This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft File: 5IKZWNgAyhrebhPKeygLIpzmYC4.mft (raw, json) Hash identifier: mYCvuVsBIXk1QJtrKB653lF5ao7dFMocdwHhe0zN5mo= Subject key identifier: 4B:94:35:05:53:5F:C2:1D:6E:0B:27:86:62:DB:87:0D:BB:40:1F:2B Authority key identifier: E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E Certificate issuer: /CN=e4829958d800ca1ade6e13ca7b280b229ce6602e Certificate serial: 019AF12E8216BB4D46365C09674606385193 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:02:28 +0000 Manifest this update: Sat 06 Dec 2025 01:02:28 +0000 Manifest next update: Sun 07 Dec 2025 01:02:28 +0000 Files and hashes: 1: 5IKZWNgAyhrebhPKeygLIpzmYC4.crl (hash: IyU3zl+pJMuh0zQm9rmltFlBlwef4IG6ZfAbnRJ1DHE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:82:16:bb:4d:46:36:5c:09:67:46:06:38:51:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4829958d800ca1ade6e13ca7b280b229ce6602e Validity Not Before: Dec 6 01:02:28 2025 GMT Not After : Dec 7 01:02:28 2025 GMT Subject: CN=4b943505535fc21d6e0b278662db870dbb401f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b1:d5:55:48:ed:72:3a:cd:a1:06:69:1d:66: 01:39:dc:bb:61:4e:0f:8f:b8:68:db:ef:05:f5:90: 72:6a:90:7a:24:a5:c8:8b:91:1b:23:cb:9f:8f:e5: 6c:28:17:1a:9c:a5:07:12:8f:5d:51:38:92:e0:dc: 58:ad:48:a7:55:25:f5:f0:9c:f9:a0:ca:d6:cc:36: f1:24:0d:5f:33:87:b2:17:41:06:5d:7e:de:3b:dd: 4d:78:97:0d:e5:c2:b6:d6:d8:40:a2:f8:20:c9:5f: 8f:c3:89:d8:72:84:94:8c:e8:5e:17:d6:6b:44:17: 0b:ce:32:39:39:aa:96:d3:4f:dd:de:23:23:eb:28: be:93:f1:7f:aa:df:3f:30:bb:b3:09:7d:c0:64:f0: 04:86:6d:fe:b1:ba:95:6a:9e:5a:d0:bd:0a:c3:34: 6b:d4:cb:0d:09:0b:13:8f:ed:78:b4:f8:26:98:7c: 6f:d8:17:23:5e:d3:81:ae:bb:7b:f9:5b:d4:d2:3c: e2:81:cd:9b:09:09:d8:b0:c1:50:92:6f:90:d0:da: 98:e4:aa:a6:61:94:a6:57:98:46:83:3c:6f:8f:98: 1e:7e:3b:1a:ad:9f:c6:99:93:2d:a2:80:81:b6:f1: 93:b5:36:17:c8:df:4e:1b:cf:21:83:6f:d8:fa:1a: 1f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:94:35:05:53:5F:C2:1D:6E:0B:27:86:62:DB:87:0D:BB:40:1F:2B X509v3 Authority Key Identifier: keyid:E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:08:b4:65:14:55:de:54:3c:f1:26:7a:ad:37:a2:3c:6c:e6: ef:8b:30:df:51:d0:38:63:af:b0:58:0c:06:72:ed:58:ad:19: e1:c3:a0:dd:4b:75:cd:19:85:80:9b:d0:8b:81:4b:b2:3e:c9: d5:69:94:81:40:72:05:5b:20:46:28:74:0e:ed:75:dc:c1:21: 73:a6:58:4e:f9:ee:44:f1:ab:5e:cb:5a:8b:a7:64:ba:22:00: 75:21:aa:73:2e:2a:11:b7:fe:31:91:3a:35:b1:3a:7a:45:55: ec:63:29:0c:8f:be:b6:35:23:4c:9d:12:fe:b7:1f:82:d1:78: 34:20:b7:09:1b:73:78:b7:12:7b:c2:d2:c4:90:93:c5:4a:98: 44:0f:d0:58:23:91:1c:01:a2:05:29:94:d0:fb:d8:02:74:77: 13:5a:7d:01:6f:d4:49:ce:fd:a3:8c:5d:8a:9f:61:5f:4f:5f: ea:60:d0:6a:3c:40:aa:e5:67:46:1d:3d:69:bc:0f:d3:ee:fd: bf:52:c0:86:6b:d9:2e:97:51:7a:b6:b7:21:b8:4a:ea:58:37: 18:9c:7d:16:c2:32:28:8a:d0:fc:8b:96:53:34:b9:3b:65:3c: cd:d0:16:1a:e7:47:17:dc:11:a2:4c:2a:31:2e:d6:81:e0:ac: 18:d4:96:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLoIWu01GNlwJZ0YGOFGTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0ODI5OTU4ZDgwMGNhMWFkZTZlMTNjYTdiMjgwYjIyOWNl NjYwMmUwHhcNMjUxMjA2MDEwMjI4WhcNMjUxMjA3MDEwMjI4WjAzMTEwLwYDVQQD Eyg0Yjk0MzUwNTUzNWZjMjFkNmUwYjI3ODY2MmRiODcwZGJiNDAxZjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4bHVVUjtcjrNoQZpHWYBOdy7YU4P j7ho2+8F9ZByapB6JKXIi5EbI8ufj+VsKBcanKUHEo9dUTiS4NxYrUinVSX18Jz5 oMrWzDbxJA1fM4eyF0EGXX7eO91NeJcN5cK21thAovggyV+Pw4nYcoSUjOheF9Zr RBcLzjI5OaqW00/d3iMj6yi+k/F/qt8/MLuzCX3AZPAEhm3+sbqVap5a0L0KwzRr 1MsNCQsTj+14tPgmmHxv2BcjXtOBrrt7+VvU0jzigc2bCQnYsMFQkm+Q0NqY5Kqm YZSmV5hGgzxvj5gefjsarZ/GmZMtooCBtvGTtTYXyN9OG88hg2/Y+hofBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEuUNQVTX8IdbgsnhmLbhw27QB8rMB8GA1UdIwQY MBaAFOSCmVjYAMoa3m4TynsoCyKc5mAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQt MWQ1YmMwMDFhMWRlLzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQtMWQ1YmMwMDFhMWRl LzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACQi0ZRRV 3lQ88SZ6rTeiPGzm74sw31HQOGOvsFgMBnLtWK0Z4cOg3Ut1zRmFgJvQi4FLsj7J 1WmUgUByBVsgRih0Du113MEhc6ZYTvnuRPGrXstai6dkuiIAdSGqcy4qEbf+MZE6 NbE6ekVV7GMpDI++tjUjTJ0S/rcfgtF4NCC3CRtzeLcSe8LSxJCTxUqYRA/QWCOR HAGiBSmU0PvYAnR3E1p9AW/USc79o4xdip9hX09f6mDQajxAquVnRh09abwP0+79 v1LAhmvZLpdRera3IbhK6lg3GJx9FsIyKIrQ/IuWUzS5O2U8zdAWGudHF9wRokwq MS7WgeCsGNSWpQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:48:09 2025 by rpki-client