This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft File: 5PFY7_xrOIKiWQweaQasoQjhjsI.mft (raw, json) Hash identifier: S9tII7IAUhzbIdlYCiulbQKHbn6f7q4BIjG9cyBaspk= Subject key identifier: 2D:37:DE:2D:98:68:08:84:60:1D:97:6B:29:8A:34:49:12:FA:B8:E5 Authority key identifier: E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2 Certificate issuer: /CN=e4f158effc6b3882a2590c1e6906aca108e18ec2 Certificate serial: 019AF2092CA86D1D7BAB22F8BD1B658C27FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft Manifest number: 0D68 Signing time: Sat 06 Dec 2025 05:01:18 +0000 Manifest this update: Sat 06 Dec 2025 05:01:18 +0000 Manifest next update: Sun 07 Dec 2025 05:01:18 +0000 Files and hashes: 1: 5JIFCgXWGmsw1HA5JtADF-b1eJ4.roa (hash: kqtxwSPKoLsi1ph5t4VnO3iKewevISmebmIE1RpFWLg=) 2: 5PFY7_xrOIKiWQweaQasoQjhjsI.crl (hash: uuvMHUs7Wqm/WNSeK8L9fHg9r9qxtpdDFWOAVZyQNlA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:2c:a8:6d:1d:7b:ab:22:f8:bd:1b:65:8c:27:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4f158effc6b3882a2590c1e6906aca108e18ec2 Validity Not Before: Dec 6 05:01:18 2025 GMT Not After : Dec 7 05:01:18 2025 GMT Subject: CN=2d37de2d98680884601d976b298a344912fab8e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:85:20:d3:b2:3d:29:36:2f:7a:ac:6a:91:f4: ed:a9:81:1b:f2:41:5e:d6:57:73:82:e0:3a:3a:2a: 45:51:74:1a:05:8e:61:4b:cb:3e:58:91:80:d8:92: a0:7c:9c:9d:54:c0:31:cd:68:67:95:2a:cd:35:b4: 1f:e4:dd:da:91:89:6b:29:37:5d:b2:ec:db:59:c8: 94:63:1d:30:81:92:dc:23:cd:e8:e5:e0:92:db:f1: 7d:ce:d4:d0:4c:bc:a8:61:75:bf:8c:b9:ea:a3:f7: 3c:53:c0:b3:40:09:bc:5d:f0:2c:b3:6b:4e:75:da: a5:a9:5c:66:fd:68:2a:84:c1:88:2e:de:c5:cf:8d: 3b:6b:22:47:37:c2:57:42:7a:d9:05:f0:cb:d0:0b: 8b:80:5f:d1:03:b6:57:4a:3c:b2:db:1e:8d:ab:bf: 4a:04:7f:a8:e5:82:8e:5e:9a:a5:cb:dc:94:48:1e: a7:a0:3a:28:8d:76:c7:37:2d:23:fb:14:7a:9c:f7: c7:bc:ae:80:1a:ba:59:89:f2:5d:01:30:9c:d0:77: b3:98:b8:aa:6a:ad:90:18:a8:dd:44:1f:a8:d9:9c: 6c:c6:4f:16:8a:68:80:30:36:9f:92:fe:a4:f5:5c: 59:22:1b:95:66:03:4e:50:e0:4f:bd:b1:2f:d0:e6: e3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:37:DE:2D:98:68:08:84:60:1D:97:6B:29:8A:34:49:12:FA:B8:E5 X509v3 Authority Key Identifier: keyid:E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:d9:15:bc:4a:f4:f0:19:82:43:94:c6:d6:f8:36:6e:15:36: de:3b:04:fb:f7:1f:c9:25:19:28:84:ae:fb:53:f6:89:71:bf: e7:9d:0d:27:8b:28:44:34:3a:73:1c:d4:6d:7a:83:25:56:eb: 14:9c:b5:14:4f:7a:37:42:c6:48:b2:3d:93:63:6f:fa:da:87: be:b6:45:2f:c1:b9:bc:b0:c8:24:2f:ae:55:69:44:9b:ee:97: 5c:2b:45:ff:ef:ee:da:c3:0a:7f:be:1b:8b:87:28:de:66:35: 74:e6:8a:13:56:32:28:d5:6c:91:37:fd:12:2c:9b:02:1d:9e: 2a:c0:58:00:8b:5f:cd:18:27:aa:ec:14:bc:c9:99:ec:72:6d: 76:23:2a:e0:23:96:13:1d:d8:f8:69:d6:38:6c:4d:fc:c4:2a: c4:37:d1:b0:c9:17:01:94:44:af:fa:0e:18:30:cc:47:f9:a6: 40:1b:dc:92:d7:6a:f6:27:2a:c6:88:02:1a:77:1c:1e:a4:ce: 1b:a3:8e:cb:a1:6a:ca:bf:8b:7e:5e:15:8a:64:4d:19:af:0d: 14:7b:36:67:5f:cc:30:39:d8:e3:39:03:3c:ec:d0:12:82:cb: 11:94:7b:fa:af:3c:ba:33:44:ac:71:75:fc:7f:a6:38:19:94: 88:e7:b1:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCSyobR17qyL4vRtljCf8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0ZjE1OGVmZmM2YjM4ODJhMjU5MGMxZTY5MDZhY2ExMDhl MThlYzIwHhcNMjUxMjA2MDUwMTE4WhcNMjUxMjA3MDUwMTE4WjAzMTEwLwYDVQQD EygyZDM3ZGUyZDk4NjgwODg0NjAxZDk3NmIyOThhMzQ0OTEyZmFiOGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4IUg07I9KTYveqxqkfTtqYEb8kFe 1ldzguA6OipFUXQaBY5hS8s+WJGA2JKgfJydVMAxzWhnlSrNNbQf5N3akYlrKTdd suzbWciUYx0wgZLcI83o5eCS2/F9ztTQTLyoYXW/jLnqo/c8U8CzQAm8XfAss2tO ddqlqVxm/WgqhMGILt7Fz407ayJHN8JXQnrZBfDL0AuLgF/RA7ZXSjyy2x6Nq79K BH+o5YKOXpqly9yUSB6noDoojXbHNy0j+xR6nPfHvK6AGrpZifJdATCc0HezmLiq aq2QGKjdRB+o2Zxsxk8WimiAMDafkv6k9VxZIhuVZgNOUOBPvbEv0Obj7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC033i2YaAiEYB2XaymKNEkS+rjlMB8GA1UdIwQY MBaAFOTxWO/8aziColkMHmkGrKEI4Y7CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVBGWTdfeHJPSUtpV1F3ZWFRYXNvUWpoanNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi84M2MwMGUtZjQxNC00ODlkLTk0NzAt YzY5MzI0OTY1MWQ1LzEvNVBGWTdfeHJPSUtpV1F3ZWFRYXNvUWpoanNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi84M2MwMGUtZjQxNC00ODlkLTk0NzAtYzY5MzI0OTY1MWQ1 LzEvNVBGWTdfeHJPSUtpV1F3ZWFRYXNvUWpoanNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwdkVvEr0 8BmCQ5TG1vg2bhU23jsE+/cfySUZKISu+1P2iXG/550NJ4soRDQ6cxzUbXqDJVbr FJy1FE96N0LGSLI9k2Nv+tqHvrZFL8G5vLDIJC+uVWlEm+6XXCtF/+/u2sMKf74b i4co3mY1dOaKE1YyKNVskTf9EiybAh2eKsBYAItfzRgnquwUvMmZ7HJtdiMq4COW Ex3Y+GnWOGxN/MQqxDfRsMkXAZREr/oOGDDMR/mmQBvcktdq9icqxogCGnccHqTO G6OOy6Fqyr+Lfl4VimRNGa8NFHs2Z1/MMDnY4zkDPOzQEoLLEZR7+q88ujNErHF1 /H+mOBmUiOexMQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:47:34 2025 by rpki-client