This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft File: 5UGkwVK194bWI9hcQUZSmc3aM4k.mft (raw, json) Hash identifier: /yz1gRZimQiP1eCpyBOXhHyhpeq0VJxJkbSyWGNAQL8= Subject key identifier: 17:EA:1D:63:DB:46:D0:2B:D4:D0:BC:CB:96:E1:CA:98:BA:7E:3C:08 Authority key identifier: E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89 Certificate issuer: /CN=e541a4c152b5f786d623d85c41465299cdda3389 Certificate serial: 019AF0883B352A47B27BA2E2AF8E33C6F36F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft Manifest number: 1763 Signing time: Fri 05 Dec 2025 22:00:51 +0000 Manifest this update: Fri 05 Dec 2025 22:00:51 +0000 Manifest next update: Sat 06 Dec 2025 22:00:51 +0000 Files and hashes: 1: 5UGkwVK194bWI9hcQUZSmc3aM4k.crl (hash: dMCxBQr3ZSHDlEtLxHBAH6qRipGJeWg3glIppWxthss=) 2: kenow9ooVwL0t4IuHSVvvQIsN8M.roa (hash: tJkXtVd1TBPTWkBnhiKcyLiHlQeoQgvy5+UbWV83vUY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:3b:35:2a:47:b2:7b:a2:e2:af:8e:33:c6:f3:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e541a4c152b5f786d623d85c41465299cdda3389 Validity Not Before: Dec 5 22:00:51 2025 GMT Not After : Dec 6 22:00:51 2025 GMT Subject: CN=17ea1d63db46d02bd4d0bccb96e1ca98ba7e3c08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bf:5c:c2:28:db:4f:8c:61:0a:12:cd:34:89: 05:74:5f:cd:8c:55:fd:42:5a:1d:6f:7c:d8:7e:d8: 12:6c:ea:e9:86:b7:86:35:3b:d6:0b:8d:2a:d2:b6: 77:8f:3c:8e:2c:61:e3:6e:f0:55:16:21:bc:17:fd: 60:23:cc:e0:69:30:b4:13:a8:af:19:1b:36:b4:5d: 44:ba:83:b5:db:3f:52:a3:78:7a:62:0c:44:5f:2e: 42:72:a2:e2:43:01:9d:4e:25:39:e0:3a:40:e1:ae: 38:7c:37:15:f3:3c:f2:31:6e:49:a4:a3:72:7c:a4: 81:d6:4a:f1:f7:55:b2:5e:6a:ce:3d:e9:a0:ea:c9: 01:b6:78:6e:c7:21:2d:d5:48:62:ab:a8:e4:c8:52: 15:95:66:a6:fa:e3:23:9f:b6:8d:8f:58:64:8a:64: 02:57:4d:bb:a0:35:a9:2f:f8:f3:43:84:85:f2:a3: 56:df:da:46:1a:28:cd:65:9b:fa:3d:1f:ba:de:b9: 65:d9:d7:3d:d4:de:ad:32:81:e2:b7:66:91:ab:c0: 11:d6:30:5b:11:8a:59:46:62:96:78:9e:e0:76:7c: d6:71:67:3a:83:b0:b5:c8:99:c2:80:96:43:80:0c: c6:73:9d:e8:43:2f:cc:c8:1a:56:85:26:45:51:96: 2c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:EA:1D:63:DB:46:D0:2B:D4:D0:BC:CB:96:E1:CA:98:BA:7E:3C:08 X509v3 Authority Key Identifier: keyid:E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:e4:bb:62:04:a8:f9:9f:2e:c1:31:03:fc:d3:6c:c0:dd:0d: 85:9e:b5:a6:f8:cf:c6:65:1a:ac:b1:cd:f0:4b:3d:01:3b:47: ce:16:e9:b6:f5:63:cc:9d:0a:96:66:bd:2e:cd:e7:bb:a7:76: a3:12:70:ff:e7:2f:18:ef:f1:49:ad:85:5f:4a:a4:a9:97:b9: 14:74:7f:fe:9b:a2:92:bc:71:15:fe:af:42:58:7f:5a:39:70: a7:9b:3b:61:ac:84:40:ac:23:bb:9d:2e:06:df:ae:e6:53:d9: 4c:47:88:fa:b6:1d:3b:2d:dd:81:c3:0f:a6:81:05:40:e6:b5: 95:90:06:28:72:42:cf:0e:2a:0f:1f:46:c3:bb:ad:89:7f:08: 1b:11:bb:88:85:20:9c:75:19:41:83:9c:90:81:af:a4:83:9e: 43:ce:ca:33:ac:4b:6a:77:bd:b7:da:91:ba:ad:8f:9f:2c:9b: 22:29:8c:e6:fb:e6:f2:b2:f0:04:24:99:4b:04:a8:d6:7f:6d: 74:37:b1:15:bf:e1:17:d4:1e:d4:60:2c:7f:d3:ae:3c:34:53: c6:4c:67:d2:23:23:89:9a:eb:14:30:a0:f7:ed:52:db:95:b4: 9f:90:64:2d:c0:f0:6c:a5:04:0b:9e:f8:df:0e:5c:b3:59:83: ba:cc:40:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiDs1Kkeye6Lir44zxvNvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1NDFhNGMxNTJiNWY3ODZkNjIzZDg1YzQxNDY1Mjk5Y2Rk YTMzODkwHhcNMjUxMjA1MjIwMDUxWhcNMjUxMjA2MjIwMDUxWjAzMTEwLwYDVQQD EygxN2VhMWQ2M2RiNDZkMDJiZDRkMGJjY2I5NmUxY2E5OGJhN2UzYzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo79cwijbT4xhChLNNIkFdF/NjFX9 Qlodb3zYftgSbOrphreGNTvWC40q0rZ3jzyOLGHjbvBVFiG8F/1gI8zgaTC0E6iv GRs2tF1EuoO12z9So3h6YgxEXy5CcqLiQwGdTiU54DpA4a44fDcV8zzyMW5JpKNy fKSB1krx91WyXmrOPemg6skBtnhuxyEt1Uhiq6jkyFIVlWam+uMjn7aNj1hkimQC V027oDWpL/jzQ4SF8qNW39pGGijNZZv6PR+63rll2dc91N6tMoHit2aRq8AR1jBb EYpZRmKWeJ7gdnzWcWc6g7C1yJnCgJZDgAzGc53oQy/MyBpWhSZFUZYs6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBfqHWPbRtAr1NC8y5bhypi6fjwIMB8GA1UdIwQY MBaAFOVBpMFStfeG1iPYXEFGUpnN2jOJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEt ZDg0ZWNiMjUwNWM0LzEvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEtZDg0ZWNiMjUwNWM0 LzEvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcOS7YgSo +Z8uwTED/NNswN0NhZ61pvjPxmUarLHN8Es9ATtHzhbptvVjzJ0Klma9Ls3nu6d2 oxJw/+cvGO/xSa2FX0qkqZe5FHR//puikrxxFf6vQlh/Wjlwp5s7YayEQKwju50u Bt+u5lPZTEeI+rYdOy3dgcMPpoEFQOa1lZAGKHJCzw4qDx9Gw7utiX8IGxG7iIUg nHUZQYOckIGvpIOeQ87KM6xLane9t9qRuq2PnyybIimM5vvm8rLwBCSZSwSo1n9t dDexFb/hF9Qe1GAsf9OuPDRTxkxn0iMjiZrrFDCg9+1S25W0n5BkLcDwbKUEC574 3w5cs1mDusxAcA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:22:28 2025 by rpki-client