This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft File: 5zcPsJ5SI60eRI9MDxYv6plae1Y.mft (raw, json) Hash identifier: VqyOuZm4n8c/3bOIeBA4KGV4Lc07v3jRKxtOHOUry34= Subject key identifier: 2D:4E:DA:0F:0F:B6:90:85:C0:F0:E5:64:F5:9C:99:69:E8:72:1C:B2 Authority key identifier: E7:37:0F:B0:9E:52:23:AD:1E:44:8F:4C:0F:16:2F:EA:99:5A:7B:56 Certificate issuer: /CN=e7370fb09e5223ad1e448f4c0f162fea995a7b56 Certificate serial: 019AF12ECA76D3303101CAE02246E3ADD191 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zcPsJ5SI60eRI9MDxYv6plae1Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft Manifest number: 1580 Signing time: Sat 06 Dec 2025 01:02:46 +0000 Manifest this update: Sat 06 Dec 2025 01:02:46 +0000 Manifest next update: Sun 07 Dec 2025 01:02:46 +0000 Files and hashes: 1: 5zcPsJ5SI60eRI9MDxYv6plae1Y.crl (hash: UdUhTXe8RMgUR5uV3VNCzH4MrmxEPVBksdDBHwLBVFU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.crl rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft rsync://rpki.ripe.net/repository/DEFAULT/5zcPsJ5SI60eRI9MDxYv6plae1Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:ca:76:d3:30:31:01:ca:e0:22:46:e3:ad:d1:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7370fb09e5223ad1e448f4c0f162fea995a7b56 Validity Not Before: Dec 6 01:02:46 2025 GMT Not After : Dec 7 01:02:46 2025 GMT Subject: CN=2d4eda0f0fb69085c0f0e564f59c9969e8721cb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:38:f8:e5:f0:90:5b:bb:d1:e5:58:4b:4c:e8: 69:b6:3a:d5:9d:d7:dc:7b:e9:88:67:30:c9:bd:43: 58:cb:75:88:2f:42:40:79:51:31:45:73:17:f6:03: c2:c9:16:6e:cb:cd:a4:8f:c0:2c:49:12:bf:e8:2b: 4d:f1:00:bd:17:83:ba:b6:f9:70:9d:db:27:06:cc: 01:cb:79:52:37:b6:ea:c1:74:d3:b6:54:d6:cd:c0: 30:17:8f:48:3e:11:c0:bc:74:b2:72:5a:9f:92:ad: 55:3a:eb:e9:49:84:dc:22:7b:9c:4c:43:3c:ce:55: c6:23:ca:91:c8:b5:79:40:cc:83:31:41:a2:94:43: 1b:b8:24:22:09:ef:4a:45:99:07:7c:3b:9e:b2:5b: a2:91:e1:78:d7:93:0f:1e:b8:7d:10:61:04:12:d3: ed:30:81:97:2b:01:d0:36:5e:ab:61:77:c4:32:fb: 3d:17:3b:2e:1e:bc:29:e4:9a:d1:6a:b6:83:93:26: 2b:38:5f:75:1c:17:55:5f:88:8d:bb:8d:5c:90:0a: 2a:b2:eb:25:3d:c7:af:42:25:31:c7:cf:00:15:aa: b1:c5:b2:63:41:1e:52:14:ed:6c:05:e3:a0:9a:3d: 5b:1a:49:79:71:e4:ba:c2:f9:01:fd:01:d1:d6:f9: 81:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:4E:DA:0F:0F:B6:90:85:C0:F0:E5:64:F5:9C:99:69:E8:72:1C:B2 X509v3 Authority Key Identifier: keyid:E7:37:0F:B0:9E:52:23:AD:1E:44:8F:4C:0F:16:2F:EA:99:5A:7B:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zcPsJ5SI60eRI9MDxYv6plae1Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:c6:fd:30:e5:3b:e7:de:96:bd:65:10:5e:94:5c:7a:d2:b5: 61:3a:b3:da:92:1b:37:ce:31:e5:c9:71:70:8e:7c:b9:97:55: 5e:24:4e:26:2a:13:45:a2:67:07:33:81:72:ed:1d:1e:fe:86: a4:3b:a2:7f:e1:a0:6d:ea:0c:fd:1a:ce:cf:b8:b2:a6:ab:3d: 80:eb:42:bc:a7:fd:bb:b0:c9:0d:9e:66:ac:f9:82:4f:04:7d: f6:a6:bc:f2:3c:b3:99:06:c2:cd:ff:a3:14:87:6b:a7:ad:3b: 5f:28:70:61:a7:fc:e5:51:29:ca:b8:e3:ba:82:ee:bd:a9:f6: 21:53:f1:67:25:ca:84:f1:37:04:9b:fc:27:ed:e4:7e:e8:ec: 1c:16:d0:e3:1a:50:4b:39:fc:3d:d2:f8:7a:9b:a1:35:1c:e3: cf:13:c5:d7:ca:94:4b:de:b3:df:5c:96:28:f5:b5:ae:44:8b: 9b:06:fc:49:b6:f6:e3:4a:85:e2:a1:3c:66:2d:c3:86:b8:ce: 60:7a:20:49:58:95:28:c6:e7:0b:eb:5d:35:5d:5f:72:0d:a1: d6:5b:f1:13:09:8e:f4:23:f2:56:10:bd:45:67:3d:70:59:49: b6:33:cf:26:6a:8d:1a:76:53:4f:a2:ed:c4:d4:15:3e:c8:eb: 1b:11:66:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsp20zAxAcrgIkbjrdGRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3MzcwZmIwOWU1MjIzYWQxZTQ0OGY0YzBmMTYyZmVhOTk1 YTdiNTYwHhcNMjUxMjA2MDEwMjQ2WhcNMjUxMjA3MDEwMjQ2WjAzMTEwLwYDVQQD EygyZDRlZGEwZjBmYjY5MDg1YzBmMGU1NjRmNTljOTk2OWU4NzIxY2IyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+zj45fCQW7vR5VhLTOhptjrVndfc e+mIZzDJvUNYy3WIL0JAeVExRXMX9gPCyRZuy82kj8AsSRK/6CtN8QC9F4O6tvlw ndsnBswBy3lSN7bqwXTTtlTWzcAwF49IPhHAvHSyclqfkq1VOuvpSYTcInucTEM8 zlXGI8qRyLV5QMyDMUGilEMbuCQiCe9KRZkHfDuesluikeF415MPHrh9EGEEEtPt MIGXKwHQNl6rYXfEMvs9FzsuHrwp5JrRaraDkyYrOF91HBdVX4iNu41ckAoqsusl PcevQiUxx88AFaqxxbJjQR5SFO1sBeOgmj1bGkl5ceS6wvkB/QHR1vmBAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC1O2g8PtpCFwPDlZPWcmWnochyyMB8GA1UdIwQY MBaAFOc3D7CeUiOtHkSPTA8WL+qZWntWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXpjUHNKNVNJNjBlUkk5TUR4WXY2cGxhZTFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC84ZjIyOTMtN2RiYS00MzdiLWFmODUt OTdlMzU1ZTUxZWYzLzEvNXpjUHNKNVNJNjBlUkk5TUR4WXY2cGxhZTFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC84ZjIyOTMtN2RiYS00MzdiLWFmODUtOTdlMzU1ZTUxZWYz LzEvNXpjUHNKNVNJNjBlUkk5TUR4WXY2cGxhZTFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACcb9MOU7 596WvWUQXpRcetK1YTqz2pIbN84x5clxcI58uZdVXiROJioTRaJnBzOBcu0dHv6G pDuif+GgbeoM/RrOz7iypqs9gOtCvKf9u7DJDZ5mrPmCTwR99qa88jyzmQbCzf+j FIdrp607XyhwYaf85VEpyrjjuoLuvan2IVPxZyXKhPE3BJv8J+3kfujsHBbQ4xpQ Szn8PdL4epuhNRzjzxPF18qUS96z31yWKPW1rkSLmwb8Sbb240qF4qE8Zi3DhrjO YHogSViVKMbnC+tdNV1fcg2h1lvxEwmO9CPyVhC9RWc9cFlJtjPPJmqNGnZTT6Lt xNQVPsjrGxFmRw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:02:35 2025 by rpki-client