This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft File: 5XFody33TCeZnVM4leGr7c6XJjw.mft (raw, json) Hash identifier: E+TkMRjl9oR0cG6pdhklgGys1Esx+x36tNDZT8aCBmk= Subject key identifier: 4C:CA:C7:AC:94:32:E1:A0:0A:12:99:E5:BD:6C:99:29:3D:72:20:DB Authority key identifier: E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C Certificate issuer: /CN=e57168772df74c27999d533895e1abedce97263c Certificate serial: 019AF164866EAFC8CBA6E448144CB2DB3646 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft Manifest number: 02B9 Signing time: Sat 06 Dec 2025 02:01:28 +0000 Manifest this update: Sat 06 Dec 2025 02:01:28 +0000 Manifest next update: Sun 07 Dec 2025 02:01:28 +0000 Files and hashes: 1: 5XFody33TCeZnVM4leGr7c6XJjw.crl (hash: +2fo98GRcrwdzx090YHBPnZf0sITB0FCgTy017OfGas=) 2: O3bnjDPRR3LrGEnM4sKqgBKSZIg.roa (hash: rlXDUrdTVRzlXfFa/VppQ/JwyMwu/FNANchTVmv+fxM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:86:6e:af:c8:cb:a6:e4:48:14:4c:b2:db:36:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e57168772df74c27999d533895e1abedce97263c Validity Not Before: Dec 6 02:01:28 2025 GMT Not After : Dec 7 02:01:28 2025 GMT Subject: CN=4ccac7ac9432e1a00a1299e5bd6c99293d7220db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a0:1a:6c:b9:f1:93:42:13:de:8e:3f:81:77: b7:ed:46:ed:30:6f:fe:c1:6e:ed:eb:a3:3a:ea:ac: 47:1d:2b:80:81:e6:0c:ad:10:a8:ea:0c:ff:64:d5: c7:fc:7d:97:7d:28:ac:33:73:74:1d:58:33:24:70: c2:57:44:3e:d1:a0:86:18:02:be:98:e3:0c:d7:aa: d2:b0:7e:67:df:f7:ac:97:02:02:fc:51:7e:36:16: 9d:6d:7d:fc:59:8f:e6:dc:d6:41:05:cc:b0:0d:b2: 5b:11:75:40:c4:f8:dd:11:24:8f:6f:eb:95:7b:17: 8d:ec:11:ab:d2:2e:85:d8:b2:af:dc:4a:32:67:04: 4e:6a:89:0a:98:84:7e:58:d1:21:e7:15:2a:07:4b: 5b:56:af:fe:2a:1e:0a:e2:59:19:8a:7d:a9:8f:7b: 25:50:2c:24:7f:2e:45:82:40:93:2b:57:3a:b2:21: cd:02:38:44:18:3c:97:c6:8c:04:25:6a:3e:c5:55: 29:fe:c5:01:de:f2:da:20:80:da:ec:14:2a:9f:40: c8:99:89:d1:64:cb:a8:51:a1:42:bc:6a:6f:6d:dd: 68:c5:aa:00:38:da:50:8e:ae:ec:72:e3:28:a4:0f: b0:06:6a:aa:77:82:a4:48:b1:df:45:ac:9d:9d:e5: a6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CA:C7:AC:94:32:E1:A0:0A:12:99:E5:BD:6C:99:29:3D:72:20:DB X509v3 Authority Key Identifier: keyid:E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:94:1a:5d:15:e6:af:8e:9c:b6:f2:66:62:98:fc:0b:df:d8: 65:26:14:af:48:bb:83:c9:01:24:a7:6b:d9:97:6e:fe:07:9e: a7:22:48:5e:e0:bd:e4:b5:52:fd:18:2b:fb:0d:23:2e:4c:9e: 02:3b:7a:ee:96:cc:26:c2:27:fe:0b:de:7f:96:a2:9c:2f:06: e7:c6:14:cd:21:ce:dd:af:d6:b8:fd:12:81:91:85:e0:2b:ca: 47:da:6e:8d:5c:04:2e:fd:9e:ed:78:2f:0f:e1:b2:a1:7b:ad: 58:a3:3f:30:58:9a:0f:1a:b7:98:bf:3d:76:c9:f4:4d:dc:e1: 84:f9:f5:18:27:82:25:e3:df:10:05:01:10:28:1f:a4:31:3d: 87:8a:46:50:2f:75:e4:a9:8a:4d:21:42:f9:d7:48:04:65:91: 37:d6:17:90:7a:93:93:e1:ac:12:41:c8:7e:19:c4:7f:dc:23: 9f:c7:b2:50:11:c6:e5:64:fb:d3:44:9a:6e:28:8e:64:2f:41: 30:a8:a5:48:12:78:68:5a:c2:03:c4:cc:dc:4b:90:65:22:8c: 8f:14:1f:00:08:6e:69:e7:ec:3d:ff:31:99:1e:1c:10:c0:34: 7d:36:ac:54:d1:1f:99:f7:68:09:a9:00:4b:00:25:1e:1c:2a: a1:6b:23:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZIZur8jLpuRIFEyy2zZGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1NzE2ODc3MmRmNzRjMjc5OTlkNTMzODk1ZTFhYmVkY2U5 NzI2M2MwHhcNMjUxMjA2MDIwMTI4WhcNMjUxMjA3MDIwMTI4WjAzMTEwLwYDVQQD Eyg0Y2NhYzdhYzk0MzJlMWEwMGExMjk5ZTViZDZjOTkyOTNkNzIyMGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqAabLnxk0IT3o4/gXe37UbtMG/+ wW7t66M66qxHHSuAgeYMrRCo6gz/ZNXH/H2XfSisM3N0HVgzJHDCV0Q+0aCGGAK+ mOMM16rSsH5n3/eslwIC/FF+NhadbX38WY/m3NZBBcywDbJbEXVAxPjdESSPb+uV exeN7BGr0i6F2LKv3EoyZwROaokKmIR+WNEh5xUqB0tbVq/+Kh4K4lkZin2pj3sl UCwkfy5FgkCTK1c6siHNAjhEGDyXxowEJWo+xVUp/sUB3vLaIIDa7BQqn0DImYnR ZMuoUaFCvGpvbd1oxaoAONpQjq7scuMopA+wBmqqd4KkSLHfRaydneWmXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEzKx6yUMuGgChKZ5b1smSk9ciDbMB8GA1UdIwQY MBaAFOVxaHct90wnmZ1TOJXhq+3OlyY8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVhGb2R5MzNUQ2VablZNNGxlR3I3YzZYSmp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi82N2MwODctOGI3My00YmM4LWJmZWIt YjNkZmYzYTkxMTAyLzEvNVhGb2R5MzNUQ2VablZNNGxlR3I3YzZYSmp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi82N2MwODctOGI3My00YmM4LWJmZWItYjNkZmYzYTkxMTAy LzEvNVhGb2R5MzNUQ2VablZNNGxlR3I3YzZYSmp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb5QaXRXm r46ctvJmYpj8C9/YZSYUr0i7g8kBJKdr2Zdu/geepyJIXuC95LVS/Rgr+w0jLkye Ajt67pbMJsIn/gvef5ainC8G58YUzSHO3a/WuP0SgZGF4CvKR9pujVwELv2e7Xgv D+GyoXutWKM/MFiaDxq3mL89dsn0TdzhhPn1GCeCJePfEAUBECgfpDE9h4pGUC91 5KmKTSFC+ddIBGWRN9YXkHqTk+GsEkHIfhnEf9wjn8eyUBHG5WT700SabiiOZC9B MKilSBJ4aFrCA8TM3EuQZSKMjxQfAAhuaefsPf8xmR4cEMA0fTasVNEfmfdoCakA SwAlHhwqoWsjsA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:53:18 2025 by rpki-client