This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft File: 5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft (raw, json) Hash identifier: Cvhpnts4YyQuacYi/PTODMAdTY0ewKFDEESgd63f4OE= Subject key identifier: 21:7E:1E:2D:7E:F0:35:4E:C6:62:6C:B6:CD:34:94:94:57:7A:87:F8 Authority key identifier: E4:03:F4:DA:5B:42:3D:89:9F:BB:5B:56:16:4F:B0:76:96:D8:15:9D Certificate issuer: /CN=e403f4da5b423d899fbb5b56164fb07696d8159d Certificate serial: 019AF12E2D4246E42A1EEA65C08EA91D0256 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5AP02ltCPYmfu1tWFk-wdpbYFZ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft Manifest number: EB Signing time: Sat 06 Dec 2025 01:02:06 +0000 Manifest this update: Sat 06 Dec 2025 01:02:06 +0000 Manifest next update: Sun 07 Dec 2025 01:02:06 +0000 Files and hashes: 1: 5AP02ltCPYmfu1tWFk-wdpbYFZ0.crl (hash: e3KvNdlGOB380T684QK9RVB/oFc+y4DwXTQWyhXUcI0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft rsync://rpki.ripe.net/repository/DEFAULT/5AP02ltCPYmfu1tWFk-wdpbYFZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:2d:42:46:e4:2a:1e:ea:65:c0:8e:a9:1d:02:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e403f4da5b423d899fbb5b56164fb07696d8159d Validity Not Before: Dec 6 01:02:06 2025 GMT Not After : Dec 7 01:02:06 2025 GMT Subject: CN=217e1e2d7ef0354ec6626cb6cd349494577a87f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7b:69:93:e3:0f:5f:e0:0e:00:b6:ed:ce:5a: d7:ff:43:7f:cf:c9:6e:e1:32:27:9f:6d:cd:05:6d: 0e:3d:ed:c2:9f:d2:b0:60:38:24:b5:22:9f:d4:95: eb:7d:33:d3:a4:a1:f3:e3:36:f8:89:57:24:01:4d: 73:41:8a:18:ef:b4:0a:60:06:18:00:02:e6:38:e6: 1c:dc:21:96:ad:98:41:f0:c6:6d:bf:aa:ea:87:34: dd:2b:41:f7:6b:25:e3:05:0a:38:b5:59:a4:7c:93: eb:e6:4e:63:39:f6:74:37:55:af:87:25:61:00:9f: 05:a7:cc:26:e1:95:7f:8c:b6:98:80:ee:49:03:4f: 3d:68:bb:df:34:11:98:5f:5e:ea:6f:96:29:9d:46: f3:d2:65:46:64:dc:eb:59:59:ca:bf:0c:8b:3a:3b: b3:17:e8:fd:43:81:06:2c:3f:16:52:2c:b5:01:d6: 8e:91:2e:77:ea:5d:26:1e:15:1d:c7:78:79:c6:97: 4a:cb:1c:6b:88:e1:19:a8:9d:ff:af:e1:c2:51:96: 13:cf:f2:56:d1:08:99:1e:56:a3:b7:21:be:7c:41: 3b:07:5e:f9:c0:c6:42:15:93:bf:a3:d8:66:dd:37: 6f:90:04:50:e1:8e:88:2d:de:8c:2e:84:94:16:4a: 1e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7E:1E:2D:7E:F0:35:4E:C6:62:6C:B6:CD:34:94:94:57:7A:87:F8 X509v3 Authority Key Identifier: keyid:E4:03:F4:DA:5B:42:3D:89:9F:BB:5B:56:16:4F:B0:76:96:D8:15:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5AP02ltCPYmfu1tWFk-wdpbYFZ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:06:84:cb:1b:38:38:99:e2:13:66:d6:3d:ea:38:06:21:b8: 74:93:6f:50:e3:92:7e:be:06:09:62:de:a4:df:43:2c:24:e6: f1:1c:42:e1:84:eb:fe:01:f5:e0:f1:15:68:4b:ec:79:d0:a1: 03:fb:8a:a5:05:25:e1:08:9a:38:99:fb:5c:67:6f:33:d9:44: 6a:63:45:fe:2b:27:53:19:22:b5:09:e9:46:35:de:14:07:bb: 56:c0:04:37:ff:b1:8b:6e:08:c0:3c:2e:35:00:fa:3c:50:c9: b0:8f:b5:c7:df:81:3c:ec:7c:ae:87:cb:f2:33:5a:49:09:58: d1:65:99:f6:82:f8:03:df:b1:ee:60:5e:57:b6:68:00:b0:e6: 1b:60:75:a0:ff:c9:1e:9d:f0:df:47:8b:94:9e:2c:0c:b6:2f: f8:bd:4f:4b:db:dd:b6:b7:92:d6:21:c1:85:fe:09:19:f2:25: 0f:f5:a0:5b:e6:7d:bf:e4:4b:ed:9e:ae:b9:50:c2:2c:77:a9: 62:56:00:a9:b2:cc:5c:65:59:0b:7d:40:b9:69:4f:2d:de:76: 1b:59:c2:8a:95:5f:0f:c6:17:04:9d:9c:b0:d3:bf:bc:8b:4c: b2:4a:f0:fc:87:50:35:93:a4:75:e8:be:3d:50:ec:1e:1e:42: 1c:fd:36:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLi1CRuQqHuplwI6pHQJWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0MDNmNGRhNWI0MjNkODk5ZmJiNWI1NjE2NGZiMDc2OTZk ODE1OWQwHhcNMjUxMjA2MDEwMjA2WhcNMjUxMjA3MDEwMjA2WjAzMTEwLwYDVQQD EygyMTdlMWUyZDdlZjAzNTRlYzY2MjZjYjZjZDM0OTQ5NDU3N2E4N2Y4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHtpk+MPX+AOALbtzlrX/0N/z8lu 4TInn23NBW0OPe3Cn9KwYDgktSKf1JXrfTPTpKHz4zb4iVckAU1zQYoY77QKYAYY AALmOOYc3CGWrZhB8MZtv6rqhzTdK0H3ayXjBQo4tVmkfJPr5k5jOfZ0N1WvhyVh AJ8Fp8wm4ZV/jLaYgO5JA089aLvfNBGYX17qb5YpnUbz0mVGZNzrWVnKvwyLOjuz F+j9Q4EGLD8WUiy1AdaOkS536l0mHhUdx3h5xpdKyxxriOEZqJ3/r+HCUZYTz/JW 0QiZHlajtyG+fEE7B175wMZCFZO/o9hm3TdvkARQ4Y6ILd6MLoSUFkoeMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCF+Hi1+8DVOxmJsts00lJRXeof4MB8GA1UdIwQY MBaAFOQD9NpbQj2Jn7tbVhZPsHaW2BWdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUFQMDJsdENQWW1mdTF0V0ZrLXdkcGJZRlowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9mZDIxMGQtZDRjMy00ODMxLWE0NDYt YTAwOTU2YWZjNDY5LzEvNUFQMDJsdENQWW1mdTF0V0ZrLXdkcGJZRlowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9mZDIxMGQtZDRjMy00ODMxLWE0NDYtYTAwOTU2YWZjNDY5 LzEvNUFQMDJsdENQWW1mdTF0V0ZrLXdkcGJZRlowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAagaEyxs4 OJniE2bWPeo4BiG4dJNvUOOSfr4GCWLepN9DLCTm8RxC4YTr/gH14PEVaEvsedCh A/uKpQUl4QiaOJn7XGdvM9lEamNF/isnUxkitQnpRjXeFAe7VsAEN/+xi24IwDwu NQD6PFDJsI+1x9+BPOx8rofL8jNaSQlY0WWZ9oL4A9+x7mBeV7ZoALDmG2B1oP/J Hp3w30eLlJ4sDLYv+L1PS9vdtreS1iHBhf4JGfIlD/WgW+Z9v+RL7Z6uuVDCLHep YlYAqbLMXGVZC31AuWlPLd52G1nCipVfD8YXBJ2csNO/vItMskrw/IdQNZOkdei+ PVDsHh5CHP02zw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:05:47 2025 by rpki-client