This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft File: 5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft (raw, json) Hash identifier: 4lGEROzOJ3lPdFV4hYqro6uP8f1Ep2awqsPUb59FWU0= Subject key identifier: 3D:30:E1:62:01:E3:D0:42:11:0A:C0:7B:8A:93:CB:1A:3B:33:DE:64 Authority key identifier: E6:7C:0D:47:1D:C3:E4:79:04:C9:35:7D:40:F9:77:A3:E0:81:B4:BD Certificate issuer: /CN=e67c0d471dc3e47904c9357d40f977a3e081b4bd Certificate serial: 019B2C6638C2AB19E61C4A31C83D5292673F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5nwNRx3D5HkEyTV9QPl3o-CBtL0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft Manifest number: 0943 Signing time: Wed 17 Dec 2025 13:00:55 +0000 Manifest this update: Wed 17 Dec 2025 13:00:55 +0000 Manifest next update: Thu 18 Dec 2025 13:00:55 +0000 Files and hashes: 1: 5nwNRx3D5HkEyTV9QPl3o-CBtL0.crl (hash: yPcXFeIXd2u+xi5eb4RsubfqjA1nmLDAwXUmtfw60r0=) 2: UsysYH87_MeusDVf_2VMl6ZiNoA.roa (hash: l/efuOvavvhLwF5l7zidaNvIJhmEgoHAGGzbipbPPZE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.crl rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft rsync://rpki.ripe.net/repository/DEFAULT/5nwNRx3D5HkEyTV9QPl3o-CBtL0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:66:38:c2:ab:19:e6:1c:4a:31:c8:3d:52:92:67:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e67c0d471dc3e47904c9357d40f977a3e081b4bd Validity Not Before: Dec 17 13:00:55 2025 GMT Not After : Dec 18 13:00:55 2025 GMT Subject: CN=3d30e16201e3d042110ac07b8a93cb1a3b33de64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7a:40:4f:51:5c:0c:9a:61:36:0a:d0:96:39: 5d:37:96:55:f7:cb:be:37:47:16:09:1d:f4:3d:4b: 30:5d:4b:75:2a:27:7c:d9:29:4e:36:72:02:97:1a: 6b:4a:85:b0:94:67:1b:ee:94:8f:de:24:98:9e:04: f9:4f:16:dc:84:3a:8e:6a:87:eb:7b:09:0f:50:6f: 11:1f:52:1d:e0:89:64:d4:ad:db:2a:b7:15:27:9d: c6:06:37:f9:6e:ae:cc:07:30:4e:d2:dc:bf:bc:4a: bd:f3:1c:04:bf:bd:c6:05:ac:ec:cf:70:3d:ba:88: c8:ff:8d:1e:b7:f1:88:5c:3b:04:2d:3a:5e:9c:bc: 1b:b3:cc:88:95:39:2d:ab:8d:f1:3a:b3:cb:b5:9b: 4b:d3:ed:ef:f2:ec:a8:e4:29:15:eb:95:00:64:6c: 5c:a2:91:8d:ff:47:01:a5:fe:03:d2:c2:9e:e5:33: 05:c6:01:c1:ec:69:05:ff:ab:7e:7f:1d:4f:e6:ee: a3:1c:6c:ca:a4:f8:0b:ed:de:34:a5:39:6f:a4:30: dd:4a:48:4b:38:60:4f:99:8f:f7:43:6c:7f:d8:a1: 2b:4d:57:80:bf:d3:49:a6:97:ea:e9:20:95:24:3c: 8c:a5:5b:82:ba:5d:4f:39:a5:cd:b3:57:17:c3:c4: 2b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:30:E1:62:01:E3:D0:42:11:0A:C0:7B:8A:93:CB:1A:3B:33:DE:64 X509v3 Authority Key Identifier: keyid:E6:7C:0D:47:1D:C3:E4:79:04:C9:35:7D:40:F9:77:A3:E0:81:B4:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5nwNRx3D5HkEyTV9QPl3o-CBtL0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:68:76:55:78:bc:56:ef:e4:a5:7e:c6:5c:09:e9:b8:48:df: 91:fe:69:cf:03:35:46:d7:c4:3c:ae:d0:39:cf:0b:50:13:62: c4:ae:43:f7:44:71:3a:5a:6e:c4:ec:8a:19:6a:f4:15:c0:b4: b2:64:1f:e0:51:db:85:a4:95:a3:a4:ff:b8:2d:24:34:30:e7: ac:d6:37:33:78:47:6e:c6:fb:99:09:2a:d0:ab:e8:ae:c2:7b: 97:4d:5e:19:23:2f:8d:8d:c3:5f:19:ed:5d:c3:f3:1a:33:46: ba:4b:37:96:f1:32:08:f5:8b:0d:e7:eb:2c:fa:ad:3c:60:67: 4d:0b:21:a9:4e:91:47:27:75:da:56:ad:1a:93:27:2a:c6:a3: c5:96:ed:92:14:cb:1b:28:3f:38:8f:7e:fc:33:37:99:e9:c7: be:a6:20:6b:27:60:ec:ca:7c:d4:88:9f:fc:d8:6b:e9:a3:f0: 59:c7:72:89:be:3c:57:bd:1e:b1:e4:01:8d:8c:d7:9a:1b:cb: 0c:71:f9:9a:02:37:ed:e3:d6:ad:b0:d5:f4:c9:e8:cc:ad:b0: e3:15:46:3a:4f:a3:3d:70:4a:ae:70:41:1e:4e:79:32:e3:cd: 73:20:0f:56:18:ea:6f:f3:68:39:10:a6:5a:11:b5:51:a8:fd: 07:fe:4e:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZssZjjCqxnmHEoxyD1Skmc/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2N2MwZDQ3MWRjM2U0NzkwNGM5MzU3ZDQwZjk3N2EzZTA4 MWI0YmQwHhcNMjUxMjE3MTMwMDU1WhcNMjUxMjE4MTMwMDU1WjAzMTEwLwYDVQQD EygzZDMwZTE2MjAxZTNkMDQyMTEwYWMwN2I4YTkzY2IxYTNiMzNkZTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHpAT1FcDJphNgrQljldN5ZV98u+ N0cWCR30PUswXUt1Kid82SlONnIClxprSoWwlGcb7pSP3iSYngT5TxbchDqOaofr ewkPUG8RH1Id4Ilk1K3bKrcVJ53GBjf5bq7MBzBO0ty/vEq98xwEv73GBazsz3A9 uojI/40et/GIXDsELTpenLwbs8yIlTktq43xOrPLtZtL0+3v8uyo5CkV65UAZGxc opGN/0cBpf4D0sKe5TMFxgHB7GkF/6t+fx1P5u6jHGzKpPgL7d40pTlvpDDdSkhL OGBPmY/3Q2x/2KErTVeAv9NJppfq6SCVJDyMpVuCul1POaXNs1cXw8Qr1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD0w4WIB49BCEQrAe4qTyxo7M95kMB8GA1UdIwQY MBaAFOZ8DUcdw+R5BMk1fUD5d6PggbS9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNW53TlJ4M0Q1SGtFeVRWOVFQbDNvLUNCdEwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy81YTU2MzgtNDU1YS00MjUwLTk0ZjAt MDU2MWJkZTBiZmE4LzEvNW53TlJ4M0Q1SGtFeVRWOVFQbDNvLUNCdEwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy81YTU2MzgtNDU1YS00MjUwLTk0ZjAtMDU2MWJkZTBiZmE4 LzEvNW53TlJ4M0Q1SGtFeVRWOVFQbDNvLUNCdEwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa2h2VXi8 Vu/kpX7GXAnpuEjfkf5pzwM1RtfEPK7QOc8LUBNixK5D90RxOlpuxOyKGWr0FcC0 smQf4FHbhaSVo6T/uC0kNDDnrNY3M3hHbsb7mQkq0KvorsJ7l01eGSMvjY3DXxnt XcPzGjNGuks3lvEyCPWLDefrLPqtPGBnTQshqU6RRyd12latGpMnKsajxZbtkhTL Gyg/OI9+/DM3menHvqYgaydg7Mp81Iif/Nhr6aPwWcdyib48V70eseQBjYzXmhvL DHH5mgI37ePWrbDV9MnozK2w4xVGOk+jPXBKrnBBHk55MuPNcyAPVhjqb/NoORCm WhG1Uaj9B/5Orw== -----END CERTIFICATE-----Generated at Wed Dec 17 16:16:45 2025 by rpki-client