0UDBrVWVySDFncDkzYWhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8xYTU5YzktMTQ0Ni00Nzc5LWJlMGEt ZDUwZjI5MzA4NDY0LzEvNXdlU1FuR2Jkemk0UDBrVWVySDFncDkzYWhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8xYTU5YzktMTQ0Ni00Nzc5LWJlMGEtZDUwZjI5MzA4NDY0 LzEvNXdlU1FuR2Jkemk0UDBrVWVySDFncDkzYWhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQfZtDEfN 7eDPR3vL3XwXTbatcqWAhfMRTRVjplCwMexGGlPiS6UZBPV9/XBAobMN4i9ur7h9 dzDnIt6q5wTmfhHSKSdivlmi2TITyMlTNZ9FAC0quz0z+zPV9z/YFF+v5h4yLVXb WaAZTyOs7ebe9YbQpEOumW8tOX62/gh4Kb+iV5hNyFIF9e18mqJ/SpOfIHK02ZnG kItyOAGccbfxfBtYufRytWXWGjcIH/b57YQ6e09INyBPPEdxdQ50RP/AwySymWI8 EStDwsCct1yvvRl+sgvJaJurrj5z8cDFaoUKTNf87vmlvR7D0v4Ik8IZ/ht5SMNw MjIb7Nwtup0kGg== -----END CERTIFICATE-----Generated at Sun Dec 7 02:13:40 2025 by rpki-client