This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft File: _e3ZOtbKqmCtSfD5N32Kq_h34ts.mft (raw, json) Hash identifier: qMs0R7i/gxqt1mbjL/fDDLx5sXhCPmUFww0U5jLF1WU= Subject key identifier: A0:ED:BD:E8:63:18:92:2D:30:CC:39:B2:83:F5:BB:65:19:24:66:56 Authority key identifier: FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB Certificate issuer: /CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db Certificate serial: 019AF12E0FA919F76E3B9572F2D7832ABE2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft Manifest number: 08E0 Signing time: Sat 06 Dec 2025 01:01:58 +0000 Manifest this update: Sat 06 Dec 2025 01:01:58 +0000 Manifest next update: Sun 07 Dec 2025 01:01:58 +0000 Files and hashes: 1: _e3ZOtbKqmCtSfD5N32Kq_h34ts.crl (hash: oe8V4kowvyG2J1mlsW7WmmrJHvEyjjnc5ekxTDNpud8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:0f:a9:19:f7:6e:3b:95:72:f2:d7:83:2a:be:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db Validity Not Before: Dec 6 01:01:58 2025 GMT Not After : Dec 7 01:01:58 2025 GMT Subject: CN=a0edbde86318922d30cc39b283f5bb6519246656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:4e:d8:f8:4e:ba:c9:7a:84:1d:e9:fb:e8: 4c:03:bf:cb:ff:b8:bf:5e:6e:30:6a:bc:3e:d8:f6: 1b:11:7c:d5:88:ba:20:8d:79:e3:32:b6:87:c5:6b: 81:7e:55:53:ae:36:c2:03:cc:30:db:a3:86:70:51: fc:17:ab:c3:99:9c:44:30:00:0a:f5:91:b5:9c:d9: ad:bd:49:80:b4:f0:00:31:9d:29:80:f9:8c:c6:23: 6c:b9:b2:b9:f4:ae:7a:79:b4:39:7e:e3:25:ed:a8: b1:42:f3:cd:3a:bb:0e:5c:97:c9:32:30:87:c9:42: 66:76:66:32:97:1c:c1:d9:f5:d8:f9:de:d9:1c:15: 03:75:8e:f9:df:13:e6:da:3b:e4:9a:73:b1:7e:03: 97:8e:af:dc:0e:6d:a7:ab:cb:92:37:26:11:b7:40: db:6b:db:90:9c:52:1e:91:f6:85:02:6d:7c:1e:6d: a4:43:e5:de:16:95:9f:5e:6d:3a:cf:74:60:62:c4: cd:b0:fe:45:cc:91:79:fb:93:77:5f:a4:f7:10:7b: d2:e6:5d:f8:70:4d:f9:ef:f6:eb:c1:63:84:6e:fd: 21:92:74:3c:e3:a5:fb:ed:d5:c9:22:9a:83:18:f8: e7:7a:3c:64:b5:5f:6a:6e:38:35:09:ab:f8:6e:84: e5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:ED:BD:E8:63:18:92:2D:30:CC:39:B2:83:F5:BB:65:19:24:66:56 X509v3 Authority Key Identifier: keyid:FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:df:54:c9:84:53:c7:c8:ea:8a:6d:17:9a:c1:1d:9b:42:29: 13:b5:8a:14:21:77:85:dc:91:d6:15:b8:e7:54:17:73:64:23: 62:2b:72:cb:f5:94:aa:c4:0f:92:63:27:cd:65:df:a2:40:32: 33:f0:2d:72:d0:d5:6b:6e:0b:d4:ef:09:da:61:2b:ca:6c:19: c3:58:13:d8:17:15:0f:87:c2:57:d7:90:92:40:23:e0:91:9b: 2e:e9:18:88:18:8e:54:fa:7f:ab:83:e6:6d:1e:d0:01:53:b0: e2:c0:7d:f1:24:ae:6b:99:d9:e1:74:22:02:f2:9d:7f:71:dd: 2f:93:c6:f5:32:bc:78:23:e8:14:c0:84:8d:68:43:13:c0:92: 6a:8c:19:45:ee:cd:76:b2:d1:a7:7a:85:51:db:7d:f0:72:33: 39:a3:0a:84:c0:dd:83:0d:95:30:7d:0f:0a:0f:77:f9:49:6a: e9:79:66:6f:2f:64:6b:75:a3:91:01:38:e5:b7:d2:c7:39:35: 82:9a:85:fc:55:13:03:6b:ed:bb:39:d3:52:d0:73:fb:b4:45: b2:f4:2a:6f:09:b6:e8:53:20:48:33:b4:17:ac:c7:3d:a4:d0: 5a:3f:04:54:0f:4f:85:92:98:5c:e4:9c:b7:dd:8c:27:a6:95: ac:47:40:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLg+pGfduO5Vy8teDKr4rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkZWRkOTNhZDZjYWFhNjBhZDQ5ZjBmOTM3N2Q4YWFiZjg3 N2UyZGIwHhcNMjUxMjA2MDEwMTU4WhcNMjUxMjA3MDEwMTU4WjAzMTEwLwYDVQQD EyhhMGVkYmRlODYzMTg5MjJkMzBjYzM5YjI4M2Y1YmI2NTE5MjQ2NjU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2JO2PhOusl6hB3p++hMA7/L/7i/ Xm4warw+2PYbEXzViLogjXnjMraHxWuBflVTrjbCA8ww26OGcFH8F6vDmZxEMAAK 9ZG1nNmtvUmAtPAAMZ0pgPmMxiNsubK59K56ebQ5fuMl7aixQvPNOrsOXJfJMjCH yUJmdmYylxzB2fXY+d7ZHBUDdY753xPm2jvkmnOxfgOXjq/cDm2nq8uSNyYRt0Db a9uQnFIekfaFAm18Hm2kQ+XeFpWfXm06z3RgYsTNsP5FzJF5+5N3X6T3EHvS5l34 cE357/brwWOEbv0hknQ846X77dXJIpqDGPjnejxktV9qbjg1Cav4boTlQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKDtvehjGJItMMw5soP1u2UZJGZWMB8GA1UdIwQY MBaAFP3t2TrWyqpgrUnw+Td9iqv4d+LbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2UzWk90YktxbUN0U2ZENU4zMktxX2gzNHRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8wMGI0MjYtMTI4Yi00ZjljLWEzYWYt YmRiNWYxNmQ0NmYwLzEvX2UzWk90YktxbUN0U2ZENU4zMktxX2gzNHRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi8wMGI0MjYtMTI4Yi00ZjljLWEzYWYtYmRiNWYxNmQ0NmYw LzEvX2UzWk90YktxbUN0U2ZENU4zMktxX2gzNHRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK99UyYRT x8jqim0XmsEdm0IpE7WKFCF3hdyR1hW451QXc2QjYityy/WUqsQPkmMnzWXfokAy M/AtctDVa24L1O8J2mErymwZw1gT2BcVD4fCV9eQkkAj4JGbLukYiBiOVPp/q4Pm bR7QAVOw4sB98SSua5nZ4XQiAvKdf3HdL5PG9TK8eCPoFMCEjWhDE8CSaowZRe7N drLRp3qFUdt98HIzOaMKhMDdgw2VMH0PCg93+Ulq6Xlmby9ka3WjkQE45bfSxzk1 gpqF/FUTA2vtuznTUtBz+7RFsvQqbwm26FMgSDO0F6zHPaTQWj8EVA9PhZKYXOSc t92MJ6aVrEdAGQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:44:08 2025 by rpki-client