This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft File: 5LDTY6ChegaEUahRRc5PpGTX-hs.mft (raw, json) Hash identifier: /nMAqf3QVs+wLSVx1VVd8SovKCXwW6/YKFqFjuOZxOU= Subject key identifier: B3:D3:33:D1:1A:33:D2:18:AD:9C:6C:43:CB:21:DD:2E:3B:39:75:71 Authority key identifier: E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B Certificate issuer: /CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b Certificate serial: 019B2EFA8E6CC46BA4A860CA1EDE350E31B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft Manifest number: 10B2 Signing time: Thu 18 Dec 2025 01:02:10 +0000 Manifest this update: Thu 18 Dec 2025 01:02:10 +0000 Manifest next update: Fri 19 Dec 2025 01:02:10 +0000 Files and hashes: 1: 5LDTY6ChegaEUahRRc5PpGTX-hs.crl (hash: pinbnLnTfacVMPAG3jd/KsINT5A3SKEG6UTXEliraaU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:fa:8e:6c:c4:6b:a4:a8:60:ca:1e:de:35:0e:31:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b Validity Not Before: Dec 18 01:02:10 2025 GMT Not After : Dec 19 01:02:10 2025 GMT Subject: CN=b3d333d11a33d218ad9c6c43cb21dd2e3b397571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:78:0e:a6:a6:88:ac:a1:aa:4f:cb:c7:83:0f: 67:66:e3:fa:bb:cc:4e:7e:56:90:1e:e4:2c:41:35: 2b:8f:a3:53:d1:6d:0b:d2:83:ed:d7:a6:18:a9:01: e8:41:d8:71:63:51:a2:9c:b4:df:a1:46:5f:e5:c6: 40:56:a3:68:1f:b0:d4:3f:42:29:a6:0c:a7:ab:42: 3c:87:8e:84:16:42:00:65:d1:fc:66:98:b5:5d:b4: 1b:18:82:6b:5c:11:ac:49:2b:97:7b:4f:f9:cd:d8: f9:98:70:b7:b2:76:fc:4f:f8:e7:2d:f1:3f:c7:9b: 83:5b:40:fe:c3:03:6f:90:20:53:b4:86:98:02:d8: 09:53:0d:3e:91:8f:b1:e6:26:cd:7c:ab:8d:8e:0a: 85:60:54:a8:54:9e:37:5f:56:1d:dc:a1:e1:6d:a6: 86:9d:d2:83:f7:dd:51:db:54:e3:02:c7:02:d8:7b: b8:56:e6:78:9b:1b:a3:e9:c7:2a:53:c2:86:d9:15: 2c:61:7d:e4:16:ae:6e:9f:6d:4a:bf:11:90:45:53: 9c:41:f6:d6:4c:78:8d:0f:97:dc:fb:c6:af:cb:0b: f9:f8:e5:86:77:73:98:95:a2:14:aa:bd:b7:81:ba: ac:6d:e0:54:34:a3:40:ac:60:b6:2f:c5:45:2c:a2: 1b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D3:33:D1:1A:33:D2:18:AD:9C:6C:43:CB:21:DD:2E:3B:39:75:71 X509v3 Authority Key Identifier: keyid:E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:b1:ea:47:22:e8:95:1e:d1:0b:07:af:54:9c:28:a9:71:97: 19:64:cf:a2:d5:5f:0b:0f:67:01:43:41:6b:3c:f6:28:d1:f6: 00:d5:bf:3d:39:82:7f:99:0c:a6:6f:d4:65:38:74:a5:02:66: d7:23:28:08:e3:b9:2a:c7:a2:0d:f0:d4:c9:1c:ea:98:ac:45: 02:d9:36:8d:3f:1d:7d:91:5b:6b:be:2b:eb:12:42:0f:45:b4: 94:36:3c:2a:5c:1a:e7:65:18:9e:66:fb:25:e0:af:31:9d:86: b6:5e:d5:78:ef:12:10:ba:81:78:8c:da:2a:85:69:e5:36:80: 8f:b2:99:41:27:06:f0:cf:6f:00:57:b0:66:78:c0:3a:0d:bf: 72:6d:54:c0:df:1d:34:0d:43:9c:7d:54:3a:36:38:3c:7b:4e: 45:dd:21:3b:44:d6:ac:62:3e:39:0b:4b:32:db:e4:2b:ae:2d: bb:4e:8c:eb:99:e0:00:40:c8:19:83:b3:29:d1:3e:33:3e:88: 81:59:fe:16:31:93:56:fc:41:92:09:8f:d0:c5:45:34:81:0a: 2d:73:2c:b8:ab:6f:d9:ce:55:c6:e7:6d:87:a6:7f:68:35:cf: ac:84:29:34:4c:d8:2f:1c:69:e1:7b:c8:60:ed:af:d5:fc:69: 37:11:2d:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+o5sxGukqGDKHt41DjG3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0YjBkMzYzYTBhMTdhMDY4NDUxYTg1MTQ1Y2U0ZmE0NjRk N2ZhMWIwHhcNMjUxMjE4MDEwMjEwWhcNMjUxMjE5MDEwMjEwWjAzMTEwLwYDVQQD EyhiM2QzMzNkMTFhMzNkMjE4YWQ5YzZjNDNjYjIxZGQyZTNiMzk3NTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXgOpqaIrKGqT8vHgw9nZuP6u8xO flaQHuQsQTUrj6NT0W0L0oPt16YYqQHoQdhxY1GinLTfoUZf5cZAVqNoH7DUP0Ip pgynq0I8h46EFkIAZdH8Zpi1XbQbGIJrXBGsSSuXe0/5zdj5mHC3snb8T/jnLfE/ x5uDW0D+wwNvkCBTtIaYAtgJUw0+kY+x5ibNfKuNjgqFYFSoVJ43X1Yd3KHhbaaG ndKD991R21TjAscC2Hu4VuZ4mxuj6ccqU8KG2RUsYX3kFq5un21KvxGQRVOcQfbW THiND5fc+8avywv5+OWGd3OYlaIUqr23gbqsbeBUNKNArGC2L8VFLKIbywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLPTM9EaM9IYrZxsQ8sh3S47OXVxMB8GA1UdIwQY MBaAFOSw02OgoXoGhFGoUUXOT6Rk1/obMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS80NzUzZDMtYTFlOS00ZmQ1LWFlZmUt N2M3ZDhhNzhhOTYzLzEvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS80NzUzZDMtYTFlOS00ZmQ1LWFlZmUtN2M3ZDhhNzhhOTYz LzEvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAErHqRyLo lR7RCwevVJwoqXGXGWTPotVfCw9nAUNBazz2KNH2ANW/PTmCf5kMpm/UZTh0pQJm 1yMoCOO5KseiDfDUyRzqmKxFAtk2jT8dfZFba74r6xJCD0W0lDY8Klwa52UYnmb7 JeCvMZ2Gtl7VeO8SELqBeIzaKoVp5TaAj7KZQScG8M9vAFewZnjAOg2/cm1UwN8d NA1DnH1UOjY4PHtORd0hO0TWrGI+OQtLMtvkK64tu06M65ngAEDIGYOzKdE+Mz6I gVn+FjGTVvxBkgmP0MVFNIEKLXMsuKtv2c5Vxudth6Z/aDXPrIQpNEzYLxxp4XvI YO2v1fxpNxEtkw== -----END CERTIFICATE-----Generated at Thu Dec 18 06:53:54 2025 by rpki-client