This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft File: FK5SmozFunaS25UmkqCLVCJLvzY.mft (raw, json) Hash identifier: mHU4x8lCWTnvtoW6LSb9XlFtE52f9+3gxviqJe/zK1M= Subject key identifier: BC:51:AF:DB:F0:9F:83:92:72:D6:DE:09:66:56:4D:FB:C0:1D:4E:EF Authority key identifier: 14:AE:52:9A:8C:C5:BA:76:92:DB:95:26:92:A0:8B:54:22:4B:BF:36 Certificate issuer: /CN=14ae529a8cc5ba7692db952692a08b54224bbf36 Certificate serial: 019AF3527B7777BCF52B6691A32214E64459 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FK5SmozFunaS25UmkqCLVCJLvzY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 11:01:00 +0000 Manifest this update: Sat 06 Dec 2025 11:01:00 +0000 Manifest next update: Sun 07 Dec 2025 11:01:00 +0000 Files and hashes: 1: FK5SmozFunaS25UmkqCLVCJLvzY.crl (hash: 6GUJNV5HAt5p4G6xFd17XSHqgInTePur4NXR7j320OY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.crl rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft rsync://rpki.ripe.net/repository/DEFAULT/FK5SmozFunaS25UmkqCLVCJLvzY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:7b:77:77:bc:f5:2b:66:91:a3:22:14:e6:44:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14ae529a8cc5ba7692db952692a08b54224bbf36 Validity Not Before: Dec 6 11:01:00 2025 GMT Not After : Dec 7 11:01:00 2025 GMT Subject: CN=bc51afdbf09f839272d6de0966564dfbc01d4eef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:33:72:b4:5d:91:98:d7:95:f9:34:bc:db:4c: cb:ba:1c:51:f8:54:54:5c:a1:cf:8e:fa:d1:31:e2: d6:7f:a7:ac:f1:b7:96:06:bc:fd:6c:a8:8b:36:37: 05:cd:02:98:e2:a8:18:62:3f:1d:ad:b8:5f:5e:df: 10:45:c9:5d:30:16:85:aa:67:c5:8d:24:5b:c4:0d: 8f:ae:1f:bf:0b:6b:0d:e1:94:27:8d:7b:b3:28:ea: 90:69:4c:ac:07:53:56:1c:1d:c0:32:83:9b:92:15: f0:46:f8:f7:1c:b8:3b:7d:a1:16:40:47:8c:a7:15: d9:c2:a9:32:77:d3:be:14:d6:c4:7f:b0:90:7c:ea: 72:5c:2f:63:ae:4f:e3:bc:90:a0:66:17:5b:88:f0: 1e:0e:08:cb:ff:f7:8f:dd:4f:4e:5b:ac:0e:d4:16: 82:da:d5:29:1c:88:f6:b1:d8:eb:7d:6e:ae:b3:51: c3:f4:be:35:d6:bd:48:15:89:9f:75:a0:05:e5:a0: 0b:24:95:b6:68:51:ad:a2:3d:15:bb:2b:9f:8d:ec: 73:3b:f0:e1:ec:ad:d0:78:40:a9:fd:62:cd:8d:f9: 6f:ce:4d:16:63:a7:09:7d:e1:f3:b6:ab:b8:21:bc: b1:2e:10:f6:4f:2e:ce:bb:cf:cc:e0:3f:9b:82:1b: 3f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:51:AF:DB:F0:9F:83:92:72:D6:DE:09:66:56:4D:FB:C0:1D:4E:EF X509v3 Authority Key Identifier: keyid:14:AE:52:9A:8C:C5:BA:76:92:DB:95:26:92:A0:8B:54:22:4B:BF:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FK5SmozFunaS25UmkqCLVCJLvzY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:ad:a3:f9:29:bf:5c:ea:46:80:29:26:f8:51:82:14:d2:9f: 58:29:66:a4:44:43:29:ad:94:2f:4a:5a:65:35:95:67:1c:cb: c6:67:29:aa:16:46:75:2f:40:13:b3:cc:8a:68:d2:5d:84:ae: c8:c9:52:bc:61:43:03:ca:a4:05:ae:40:26:91:39:cd:3b:94: 47:c4:ca:66:83:51:da:09:ba:33:85:86:ef:dd:89:aa:a0:34: ed:93:82:99:8c:60:3f:4c:53:6a:97:b2:3e:29:c1:08:31:c1: 36:5f:24:4e:95:16:36:80:7f:e2:26:99:30:9d:96:64:22:a4: 64:fb:02:ae:ba:8c:e8:08:ec:cf:a0:d5:d0:6b:c2:d5:21:12: 67:31:cd:5b:bb:1c:9c:28:53:74:10:5d:0d:e7:e4:bb:98:6d: 2a:bd:ba:93:61:f0:67:df:b8:f4:ee:f9:f4:24:e1:82:7f:4c: 92:f5:14:a8:28:1a:6d:c0:46:e7:15:ef:59:05:7c:c8:52:9c: 6d:75:b7:7f:72:b0:8b:dd:6a:6b:a9:6f:14:c6:4b:f3:0e:bb: f4:00:e5:d9:61:1a:45:2c:28:73:db:e2:06:7f:b6:0d:9f:81: 12:b2:fe:74:f1:c4:6c:e5:a0:a5:05:24:27:02:f9:88:54:8d: 7a:17:4d:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUnt3d7z1K2aRoyIU5kRZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0YWU1MjlhOGNjNWJhNzY5MmRiOTUyNjkyYTA4YjU0MjI0 YmJmMzYwHhcNMjUxMjA2MTEwMTAwWhcNMjUxMjA3MTEwMTAwWjAzMTEwLwYDVQQD EyhiYzUxYWZkYmYwOWY4MzkyNzJkNmRlMDk2NjU2NGRmYmMwMWQ0ZWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTNytF2RmNeV+TS820zLuhxR+FRU XKHPjvrRMeLWf6es8beWBrz9bKiLNjcFzQKY4qgYYj8drbhfXt8QRcldMBaFqmfF jSRbxA2Prh+/C2sN4ZQnjXuzKOqQaUysB1NWHB3AMoObkhXwRvj3HLg7faEWQEeM pxXZwqkyd9O+FNbEf7CQfOpyXC9jrk/jvJCgZhdbiPAeDgjL//eP3U9OW6wO1BaC 2tUpHIj2sdjrfW6us1HD9L411r1IFYmfdaAF5aALJJW2aFGtoj0VuyufjexzO/Dh 7K3QeECp/WLNjflvzk0WY6cJfeHztqu4IbyxLhD2Ty7Ou8/M4D+bghs/0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLxRr9vwn4OSctbeCWZWTfvAHU7vMB8GA1UdIwQY MBaAFBSuUpqMxbp2ktuVJpKgi1QiS782MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRks1U21vekZ1bmFTMjVVbWtxQ0xWQ0pMdnpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS83NmVhNzctMTc1Ny00ZGIyLWEwODMt ZDIxOGZiM2MxMzdiLzEvRks1U21vekZ1bmFTMjVVbWtxQ0xWQ0pMdnpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS83NmVhNzctMTc1Ny00ZGIyLWEwODMtZDIxOGZiM2MxMzdi LzEvRks1U21vekZ1bmFTMjVVbWtxQ0xWQ0pMdnpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKa2j+Sm/ XOpGgCkm+FGCFNKfWClmpERDKa2UL0paZTWVZxzLxmcpqhZGdS9AE7PMimjSXYSu yMlSvGFDA8qkBa5AJpE5zTuUR8TKZoNR2gm6M4WG792JqqA07ZOCmYxgP0xTapey PinBCDHBNl8kTpUWNoB/4iaZMJ2WZCKkZPsCrrqM6Ajsz6DV0GvC1SESZzHNW7sc nChTdBBdDefku5htKr26k2HwZ9+49O759CThgn9MkvUUqCgabcBG5xXvWQV8yFKc bXW3f3Kwi91qa6lvFMZL8w679ADl2WEaRSwoc9viBn+2DZ+BErL+dPHEbOWgpQUk JwL5iFSNehdN+Q== -----END CERTIFICATE-----Generated at Sat Dec 6 20:29:30 2025 by rpki-client