This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft File: 5H78nMPZxL0porvBVVH4LyXPEbo.mft (raw, json) Hash identifier: 1UOn5vJ2Z9mUfH3Dr5NUqab3vdN+82HDY0YNj+hg+aQ= Subject key identifier: EE:7B:08:6D:F3:EA:4C:C1:EE:84:5B:F2:5E:01:B2:66:F8:5C:3C:79 Authority key identifier: E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA Certificate issuer: /CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba Certificate serial: 019B3F48AE6A09E203791A8229DC60E65B59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft Manifest number: 0F3C Signing time: Sun 21 Dec 2025 05:01:26 +0000 Manifest this update: Sun 21 Dec 2025 05:01:26 +0000 Manifest next update: Mon 22 Dec 2025 05:01:26 +0000 Files and hashes: 1: 5H78nMPZxL0porvBVVH4LyXPEbo.crl (hash: QlJ8xrwn4iZTIzgEwP+bz7rJ5hqmwHDMet2m+q5p64w=) 2: SOdbfA4k2rHns_9FeEf2o6kdRPA.roa (hash: UCxkRGVqhqrA5LNMsKBYYs+r3jtWXwOD0Dbnu0MtoW4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:48:ae:6a:09:e2:03:79:1a:82:29:dc:60:e6:5b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba Validity Not Before: Dec 21 05:01:26 2025 GMT Not After : Dec 22 05:01:26 2025 GMT Subject: CN=ee7b086df3ea4cc1ee845bf25e01b266f85c3c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:65:5d:ac:28:4b:8a:5f:db:c0:d2:7d:df:a9: dd:dc:ab:2c:2f:ef:0a:9a:dd:d8:83:36:94:ef:8d: 56:3c:df:84:eb:4d:d9:0a:f2:c9:dd:ee:c5:e2:cf: 62:24:5b:f7:d5:81:3c:99:f0:19:95:db:7d:53:42: 60:b0:9f:d2:cf:96:2a:f1:d5:d2:f7:e2:5e:b0:32: d6:65:a6:6c:6b:53:53:6f:11:6f:0f:63:89:a9:8d: 71:96:2f:58:a0:1b:15:23:b5:3f:df:d7:a3:69:c4: 1a:23:75:84:72:1b:f1:1d:02:b0:c8:92:37:bd:cc: aa:5b:cf:ce:12:a7:7b:35:09:6b:9f:4e:e0:29:fb: 5b:13:a3:e7:08:97:ea:30:84:53:46:da:f8:19:56: b0:b2:03:e3:c8:10:ee:03:dc:fc:1b:bd:1d:5e:df: 5f:bd:73:ee:82:2a:fe:00:90:ad:6b:69:01:9b:dc: fd:c3:8e:e4:de:c9:2c:89:07:dd:72:44:15:1e:f2: 56:9a:2e:04:f8:25:41:4b:e2:52:fa:78:7c:0d:65: 24:b5:c6:69:1a:a4:79:db:44:92:ec:85:91:65:59: c1:13:0a:c8:ce:2b:25:3f:69:cd:60:f4:29:e9:17: b7:36:b3:0a:a0:b5:46:8d:1e:ef:b8:95:ff:b7:a9: 66:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:7B:08:6D:F3:EA:4C:C1:EE:84:5B:F2:5E:01:B2:66:F8:5C:3C:79 X509v3 Authority Key Identifier: keyid:E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:29:05:8a:07:88:4b:17:70:1d:41:31:e3:6b:18:2e:6b:41: 73:dd:76:3a:62:82:47:97:bb:83:80:43:f4:0b:e9:2a:94:56: 6b:2d:8f:eb:67:08:5e:b8:19:fa:ee:ff:51:ba:c2:74:fe:6a: 15:52:ca:45:28:59:e9:80:95:5a:6f:c0:31:ac:72:8e:2d:ae: de:7b:62:5f:ae:b7:02:43:f1:77:37:97:92:19:9d:0e:71:b0: 28:ee:7f:81:16:c4:2f:6a:a5:43:dc:70:9e:f5:e5:64:8a:71: af:ea:e1:22:0f:be:84:46:81:97:ab:84:84:09:fa:1b:a0:30: db:92:e0:55:25:98:00:df:d4:2f:ef:90:40:3a:27:0e:84:76: f6:e0:f4:fe:6a:65:84:64:f0:ab:02:cf:df:0e:5f:8b:75:8f: 15:80:a1:8b:2c:80:fe:da:e4:44:d7:4a:e9:d6:fb:c1:bf:1c: ab:49:ec:90:63:29:02:ef:02:19:dc:ad:04:6a:ce:79:af:bc: 3d:87:88:69:bb:bf:ec:04:a8:90:dc:23:b6:cc:d1:c7:23:30: 49:d7:46:e1:35:f2:bc:36:08:00:a9:28:6d:fe:dc:e2:5b:a5: 5e:09:97:5e:1e:a4:3a:1b:8d:c6:97:7b:77:bb:d1:32:64:d5: 79:56:c7:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/SK5qCeIDeRqCKdxg5ltZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0N2VmYzljYzNkOWM0YmQyOWEyYmJjMTU1NTFmODJmMjVj ZjExYmEwHhcNMjUxMjIxMDUwMTI2WhcNMjUxMjIyMDUwMTI2WjAzMTEwLwYDVQQD EyhlZTdiMDg2ZGYzZWE0Y2MxZWU4NDViZjI1ZTAxYjI2NmY4NWMzYzc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8WVdrChLil/bwNJ936nd3KssL+8K mt3YgzaU741WPN+E603ZCvLJ3e7F4s9iJFv31YE8mfAZldt9U0JgsJ/Sz5Yq8dXS 9+JesDLWZaZsa1NTbxFvD2OJqY1xli9YoBsVI7U/39ejacQaI3WEchvxHQKwyJI3 vcyqW8/OEqd7NQlrn07gKftbE6PnCJfqMIRTRtr4GVawsgPjyBDuA9z8G70dXt9f vXPugir+AJCta2kBm9z9w47k3sksiQfdckQVHvJWmi4E+CVBS+JS+nh8DWUktcZp GqR520SS7IWRZVnBEwrIzislP2nNYPQp6Re3NrMKoLVGjR7vuJX/t6lmvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO57CG3z6kzB7oRb8l4Bsmb4XDx5MB8GA1UdIwQY MBaAFOR+/JzD2cS9KaK7wVVR+C8lzxG6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUg3OG5NUFp4TDBwb3J2QlZWSDRMeVhQRWJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yNDgxMzMtODY3MC00MTY3LWExOTUt NmUyZjU4OGMwYzdlLzEvNUg3OG5NUFp4TDBwb3J2QlZWSDRMeVhQRWJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS8yNDgxMzMtODY3MC00MTY3LWExOTUtNmUyZjU4OGMwYzdl LzEvNUg3OG5NUFp4TDBwb3J2QlZWSDRMeVhQRWJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIikFigeI SxdwHUEx42sYLmtBc912OmKCR5e7g4BD9AvpKpRWay2P62cIXrgZ+u7/UbrCdP5q FVLKRShZ6YCVWm/AMaxyji2u3ntiX663AkPxdzeXkhmdDnGwKO5/gRbEL2qlQ9xw nvXlZIpxr+rhIg++hEaBl6uEhAn6G6Aw25LgVSWYAN/UL++QQDonDoR29uD0/mpl hGTwqwLP3w5fi3WPFYChiyyA/trkRNdK6db7wb8cq0nskGMpAu8CGdytBGrOea+8 PYeIabu/7ASokNwjtszRxyMwSddG4TXyvDYIAKkobf7c4lulXgmXXh6kOhuNxpd7 d7vRMmTVeVbHAA== -----END CERTIFICATE-----Generated at Sun Dec 21 12:53:46 2025 by rpki-client