This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft File: 5DWo9PNqSBGpLRlhc-HEmarMd9U.mft (raw, json) Hash identifier: Om79NjLwyOcdUtdcrj6CHEJjPCMZf00s10B02vA9D0g= Subject key identifier: 19:B0:81:4B:0A:5A:5A:B2:4C:D8:0B:03:DE:2D:4E:D3:F5:FA:DE:34 Authority key identifier: E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5 Certificate issuer: /CN=e435a8f4f36a4811a92d196173e1c499aacc77d5 Certificate serial: 019AF276899A439309D3E432A93C066E68F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft Manifest number: 0E3F Signing time: Sat 06 Dec 2025 07:00:45 +0000 Manifest this update: Sat 06 Dec 2025 07:00:45 +0000 Manifest next update: Sun 07 Dec 2025 07:00:45 +0000 Files and hashes: 1: 5DWo9PNqSBGpLRlhc-HEmarMd9U.crl (hash: JieseMEo0jPofNoOLmvaaGMjBrvh006D2935OW3TEtw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:89:9a:43:93:09:d3:e4:32:a9:3c:06:6e:68:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e435a8f4f36a4811a92d196173e1c499aacc77d5 Validity Not Before: Dec 6 07:00:45 2025 GMT Not After : Dec 7 07:00:45 2025 GMT Subject: CN=19b0814b0a5a5ab24cd80b03de2d4ed3f5fade34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:05:9f:4f:46:8b:62:6e:25:bb:1f:ea:df:cc: 4f:9e:e1:fc:d9:42:fc:6b:65:ef:ba:af:c8:49:33: 03:1c:58:8a:1a:72:ec:70:4b:7b:ab:9f:63:3d:4a: 03:1a:a4:eb:88:5b:4c:1b:81:2e:8e:40:4a:26:88: 9d:62:b6:a3:a8:19:11:44:7c:f8:25:3e:0a:f6:70: f1:a1:e7:cc:92:0f:c6:ea:5e:5e:55:f0:ac:dc:60: 83:5c:5e:ed:08:db:2e:ee:f4:eb:fb:73:e1:cf:cd: 19:83:4a:1d:f6:3f:0c:84:73:d5:a1:06:77:6b:e6: c0:3c:a3:61:b2:fc:30:ac:3f:c4:d2:cc:93:06:73: f7:ea:c0:50:bf:bd:db:4f:b7:07:de:cd:8f:dc:b0: 33:69:63:a9:d0:c9:00:02:ae:75:64:10:69:90:aa: bf:c5:60:3b:9a:00:24:87:03:01:a0:21:d3:6b:dd: f6:82:19:9d:42:d9:87:28:32:02:2e:86:a5:0e:64: 32:ca:1b:3f:1e:2d:4c:c2:07:fa:ad:a8:db:0e:1b: 0b:62:24:a1:7a:5e:29:fa:ac:2d:04:5f:3f:ec:cc: a3:0c:2c:d7:6f:89:e4:80:9a:41:f8:ce:61:75:93: a8:89:1b:ef:81:51:8e:3a:50:8d:3f:4c:bd:02:41: 1b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B0:81:4B:0A:5A:5A:B2:4C:D8:0B:03:DE:2D:4E:D3:F5:FA:DE:34 X509v3 Authority Key Identifier: keyid:E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:3d:01:8c:76:d2:7b:b0:88:e2:d0:e5:da:db:b8:a4:00:33: a1:90:1d:df:47:00:cc:74:57:a0:b1:f5:4f:be:f2:9a:30:13: ca:02:d4:91:fe:2e:99:73:e1:07:16:8e:c6:d2:55:86:51:a5: 96:f2:df:cc:49:93:71:e2:19:60:e7:dd:13:0a:ff:33:9a:c0: 31:c5:33:c3:e5:05:7d:eb:96:9c:d1:c2:01:7a:a1:e5:83:ab: 58:37:d0:bf:20:6d:b8:64:32:36:60:ab:48:24:00:9e:65:0c: 19:2d:bc:0d:0a:6c:18:6f:7b:10:2d:f2:15:49:1a:5a:c3:fc: ee:c9:05:b1:e3:46:13:2e:0b:29:1f:b6:5f:62:75:27:70:d8: 07:e7:47:5e:f2:8e:f2:a4:0f:18:62:ca:18:ae:7c:8e:6a:1b: d3:b1:fe:a5:f3:37:33:ac:5b:8c:1b:a5:e1:d7:0f:18:63:97: 1e:eb:de:e6:76:3e:b8:4d:01:76:20:a2:79:81:2b:e4:28:9b: c2:19:07:7c:14:98:cb:44:7d:81:04:7f:b9:41:92:ca:c8:06: 41:65:fe:8b:32:6a:b7:35:14:84:0e:39:5f:04:cb:7c:b7:8d: c5:34:c9:ba:57:72:6a:c0:4e:35:9f:b4:e9:68:c8:b9:69:28: d0:5e:41:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydomaQ5MJ0+QyqTwGbmj0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0MzVhOGY0ZjM2YTQ4MTFhOTJkMTk2MTczZTFjNDk5YWFj Yzc3ZDUwHhcNMjUxMjA2MDcwMDQ1WhcNMjUxMjA3MDcwMDQ1WjAzMTEwLwYDVQQD EygxOWIwODE0YjBhNWE1YWIyNGNkODBiMDNkZTJkNGVkM2Y1ZmFkZTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3QWfT0aLYm4lux/q38xPnuH82UL8 a2Xvuq/ISTMDHFiKGnLscEt7q59jPUoDGqTriFtMG4EujkBKJoidYrajqBkRRHz4 JT4K9nDxoefMkg/G6l5eVfCs3GCDXF7tCNsu7vTr+3Phz80Zg0od9j8MhHPVoQZ3 a+bAPKNhsvwwrD/E0syTBnP36sBQv73bT7cH3s2P3LAzaWOp0MkAAq51ZBBpkKq/ xWA7mgAkhwMBoCHTa932ghmdQtmHKDICLoalDmQyyhs/Hi1Mwgf6rajbDhsLYiSh el4p+qwtBF8/7MyjDCzXb4nkgJpB+M5hdZOoiRvvgVGOOlCNP0y9AkEbrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBmwgUsKWlqyTNgLA94tTtP1+t40MB8GA1UdIwQY MBaAFOQ1qPTzakgRqS0ZYXPhxJmqzHfVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDkt YjgwZTlmYTQyZGZiLzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDktYjgwZTlmYTQyZGZi LzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfT0BjHbS e7CI4tDl2tu4pAAzoZAd30cAzHRXoLH1T77ymjATygLUkf4umXPhBxaOxtJVhlGl lvLfzEmTceIZYOfdEwr/M5rAMcUzw+UFfeuWnNHCAXqh5YOrWDfQvyBtuGQyNmCr SCQAnmUMGS28DQpsGG97EC3yFUkaWsP87skFseNGEy4LKR+2X2J1J3DYB+dHXvKO 8qQPGGLKGK58jmob07H+pfM3M6xbjBul4dcPGGOXHuve5nY+uE0BdiCieYEr5Cib whkHfBSYy0R9gQR/uUGSysgGQWX+izJqtzUUhA45XwTLfLeNxTTJuldyasBONZ+0 6WjIuWko0F5BBw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:31:57 2025 by rpki-client