This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft File: h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json) Hash identifier: 9aCtaLY+WFmWC07GuRjM2eTrUAQo7JV+xkwlFmhs06g= Subject key identifier: 59:1A:2E:BB:CB:DF:EC:D0:75:64:7B:28:BA:E2:0C:8B:38:02:56:BE Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F Certificate issuer: /CN=87992088e7655cb134020ca95b0e57d4e6daf40f Certificate serial: 019B38A128A2F4A5062D12A0961A5C93BCD5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft Manifest number: 1787 Signing time: Fri 19 Dec 2025 22:00:44 +0000 Manifest this update: Fri 19 Dec 2025 22:00:44 +0000 Manifest next update: Sat 20 Dec 2025 22:00:44 +0000 Files and hashes: 1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: ofVHaLh3hCmTSbLfzsSIVaanF+tjh9Cx/4JyYutdLIQ=) 2: vH-eK3MDkjfjQIWGcNruZ1gYj6o.roa (hash: X8Ll3xNOyDNsY8OoD7P2fm6g2ckrfD35bOMThe6H4RM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 17:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:a1:28:a2:f4:a5:06:2d:12:a0:96:1a:5c:93:bc:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f Validity Not Before: Dec 19 22:00:44 2025 GMT Not After : Dec 20 22:00:44 2025 GMT Subject: CN=591a2ebbcbdfecd075647b28bae20c8b380256be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:15:49:f2:e8:38:fc:86:db:9f:0c:db:cf:fe: b7:af:2f:29:26:85:1d:1f:0a:03:ba:9d:74:d4:8c: 3a:f6:9b:a0:19:b4:08:3e:7d:42:32:75:5c:32:ae: 8a:b4:a0:45:5a:c3:b9:1c:35:76:c6:fe:f2:c0:be: 74:58:9c:ad:96:eb:85:11:bf:72:e5:57:5b:37:9c: a8:e8:87:39:e8:b6:71:47:9b:c6:ee:73:0b:1d:50: 5c:d2:9a:84:93:8e:c7:4e:d7:dd:81:39:7c:e6:db: 8b:f6:79:79:83:1a:34:c8:9d:a3:16:38:0b:1d:19: 56:3f:ff:6d:5b:c7:44:f2:0a:11:b6:e2:b2:e0:f4: 05:e8:55:97:e9:e1:92:9c:cb:fe:46:cf:ba:65:39: 12:1c:72:16:5e:27:5f:48:b1:f0:8f:91:f7:2c:7e: 9a:07:b9:db:e5:4b:92:f6:8a:e0:dd:08:ff:a7:dc: 69:ef:41:7b:43:45:84:28:c5:b5:1c:49:7d:5f:02: a7:58:17:e1:f2:fb:4b:c3:4f:eb:25:18:54:41:ea: b1:25:a5:0d:a7:5f:91:2f:c0:71:13:ac:16:b5:16: b6:06:42:5c:a5:6e:e5:0b:8b:54:d5:95:92:85:94: 6a:36:7d:ca:10:d6:7c:34:6e:a8:16:95:01:80:a2: 58:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1A:2E:BB:CB:DF:EC:D0:75:64:7B:28:BA:E2:0C:8B:38:02:56:BE X509v3 Authority Key Identifier: keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:08:11:c6:00:75:09:d8:40:8b:ed:80:a1:8e:ec:30:5b:14: 05:37:17:7f:fb:d1:fb:44:af:15:ec:45:d7:b8:f9:25:dd:97: 3a:3e:cc:1c:3f:70:c4:5e:61:7c:ca:a4:ec:1f:a4:0b:78:a7: e5:f0:dc:aa:ee:96:4b:9a:24:72:1a:9d:3f:89:92:57:be:5e: 4d:a7:03:22:51:68:29:21:6c:68:89:1a:28:84:ae:ab:e7:a2: 73:6b:2b:4a:3e:d5:08:a1:05:d4:d5:21:b4:d8:d9:31:0f:40: ff:5d:60:13:dc:85:c9:5a:14:c3:a0:12:d5:2c:42:34:64:6a: 43:d6:a2:68:bc:1a:65:76:a4:2a:14:65:ce:e4:71:1d:b9:49: a4:4a:25:f1:0e:9e:5c:89:0a:a1:8e:91:c3:f0:d5:40:9c:db: 33:c9:61:40:00:74:71:9d:e5:0e:27:f5:2b:15:9c:8c:72:44: b4:05:ce:0a:f3:6c:0b:8a:8c:ed:89:20:f6:64:51:84:3b:fb: fa:22:94:7c:c4:e6:17:5f:7c:de:d1:32:6b:80:40:90:3c:c8: fa:d5:d4:72:00:e3:1f:21:e7:0d:a6:35:76:8a:cd:dd:55:32: b8:eb:f2:77:b1:a2:cb:d5:37:b7:be:4e:fc:00:ae:8a:5d:95: 0d:a5:07:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4oSii9KUGLRKglhpck7zVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3OTkyMDg4ZTc2NTVjYjEzNDAyMGNhOTViMGU1N2Q0ZTZk YWY0MGYwHhcNMjUxMjE5MjIwMDQ0WhcNMjUxMjIwMjIwMDQ0WjAzMTEwLwYDVQQD Eyg1OTFhMmViYmNiZGZlY2QwNzU2NDdiMjhiYWUyMGM4YjM4MDI1NmJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRVJ8ug4/Ibbnwzbz/63ry8pJoUd HwoDup101Iw69pugGbQIPn1CMnVcMq6KtKBFWsO5HDV2xv7ywL50WJytluuFEb9y 5VdbN5yo6Ic56LZxR5vG7nMLHVBc0pqEk47HTtfdgTl85tuL9nl5gxo0yJ2jFjgL HRlWP/9tW8dE8goRtuKy4PQF6FWX6eGSnMv+Rs+6ZTkSHHIWXidfSLHwj5H3LH6a B7nb5UuS9org3Qj/p9xp70F7Q0WEKMW1HEl9XwKnWBfh8vtLw0/rJRhUQeqxJaUN p1+RL8BxE6wWtRa2BkJcpW7lC4tU1ZWShZRqNn3KENZ8NG6oFpUBgKJYBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFkaLrvL3+zQdWR7KLriDIs4Ala+MB8GA1UdIwQY MBaAFIeZIIjnZVyxNAIMqVsOV9Tm2vQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMt ODVlYTYzYzI0NDc0LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMtODVlYTYzYzI0NDc0 LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaggRxgB1 CdhAi+2AoY7sMFsUBTcXf/vR+0SvFexF17j5Jd2XOj7MHD9wxF5hfMqk7B+kC3in 5fDcqu6WS5okchqdP4mSV75eTacDIlFoKSFsaIkaKISuq+eic2srSj7VCKEF1NUh tNjZMQ9A/11gE9yFyVoUw6AS1SxCNGRqQ9aiaLwaZXakKhRlzuRxHblJpEol8Q6e XIkKoY6Rw/DVQJzbM8lhQAB0cZ3lDif1KxWcjHJEtAXOCvNsC4qM7Ykg9mRRhDv7 +iKUfMTmF1983tEya4BAkDzI+tXUcgDjHyHnDaY1dorN3VUyuOvyd7Giy9U3t75O /ACuil2VDaUH8g== -----END CERTIFICATE-----Generated at Sat Dec 20 03:30:56 2025 by rpki-client