This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft File: 5LDTY6ChegaEUahRRc5PpGTX-hs.mft (raw, json) Hash identifier: BZHtz4xA9DtWrtCVaxY+MPWmHcG2YHOzus9S9KQNQ3Q= Subject key identifier: 44:2D:3E:7C:2B:E3:A2:86:DC:05:2C:2C:A3:E1:EA:F0:6D:3E:4E:93 Authority key identifier: E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B Certificate issuer: /CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b Certificate serial: 019B2B1CBB75FFF8747C7BD0E428956B8731 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft Manifest number: 10B0 Signing time: Wed 17 Dec 2025 07:01:01 +0000 Manifest this update: Wed 17 Dec 2025 07:01:01 +0000 Manifest next update: Thu 18 Dec 2025 07:01:01 +0000 Files and hashes: 1: 5LDTY6ChegaEUahRRc5PpGTX-hs.crl (hash: Eo4jbMaqq5Bn4qZNgMNQ0P89ZHYVNQQM2AMCV6SzgqM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 07:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:1c:bb:75:ff:f8:74:7c:7b:d0:e4:28:95:6b:87:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b Validity Not Before: Dec 17 07:01:01 2025 GMT Not After : Dec 18 07:01:01 2025 GMT Subject: CN=442d3e7c2be3a286dc052c2ca3e1eaf06d3e4e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:04:b4:f9:38:2d:be:b0:a5:06:18:b4:43:0b: 50:87:81:5b:bd:3d:60:3b:37:ab:be:ee:a7:0f:91: 90:90:4b:f5:0d:ff:e4:f9:3b:2e:87:8f:77:b8:32: 7a:ca:28:d8:68:bd:b4:08:40:ca:c9:6d:cf:f5:10: 2a:23:94:cd:0a:36:fb:6c:17:7e:e0:a9:dc:af:e5: b9:59:b5:b3:cf:19:e3:46:70:9d:07:32:24:a6:3e: c4:1e:d1:39:6a:1e:37:1e:ae:d6:55:38:6d:fb:d3: 06:6f:ac:a7:76:2e:4b:d0:9c:2b:db:bd:d6:25:e3: d4:12:5f:52:8a:cf:50:7b:f3:b1:74:3a:63:90:82: 71:fc:38:ab:c2:c8:b0:aa:c2:74:7b:3a:d6:ef:06: e8:8e:89:0d:e3:d3:c5:b5:e4:bf:ff:f3:77:14:ce: 22:d0:f7:e9:26:0b:33:96:91:d2:7e:f9:aa:09:d7: 6d:f8:b6:d3:26:f7:72:05:a5:df:cd:78:04:5f:76: de:ba:26:b7:88:61:2d:57:96:d9:ef:08:c4:04:7b: a1:4b:c3:90:18:cc:db:92:fc:c5:7c:8c:72:98:58: 4e:75:4f:05:9b:d9:12:3b:67:d9:e8:fc:93:c3:f2: 2d:17:86:e7:05:8e:2e:e3:a3:fb:92:6d:bf:64:af: aa:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:2D:3E:7C:2B:E3:A2:86:DC:05:2C:2C:A3:E1:EA:F0:6D:3E:4E:93 X509v3 Authority Key Identifier: keyid:E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:7b:5d:01:a4:9d:c4:ec:30:09:e9:6f:c0:13:32:05:91:9e: 48:2b:ba:0e:99:02:49:6c:62:71:03:d2:09:42:f5:f1:41:2a: 06:f5:9b:b2:f1:ff:87:e2:9b:c1:3d:dd:5a:ce:aa:ef:83:2e: f6:56:e4:17:48:ff:72:e7:b3:9a:c6:2c:51:54:9f:15:02:94: b2:36:ab:2c:38:11:eb:07:1d:60:3b:e2:04:c3:ac:8b:d5:1b: 4d:4e:03:9d:fe:8f:dd:00:f8:a0:45:50:5c:78:73:f5:38:4a: 7c:0b:2a:ef:e9:a5:eb:13:6a:2b:16:e3:79:5f:e6:13:45:7f: 50:cb:3f:79:2f:f2:b2:94:f3:81:ed:4c:b7:cc:d4:f2:7e:9e: da:ed:aa:20:34:56:0d:36:3d:f8:45:92:bd:65:47:01:f5:a1: c2:6a:5a:33:96:a0:f3:38:81:51:79:fa:72:d4:6b:a4:99:af: 05:4a:7c:11:94:f7:6a:73:51:46:bc:70:c5:59:b1:74:12:23: 1f:e2:f1:c4:63:48:93:66:4c:e3:07:09:e4:a0:e6:6a:26:2e: e2:f8:7e:60:71:7f:94:4f:fe:a8:e4:5e:61:c7:a5:64:32:9d: 8c:e0:ac:17:9e:c9:ce:48:7b:96:3b:5c:89:3e:b6:34:3f:20: f9:eb:47:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrHLt1//h0fHvQ5CiVa4cxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0YjBkMzYzYTBhMTdhMDY4NDUxYTg1MTQ1Y2U0ZmE0NjRk N2ZhMWIwHhcNMjUxMjE3MDcwMTAxWhcNMjUxMjE4MDcwMTAxWjAzMTEwLwYDVQQD Eyg0NDJkM2U3YzJiZTNhMjg2ZGMwNTJjMmNhM2UxZWFmMDZkM2U0ZTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAS0+TgtvrClBhi0QwtQh4FbvT1g Ozervu6nD5GQkEv1Df/k+Tsuh493uDJ6yijYaL20CEDKyW3P9RAqI5TNCjb7bBd+ 4Kncr+W5WbWzzxnjRnCdBzIkpj7EHtE5ah43Hq7WVTht+9MGb6yndi5L0Jwr273W JePUEl9Sis9Qe/OxdDpjkIJx/DirwsiwqsJ0ezrW7wbojokN49PFteS///N3FM4i 0PfpJgszlpHSfvmqCddt+LbTJvdyBaXfzXgEX3beuia3iGEtV5bZ7wjEBHuhS8OQ GMzbkvzFfIxymFhOdU8Fm9kSO2fZ6PyTw/ItF4bnBY4u46P7km2/ZK+qXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEQtPnwr46KG3AUsLKPh6vBtPk6TMB8GA1UdIwQY MBaAFOSw02OgoXoGhFGoUUXOT6Rk1/obMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS80NzUzZDMtYTFlOS00ZmQ1LWFlZmUt N2M3ZDhhNzhhOTYzLzEvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS80NzUzZDMtYTFlOS00ZmQ1LWFlZmUtN2M3ZDhhNzhhOTYz LzEvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUHtdAaSd xOwwCelvwBMyBZGeSCu6DpkCSWxicQPSCUL18UEqBvWbsvH/h+KbwT3dWs6q74Mu 9lbkF0j/cuezmsYsUVSfFQKUsjarLDgR6wcdYDviBMOsi9UbTU4Dnf6P3QD4oEVQ XHhz9ThKfAsq7+ml6xNqKxbjeV/mE0V/UMs/eS/yspTzge1Mt8zU8n6e2u2qIDRW DTY9+EWSvWVHAfWhwmpaM5ag8ziBUXn6ctRrpJmvBUp8EZT3anNRRrxwxVmxdBIj H+LxxGNIk2ZM4wcJ5KDmaiYu4vh+YHF/lE/+qOReYcelZDKdjOCsF57Jzkh7ljtc iT62ND8g+etHFw== -----END CERTIFICATE-----Generated at Wed Dec 17 16:48:39 2025 by rpki-client