This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft File: 5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft (raw, json) Hash identifier: PVipujCr7UF7yrYGQCC9eZ9oqzrK7x+UuTb3Ar0CELY= Subject key identifier: 87:00:FA:AE:59:2C:39:EE:13:45:00:40:64:3B:4C:C6:BF:52:24:8C Authority key identifier: E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33 Certificate issuer: /CN=e57731ea857b903aa40a8e5fd8d88446505b5233 Certificate serial: 019B476F3A50E5767377FE37770D00B78466 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft Manifest number: 178E Signing time: Mon 22 Dec 2025 19:00:30 +0000 Manifest this update: Mon 22 Dec 2025 19:00:30 +0000 Manifest next update: Tue 23 Dec 2025 19:00:30 +0000 Files and hashes: 1: 5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl (hash: O2w+SFrcy0iHHGEurnpxDQBGq3XQfvJnNMIfrxg0IEE=) 2: orFnLXI1TH7Jt_MUuyCNlezlJcQ.roa (hash: hsQhpxV8CsTitmZs0YwImGnMA+twiLDEhUnDv5rariM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:6f:3a:50:e5:76:73:77:fe:37:77:0d:00:b7:84:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e57731ea857b903aa40a8e5fd8d88446505b5233 Validity Not Before: Dec 22 19:00:30 2025 GMT Not After : Dec 23 19:00:30 2025 GMT Subject: CN=8700faae592c39ee13450040643b4cc6bf52248c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1e:9c:a8:44:3e:e5:1b:65:08:11:b6:5c:02: 79:76:9e:a9:56:2f:33:da:5d:3c:fb:2e:e8:3f:8b: 2f:e2:e1:9b:16:91:3f:c0:e4:63:85:79:81:f4:0b: 14:71:ff:38:de:1c:0e:22:b2:6e:dc:9c:74:ce:53: 59:28:02:6d:35:44:d0:8c:d7:59:60:69:47:1a:3d: 3e:09:a1:7c:b0:1b:e2:b3:6b:98:79:bf:a2:b6:03: 2f:e8:f9:aa:31:62:51:93:d5:14:50:fd:e7:6f:62: d1:cd:a6:3d:c1:e1:7f:2f:d1:6a:c4:b0:24:c3:96: 94:98:62:c0:f6:07:9d:67:cd:38:27:ef:9c:ce:8d: af:3f:45:ec:1e:b6:01:b7:a1:a4:ed:d8:72:69:87: cb:d5:02:52:40:ee:f0:86:a6:a7:c5:55:c0:76:77: 8f:f5:d4:99:1c:b0:c3:0a:b5:b4:13:eb:c1:63:a4: e0:a7:78:0d:29:6e:15:20:21:75:e2:c7:42:e1:bd: 56:83:e4:25:99:eb:c3:2d:ff:da:78:b5:e9:25:ab: 21:e5:70:af:86:cf:dd:06:33:35:34:5f:db:85:fe: 35:dc:a5:d1:75:6f:26:a3:12:35:59:34:23:20:11: a0:6f:20:7e:b8:ee:83:8a:ff:d6:59:3c:22:da:31: f1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:00:FA:AE:59:2C:39:EE:13:45:00:40:64:3B:4C:C6:BF:52:24:8C X509v3 Authority Key Identifier: keyid:E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:fb:63:21:cb:19:93:13:40:9e:3d:3d:a7:b1:da:1d:98:0f: c0:2b:31:33:57:ea:6b:de:19:26:90:b3:55:de:6e:2c:c2:78: 06:8d:a3:6e:b2:b0:91:03:c0:75:7f:09:90:19:b0:d4:38:8e: 1e:5b:7c:28:63:aa:80:1d:ca:77:b0:d2:2f:b0:23:17:45:ae: 50:cf:ed:2e:27:14:87:77:ba:28:c4:69:e0:9d:c0:b3:1e:38: 21:bb:d9:ff:82:54:ef:db:ff:ce:e1:82:3a:5b:70:30:90:42: 72:13:3c:bb:d3:96:4b:a2:66:3d:91:57:86:88:a4:da:45:bd: f9:d0:14:cd:fa:a8:fb:53:43:d7:d1:a3:1c:c4:5d:cc:83:14: f5:ac:41:b1:32:ca:ee:3b:a0:52:ad:e8:47:cc:04:35:7b:dc: de:54:f8:e0:87:2a:56:25:ef:5e:b0:09:9e:5c:b9:3e:c9:b7: fc:4b:a4:55:f9:fb:57:e9:77:ad:82:85:c6:89:71:36:04:3c: 1a:ee:1b:da:1e:19:ad:9e:58:6b:5e:73:3a:66:e3:14:b9:de: d1:00:12:dd:02:38:7e:aa:07:dd:20:6b:93:ff:27:88:df:bf: be:b4:c5:55:2b:20:fc:37:81:4b:70:63:1b:b7:54:aa:47:bf: 2f:7b:89:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHbzpQ5XZzd/43dw0At4RmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1NzczMWVhODU3YjkwM2FhNDBhOGU1ZmQ4ZDg4NDQ2NTA1 YjUyMzMwHhcNMjUxMjIyMTkwMDMwWhcNMjUxMjIzMTkwMDMwWjAzMTEwLwYDVQQD Eyg4NzAwZmFhZTU5MmMzOWVlMTM0NTAwNDA2NDNiNGNjNmJmNTIyNDhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAox6cqEQ+5RtlCBG2XAJ5dp6pVi8z 2l08+y7oP4sv4uGbFpE/wORjhXmB9AsUcf843hwOIrJu3Jx0zlNZKAJtNUTQjNdZ YGlHGj0+CaF8sBvis2uYeb+itgMv6PmqMWJRk9UUUP3nb2LRzaY9weF/L9FqxLAk w5aUmGLA9gedZ804J++czo2vP0XsHrYBt6Gk7dhyaYfL1QJSQO7whqanxVXAdneP 9dSZHLDDCrW0E+vBY6Tgp3gNKW4VICF14sdC4b1Wg+QlmevDLf/aeLXpJash5XCv hs/dBjM1NF/bhf413KXRdW8moxI1WTQjIBGgbyB+uO6Div/WWTwi2jHxSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIcA+q5ZLDnuE0UAQGQ7TMa/UiSMMB8GA1UdIwQY MBaAFOV3MeqFe5A6pAqOX9jYhEZQW1IzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVhjeDZvVjdrRHFrQ281ZjJOaUVSbEJiVWpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hZmJiNjItMDA5OC00MmIzLTgxYWUt ZjBiYjJlMTVmNmQwLzEvNVhjeDZvVjdrRHFrQ281ZjJOaUVSbEJiVWpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9hZmJiNjItMDA5OC00MmIzLTgxYWUtZjBiYjJlMTVmNmQw LzEvNVhjeDZvVjdrRHFrQ281ZjJOaUVSbEJiVWpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgvtjIcsZ kxNAnj09p7HaHZgPwCsxM1fqa94ZJpCzVd5uLMJ4Bo2jbrKwkQPAdX8JkBmw1DiO Hlt8KGOqgB3Kd7DSL7AjF0WuUM/tLicUh3e6KMRp4J3Asx44IbvZ/4JU79v/zuGC OltwMJBCchM8u9OWS6JmPZFXhoik2kW9+dAUzfqo+1ND19GjHMRdzIMU9axBsTLK 7jugUq3oR8wENXvc3lT44IcqViXvXrAJnly5Psm3/EukVfn7V+l3rYKFxolxNgQ8 Gu4b2h4ZrZ5Ya15zOmbjFLne0QAS3QI4fqoH3SBrk/8niN+/vrTFVSsg/DeBS3Bj G7dUqke/L3uJNQ== -----END CERTIFICATE-----Generated at Mon Dec 22 20:33:33 2025 by rpki-client