This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft File: 5LDTQqkyMznAd8XGreEJO1pADyQ.mft (raw, json) Hash identifier: cFhqZBc7/By5oiWWSnBd2/1d2yVc5xE3phmkAeIJWWw= Subject key identifier: 2F:F0:85:87:F2:BA:C9:BE:2A:E8:91:65:F2:C9:AB:D1:39:5F:6E:B9 Authority key identifier: E4:B0:D3:42:A9:32:33:39:C0:77:C5:C6:AD:E1:09:3B:5A:40:0F:24 Certificate issuer: /CN=e4b0d342a9323339c077c5c6ade1093b5a400f24 Certificate serial: 019AF49BD1BADFDD8C2D537D32350D896CFE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5LDTQqkyMznAd8XGreEJO1pADyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft Manifest number: 03C7 Signing time: Sat 06 Dec 2025 17:00:43 +0000 Manifest this update: Sat 06 Dec 2025 17:00:43 +0000 Manifest next update: Sun 07 Dec 2025 17:00:43 +0000 Files and hashes: 1: 5LDTQqkyMznAd8XGreEJO1pADyQ.crl (hash: QZA5pIbHa0qnHwxvwm1sry7LkqMZTls5ohRncvkpyiE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/5LDTQqkyMznAd8XGreEJO1pADyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9b:d1:ba:df:dd:8c:2d:53:7d:32:35:0d:89:6c:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4b0d342a9323339c077c5c6ade1093b5a400f24 Validity Not Before: Dec 6 17:00:43 2025 GMT Not After : Dec 7 17:00:43 2025 GMT Subject: CN=2ff08587f2bac9be2ae89165f2c9abd1395f6eb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f9:f6:1e:aa:e7:0e:57:87:ce:ab:83:2f:20: f6:50:7f:28:6b:87:11:a0:d3:eb:fa:11:ba:d4:55: d9:1a:42:e3:1f:5f:4c:52:49:a9:ad:4a:84:42:06: d2:96:d6:0d:2a:95:08:7b:15:8e:60:b3:1a:a8:75: 7c:0f:23:c4:5c:d8:af:e5:87:52:10:75:82:ac:2a: 05:21:7b:d1:9f:41:e0:08:1f:21:08:c5:6b:52:56: 67:1c:ca:dd:62:d2:9e:43:41:b3:51:22:df:6c:db: 7f:84:46:c6:73:a3:00:48:f5:af:9e:c4:b6:5c:4d: 49:99:46:72:fe:19:18:9c:0c:e8:98:12:78:15:d1: cc:f1:f3:a8:59:f3:07:30:b8:1c:c3:21:50:ff:73: a1:cf:c4:6b:91:55:bf:90:dd:80:94:b6:24:48:97: d2:66:88:37:07:74:68:72:93:de:cb:cb:ff:c2:c3: fc:ad:23:cb:d3:41:05:f4:45:b8:08:87:ae:a8:94: ea:be:e4:ff:47:07:38:0b:77:a9:e1:61:21:fa:11: c1:6a:78:34:76:1d:90:fd:45:db:fa:14:90:d9:88: 87:35:e7:6c:94:17:bc:de:8f:53:7a:93:c1:a9:48: 4c:dc:fd:bd:81:76:90:24:a2:18:41:33:ff:89:18: f2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F0:85:87:F2:BA:C9:BE:2A:E8:91:65:F2:C9:AB:D1:39:5F:6E:B9 X509v3 Authority Key Identifier: keyid:E4:B0:D3:42:A9:32:33:39:C0:77:C5:C6:AD:E1:09:3B:5A:40:0F:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LDTQqkyMznAd8XGreEJO1pADyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:61:01:c5:b9:9f:c7:f8:30:4d:b1:2c:22:18:60:da:06:d4: 81:62:8e:45:cb:74:a0:87:0c:a8:87:78:b1:96:73:73:f0:ff: ff:67:73:6a:2d:1b:8f:eb:2b:c3:39:d4:a9:c7:76:28:f0:ea: a9:04:c5:0f:8c:97:d2:cd:37:b0:ed:2c:f8:6f:f8:f2:63:fc: f4:84:ae:5a:7b:33:40:fe:f9:f8:c9:dc:4c:36:45:85:bd:24: 7e:c0:ad:a8:67:79:db:4d:41:1a:f9:fe:a0:72:ff:d6:45:1e: d1:45:b3:6f:cf:2e:fb:e4:b2:53:60:7a:d4:4f:99:4e:12:10: 5e:2e:e0:1f:85:af:6f:26:a5:5c:7a:12:c2:8e:24:36:38:be: 2d:8a:08:74:59:5e:76:08:c1:aa:f0:f2:97:27:c7:2b:c6:42: e8:bf:1c:e2:ff:c5:a3:05:d4:67:d8:b8:75:0b:f4:53:87:3a: 7b:04:07:4d:6d:92:92:38:fc:a2:39:86:46:f3:16:fb:8b:fe: 74:02:32:48:b7:75:9b:c8:c0:68:5b:32:ec:03:9e:18:6c:67: b4:12:e9:32:8e:4b:eb:96:3e:86:f6:b4:80:cb:f7:5a:c8:ef: e0:a5:95:6f:e0:33:c9:3b:7e:ae:66:6b:c4:98:71:8f:f3:38: 29:e2:80:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0m9G6392MLVN9MjUNiWz+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0YjBkMzQyYTkzMjMzMzljMDc3YzVjNmFkZTEwOTNiNWE0 MDBmMjQwHhcNMjUxMjA2MTcwMDQzWhcNMjUxMjA3MTcwMDQzWjAzMTEwLwYDVQQD EygyZmYwODU4N2YyYmFjOWJlMmFlODkxNjVmMmM5YWJkMTM5NWY2ZWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/n2HqrnDleHzquDLyD2UH8oa4cR oNPr+hG61FXZGkLjH19MUkmprUqEQgbSltYNKpUIexWOYLMaqHV8DyPEXNiv5YdS EHWCrCoFIXvRn0HgCB8hCMVrUlZnHMrdYtKeQ0GzUSLfbNt/hEbGc6MASPWvnsS2 XE1JmUZy/hkYnAzomBJ4FdHM8fOoWfMHMLgcwyFQ/3Ohz8RrkVW/kN2AlLYkSJfS Zog3B3RocpPey8v/wsP8rSPL00EF9EW4CIeuqJTqvuT/Rwc4C3ep4WEh+hHBang0 dh2Q/UXb+hSQ2YiHNedslBe83o9TepPBqUhM3P29gXaQJKIYQTP/iRjy2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC/whYfyusm+KuiRZfLJq9E5X265MB8GA1UdIwQY MBaAFOSw00KpMjM5wHfFxq3hCTtaQA8kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUxEVFFxa3lNem5BZDhYR3JlRUpPMXBBRHlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9kY2IxMTAtNjJkNi00NGRmLWJkZTYt OWE5MGE3Y2E1MDhkLzEvNUxEVFFxa3lNem5BZDhYR3JlRUpPMXBBRHlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9kY2IxMTAtNjJkNi00NGRmLWJkZTYtOWE5MGE3Y2E1MDhk LzEvNUxEVFFxa3lNem5BZDhYR3JlRUpPMXBBRHlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVWEBxbmf x/gwTbEsIhhg2gbUgWKORct0oIcMqId4sZZzc/D//2dzai0bj+srwznUqcd2KPDq qQTFD4yX0s03sO0s+G/48mP89ISuWnszQP75+MncTDZFhb0kfsCtqGd5201BGvn+ oHL/1kUe0UWzb88u++SyU2B61E+ZThIQXi7gH4WvbyalXHoSwo4kNji+LYoIdFle dgjBqvDylyfHK8ZC6L8c4v/FowXUZ9i4dQv0U4c6ewQHTW2Skjj8ojmGRvMW+4v+ dAIySLd1m8jAaFsy7AOeGGxntBLpMo5L65Y+hva0gMv3Wsjv4KWVb+AzyTt+rmZr xJhxj/M4KeKArQ== -----END CERTIFICATE-----Generated at Sat Dec 6 20:58:46 2025 by rpki-client