This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft File: 5LDTY6ChegaEUahRRc5PpGTX-hs.mft (raw, json) Hash identifier: 2IxM7b8yTaNqSmSWcgboY7v9sHJ382ndEbSoLeID1Gg= Subject key identifier: E5:E1:1A:42:42:E9:0B:14:EB:4D:03:92:A6:85:2A:B1:8A:EF:49:2C Authority key identifier: E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B Certificate issuer: /CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b Certificate serial: 019B19BCDE7510DB586A941BBBE15A305D22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft Manifest number: 10A7 Signing time: Sat 13 Dec 2025 22:02:46 +0000 Manifest this update: Sat 13 Dec 2025 22:02:46 +0000 Manifest next update: Sun 14 Dec 2025 22:02:46 +0000 Files and hashes: 1: 5LDTY6ChegaEUahRRc5PpGTX-hs.crl (hash: n2gGSE1vQ0Y4Az44tSL9GQPgIp3HWBcRgcaPmC/Pnrk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 22:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bc:de:75:10:db:58:6a:94:1b:bb:e1:5a:30:5d:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b Validity Not Before: Dec 13 22:02:46 2025 GMT Not After : Dec 14 22:02:46 2025 GMT Subject: CN=e5e11a4242e90b14eb4d0392a6852ab18aef492c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:bf:29:7d:9d:34:84:0d:ef:e8:34:54:1c: 34:00:1c:c9:96:ca:e0:9b:79:3d:2c:29:4c:c9:6e: 37:a8:00:6a:0b:03:f2:74:ff:00:ce:31:06:3a:c4: 99:8c:74:8f:7e:5a:6f:4f:4d:6d:8d:7d:f6:ac:77: 48:bf:1c:a7:03:cb:87:eb:04:42:39:ef:81:6a:c8: f1:78:7c:5d:21:1e:e2:49:2f:ec:4c:8b:62:71:7b: c6:fb:06:6a:63:01:37:b5:11:bd:a4:2f:8a:fd:8f: 45:1f:ce:53:4c:74:e3:ba:09:57:83:48:4e:55:fc: 73:64:44:48:17:2f:7d:bd:fc:64:de:1c:18:ad:4f: ea:18:09:26:18:3a:4b:e2:11:65:e8:86:2e:f4:e5: ba:7f:b5:51:07:ea:0f:36:42:a1:2c:b1:ab:55:ea: 16:0a:c9:92:5e:b5:25:5b:7b:13:9a:63:51:d8:04: ce:ec:53:52:6a:9e:a3:ec:2d:75:20:13:23:55:86: e3:f4:3b:b8:38:39:91:17:52:ee:73:b7:d6:bb:3a: 56:63:b5:63:66:b3:bf:bd:df:5f:98:36:c2:2a:f2: f4:d3:80:b5:86:06:be:8c:d5:3d:10:55:33:1d:26: a0:3a:d1:d8:cd:9d:44:00:ef:42:53:a7:98:e5:97: 2f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E1:1A:42:42:E9:0B:14:EB:4D:03:92:A6:85:2A:B1:8A:EF:49:2C X509v3 Authority Key Identifier: keyid:E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:85:e2:c3:3d:90:8e:a1:08:5e:76:7d:70:52:9b:bd:0c:c8: 77:33:d5:f5:92:59:c5:d9:da:42:16:38:4a:18:8a:9e:be:a7: d8:ea:85:c0:21:7f:c4:bd:88:eb:ea:bc:f8:fd:92:75:8f:cd: c3:e6:fa:8b:6f:38:9c:c3:6a:9f:88:b4:98:93:cb:fa:15:89: 99:9e:28:61:58:01:d3:03:59:e2:69:b6:7b:eb:d9:36:28:5c: 01:d2:10:cb:db:f7:a3:96:13:89:94:d2:93:dd:0d:42:74:e5: 96:89:3a:76:d9:a6:11:b8:5e:a7:aa:d2:83:41:b6:84:54:26: d4:4a:5a:25:3c:1f:7c:e3:c6:64:39:9d:a0:04:d7:6a:ac:7d: 79:fe:1c:08:7e:3b:49:14:f3:7f:eb:73:f9:de:1f:9e:5f:d3: 0f:29:1f:9e:c9:db:90:4c:32:48:db:34:a5:b7:b7:93:92:2f: 23:78:ba:0f:20:10:66:23:9e:b0:c3:9c:6f:46:53:ff:9a:61: e0:e4:cb:28:b2:2e:54:4e:cc:d6:ac:3b:cf:bd:34:5b:2a:38: 11:d9:ec:cb:41:7a:3f:32:06:7c:d3:78:53:02:81:b3:69:6d: e9:40:5e:5d:b9:1f:f2:89:90:61:71:ac:3d:c7:7f:44:16:af: 0a:51:c7:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZvN51ENtYapQbu+FaMF0iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0YjBkMzYzYTBhMTdhMDY4NDUxYTg1MTQ1Y2U0ZmE0NjRk N2ZhMWIwHhcNMjUxMjEzMjIwMjQ2WhcNMjUxMjE0MjIwMjQ2WjAzMTEwLwYDVQQD EyhlNWUxMWE0MjQyZTkwYjE0ZWI0ZDAzOTJhNjg1MmFiMThhZWY0OTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSy/KX2dNIQN7+g0VBw0ABzJlsrg m3k9LClMyW43qABqCwPydP8AzjEGOsSZjHSPflpvT01tjX32rHdIvxynA8uH6wRC Oe+BasjxeHxdIR7iSS/sTIticXvG+wZqYwE3tRG9pC+K/Y9FH85TTHTjuglXg0hO VfxzZERIFy99vfxk3hwYrU/qGAkmGDpL4hFl6IYu9OW6f7VRB+oPNkKhLLGrVeoW CsmSXrUlW3sTmmNR2ATO7FNSap6j7C11IBMjVYbj9Du4ODmRF1Luc7fWuzpWY7Vj ZrO/vd9fmDbCKvL004C1hga+jNU9EFUzHSagOtHYzZ1EAO9CU6eY5ZcvVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOXhGkJC6QsU600DkqaFKrGK70ksMB8GA1UdIwQY MBaAFOSw02OgoXoGhFGoUUXOT6Rk1/obMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS80NzUzZDMtYTFlOS00ZmQ1LWFlZmUt N2M3ZDhhNzhhOTYzLzEvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS80NzUzZDMtYTFlOS00ZmQ1LWFlZmUtN2M3ZDhhNzhhOTYz LzEvNUxEVFk2Q2hlZ2FFVWFoUlJjNVBwR1RYLWhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJoXiwz2Q jqEIXnZ9cFKbvQzIdzPV9ZJZxdnaQhY4ShiKnr6n2OqFwCF/xL2I6+q8+P2SdY/N w+b6i284nMNqn4i0mJPL+hWJmZ4oYVgB0wNZ4mm2e+vZNihcAdIQy9v3o5YTiZTS k90NQnTllok6dtmmEbhep6rSg0G2hFQm1EpaJTwffOPGZDmdoATXaqx9ef4cCH47 SRTzf+tz+d4fnl/TDykfnsnbkEwySNs0pbe3k5IvI3i6DyAQZiOesMOcb0ZT/5ph 4OTLKLIuVE7M1qw7z700Wyo4Ednsy0F6PzIGfNN4UwKBs2lt6UBeXbkf8omQYXGs Pcd/RBavClHHfg== -----END CERTIFICATE-----Generated at Sun Dec 14 07:42:58 2025 by rpki-client