This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft File: 5YAuENSvnLelksYbu0sJLqw4htY.mft (raw, json) Hash identifier: CibvYCz5hXJJJO5Sl5NFdm0y9WWOhCilUv6kEb+GIx8= Subject key identifier: 7B:B7:89:46:BF:E8:D4:C4:64:F5:DE:F1:56:D2:21:AB:A1:15:1E:7F Authority key identifier: E5:80:2E:10:D4:AF:9C:B7:A5:92:C6:1B:BB:4B:09:2E:AC:38:86:D6 Certificate issuer: /CN=e5802e10d4af9cb7a592c61bbb4b092eac3886d6 Certificate serial: 019B5A5218D40E7D0520EC533A72EAB01A96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAuENSvnLelksYbu0sJLqw4htY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft Manifest number: C5 Signing time: Fri 26 Dec 2025 11:01:28 +0000 Manifest this update: Fri 26 Dec 2025 11:01:28 +0000 Manifest next update: Sat 27 Dec 2025 11:01:28 +0000 Files and hashes: 1: 5YAuENSvnLelksYbu0sJLqw4htY.crl (hash: l1KkxFMcxWzNkQAx4R2mJjZnmSwSJYPMadQ9ergO69s=) 2: usMLAG6YZUxgwHs51gx5TCy7zzI.roa (hash: pY+WXtHRbgCgVUJPNgpPcMNtikZqJuq/uJTTR/ANulA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft rsync://rpki.ripe.net/repository/DEFAULT/5YAuENSvnLelksYbu0sJLqw4htY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:52:18:d4:0e:7d:05:20:ec:53:3a:72:ea:b0:1a:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5802e10d4af9cb7a592c61bbb4b092eac3886d6 Validity Not Before: Dec 26 11:01:28 2025 GMT Not After : Dec 27 11:01:28 2025 GMT Subject: CN=7bb78946bfe8d4c464f5def156d221aba1151e7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5e:9a:ca:43:7e:01:33:8e:8a:6f:22:74:f3: bf:35:07:32:88:ab:e7:32:0e:cb:58:3e:36:43:f1: 3f:a2:80:1f:23:c1:c6:76:97:33:65:61:f1:ea:0f: 3c:47:bc:c3:d3:37:6f:1a:a9:aa:7b:1e:e0:c8:ff: 0e:94:c2:78:67:ab:70:59:7f:c4:b1:c6:d8:c8:37: b3:d4:7d:84:09:20:24:d8:9c:4b:c6:62:61:6f:34: 46:c2:7e:68:5b:d8:53:bf:d5:c7:3f:0e:87:e0:e3: 72:54:14:96:8c:81:1a:09:95:a3:84:b7:c1:4e:e6: 57:4a:c5:83:ad:b6:68:69:5f:ce:eb:2a:86:0f:5c: 70:b1:0b:e7:6a:df:a6:aa:6a:ad:34:96:4b:6e:4a: 61:f1:bd:91:25:49:00:50:e8:41:27:92:9d:20:ee: a9:6d:ca:e6:c4:6a:35:22:58:8a:99:77:19:a7:a8: ea:19:d8:22:28:14:a8:26:2f:57:8d:31:01:ad:43: 59:4d:e8:e9:6a:60:08:e0:14:bd:0e:b8:a0:03:d6: 97:a1:10:37:be:dc:c4:08:0b:ed:d0:00:21:6e:8e: df:82:56:93:94:64:ac:f4:d2:fb:39:e6:93:65:e1: 46:ab:dd:e0:ef:7f:88:88:44:9c:20:46:43:d0:24: 7d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B7:89:46:BF:E8:D4:C4:64:F5:DE:F1:56:D2:21:AB:A1:15:1E:7F X509v3 Authority Key Identifier: keyid:E5:80:2E:10:D4:AF:9C:B7:A5:92:C6:1B:BB:4B:09:2E:AC:38:86:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAuENSvnLelksYbu0sJLqw4htY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:cb:ea:33:bc:f0:76:75:c3:a5:1d:d7:80:ce:db:c5:48:99: 4e:56:27:da:91:cc:df:e4:81:03:9c:27:28:c7:4e:43:4c:67: 5d:96:3c:f1:ac:0d:be:25:69:c8:57:3b:ec:b1:e1:2b:ce:7e: 22:f7:07:6c:6e:9c:e9:58:2b:4a:49:28:1e:9b:9c:b5:53:f3: 34:99:98:9b:02:19:a9:9f:72:5d:c0:e2:34:59:9a:46:db:cb: d6:e9:6c:30:ac:6b:b1:59:22:96:ba:57:b9:4e:05:63:ac:4d: 6a:f6:c9:77:c8:e3:11:e4:46:94:35:4c:28:71:05:da:fc:94: f2:cd:55:c2:38:11:d2:71:58:c2:80:e8:89:45:1a:27:59:82: 4b:8a:52:e0:75:ce:9a:ac:09:8f:2d:42:15:19:ef:a0:fc:89: 95:db:a9:3b:90:d9:f8:e1:33:6c:e2:67:42:12:9e:23:77:76: d2:d1:1b:04:19:59:83:7c:4c:c0:20:83:d0:97:e9:cb:68:bf: 40:6c:95:0f:14:aa:8f:c1:ff:96:a9:67:26:13:b0:79:71:f9: 83:b1:75:54:26:58:f6:df:23:cc:33:43:5a:ba:f7:57:4c:fc: 8b:c2:da:ed:62:ec:16:80:75:f7:bb:44:db:0c:63:01:8e:b0: 4a:da:b3:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUhjUDn0FIOxTOnLqsBqWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ODAyZTEwZDRhZjljYjdhNTkyYzYxYmJiNGIwOTJlYWMz ODg2ZDYwHhcNMjUxMjI2MTEwMTI4WhcNMjUxMjI3MTEwMTI4WjAzMTEwLwYDVQQD Eyg3YmI3ODk0NmJmZThkNGM0NjRmNWRlZjE1NmQyMjFhYmExMTUxZTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuV6aykN+ATOOim8idPO/NQcyiKvn Mg7LWD42Q/E/ooAfI8HGdpczZWHx6g88R7zD0zdvGqmqex7gyP8OlMJ4Z6twWX/E scbYyDez1H2ECSAk2JxLxmJhbzRGwn5oW9hTv9XHPw6H4ONyVBSWjIEaCZWjhLfB TuZXSsWDrbZoaV/O6yqGD1xwsQvnat+mqmqtNJZLbkph8b2RJUkAUOhBJ5KdIO6p bcrmxGo1IliKmXcZp6jqGdgiKBSoJi9XjTEBrUNZTejpamAI4BS9DrigA9aXoRA3 vtzECAvt0AAhbo7fglaTlGSs9NL7OeaTZeFGq93g73+IiEScIEZD0CR9hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHu3iUa/6NTEZPXe8VbSIauhFR5/MB8GA1UdIwQY MBaAFOWALhDUr5y3pZLGG7tLCS6sOIbWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVlBdUVOU3ZuTGVsa3NZYnUwc0pMcXc0aHRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9jZDU3ZTItNTdjNy00Y2M1LTg3MTQt MzQ5NmM5ZDc5NGJjLzEvNVlBdUVOU3ZuTGVsa3NZYnUwc0pMcXc0aHRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi9jZDU3ZTItNTdjNy00Y2M1LTg3MTQtMzQ5NmM5ZDc5NGJj LzEvNVlBdUVOU3ZuTGVsa3NZYnUwc0pMcXc0aHRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPMvqM7zw dnXDpR3XgM7bxUiZTlYn2pHM3+SBA5wnKMdOQ0xnXZY88awNviVpyFc77LHhK85+ IvcHbG6c6VgrSkkoHpuctVPzNJmYmwIZqZ9yXcDiNFmaRtvL1ulsMKxrsVkilrpX uU4FY6xNavbJd8jjEeRGlDVMKHEF2vyU8s1VwjgR0nFYwoDoiUUaJ1mCS4pS4HXO mqwJjy1CFRnvoPyJldupO5DZ+OEzbOJnQhKeI3d20tEbBBlZg3xMwCCD0Jfpy2i/ QGyVDxSqj8H/lqlnJhOweXH5g7F1VCZY9t8jzDNDWrr3V0z8i8La7WLsFoB197tE 2wxjAY6wStqzqg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:10 2025 by rpki-client