This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft File: 5BCXLMRZVogEu0t5HXwTz7IoOIM.mft (raw, json) Hash identifier: KY+OasMz2hOwOF3WVEDVCJkjklUWyQndhK0K/ZYP8eM= Subject key identifier: 4B:8F:73:F3:2C:A9:CC:EC:79:0E:97:4D:DC:0B:A6:30:54:23:82:1C Authority key identifier: E4:10:97:2C:C4:59:56:88:04:BB:4B:79:1D:7C:13:CF:B2:28:38:83 Certificate issuer: /CN=e410972cc459568804bb4b791d7c13cfb2283883 Certificate serial: 019AF208AB04CBF6BFE5479A2D193484270E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5BCXLMRZVogEu0t5HXwTz7IoOIM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft Manifest number: 1530 Signing time: Sat 06 Dec 2025 05:00:45 +0000 Manifest this update: Sat 06 Dec 2025 05:00:45 +0000 Manifest next update: Sun 07 Dec 2025 05:00:45 +0000 Files and hashes: 1: 5BCXLMRZVogEu0t5HXwTz7IoOIM.crl (hash: H5Jgj/pUMf7eXl/WkRCCRTFCpZheThVLxsgqLGBYffo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft rsync://rpki.ripe.net/repository/DEFAULT/5BCXLMRZVogEu0t5HXwTz7IoOIM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:ab:04:cb:f6:bf:e5:47:9a:2d:19:34:84:27:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e410972cc459568804bb4b791d7c13cfb2283883 Validity Not Before: Dec 6 05:00:45 2025 GMT Not After : Dec 7 05:00:45 2025 GMT Subject: CN=4b8f73f32ca9ccec790e974ddc0ba6305423821c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:80:6d:19:3a:9a:de:e4:86:7d:92:29:21:0f: 26:3a:ac:d5:a5:df:b5:0c:55:13:89:1a:61:67:6c: 4d:f8:5b:1b:e1:a8:a1:35:53:cc:a5:95:a7:fe:e9: da:de:cb:2f:e6:bc:c2:71:5c:ea:60:5a:19:ed:80: 4f:0b:8a:0c:22:4a:ca:71:8d:77:39:09:e8:18:fd: c9:69:3d:e7:99:0c:9f:63:de:d9:7f:cc:ea:7c:45: 7b:b0:45:b5:45:0d:2c:43:bd:29:38:98:52:ab:5c: 3a:10:61:4b:1c:de:f9:69:f1:73:84:09:5e:54:17: e7:78:6a:c6:fa:b2:8b:dc:02:73:df:2b:1f:ec:8c: a4:b1:8b:27:36:c5:84:05:cb:74:31:0c:a6:3d:86: c4:2a:05:9a:41:d9:8c:d6:da:df:65:7a:da:0b:4e: 1e:85:41:0d:5b:d4:b6:1f:d5:c4:69:4a:91:c1:b2: 37:6c:39:6a:0f:14:01:ab:be:fc:f8:26:6e:3d:d0: 38:90:a6:8d:f6:09:58:b7:96:f6:04:69:b3:fe:30: e3:2a:0f:6b:40:5e:41:01:6b:9d:f2:89:96:0f:3e: 78:19:1d:5f:79:26:bf:46:95:6f:67:b4:54:3e:9b: ba:52:d0:55:c0:00:a4:0f:f6:22:ec:36:be:0d:76: 9d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:8F:73:F3:2C:A9:CC:EC:79:0E:97:4D:DC:0B:A6:30:54:23:82:1C X509v3 Authority Key Identifier: keyid:E4:10:97:2C:C4:59:56:88:04:BB:4B:79:1D:7C:13:CF:B2:28:38:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BCXLMRZVogEu0t5HXwTz7IoOIM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:5c:c9:87:7f:67:91:39:1d:98:c8:4e:6b:50:82:a6:39:27: 89:2d:f4:22:7a:04:91:d9:89:a1:41:3a:41:50:2c:79:6e:27: 4b:f7:18:12:37:3c:1a:c1:a0:0c:c4:d4:07:fb:96:d7:e8:89: 3e:4c:23:03:62:bb:23:03:02:17:cb:e7:90:bd:35:f7:91:71: d4:64:d8:4a:4f:4b:d4:4f:ec:7c:ad:79:f5:dc:59:9d:89:31: 20:c0:41:87:b9:0e:a5:6d:87:04:2b:b2:92:03:a3:c1:10:63: 45:9d:5f:76:88:72:2e:18:8d:05:a4:49:62:ed:d6:07:97:1e: 63:10:2f:db:c8:b4:78:36:1b:b8:2e:ad:53:30:63:3f:32:f5: 13:a8:1e:1a:3a:0b:26:e7:e2:7f:da:ed:0b:91:94:8e:fc:41: b0:96:2d:35:fa:50:50:9d:df:a4:be:db:96:b9:b6:8a:91:9c: 98:85:5a:48:57:e8:d7:2b:22:4b:a1:4b:a6:05:6a:ad:53:77: 44:2f:87:08:4f:79:9c:d9:11:6d:43:15:ec:60:52:38:f5:81: cb:bc:29:24:2d:4d:84:de:ab:dc:61:cd:f5:01:55:9e:69:5e: 93:02:9a:31:3e:c6:fd:25:ad:5e:cc:49:ee:b5:81:3a:0e:2f: d1:57:93:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCKsEy/a/5UeaLRk0hCcOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0MTA5NzJjYzQ1OTU2ODgwNGJiNGI3OTFkN2MxM2NmYjIy ODM4ODMwHhcNMjUxMjA2MDUwMDQ1WhcNMjUxMjA3MDUwMDQ1WjAzMTEwLwYDVQQD Eyg0YjhmNzNmMzJjYTljY2VjNzkwZTk3NGRkYzBiYTYzMDU0MjM4MjFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIBtGTqa3uSGfZIpIQ8mOqzVpd+1 DFUTiRphZ2xN+Fsb4aihNVPMpZWn/una3ssv5rzCcVzqYFoZ7YBPC4oMIkrKcY13 OQnoGP3JaT3nmQyfY97Zf8zqfEV7sEW1RQ0sQ70pOJhSq1w6EGFLHN75afFzhAle VBfneGrG+rKL3AJz3ysf7IyksYsnNsWEBct0MQymPYbEKgWaQdmM1trfZXraC04e hUENW9S2H9XEaUqRwbI3bDlqDxQBq778+CZuPdA4kKaN9glYt5b2BGmz/jDjKg9r QF5BAWud8omWDz54GR1feSa/RpVvZ7RUPpu6UtBVwACkD/Yi7Da+DXadpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEuPc/MsqczseQ6XTdwLpjBUI4IcMB8GA1UdIwQY MBaAFOQQlyzEWVaIBLtLeR18E8+yKDiDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUJDWExNUlpWb2dFdTB0NUhYd1R6N0lvT0lNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zMDZlNjItZTU4NC00OTJhLWJmNDYt ZjI3Y2VmNGJhMjI0LzEvNUJDWExNUlpWb2dFdTB0NUhYd1R6N0lvT0lNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8zMDZlNjItZTU4NC00OTJhLWJmNDYtZjI3Y2VmNGJhMjI0 LzEvNUJDWExNUlpWb2dFdTB0NUhYd1R6N0lvT0lNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVlzJh39n kTkdmMhOa1CCpjkniS30InoEkdmJoUE6QVAseW4nS/cYEjc8GsGgDMTUB/uW1+iJ PkwjA2K7IwMCF8vnkL0195Fx1GTYSk9L1E/sfK159dxZnYkxIMBBh7kOpW2HBCuy kgOjwRBjRZ1fdohyLhiNBaRJYu3WB5ceYxAv28i0eDYbuC6tUzBjPzL1E6geGjoL Jufif9rtC5GUjvxBsJYtNfpQUJ3fpL7blrm2ipGcmIVaSFfo1ysiS6FLpgVqrVN3 RC+HCE95nNkRbUMV7GBSOPWBy7wpJC1NhN6r3GHN9QFVnmlekwKaMT7G/SWtXsxJ 7rWBOg4v0VeTFw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:29:39 2025 by rpki-client