This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft File: 5-aiybui7N1AdLMVN1mDXoI6uOQ.mft (raw, json) Hash identifier: aBpLD+LZ910ZwWnvlzuBy4rhjTYV72ycENSomX7IInU= Subject key identifier: 19:5B:07:B6:DF:71:2D:AD:C6:71:5A:76:B7:76:3F:95:14:C5:78:16 Authority key identifier: E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4 Certificate issuer: /CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4 Certificate serial: 019AF12D50DB11279D3F70B578877137E70A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft Manifest number: 0E41 Signing time: Sat 06 Dec 2025 01:01:10 +0000 Manifest this update: Sat 06 Dec 2025 01:01:10 +0000 Manifest next update: Sun 07 Dec 2025 01:01:10 +0000 Files and hashes: 1: 5-aiybui7N1AdLMVN1mDXoI6uOQ.crl (hash: k96jQvMH1Dg9GseqV2oTjXtQ9kA2UXQnOm4ppznR+Mc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:50:db:11:27:9d:3f:70:b5:78:87:71:37:e7:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4 Validity Not Before: Dec 6 01:01:10 2025 GMT Not After : Dec 7 01:01:10 2025 GMT Subject: CN=195b07b6df712dadc6715a76b7763f9514c57816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ee:a8:e5:9a:3f:d0:ab:7c:8e:39:53:bf:f5: 4c:53:f1:f6:d2:48:05:53:6b:cb:34:8f:1b:2e:94: ef:c3:96:72:e0:89:09:1b:54:9c:7c:49:48:05:9a: 74:db:2a:a3:d2:d5:36:d5:e9:32:b2:b4:da:72:a3: 5b:e7:c7:37:0f:12:43:29:17:12:34:77:13:20:40: fd:b3:68:2b:f6:36:e1:5f:61:0e:92:c1:05:b8:53: 75:84:60:47:4f:6a:5d:15:fd:65:0c:0a:86:3d:d3: a3:e2:d2:7c:7d:e9:43:42:c8:30:ec:01:23:ff:e8: 00:7e:3d:5f:99:eb:5b:47:57:2d:11:48:8e:f6:38: fe:fa:b7:a7:4c:8d:55:51:68:23:69:d3:f1:c5:6f: bf:39:dc:b2:02:61:5e:e4:e8:3a:c4:be:7e:ce:44: e1:12:b9:fe:de:7b:bf:c7:e1:e3:4e:a8:a7:70:c9: 4d:f5:5e:7a:bf:89:af:ee:b9:05:00:03:e4:97:0e: ea:fe:79:84:8c:5b:80:06:60:97:2c:8a:6d:ed:49: b3:55:3e:ed:58:51:32:d5:f5:81:8c:b6:da:a9:9d: 63:08:30:67:50:41:9f:06:26:c8:60:47:76:13:be: 14:13:24:7e:0a:2b:49:d3:b5:aa:60:ea:12:f4:e0: 9c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:5B:07:B6:DF:71:2D:AD:C6:71:5A:76:B7:76:3F:95:14:C5:78:16 X509v3 Authority Key Identifier: keyid:E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:d4:0a:d7:66:e7:55:a2:17:8c:a7:dd:50:4c:86:e8:3b:16: 16:b4:f0:33:04:bb:b0:36:1d:14:30:ec:a6:c7:a6:cf:05:09: af:13:c5:92:f5:04:fa:c8:af:a4:a5:b4:83:47:7c:1f:71:70: 99:43:88:f8:52:c0:61:ca:41:e0:2d:3b:d0:c2:9d:4f:2a:e5: 88:3e:f2:7d:2d:3a:e0:5d:55:2a:96:07:38:a8:be:0e:b1:82: d3:9b:c5:fe:81:f9:04:80:6d:be:5f:d5:6b:0d:93:15:d0:45: 5a:60:f5:71:8a:b0:d7:2c:77:92:e8:4e:5a:b1:7e:a0:1c:c5: 6d:ce:43:d3:e1:17:e7:bc:8d:9b:7e:e7:2b:71:81:7d:a2:6e: 45:cb:97:a0:e2:f0:cf:f7:76:da:f4:e4:76:de:cd:6a:af:7e: 68:d3:ee:68:cb:a7:6e:90:ea:bd:51:dd:2a:6b:23:75:d8:15: 04:5c:92:5b:5f:34:16:bd:b8:09:58:4f:1a:dd:3b:d0:4e:81: 4d:b0:11:33:09:a7:7d:ee:77:24:31:8a:97:ff:50:a6:03:66: 2a:9b:47:cb:da:52:e5:65:2b:c3:75:81:c3:bb:d3:7e:8a:07: 80:6d:85:ee:5e:a0:3e:d3:23:63:4e:59:d2:68:5a:f3:4a:ff: ef:92:66:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLVDbESedP3C1eIdxN+cKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3ZTZhMmM5YmJhMmVjZGQ0MDc0YjMxNTM3NTk4MzVlODIz YWI4ZTQwHhcNMjUxMjA2MDEwMTEwWhcNMjUxMjA3MDEwMTEwWjAzMTEwLwYDVQQD EygxOTViMDdiNmRmNzEyZGFkYzY3MTVhNzZiNzc2M2Y5NTE0YzU3ODE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvO6o5Zo/0Kt8jjlTv/VMU/H20kgF U2vLNI8bLpTvw5Zy4IkJG1ScfElIBZp02yqj0tU21ekysrTacqNb58c3DxJDKRcS NHcTIED9s2gr9jbhX2EOksEFuFN1hGBHT2pdFf1lDAqGPdOj4tJ8felDQsgw7AEj /+gAfj1fmetbR1ctEUiO9jj++renTI1VUWgjadPxxW+/OdyyAmFe5Og6xL5+zkTh Ern+3nu/x+HjTqincMlN9V56v4mv7rkFAAPklw7q/nmEjFuABmCXLIpt7UmzVT7t WFEy1fWBjLbaqZ1jCDBnUEGfBibIYEd2E74UEyR+CitJ07WqYOoS9OCcAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBlbB7bfcS2txnFadrd2P5UUxXgWMB8GA1UdIwQY MBaAFOfmosm7ouzdQHSzFTdZg16COrjkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNS1haXlidWk3TjFBZExNVk4xbURYb0k2dU9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNWI1OWUtYmMyNy00MjA2LWE3ZDkt NTM1NjlhY2EzYTVmLzEvNS1haXlidWk3TjFBZExNVk4xbURYb0k2dU9RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8zNWI1OWUtYmMyNy00MjA2LWE3ZDktNTM1NjlhY2EzYTVm LzEvNS1haXlidWk3TjFBZExNVk4xbURYb0k2dU9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAv9QK12bn VaIXjKfdUEyG6DsWFrTwMwS7sDYdFDDspsemzwUJrxPFkvUE+sivpKW0g0d8H3Fw mUOI+FLAYcpB4C070MKdTyrliD7yfS064F1VKpYHOKi+DrGC05vF/oH5BIBtvl/V aw2TFdBFWmD1cYqw1yx3kuhOWrF+oBzFbc5D0+EX57yNm37nK3GBfaJuRcuXoOLw z/d22vTkdt7Naq9+aNPuaMunbpDqvVHdKmsjddgVBFySW180Fr24CVhPGt070E6B TbARMwmnfe53JDGKl/9QpgNmKptHy9pS5WUrw3WBw7vTfooHgG2F7l6gPtMjY05Z 0mha80r/75JmNw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:07 2025 by rpki-client