This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft File: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft (raw, json) Hash identifier: 37PSGDo7t+1oHfN3qqJ22RTM7NP4iTf8k4hCSWB6yRQ= Subject key identifier: 58:C8:E0:00:CC:D6:12:32:30:51:9A:1A:9B:DD:6F:16:67:57:63:6C Authority key identifier: E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0 Certificate issuer: /CN=e47406f4982b61824c8fd44b81ede0a99fc724e0 Certificate serial: 019AF088089408586ADACF8ECA1F7C98F011 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft Manifest number: 0C15 Signing time: Fri 05 Dec 2025 22:00:37 +0000 Manifest this update: Fri 05 Dec 2025 22:00:37 +0000 Manifest next update: Sat 06 Dec 2025 22:00:37 +0000 Files and hashes: 1: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl (hash: M5Ks5gWvgMYeICGzfDkBYs5YODTx8HWF1wacJRLyc3Y=) 2: uzOfDn3na_0H4FMYAvULbyI0B6c.roa (hash: uAuwh9KcLGGG4HeIvB3vA//BXxot+F12ayTtv/6riqk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:08:94:08:58:6a:da:cf:8e:ca:1f:7c:98:f0:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e47406f4982b61824c8fd44b81ede0a99fc724e0 Validity Not Before: Dec 5 22:00:37 2025 GMT Not After : Dec 6 22:00:37 2025 GMT Subject: CN=58c8e000ccd6123230519a1a9bdd6f166757636c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b5:cf:82:94:7b:b9:53:34:1b:f7:ea:68:dd: d0:d9:0f:d3:46:6e:f9:40:5c:32:67:cd:19:42:c8: 70:e7:b2:3b:2d:51:c9:18:cf:d4:d1:6e:9d:99:c7: 0e:7b:0f:aa:0c:c6:7b:93:00:11:b2:16:da:2a:a7: 85:29:9d:b9:b5:4f:88:10:92:69:fd:9d:43:44:f5: 85:3b:97:20:be:b7:43:78:53:5d:b1:94:55:ea:32: 03:2f:4f:99:52:47:41:c6:ab:f6:87:d0:62:e1:40: 45:d8:41:07:59:ac:e4:73:a2:58:dc:7d:f7:c9:d2: fc:f0:a1:05:03:24:f3:92:ee:16:23:83:58:8c:6e: 30:74:8b:5b:35:f7:aa:f6:10:56:f1:38:7b:55:f1: 98:fe:ad:e7:18:c5:b3:30:f4:d7:9a:43:6b:9f:1d: 50:85:b4:39:cd:18:df:78:0d:64:72:57:86:c2:eb: aa:8d:28:a0:8e:c2:dc:68:3c:4e:b1:50:8f:00:60: 38:e8:6a:6f:31:ba:65:e0:27:22:a1:0d:00:dd:4c: 3d:51:05:19:40:9e:87:00:09:90:6f:05:34:2c:93: 4d:e0:66:27:56:10:2b:50:68:f9:13:e0:0a:7b:63: 9a:9f:27:0f:7f:c2:31:28:95:3f:67:21:d5:2b:f7: 35:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C8:E0:00:CC:D6:12:32:30:51:9A:1A:9B:DD:6F:16:67:57:63:6C X509v3 Authority Key Identifier: keyid:E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:d9:5b:58:56:50:60:49:8e:7f:27:6b:b8:70:c0:51:81:c3: 42:9f:11:3c:05:71:f3:81:7b:ee:4e:3f:fe:62:0d:89:f1:9b: 83:26:3b:0f:1d:75:38:e7:4f:0e:87:86:09:2b:26:95:d8:e1: 02:87:d2:1a:c1:e8:5a:ec:5c:1c:96:8b:5e:ec:d5:12:ca:f0: 31:d8:00:a1:50:74:3e:50:3b:ea:13:85:77:73:74:0b:b3:86: d3:c2:79:b1:2f:bc:03:15:c5:69:ed:52:24:74:62:38:66:1b: b1:d8:af:65:c2:b1:1a:a7:a0:b3:a3:08:37:c5:75:b9:d5:7e: 38:48:b3:8d:1c:63:c2:32:74:66:cd:50:e8:50:bc:0b:54:85: a0:23:64:bc:86:86:4a:d8:e8:9e:d6:80:e9:01:d1:27:ee:66: 55:87:11:27:7d:0c:b6:73:21:94:1d:6c:20:da:ea:f3:85:73: ba:60:9e:85:be:02:57:3f:8f:12:2e:00:d0:47:e3:c8:30:26: be:04:28:87:1a:4e:69:3e:f9:5c:5c:3d:a1:9b:47:dd:ec:5b: 92:47:61:6e:8c:2e:30:e7:f8:86:c8:06:74:3c:81:dd:60:5f: 8d:d7:82:18:b2:3a:92:a5:d7:48:13:3e:cc:73:c6:98:a6:37: 8e:8c:0d:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiAiUCFhq2s+Oyh98mPARMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0NzQwNmY0OTgyYjYxODI0YzhmZDQ0YjgxZWRlMGE5OWZj NzI0ZTAwHhcNMjUxMjA1MjIwMDM3WhcNMjUxMjA2MjIwMDM3WjAzMTEwLwYDVQQD Eyg1OGM4ZTAwMGNjZDYxMjMyMzA1MTlhMWE5YmRkNmYxNjY3NTc2MzZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLXPgpR7uVM0G/fqaN3Q2Q/TRm75 QFwyZ80ZQshw57I7LVHJGM/U0W6dmccOew+qDMZ7kwARshbaKqeFKZ25tU+IEJJp /Z1DRPWFO5cgvrdDeFNdsZRV6jIDL0+ZUkdBxqv2h9Bi4UBF2EEHWazkc6JY3H33 ydL88KEFAyTzku4WI4NYjG4wdItbNfeq9hBW8Th7VfGY/q3nGMWzMPTXmkNrnx1Q hbQ5zRjfeA1kcleGwuuqjSigjsLcaDxOsVCPAGA46GpvMbpl4CcioQ0A3Uw9UQUZ QJ6HAAmQbwU0LJNN4GYnVhArUGj5E+AKe2OanycPf8IxKJU/ZyHVK/c1lwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFjI4ADM1hIyMFGaGpvdbxZnV2NsMB8GA1UdIwQY MBaAFOR0BvSYK2GCTI/US4Ht4KmfxyTgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS85ZDY0ZmYtZDRkYS00ZGM5LTg4MjUt NzExOGY4Mzg0Yzc3LzEvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS85ZDY0ZmYtZDRkYS00ZGM5LTg4MjUtNzExOGY4Mzg0Yzc3 LzEvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAatlbWFZQ YEmOfydruHDAUYHDQp8RPAVx84F77k4//mINifGbgyY7Dx11OOdPDoeGCSsmldjh AofSGsHoWuxcHJaLXuzVEsrwMdgAoVB0PlA76hOFd3N0C7OG08J5sS+8AxXFae1S JHRiOGYbsdivZcKxGqegs6MIN8V1udV+OEizjRxjwjJ0Zs1Q6FC8C1SFoCNkvIaG StjontaA6QHRJ+5mVYcRJ30MtnMhlB1sINrq84VzumCehb4CVz+PEi4A0EfjyDAm vgQohxpOaT75XFw9oZtH3exbkkdhbowuMOf4hsgGdDyB3WBfjdeCGLI6kqXXSBM+ zHPGmKY3jowNDQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:14:58 2025 by rpki-client