This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft File: T5mJlOtWGejymrO956sq0U6r_P0.mft (raw, json) Hash identifier: vRFbHqOVSIY+WnH3ehJ6qKvhxElpK98BzYJObOaBie4= Subject key identifier: CA:EB:FE:29:0E:57:00:F2:F0:72:66:99:9C:A4:50:5D:78:C2:27:62 Authority key identifier: 4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD Certificate issuer: /CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd Certificate serial: 019B6FFD4E36A9228845962F6A67C014DCB7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft Manifest number: 179E Signing time: Tue 30 Dec 2025 16:00:30 +0000 Manifest this update: Tue 30 Dec 2025 16:00:30 +0000 Manifest next update: Wed 31 Dec 2025 16:00:30 +0000 Files and hashes: 1: T5mJlOtWGejymrO956sq0U6r_P0.crl (hash: +KWbPps7sm3fFIxSfqATJeNofck0IHAC/uihrdZpqQA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6f:fd:4e:36:a9:22:88:45:96:2f:6a:67:c0:14:dc:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd Validity Not Before: Dec 30 16:00:30 2025 GMT Not After : Dec 31 16:00:30 2025 GMT Subject: CN=caebfe290e5700f2f07266999ca4505d78c22762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:66:94:38:8f:0e:61:e2:d3:1e:2c:b0:c5:4a: 8b:5e:16:34:bf:2c:b8:0d:6b:7f:c5:a4:c3:9f:67: a7:49:51:07:7f:c2:c3:36:3c:54:1b:5d:1b:e0:05: 1c:9a:02:92:cc:76:83:f8:94:8f:b3:85:b5:5a:7e: 7c:89:34:89:8c:38:48:bd:25:df:79:0a:d2:61:8e: e1:6c:9f:19:bd:64:e6:2a:d7:ed:18:80:38:e7:ec: ff:d6:a9:db:94:a1:d1:09:d8:6b:44:fe:88:04:d8: 28:1f:e0:81:61:27:bd:e7:93:e1:1c:f6:40:77:e7: 43:bc:79:56:3b:6c:e0:dd:cf:f0:37:ce:59:47:2b: db:c5:d5:3e:ba:f2:c2:61:a9:b5:95:5a:2d:59:92: ac:99:63:6b:2d:32:a7:d2:c4:a3:4b:a8:3f:6d:c4: 05:e6:8c:cf:dc:b2:ea:a1:31:15:5d:fa:d7:4c:76: 03:70:5f:5e:f9:00:5f:b3:d9:45:ec:dc:47:aa:d3: e5:ce:2a:b5:36:fd:c3:ec:d5:0d:a1:ff:84:a9:14: 5f:9a:82:17:d4:61:b3:3c:c3:b8:89:7c:e7:58:8c: 81:a6:99:3b:75:f3:fe:77:3e:a0:2e:21:1c:46:6d: 53:7f:e5:90:57:b8:3c:79:99:bb:d8:aa:2b:a2:60: 26:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EB:FE:29:0E:57:00:F2:F0:72:66:99:9C:A4:50:5D:78:C2:27:62 X509v3 Authority Key Identifier: keyid:4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:d3:75:8f:f9:0d:25:a3:57:ea:be:07:e2:fe:e3:6d:09:f4: aa:80:94:7a:d9:6f:6d:43:d2:bf:a3:7c:35:42:99:9d:b8:b8: d2:31:84:de:ff:b4:78:b9:6b:4d:1d:28:2f:db:50:71:d3:a0: 0c:87:7e:43:3b:dc:c1:07:3b:dd:db:b7:8b:aa:f6:97:53:63: 50:c9:56:43:4f:e8:16:8b:68:38:e6:c4:56:53:f6:f8:54:4b: 50:c1:b5:38:dc:a6:11:2a:f8:8a:b7:33:5d:6a:14:46:d2:90: 1e:04:ae:ed:06:dd:7e:4b:9a:a5:5b:41:4c:25:40:7e:58:c3: 0f:71:2d:ee:6f:65:6a:53:8f:2a:35:c5:d1:4b:ed:14:39:b3: be:f6:6e:b8:ea:4b:28:84:f4:a7:07:0a:a7:9f:59:80:66:0c: 05:48:8a:88:9c:78:c6:cb:3e:d0:4c:dc:a9:c6:ea:b2:c7:33: b8:61:28:a8:0b:39:38:f3:fd:15:5e:e1:ee:a2:2b:f5:b6:dd: 44:98:c3:04:5c:40:eb:99:3c:4f:ff:ad:07:ea:45:04:db:56: 2f:e3:5e:de:33:8e:f9:09:42:9d:04:6b:de:27:73:63:02:23: 11:0a:3c:9c:65:e9:ab:1b:b5:9b:d2:10:64:77:60:f3:a2:e9: 77:be:e5:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtv/U42qSKIRZYvamfAFNy3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmOTk4OTk0ZWI1NjE5ZThmMjlhYjNiZGU3YWIyYWQxNGVh YmZjZmQwHhcNMjUxMjMwMTYwMDMwWhcNMjUxMjMxMTYwMDMwWjAzMTEwLwYDVQQD EyhjYWViZmUyOTBlNTcwMGYyZjA3MjY2OTk5Y2E0NTA1ZDc4YzIyNzYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02aUOI8OYeLTHiywxUqLXhY0vyy4 DWt/xaTDn2enSVEHf8LDNjxUG10b4AUcmgKSzHaD+JSPs4W1Wn58iTSJjDhIvSXf eQrSYY7hbJ8ZvWTmKtftGIA45+z/1qnblKHRCdhrRP6IBNgoH+CBYSe955PhHPZA d+dDvHlWO2zg3c/wN85ZRyvbxdU+uvLCYam1lVotWZKsmWNrLTKn0sSjS6g/bcQF 5ozP3LLqoTEVXfrXTHYDcF9e+QBfs9lF7NxHqtPlziq1Nv3D7NUNof+EqRRfmoIX 1GGzPMO4iXznWIyBppk7dfP+dz6gLiEcRm1Tf+WQV7g8eZm72KoromAmdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMrr/ikOVwDy8HJmmZykUF14widiMB8GA1UdIwQY MBaAFE+ZiZTrVhno8pqzveerKtFOq/z9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDVtSmxPdFdHZWp5bXJPOTU2c3EwVTZyX1AwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M0ODctZjhmYi00MDM1LTllMjgt NDQ2OGQxMmYzMjJiLzEvVDVtSmxPdFdHZWp5bXJPOTU2c3EwVTZyX1AwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC81M2M0ODctZjhmYi00MDM1LTllMjgtNDQ2OGQxMmYzMjJi LzEvVDVtSmxPdFdHZWp5bXJPOTU2c3EwVTZyX1AwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvtN1j/kN JaNX6r4H4v7jbQn0qoCUetlvbUPSv6N8NUKZnbi40jGE3v+0eLlrTR0oL9tQcdOg DId+QzvcwQc73du3i6r2l1NjUMlWQ0/oFotoOObEVlP2+FRLUMG1ONymESr4ircz XWoURtKQHgSu7QbdfkuapVtBTCVAfljDD3Et7m9lalOPKjXF0UvtFDmzvvZuuOpL KIT0pwcKp59ZgGYMBUiKiJx4xss+0EzcqcbqssczuGEoqAs5OPP9FV7h7qIr9bbd RJjDBFxA65k8T/+tB+pFBNtWL+Ne3jOO+QlCnQRr3idzYwIjEQo8nGXpqxu1m9IQ ZHdg86Lpd77l9g== -----END CERTIFICATE-----Generated at Wed Dec 31 02:25:11 2025 by rpki-client