This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft File: 5kdeNHqvK1nU7oU6ilS05L03R-s.mft (raw, json) Hash identifier: fd+bwK2XSwcsJKlO+2IYaM4bKHZmKrVnTlzuqbRvtrk= Subject key identifier: A5:A1:24:F3:A9:14:B6:B6:EE:29:58:AB:66:A7:7B:D9:22:7E:68:9A Authority key identifier: E6:47:5E:34:7A:AF:2B:59:D4:EE:85:3A:8A:54:B4:E4:BD:37:47:EB Certificate issuer: /CN=e6475e347aaf2b59d4ee853a8a54b4e4bd3747eb Certificate serial: 019B330D1DDE316199D919C41000947E570E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5kdeNHqvK1nU7oU6ilS05L03R-s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft Manifest number: 02CD Signing time: Thu 18 Dec 2025 20:00:56 +0000 Manifest this update: Thu 18 Dec 2025 20:00:56 +0000 Manifest next update: Fri 19 Dec 2025 20:00:56 +0000 Files and hashes: 1: 5kdeNHqvK1nU7oU6ilS05L03R-s.crl (hash: N9mD4Jthhk3URFBNvoV5/WURnRqd+WLeIBrDVVgxDxQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft rsync://rpki.ripe.net/repository/DEFAULT/5kdeNHqvK1nU7oU6ilS05L03R-s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:1d:de:31:61:99:d9:19:c4:10:00:94:7e:57:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e6475e347aaf2b59d4ee853a8a54b4e4bd3747eb Validity Not Before: Dec 18 20:00:56 2025 GMT Not After : Dec 19 20:00:56 2025 GMT Subject: CN=a5a124f3a914b6b6ee2958ab66a77bd9227e689a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1c:9d:f6:19:e0:a8:fa:bf:6a:f7:14:ac:f6: f6:81:0a:b8:1a:62:3c:51:bc:a3:b7:67:4b:d3:aa: e8:b8:87:f3:0e:e3:90:41:a0:d2:00:96:b0:41:9d: 1e:c4:42:97:b3:6d:f9:57:90:a3:2d:29:ea:3b:ec: aa:3b:60:2a:17:87:b3:c9:7e:8a:b6:52:83:da:ed: bd:90:d1:58:e2:6e:94:62:89:54:2e:36:8d:da:2b: 26:b8:06:42:6d:01:5f:f1:d8:74:a9:3b:79:4f:e0: df:fe:32:ca:d3:b4:b7:42:40:b5:e2:b3:da:24:7e: 60:19:19:c4:72:0d:26:d1:7d:f4:c8:31:13:e9:c8: f5:b1:01:53:40:d1:2b:0e:6e:3b:ed:b9:6b:fd:ef: 78:ed:2d:96:39:e8:2b:f4:74:3b:96:7e:25:c8:80: 2b:7d:6c:7a:e0:4c:9e:4d:4a:1c:01:27:7f:34:ac: 3d:8f:1f:ec:ff:cc:dc:01:60:6f:94:c2:f7:f6:6e: 9d:84:5f:9f:9b:42:98:c4:0b:bd:af:3a:04:c7:ad: 25:c4:52:1b:08:d1:62:4d:44:05:a0:7b:38:8f:33: fa:01:94:67:b4:8f:03:85:48:f2:67:e3:aa:f9:3f: db:e5:38:4f:a7:1b:12:e3:60:5a:6d:ef:47:39:03: 55:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A1:24:F3:A9:14:B6:B6:EE:29:58:AB:66:A7:7B:D9:22:7E:68:9A X509v3 Authority Key Identifier: keyid:E6:47:5E:34:7A:AF:2B:59:D4:EE:85:3A:8A:54:B4:E4:BD:37:47:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5kdeNHqvK1nU7oU6ilS05L03R-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:56:32:3e:e1:06:32:74:b1:ae:08:f7:bf:a4:91:c9:31:49: 2f:b8:71:cc:2d:2b:d4:03:ca:c7:09:31:0f:d9:a4:3b:9e:b9: 39:b9:a1:b7:22:7e:92:ef:52:b1:40:69:bc:df:89:63:e9:27: bc:32:11:6a:c2:77:4f:05:b1:70:7d:90:6a:84:93:ba:c1:19: 81:e5:d0:2b:a4:62:1c:ec:35:d6:3f:1b:34:db:14:42:70:7f: 07:31:f6:91:a2:96:84:20:f0:3b:aa:86:0e:f1:1c:b3:e2:1c: 7a:de:52:f5:5d:19:7f:81:ae:eb:f2:66:63:3a:cf:f3:b9:28: 6d:b4:e1:ca:c0:30:f1:76:17:5f:7b:09:2e:82:98:bd:70:4b: 4e:18:d9:85:f7:c7:6c:92:18:c9:54:e2:35:ec:04:02:04:e5: 8a:d2:d4:05:3d:5a:41:44:ee:5a:34:54:1e:94:71:85:70:b1: e2:42:a5:b0:8a:3a:b6:2a:4a:3d:87:57:18:d6:a0:4a:ad:f4: 9f:83:fd:ca:b4:e5:03:c2:ce:3d:c1:d1:8c:65:45:61:e2:f7: 4f:78:c5:31:61:9c:00:77:17:9f:c0:0b:14:a0:37:c7:5a:4a: ef:ca:f3:8f:fc:08:cf:ea:37:d8:bb:17:85:39:73:65:91:c6: 8b:cb:7c:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDR3eMWGZ2RnEEACUflcOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2NDc1ZTM0N2FhZjJiNTlkNGVlODUzYThhNTRiNGU0YmQz NzQ3ZWIwHhcNMjUxMjE4MjAwMDU2WhcNMjUxMjE5MjAwMDU2WjAzMTEwLwYDVQQD EyhhNWExMjRmM2E5MTRiNmI2ZWUyOTU4YWI2NmE3N2JkOTIyN2U2ODlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzByd9hngqPq/avcUrPb2gQq4GmI8 Ubyjt2dL06rouIfzDuOQQaDSAJawQZ0exEKXs235V5CjLSnqO+yqO2AqF4ezyX6K tlKD2u29kNFY4m6UYolULjaN2ismuAZCbQFf8dh0qTt5T+Df/jLK07S3QkC14rPa JH5gGRnEcg0m0X30yDET6cj1sQFTQNErDm477blr/e947S2WOegr9HQ7ln4lyIAr fWx64EyeTUocASd/NKw9jx/s/8zcAWBvlML39m6dhF+fm0KYxAu9rzoEx60lxFIb CNFiTUQFoHs4jzP6AZRntI8DhUjyZ+Oq+T/b5ThPpxsS42Babe9HOQNVAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKWhJPOpFLa27ilYq2ane9kifmiaMB8GA1UdIwQY MBaAFOZHXjR6rytZ1O6FOopUtOS9N0frMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWtkZU5IcXZLMW5VN29VNmlsUzA1TDAzUi1zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9hM2EyOTktY2UyOC00YzM1LWFjNjQt YzhjMjBmMjVkZTg4LzEvNWtkZU5IcXZLMW5VN29VNmlsUzA1TDAzUi1zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9hM2EyOTktY2UyOC00YzM1LWFjNjQtYzhjMjBmMjVkZTg4 LzEvNWtkZU5IcXZLMW5VN29VNmlsUzA1TDAzUi1zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAclYyPuEG MnSxrgj3v6SRyTFJL7hxzC0r1APKxwkxD9mkO565ObmhtyJ+ku9SsUBpvN+JY+kn vDIRasJ3TwWxcH2QaoSTusEZgeXQK6RiHOw11j8bNNsUQnB/BzH2kaKWhCDwO6qG DvEcs+Icet5S9V0Zf4Gu6/JmYzrP87kobbThysAw8XYXX3sJLoKYvXBLThjZhffH bJIYyVTiNewEAgTlitLUBT1aQUTuWjRUHpRxhXCx4kKlsIo6tipKPYdXGNagSq30 n4P9yrTlA8LOPcHRjGVFYeL3T3jFMWGcAHcXn8ALFKA3x1pK78rzj/wIz+o32LsX hTlzZZHGi8t8NA== -----END CERTIFICATE-----Generated at Fri Dec 19 04:49:10 2025 by rpki-client