This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft File: A-aapu504w79uBm5yxvyHnhub6M.mft (raw, json) Hash identifier: GQ47DV4Ansil4GecrnTkpaiwXuvdMnntNeIbgGSOlsg= Subject key identifier: 5E:76:C5:CA:20:25:9E:21:4E:7F:52:91:4D:17:92:10:5E:C1:4B:83 Authority key identifier: 03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3 Certificate issuer: /CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3 Certificate serial: 019AF2AD48FB3F7633E33CB411AA5AE7DABA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft Manifest number: 05FE Signing time: Sat 06 Dec 2025 08:00:33 +0000 Manifest this update: Sat 06 Dec 2025 08:00:33 +0000 Manifest next update: Sun 07 Dec 2025 08:00:33 +0000 Files and hashes: 1: A-aapu504w79uBm5yxvyHnhub6M.crl (hash: Q6lCdEdc0Abb34iughq3354V621T1TkP2919+DJWsOk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:48:fb:3f:76:33:e3:3c:b4:11:aa:5a:e7:da:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3 Validity Not Before: Dec 6 08:00:33 2025 GMT Not After : Dec 7 08:00:33 2025 GMT Subject: CN=5e76c5ca20259e214e7f52914d1792105ec14b83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c6:cb:32:c4:31:87:c1:d1:a0:ca:5e:3b:a2: 42:d4:15:7d:97:79:b3:74:15:65:77:68:cd:ae:f2: c3:d7:8b:82:21:07:be:87:1a:b0:68:e7:49:fc:88: e2:40:c0:9a:d6:44:2d:eb:89:f4:e9:8c:e4:fb:c2: d0:04:49:ee:46:ae:bc:96:47:f3:ea:2b:78:23:08: ce:1b:7a:4c:06:c2:31:16:d4:4b:b6:03:02:44:50: 51:3e:2e:07:03:26:70:6a:e5:73:78:fb:87:f2:6e: b0:15:8d:ea:5b:93:44:8b:23:96:7d:52:c9:f4:72: a0:ed:35:1d:cc:84:73:e5:29:19:9b:bb:b6:95:ee: e7:2d:cf:c2:6a:61:0f:8b:0d:e9:47:9d:5e:80:67: d7:bb:e5:56:be:d9:f2:79:8a:c4:1b:1a:f3:88:fe: 2a:df:f4:3a:cf:7a:60:8a:3f:c1:b3:fe:6a:d4:a3: 22:c2:a9:30:f4:ea:7d:a7:f9:3d:62:d7:5e:6e:2a: 98:2d:71:1d:63:88:4e:ce:97:7b:34:74:f6:52:e1: 13:c3:dc:1a:6d:15:f2:48:cf:1c:c6:7a:fb:98:71: 9b:58:3e:7b:59:f9:81:24:7c:00:52:f3:c5:45:7c: 69:7d:3d:00:42:6f:82:38:71:99:4f:da:90:d0:b6: 57:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:76:C5:CA:20:25:9E:21:4E:7F:52:91:4D:17:92:10:5E:C1:4B:83 X509v3 Authority Key Identifier: keyid:03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:90:34:2f:d1:f0:17:ce:2f:e1:c7:ba:25:a2:60:77:52:2c: cc:83:af:13:48:d0:5d:4d:42:d1:35:30:21:d2:e1:bc:e4:5f: 59:af:c0:3a:d6:9b:c9:75:e6:67:88:6c:7d:47:55:db:dc:f9: 19:62:bb:0d:65:f0:41:ea:cb:ab:5b:7b:b3:69:a8:c6:ef:7d: d0:78:3a:d4:d9:98:ed:f8:7b:62:4b:f7:a3:35:4e:fe:a2:fc: 77:7e:a8:55:cc:e0:37:f9:44:df:e5:83:5e:07:5c:c4:cb:81: c9:c0:e2:17:22:dc:41:ca:63:5c:2d:9b:63:49:23:b3:28:10: 03:a0:5b:a3:f3:09:8a:93:38:2d:2b:97:4a:8f:81:b9:51:2e: 27:30:36:94:a7:cb:21:c4:58:95:c8:e8:8a:5e:4e:a1:30:9c: 86:a2:85:a5:4b:42:90:f4:8f:c4:d4:53:31:27:bb:74:fa:a5: 46:db:07:6d:18:90:51:db:86:28:df:2a:27:0d:f1:27:ae:f3: 5d:55:0d:ac:31:0f:d2:81:d7:cc:1f:b3:ca:22:78:41:fa:9f: 8b:f8:6d:61:c1:6a:5b:af:92:5a:6b:fc:99:3f:ad:60:0e:99: 72:1a:ff:68:90:94:95:2c:68:db:ba:3d:22:f8:df:a0:6a:e1: ad:cd:eb:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrUj7P3Yz4zy0Eapa59q6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzZTY5YWE2ZWU3NGUzMGVmZGI4MTliOWNiMWJmMjFlNzg2 ZTZmYTMwHhcNMjUxMjA2MDgwMDMzWhcNMjUxMjA3MDgwMDMzWjAzMTEwLwYDVQQD Eyg1ZTc2YzVjYTIwMjU5ZTIxNGU3ZjUyOTE0ZDE3OTIxMDVlYzE0YjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcbLMsQxh8HRoMpeO6JC1BV9l3mz dBVld2jNrvLD14uCIQe+hxqwaOdJ/IjiQMCa1kQt64n06Yzk+8LQBEnuRq68lkfz 6it4IwjOG3pMBsIxFtRLtgMCRFBRPi4HAyZwauVzePuH8m6wFY3qW5NEiyOWfVLJ 9HKg7TUdzIRz5SkZm7u2le7nLc/CamEPiw3pR51egGfXu+VWvtnyeYrEGxrziP4q 3/Q6z3pgij/Bs/5q1KMiwqkw9Op9p/k9YtdebiqYLXEdY4hOzpd7NHT2UuETw9wa bRXySM8cxnr7mHGbWD57WfmBJHwAUvPFRXxpfT0AQm+COHGZT9qQ0LZX9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF52xcogJZ4hTn9SkU0XkhBewUuDMB8GA1UdIwQY MBaAFAPmmqbudOMO/bgZucsb8h54bm+jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQS1hYXB1NTA0dzc5dUJtNXl4dnlIbmh1YjZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9hOWU4ZmEtNDFkNy00YmM2LTk4NDEt MDVhODNlZDcwYmMzLzEvQS1hYXB1NTA0dzc5dUJtNXl4dnlIbmh1YjZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC9hOWU4ZmEtNDFkNy00YmM2LTk4NDEtMDVhODNlZDcwYmMz LzEvQS1hYXB1NTA0dzc5dUJtNXl4dnlIbmh1YjZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABZA0L9Hw F84v4ce6JaJgd1IszIOvE0jQXU1C0TUwIdLhvORfWa/AOtabyXXmZ4hsfUdV29z5 GWK7DWXwQerLq1t7s2moxu990Hg61NmY7fh7Ykv3ozVO/qL8d36oVczgN/lE3+WD XgdcxMuBycDiFyLcQcpjXC2bY0kjsygQA6Bbo/MJipM4LSuXSo+BuVEuJzA2lKfL IcRYlcjoil5OoTCchqKFpUtCkPSPxNRTMSe7dPqlRtsHbRiQUduGKN8qJw3xJ67z XVUNrDEP0oHXzB+zyiJ4Qfqfi/htYcFqW6+SWmv8mT+tYA6Zchr/aJCUlSxo27o9 IvjfoGrhrc3rCQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:04:20 2025 by rpki-client