This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft File: cegLwpz58rQKwwJOD3I126LVelQ.mft (raw, json) Hash identifier: vVjQwlkgpaGeDkmx1tdXOL3KxKQQNhVroW0IiKg36DY= Subject key identifier: AD:27:B6:66:4D:8D:B7:5A:F3:50:5F:BA:4F:BC:90:95:EA:FC:8F:8C Authority key identifier: 71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54 Certificate issuer: /CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54 Certificate serial: 019AF1D1ACE6CD8255C583E0698796D9AC1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft Manifest number: 06B0 Signing time: Sat 06 Dec 2025 04:00:41 +0000 Manifest this update: Sat 06 Dec 2025 04:00:41 +0000 Manifest next update: Sun 07 Dec 2025 04:00:41 +0000 Files and hashes: 1: cegLwpz58rQKwwJOD3I126LVelQ.crl (hash: ZxRLIymPXXtv6Wats0Xi2wNJvNUvCGU5xh4Sg7yKOl8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:ac:e6:cd:82:55:c5:83:e0:69:87:96:d9:ac:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54 Validity Not Before: Dec 6 04:00:41 2025 GMT Not After : Dec 7 04:00:41 2025 GMT Subject: CN=ad27b6664d8db75af3505fba4fbc9095eafc8f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4d:11:ef:04:5a:31:1d:09:71:f1:1d:a6:f8: ab:ae:db:45:81:6c:3a:27:af:b3:43:79:71:98:70: 31:8b:38:15:81:a8:db:1e:1d:98:6e:8b:4b:65:4a: 22:c0:ca:f8:94:29:71:e0:d1:ac:11:f7:42:63:1e: 19:0a:1c:cf:13:fe:d9:9d:61:50:a7:ee:f9:2e:05: 5e:8a:d4:78:32:22:bc:51:0a:21:53:27:54:6c:f2: 6a:05:4b:9a:c1:c7:94:e3:47:4e:64:a6:8f:ea:b3: 01:a5:2b:f2:69:66:b0:b4:c0:a3:c4:5e:c0:94:d8: da:e3:6f:18:74:c8:58:73:3b:ac:f4:1b:3c:f6:8e: bc:c6:bd:34:7a:99:65:2b:77:bd:52:87:0e:e3:85: 5a:7a:c3:cf:9a:fa:c9:d5:e7:24:bc:83:6a:dd:8e: 39:12:ad:ea:38:15:60:f3:96:69:b1:98:8f:f7:5e: cc:18:35:95:cc:b1:97:5f:dd:ea:e0:a9:31:48:bf: a1:a3:28:96:d4:7b:62:36:79:25:ec:3e:2f:38:2c: 53:47:b2:30:75:ac:84:ee:a0:3d:00:21:af:d9:7d: c8:e6:ec:6d:57:53:04:93:45:32:a7:58:8b:75:dc: fe:ea:bf:25:1f:ab:c4:ab:c0:22:8b:32:a1:25:71: c6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:27:B6:66:4D:8D:B7:5A:F3:50:5F:BA:4F:BC:90:95:EA:FC:8F:8C X509v3 Authority Key Identifier: keyid:71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:7d:8a:fe:4b:3a:64:3d:de:d0:fb:2a:fc:e3:0c:db:82:f6: 72:e6:a6:5d:6c:d6:de:51:87:d2:70:66:e2:ef:06:9b:10:5c: ff:97:63:49:4f:08:d2:c0:90:7e:8e:c2:2f:95:69:e0:0d:21: 41:fb:0f:a3:82:70:5b:73:70:7f:8b:3d:68:fa:d6:6e:8e:3c: 43:0f:b7:6d:1b:de:ce:66:f5:ca:e6:31:3c:23:ff:0e:ac:2f: d7:c8:d6:21:aa:80:e3:42:f1:6d:de:d0:cf:58:53:07:ec:45: ee:51:37:aa:a0:a9:a4:9a:46:69:eb:5e:dc:7d:71:83:c2:fe: 7b:07:e7:75:b2:05:7b:9f:d6:ed:ef:19:73:a3:93:fd:3e:21: 54:40:a9:48:9e:dd:0c:62:92:f7:95:64:67:d5:d3:cc:08:0a: 53:bf:00:ac:0d:61:00:ff:88:d4:1f:2a:8c:76:b8:c0:08:7f: 15:f7:08:56:56:bf:35:d7:ec:40:a2:15:f4:87:74:e0:f9:6c: a1:00:11:4d:9a:3e:81:1c:74:35:45:54:dc:96:2c:ce:ed:d7: bf:62:b0:ce:5e:8c:19:a2:2e:99:2d:a2:a1:1e:90:a6:30:03: 46:9d:13:92:7f:a3:19:58:7d:7a:3f:06:e1:e6:3c:f7:58:61: f3:81:e3:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0azmzYJVxYPgaYeW2aweMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZTgwYmMyOWNmOWYyYjQwYWMzMDI0ZTBmNzIzNWRiYTJk NTdhNTQwHhcNMjUxMjA2MDQwMDQxWhcNMjUxMjA3MDQwMDQxWjAzMTEwLwYDVQQD EyhhZDI3YjY2NjRkOGRiNzVhZjM1MDVmYmE0ZmJjOTA5NWVhZmM4ZjhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwU0R7wRaMR0JcfEdpvirrttFgWw6 J6+zQ3lxmHAxizgVgajbHh2YbotLZUoiwMr4lClx4NGsEfdCYx4ZChzPE/7ZnWFQ p+75LgVeitR4MiK8UQohUydUbPJqBUuawceU40dOZKaP6rMBpSvyaWawtMCjxF7A lNja428YdMhYczus9Bs89o68xr00epllK3e9UocO44VaesPPmvrJ1eckvINq3Y45 Eq3qOBVg85ZpsZiP917MGDWVzLGXX93q4KkxSL+hoyiW1HtiNnkl7D4vOCxTR7Iw dayE7qA9ACGv2X3I5uxtV1MEk0Uyp1iLddz+6r8lH6vEq8AiizKhJXHGJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK0ntmZNjbda81Bfuk+8kJXq/I+MMB8GA1UdIwQY MBaAFHHoC8Kc+fK0CsMCTg9yNdui1XpUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mNTAzNTMtZjRlOC00ZjYwLWFlMTYt NzI0NzMwNGZiMTVmLzEvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mNTAzNTMtZjRlOC00ZjYwLWFlMTYtNzI0NzMwNGZiMTVm LzEvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhn2K/ks6 ZD3e0Psq/OMM24L2cuamXWzW3lGH0nBm4u8GmxBc/5djSU8I0sCQfo7CL5Vp4A0h QfsPo4JwW3Nwf4s9aPrWbo48Qw+3bRvezmb1yuYxPCP/Dqwv18jWIaqA40Lxbd7Q z1hTB+xF7lE3qqCppJpGaete3H1xg8L+ewfndbIFe5/W7e8Zc6OT/T4hVECpSJ7d DGKS95VkZ9XTzAgKU78ArA1hAP+I1B8qjHa4wAh/FfcIVla/NdfsQKIV9Id04Pls oQARTZo+gRx0NUVU3JYszu3Xv2Kwzl6MGaIumS2ioR6QpjADRp0Tkn+jGVh9ej8G 4eY891hh84HjiQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:35:18 2025 by rpki-client