This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft File: 5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft (raw, json) Hash identifier: zSJV5lNw4+ar5UNpoS2w1O322wbw+u7sshtx/fFNK1k= Subject key identifier: 32:9C:C5:F3:AD:9A:7F:22:24:D0:DD:5A:CF:1B:2B:62:4B:2D:37:D7 Authority key identifier: E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA Certificate issuer: /CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba Certificate serial: 019B5A1A65E78C2BE79094A9994123094841 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft Manifest number: 1794 Signing time: Fri 26 Dec 2025 10:00:37 +0000 Manifest this update: Fri 26 Dec 2025 10:00:37 +0000 Manifest next update: Sat 27 Dec 2025 10:00:37 +0000 Files and hashes: 1: 5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl (hash: WLx2fAXFWCWh30WdyHc+hd9w0pMZhcaL2fZ88N+poy8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:65:e7:8c:2b:e7:90:94:a9:99:41:23:09:48:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba Validity Not Before: Dec 26 10:00:37 2025 GMT Not After : Dec 27 10:00:37 2025 GMT Subject: CN=329cc5f3ad9a7f2224d0dd5acf1b2b624b2d37d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e3:55:50:5d:b0:ba:7a:ec:3e:7c:52:9d:f2: e6:0d:71:61:f6:60:f0:b1:19:f1:9a:b9:bc:78:f1: da:27:4d:88:95:e0:c8:6d:d9:af:6a:52:19:f8:7c: 7a:a2:5f:24:a5:af:fd:07:c0:52:9b:4d:7a:5c:24: f7:fd:5e:cd:10:00:2f:37:fc:65:ff:a2:9a:f2:e0: 5f:c9:ef:3c:41:79:0d:3b:8d:b0:a0:ae:d9:3a:6b: 2d:aa:44:dd:52:33:d7:a7:84:b0:a3:b7:d2:bf:c9: ee:46:e7:b5:28:27:69:a7:85:96:87:37:f2:55:a9: 5e:7c:9d:14:29:28:82:3c:32:c3:d3:70:86:22:3b: 71:6d:10:fe:b4:3e:c8:84:ab:75:d9:21:7e:16:f6: eb:b4:5e:0f:83:ca:c9:6e:c0:49:ce:dc:16:ca:29: 98:df:ce:84:48:98:69:30:bf:25:1c:6a:f7:4f:ea: 72:48:8c:8d:19:e6:dc:4c:d0:df:2d:91:e1:4d:da: 52:ad:49:0a:37:7c:9d:a2:4d:4f:7f:9d:93:10:99: d8:a5:31:bd:93:59:6d:3b:d8:82:cf:38:15:25:23: 59:dd:89:bc:96:a7:0e:10:fb:2c:83:e6:7b:f0:e3: 6d:c0:a8:37:26:7b:c9:13:ac:ab:ab:68:b6:38:5a: 63:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:9C:C5:F3:AD:9A:7F:22:24:D0:DD:5A:CF:1B:2B:62:4B:2D:37:D7 X509v3 Authority Key Identifier: keyid:E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:77:72:3d:17:62:03:6c:87:b3:6e:66:02:75:46:ec:f4:77: 51:4e:13:03:9b:f2:67:0c:46:e2:b3:d6:5b:df:40:b3:d8:c5: 2f:a8:9f:a6:78:0d:8f:98:b7:53:74:89:22:f2:01:01:97:11: 5b:e8:b7:4a:a5:be:36:e8:d0:aa:86:58:4f:e3:0a:86:32:b8: 58:59:01:75:89:73:0a:ca:d9:b5:48:21:8f:06:aa:70:5a:15: d7:f2:a1:7d:a4:23:e7:50:30:84:0d:bd:ba:48:40:ff:61:5c: 07:ec:37:97:fe:5f:3b:c4:cc:17:d0:a2:ae:fe:c3:33:13:65: ea:41:81:62:3a:90:ea:0e:12:5d:0c:ff:b2:a7:1d:69:86:ff: c2:b5:87:81:ca:c2:b2:e9:4a:6e:91:b4:7e:54:62:f0:e7:2f: ce:7e:43:85:90:62:fa:33:2b:8d:89:be:df:a4:64:39:bb:c5: d8:51:e3:a1:c4:21:3a:48:d2:1c:9d:00:85:f7:c7:e5:ce:33: d4:a4:3c:80:5c:e3:d2:48:2f:01:64:51:8f:b2:33:bc:90:df: c5:a3:41:77:01:e9:3b:a9:06:e7:f3:ce:78:6a:c1:5f:23:94: 35:bd:94:65:f6:dc:2b:a6:2b:ba:61:9e:7c:84:21:5b:75:6a: 02:c6:95:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGmXnjCvnkJSpmUEjCUhBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3MzNiMmVhYjdlMjM0Njg3YmU5N2Y4YzM1ZDZlNmNjM2Uy ZGZjYmEwHhcNMjUxMjI2MTAwMDM3WhcNMjUxMjI3MTAwMDM3WjAzMTEwLwYDVQQD EygzMjljYzVmM2FkOWE3ZjIyMjRkMGRkNWFjZjFiMmI2MjRiMmQzN2Q3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApeNVUF2wunrsPnxSnfLmDXFh9mDw sRnxmrm8ePHaJ02IleDIbdmvalIZ+Hx6ol8kpa/9B8BSm016XCT3/V7NEAAvN/xl /6Ka8uBfye88QXkNO42woK7ZOmstqkTdUjPXp4Swo7fSv8nuRue1KCdpp4WWhzfy ValefJ0UKSiCPDLD03CGIjtxbRD+tD7IhKt12SF+FvbrtF4Pg8rJbsBJztwWyimY 386ESJhpML8lHGr3T+pySIyNGebcTNDfLZHhTdpSrUkKN3ydok1Pf52TEJnYpTG9 k1ltO9iCzzgVJSNZ3Ym8lqcOEPssg+Z78ONtwKg3JnvJE6yrq2i2OFpjGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDKcxfOtmn8iJNDdWs8bK2JLLTfXMB8GA1UdIwQY MBaAFOczsuq34jRoe+l/jDXW5sw+Lfy6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXpPeTZyZmlOR2g3NlgtTU5kYm16RDR0X0xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS85MzYwZjUtMWRlYi00YjQzLWEzMmYt YWM0NGJjNTY5YTc4LzEvNXpPeTZyZmlOR2g3NlgtTU5kYm16RDR0X0xvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS85MzYwZjUtMWRlYi00YjQzLWEzMmYtYWM0NGJjNTY5YTc4 LzEvNXpPeTZyZmlOR2g3NlgtTU5kYm16RDR0X0xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGHdyPRdi A2yHs25mAnVG7PR3UU4TA5vyZwxG4rPWW99As9jFL6ifpngNj5i3U3SJIvIBAZcR W+i3SqW+NujQqoZYT+MKhjK4WFkBdYlzCsrZtUghjwaqcFoV1/KhfaQj51AwhA29 ukhA/2FcB+w3l/5fO8TMF9Cirv7DMxNl6kGBYjqQ6g4SXQz/sqcdaYb/wrWHgcrC sulKbpG0flRi8Ocvzn5DhZBi+jMrjYm+36RkObvF2FHjocQhOkjSHJ0AhffH5c4z 1KQ8gFzj0kgvAWRRj7IzvJDfxaNBdwHpO6kG5/POeGrBXyOUNb2UZfbcK6YrumGe fIQhW3VqAsaVLQ== -----END CERTIFICATE-----Generated at Fri Dec 26 16:02:10 2025 by rpki-client