This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft File: rrlJQmajhxkETYKaSgqPF6QHBOg.mft (raw, json) Hash identifier: ElIYLURIRCTzQ7M4dAeBXnk92lkWo3i/sr/NcmGWWHc= Subject key identifier: 5F:23:C4:85:35:7A:FC:E9:53:35:75:00:33:5C:28:B7:BB:A6:A0:74 Authority key identifier: AE:B9:49:42:66:A3:87:19:04:4D:82:9A:4A:0A:8F:17:A4:07:04:E8 Certificate issuer: /CN=aeb9494266a38719044d829a4a0a8f17a40704e8 Certificate serial: 019AF31B530852290DC48E5DE62406FE42BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rrlJQmajhxkETYKaSgqPF6QHBOg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 10:00:45 +0000 Manifest this update: Sat 06 Dec 2025 10:00:45 +0000 Manifest next update: Sun 07 Dec 2025 10:00:45 +0000 Files and hashes: 1: rrlJQmajhxkETYKaSgqPF6QHBOg.crl (hash: UUb0SGEh9cGY2bkuHtd/KeGkiG5Mgd+DSZBWMlgUDi8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft rsync://rpki.ripe.net/repository/DEFAULT/rrlJQmajhxkETYKaSgqPF6QHBOg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:53:08:52:29:0d:c4:8e:5d:e6:24:06:fe:42:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aeb9494266a38719044d829a4a0a8f17a40704e8 Validity Not Before: Dec 6 10:00:45 2025 GMT Not After : Dec 7 10:00:45 2025 GMT Subject: CN=5f23c485357afce953357500335c28b7bba6a074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f3:38:5d:56:a5:52:9f:60:d0:93:2a:db:d8: 3f:f3:db:d5:f6:67:0d:17:49:f4:cd:b9:77:7a:b6: 9a:78:ff:30:af:b9:62:80:af:21:f0:3f:71:70:93: 07:a9:f4:e8:a4:e1:7b:1e:32:43:09:08:49:fb:c3: 73:bf:9b:cb:a6:85:01:d3:26:b2:63:8b:2e:17:75: da:2f:aa:df:65:aa:41:fb:ec:9f:be:bf:10:cc:58: fb:ec:c1:6c:1f:01:f3:df:98:5e:44:c5:e3:86:de: 19:fa:5d:54:0c:f1:a6:c1:17:70:7c:28:e6:6e:41: ed:fc:d2:79:35:8f:0e:71:41:92:52:1d:62:a8:ff: a4:5c:57:5c:10:e1:c4:50:6a:e8:f5:6b:f3:ad:05: 90:ad:4a:4b:5e:22:31:38:39:c0:c0:4f:cf:ed:8c: ce:f9:3a:aa:bb:cf:cc:63:c6:e2:65:0b:e3:d2:ea: 75:c2:fd:66:96:1d:6a:10:eb:98:3b:cd:e1:93:6c: 04:8e:8a:b9:ad:1b:05:11:ea:b9:62:e1:c5:a7:06: ee:33:45:d8:6a:57:85:14:60:f8:21:f2:a6:11:91: c9:05:5e:50:d2:2f:88:e6:c6:f0:2a:12:09:ea:47: c3:bd:dd:8f:aa:8b:4a:fe:6f:04:bc:a5:26:bf:8c: 54:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:23:C4:85:35:7A:FC:E9:53:35:75:00:33:5C:28:B7:BB:A6:A0:74 X509v3 Authority Key Identifier: keyid:AE:B9:49:42:66:A3:87:19:04:4D:82:9A:4A:0A:8F:17:A4:07:04:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrlJQmajhxkETYKaSgqPF6QHBOg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:6b:60:d9:16:0f:75:34:1e:f9:0d:0c:35:0a:e6:0c:90:83: 6d:9f:3e:36:f0:48:d8:55:49:c4:d0:09:9e:0a:cc:07:45:7d: 9b:2a:bd:16:b3:d2:81:9a:d9:e8:ee:22:fd:bf:a0:83:41:79: 36:19:15:eb:d3:16:91:85:00:7d:df:6c:a8:0f:1b:68:2e:06: a0:3a:77:27:fc:cb:89:8f:11:62:32:be:19:2c:bf:ee:9e:b7: ec:c7:1c:8a:be:ca:af:b4:13:3b:7f:aa:35:9f:c6:9c:5e:ac: 00:f4:3b:6d:58:a0:d2:18:31:e4:af:95:cb:0d:a0:33:54:07: cb:4e:f7:05:06:8f:30:79:16:8e:ab:33:62:22:43:cf:41:58: 1b:d9:9a:55:c8:a6:7c:ef:b2:0c:ea:6d:06:52:86:76:58:8a: 60:c6:71:76:51:e2:77:52:34:4c:ab:27:0c:ea:05:da:0f:c3: 23:b9:2b:85:db:52:1f:f9:84:52:2b:db:24:8b:25:2a:07:6f: ad:a5:46:ba:ac:7f:14:07:e6:aa:1a:d8:76:c2:8b:6f:16:49: 87:e1:22:a0:7e:a5:89:c6:12:4f:6c:9f:31:f5:42:15:db:11: 0f:1b:51:8e:7c:11:d2:d2:ee:8a:59:f2:36:b1:47:15:e7:6f: ed:f0:6b:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG1MIUikNxI5d5iQG/kK7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlYjk0OTQyNjZhMzg3MTkwNDRkODI5YTRhMGE4ZjE3YTQw NzA0ZTgwHhcNMjUxMjA2MTAwMDQ1WhcNMjUxMjA3MTAwMDQ1WjAzMTEwLwYDVQQD Eyg1ZjIzYzQ4NTM1N2FmY2U5NTMzNTc1MDAzMzVjMjhiN2JiYTZhMDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2/M4XValUp9g0JMq29g/89vV9mcN F0n0zbl3eraaeP8wr7ligK8h8D9xcJMHqfTopOF7HjJDCQhJ+8Nzv5vLpoUB0yay Y4suF3XaL6rfZapB++yfvr8QzFj77MFsHwHz35heRMXjht4Z+l1UDPGmwRdwfCjm bkHt/NJ5NY8OcUGSUh1iqP+kXFdcEOHEUGro9WvzrQWQrUpLXiIxODnAwE/P7YzO +Tqqu8/MY8biZQvj0up1wv1mlh1qEOuYO83hk2wEjoq5rRsFEeq5YuHFpwbuM0XY aleFFGD4IfKmEZHJBV5Q0i+I5sbwKhIJ6kfDvd2PqotK/m8EvKUmv4xUBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF8jxIU1evzpUzV1ADNcKLe7pqB0MB8GA1UdIwQY MBaAFK65SUJmo4cZBE2CmkoKjxekBwToMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnJsSlFtYWpoeGtFVFlLYVNncVBGNlFIQk9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9lN2FkYWItODA1NS00Nzg1LThkZjUt MmE3YjU4YmRmOTQ1LzEvcnJsSlFtYWpoeGtFVFlLYVNncVBGNlFIQk9nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9lN2FkYWItODA1NS00Nzg1LThkZjUtMmE3YjU4YmRmOTQ1 LzEvcnJsSlFtYWpoeGtFVFlLYVNncVBGNlFIQk9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlWtg2RYP dTQe+Q0MNQrmDJCDbZ8+NvBI2FVJxNAJngrMB0V9myq9FrPSgZrZ6O4i/b+gg0F5 NhkV69MWkYUAfd9sqA8baC4GoDp3J/zLiY8RYjK+GSy/7p637Mccir7Kr7QTO3+q NZ/GnF6sAPQ7bVig0hgx5K+Vyw2gM1QHy073BQaPMHkWjqszYiJDz0FYG9maVcim fO+yDOptBlKGdliKYMZxdlHid1I0TKsnDOoF2g/DI7krhdtSH/mEUivbJIslKgdv raVGuqx/FAfmqhrYdsKLbxZJh+EioH6licYST2yfMfVCFdsRDxtRjnwR0tLuilny NrFHFedv7fBrWA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:48:17 2025 by rpki-client