This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft File: 5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json) Hash identifier: Sr6KZio3zyYpvkK56RBjgANbI6IhxxFZFrpcbRW8Tdk= Subject key identifier: 12:54:D1:56:E7:01:09:E1:CF:73:C1:2F:FC:60:0A:DE:D1:3A:AD:69 Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3 Certificate issuer: /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3 Certificate serial: 019AF19B5F5EAD031EA3BF42DCCD66AFD1D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft Manifest number: 143F Signing time: Sat 06 Dec 2025 03:01:22 +0000 Manifest this update: Sat 06 Dec 2025 03:01:22 +0000 Manifest next update: Sun 07 Dec 2025 03:01:22 +0000 Files and hashes: 1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: Eb7jtvXDPxHLylubzW5x4SKwCj1UdsQHiGoUUjmNCPA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:5f:5e:ad:03:1e:a3:bf:42:dc:cd:66:af:d1:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3 Validity Not Before: Dec 6 03:01:22 2025 GMT Not After : Dec 7 03:01:22 2025 GMT Subject: CN=1254d156e70109e1cf73c12ffc600aded13aad69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d7:50:9e:1b:e7:3b:1a:1f:cb:bb:2c:82:b0: c7:e7:8e:cc:82:a2:62:80:8a:36:e8:e0:24:24:5f: 6a:0c:1f:26:25:f3:d5:4d:c1:d6:50:6c:95:d7:21: 10:81:a5:a0:7d:00:73:39:84:a3:13:1a:45:b1:9e: bc:64:45:31:c0:60:90:5c:b4:fd:2d:2b:25:11:1c: 91:39:4f:27:c8:fd:01:9e:5f:d5:92:d1:57:15:cd: d2:6b:b4:b6:f1:4d:95:f0:c3:49:23:01:cd:b7:d1: 38:ff:fa:66:0a:a9:36:45:3f:b3:5a:9d:cd:fa:12: d7:36:bd:4e:a2:25:69:ea:d0:35:19:54:b6:fb:f1: 20:59:e5:7b:f5:21:84:dc:19:fb:2d:81:c1:70:39: 87:8e:9b:36:b5:b1:c6:2d:6f:45:d8:f4:b9:84:b1: 47:9e:77:34:fd:d8:72:28:c4:7e:67:db:e8:06:de: 92:69:a0:35:d3:46:5c:65:64:1c:c5:2a:b3:ba:94: c0:ff:3d:e2:69:43:6a:d4:71:ca:fa:ef:fa:75:03: f3:fb:c7:43:a2:7b:1d:64:30:74:6c:85:bb:01:53: bf:e1:e1:1d:a1:59:c0:ff:55:6d:de:5b:1f:a1:16: ff:99:e9:ac:c6:c0:2e:e3:26:8d:e4:2d:81:b2:07: 78:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:54:D1:56:E7:01:09:E1:CF:73:C1:2F:FC:60:0A:DE:D1:3A:AD:69 X509v3 Authority Key Identifier: keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:2a:79:75:6d:9e:c1:8f:51:a9:bc:f4:75:bd:6a:5d:69:dd: 81:46:7a:87:ac:89:58:dc:d2:44:07:76:9b:8c:25:d9:f6:ee: e8:65:fa:98:e2:2e:1f:4b:48:92:ef:4e:25:29:2b:f2:b2:ff: 52:d3:71:ab:c2:36:e6:a8:27:18:a8:d5:2c:13:1b:26:8f:46: 36:97:12:50:0b:36:11:39:76:ed:c8:2d:57:3b:ac:be:32:e0: c7:7a:c8:d4:8b:b5:b6:f1:59:bf:32:65:f7:e6:e5:0d:af:6f: d2:67:9a:2a:10:fd:f1:21:7e:eb:0c:f0:54:95:f2:df:3d:c8: 0f:5e:7e:7b:45:f3:63:66:5f:bc:eb:d1:1e:5b:18:ba:db:ec: 5f:4d:8d:8a:dd:4a:a7:e1:1f:4b:7b:32:2b:93:0f:22:72:e1: 39:e9:e3:0b:c7:71:44:1a:ef:57:c7:4b:7c:38:f1:9e:d4:77: 57:b8:05:9c:83:07:36:c2:ea:1e:92:bc:96:5b:15:d9:f1:dc: 48:9d:76:fc:e1:fe:66:19:f2:b0:5a:8a:5d:da:8f:79:0c:da: f9:a5:5a:80:d1:dd:fe:bd:90:e2:a1:2d:bf:ac:b7:43:b4:06: b9:18:37:ed:f5:91:f4:2f:9e:9b:49:19:3c:ed:d0:79:a8:ff: 58:15:ff:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm19erQMeo79C3M1mr9HUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2YThiOTJkNGM1OTdmNmMwNDRmNzcyNTI4NTQ4ZjljOTEy OWEwZDMwHhcNMjUxMjA2MDMwMTIyWhcNMjUxMjA3MDMwMTIyWjAzMTEwLwYDVQQD EygxMjU0ZDE1NmU3MDEwOWUxY2Y3M2MxMmZmYzYwMGFkZWQxM2FhZDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ddQnhvnOxofy7ssgrDH547MgqJi gIo26OAkJF9qDB8mJfPVTcHWUGyV1yEQgaWgfQBzOYSjExpFsZ68ZEUxwGCQXLT9 LSslERyROU8nyP0Bnl/VktFXFc3Sa7S28U2V8MNJIwHNt9E4//pmCqk2RT+zWp3N +hLXNr1OoiVp6tA1GVS2+/EgWeV79SGE3Bn7LYHBcDmHjps2tbHGLW9F2PS5hLFH nnc0/dhyKMR+Z9voBt6SaaA100ZcZWQcxSqzupTA/z3iaUNq1HHK+u/6dQPz+8dD onsdZDB0bIW7AVO/4eEdoVnA/1Vt3lsfoRb/memsxsAu4yaN5C2Bsgd4eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBJU0VbnAQnhz3PBL/xgCt7ROq1pMB8GA1UdIwQY MBaAFOaouS1MWX9sBE93JShUj5yRKaDTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9mOWFmYzItOTE2OS00YThjLTg4MTYt ZGViN2ZmMWI1ZTZkLzEvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9mOWFmYzItOTE2OS00YThjLTg4MTYtZGViN2ZmMWI1ZTZk LzEvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAayp5dW2e wY9Rqbz0db1qXWndgUZ6h6yJWNzSRAd2m4wl2fbu6GX6mOIuH0tIku9OJSkr8rL/ UtNxq8I25qgnGKjVLBMbJo9GNpcSUAs2ETl27cgtVzusvjLgx3rI1Iu1tvFZvzJl 9+blDa9v0meaKhD98SF+6wzwVJXy3z3ID15+e0XzY2ZfvOvRHlsYutvsX02Nit1K p+EfS3syK5MPInLhOenjC8dxRBrvV8dLfDjxntR3V7gFnIMHNsLqHpK8llsV2fHc SJ12/OH+ZhnysFqKXdqPeQza+aVagNHd/r2Q4qEtv6y3Q7QGuRg37fWR9C+em0kZ PO3Qeaj/WBX/zg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:46 2025 by rpki-client