This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft File: K5Ro565AOUbluk3mHMHEej2b794.mft (raw, json) Hash identifier: SuN9GQvYU37K2Ff1HHSYmzz0Qclmd7saneOyOOslf/Y= Subject key identifier: EF:E5:57:B3:58:26:08:46:A9:C2:81:84:97:E7:8F:B9:C2:69:33:E1 Authority key identifier: 2B:94:68:E7:AE:40:39:46:E5:BA:4D:E6:1C:C1:C4:7A:3D:9B:EF:DE Certificate issuer: /CN=2b9468e7ae403946e5ba4de61cc1c47a3d9befde Certificate serial: 019B59771D0E39B469FFB176200247127E19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft Manifest number: 0C50 Signing time: Fri 26 Dec 2025 07:02:16 +0000 Manifest this update: Fri 26 Dec 2025 07:02:16 +0000 Manifest next update: Sat 27 Dec 2025 07:02:16 +0000 Files and hashes: 1: K5Ro565AOUbluk3mHMHEej2b794.crl (hash: 4Y5w1rFEvx+QjKbTmkGxj8pUK5jkdAxqySUExPToZ6I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:1d:0e:39:b4:69:ff:b1:76:20:02:47:12:7e:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b9468e7ae403946e5ba4de61cc1c47a3d9befde Validity Not Before: Dec 26 07:02:16 2025 GMT Not After : Dec 27 07:02:16 2025 GMT Subject: CN=efe557b358260846a9c2818497e78fb9c26933e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2b:21:2c:a0:2a:28:51:97:61:34:9c:23:c0: a3:c5:f5:db:db:5c:fb:ab:ed:08:66:5d:c3:5d:ca: 40:63:05:4b:54:fc:cc:99:90:c0:6e:5a:bf:5c:25: 4a:e6:af:48:7c:7a:65:cc:77:41:f1:43:21:6e:51: 05:21:4d:90:67:bc:46:74:58:07:5b:f3:6b:e8:94: b8:14:43:c8:14:a9:8e:93:16:f5:ba:6b:4b:d5:24: d0:e1:39:b3:1d:2c:51:f3:96:17:b8:dc:c2:26:ff: b4:4e:4a:09:8f:1f:c5:c2:44:61:8d:66:52:02:2b: 28:09:0d:86:5d:7f:b7:63:f8:b3:03:4b:d1:43:cf: 12:b4:12:8a:51:86:48:b9:09:93:36:5b:22:c2:fc: 15:c8:ac:b4:3d:39:0a:8f:ad:31:e6:ad:2c:bc:69: 0f:36:53:54:78:f6:87:b0:db:a8:0e:6e:f9:0a:6f: e9:55:26:f6:26:55:29:25:dc:4e:07:68:ed:24:cc: 83:2f:04:84:db:be:eb:5f:8a:f8:fa:db:ba:0b:92: 3c:84:01:de:6e:cf:b8:06:e7:33:61:4c:89:be:9e: a4:37:1c:23:d5:74:0b:f4:f7:24:0d:89:d1:ea:2c: 8b:55:bd:18:bb:56:44:f7:a2:53:b4:66:db:56:cf: bf:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E5:57:B3:58:26:08:46:A9:C2:81:84:97:E7:8F:B9:C2:69:33:E1 X509v3 Authority Key Identifier: keyid:2B:94:68:E7:AE:40:39:46:E5:BA:4D:E6:1C:C1:C4:7A:3D:9B:EF:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:fb:27:25:a4:77:8f:42:5c:c7:01:c0:59:e2:da:ba:22:06: c4:77:10:33:9a:84:b9:25:7e:71:84:80:b1:a8:5c:2c:6d:8b: 15:a1:7f:9e:e7:7e:93:e9:b0:ca:65:e5:74:6e:d1:3d:58:1e: a4:a8:6b:70:bc:6e:fa:fe:16:d0:fd:6d:e7:c3:05:91:9d:76: 31:34:87:34:b7:18:ba:36:43:af:0a:c7:ca:09:d9:b0:ae:25: 76:b1:ad:74:3e:2b:62:68:57:cf:64:47:3a:8f:c9:d0:8c:18: 78:d0:52:25:b0:48:a2:58:3d:eb:cd:f8:b1:54:a8:29:7a:a7: 0a:7a:8e:06:e1:db:de:b6:9e:3f:bd:69:63:41:31:9f:73:0a: 24:07:df:ec:2b:c2:f1:1d:49:71:e2:50:cb:5e:f9:df:67:c6: 12:35:71:4c:b3:48:c1:91:2f:a1:88:b8:21:f1:c4:a9:f4:7a: 48:16:8d:9e:a6:2b:ea:85:b3:8f:34:14:ec:a7:ee:de:9e:de: f2:7a:c7:f5:e2:8e:44:57:32:c2:1c:83:c6:c2:ed:4a:8a:f9: 57:c8:61:0a:2c:1c:17:18:8e:af:a6:21:6f:43:4f:b4:53:12: 34:cc:53:93:1d:61:e4:51:4f:90:77:a5:7c:68:1e:04:d2:da: be:d9:51:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdx0OObRp/7F2IAJHEn4ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiOTQ2OGU3YWU0MDM5NDZlNWJhNGRlNjFjYzFjNDdhM2Q5 YmVmZGUwHhcNMjUxMjI2MDcwMjE2WhcNMjUxMjI3MDcwMjE2WjAzMTEwLwYDVQQD EyhlZmU1NTdiMzU4MjYwODQ2YTljMjgxODQ5N2U3OGZiOWMyNjkzM2UxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSshLKAqKFGXYTScI8CjxfXb21z7 q+0IZl3DXcpAYwVLVPzMmZDAblq/XCVK5q9IfHplzHdB8UMhblEFIU2QZ7xGdFgH W/Nr6JS4FEPIFKmOkxb1umtL1STQ4TmzHSxR85YXuNzCJv+0TkoJjx/FwkRhjWZS AisoCQ2GXX+3Y/izA0vRQ88StBKKUYZIuQmTNlsiwvwVyKy0PTkKj60x5q0svGkP NlNUePaHsNuoDm75Cm/pVSb2JlUpJdxOB2jtJMyDLwSE277rX4r4+tu6C5I8hAHe bs+4BuczYUyJvp6kNxwj1XQL9PckDYnR6iyLVb0Yu1ZE96JTtGbbVs+/VQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO/lV7NYJghGqcKBhJfnj7nCaTPhMB8GA1UdIwQY MBaAFCuUaOeuQDlG5bpN5hzBxHo9m+/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzVSbzU2NUFPVWJsdWszbUhNSEVlajJiNzk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi80YjVjMTgtODQ3Mi00MWRiLWI1NTct MjI2OWMxYWYyYWQzLzEvSzVSbzU2NUFPVWJsdWszbUhNSEVlajJiNzk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi80YjVjMTgtODQ3Mi00MWRiLWI1NTctMjI2OWMxYWYyYWQz LzEvSzVSbzU2NUFPVWJsdWszbUhNSEVlajJiNzk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQPsnJaR3 j0JcxwHAWeLauiIGxHcQM5qEuSV+cYSAsahcLG2LFaF/nud+k+mwymXldG7RPVge pKhrcLxu+v4W0P1t58MFkZ12MTSHNLcYujZDrwrHygnZsK4ldrGtdD4rYmhXz2RH Oo/J0IwYeNBSJbBIolg96834sVSoKXqnCnqOBuHb3raeP71pY0Exn3MKJAff7CvC 8R1JceJQy17532fGEjVxTLNIwZEvoYi4IfHEqfR6SBaNnqYr6oWzjzQU7Kfu3p7e 8nrH9eKORFcywhyDxsLtSor5V8hhCiwcFxiOr6Yhb0NPtFMSNMxTkx1h5FFPkHel fGgeBNLavtlRgg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:27 2025 by rpki-client