This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json) Hash identifier: h+f5W1uKvfWqB31velBnLdnONv7EKF4zFt1aFZKhRg0= Subject key identifier: 9A:42:26:89:FF:08:87:99:63:B7:13:78:59:24:BA:C2:63:34:98:09 Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc Certificate serial: 019AF50AABDC808D5718650317422F87971B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 19:01:48 +0000 Manifest this update: Sat 06 Dec 2025 19:01:48 +0000 Manifest next update: Sun 07 Dec 2025 19:01:48 +0000 Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: aetmVuKIUtbrUAUymp5ccUxEeoaVwgg1cmYlvRw5aEI=) 2: uPPSCEPI-zYe8c4juKISlbYTsmI.roa (hash: ItdA3QN2L+hecSiCaaiQJ/fE6U5Bp5eLGhZQrMhDtVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:ab:dc:80:8d:57:18:65:03:17:42:2f:87:97:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc Validity Not Before: Dec 6 19:01:48 2025 GMT Not After : Dec 7 19:01:48 2025 GMT Subject: CN=9a422689ff08879963b713785924bac263349809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:eb:21:26:95:38:ea:9a:fe:d3:eb:f2:e9:8d: 0f:22:76:08:4c:c3:7f:26:50:06:a3:9a:64:95:9d: 27:ff:a8:db:c4:74:21:c6:5b:7a:5e:42:39:c9:64: 37:55:5e:19:d5:6b:f8:28:f8:b7:e3:6e:a4:19:ec: 5a:44:3d:2f:f4:ab:e2:cd:7b:a3:22:59:6d:b6:44: a5:5e:de:db:e4:4d:d0:8c:e1:6d:08:a4:72:64:49: 2c:af:ed:a1:83:4d:3f:53:54:6c:c8:76:0e:fe:7e: 88:4c:32:31:7c:4a:2e:6b:e1:cf:5e:2c:f4:6b:13: 30:9f:6d:61:d8:b6:44:9a:5c:9c:72:ab:ab:74:c8: f5:db:bb:d5:63:42:a2:33:30:8e:30:21:ac:89:52: 60:9e:31:d4:94:25:58:c5:ec:77:2f:3c:9f:c8:54: 93:e9:84:4e:cb:b0:25:40:77:8c:9c:fb:3f:a2:77: e2:98:af:88:05:20:86:8b:ee:40:4f:f6:32:43:b4: b4:fa:1b:bb:65:ed:c2:d1:9f:c9:f4:27:a1:f6:a8: 63:b2:12:be:e2:fc:22:51:68:7f:07:4e:31:23:12: 58:7d:08:2b:b5:d9:46:37:34:d5:24:4d:b8:a7:f1: 0b:e6:df:97:7a:58:fd:89:90:b9:ad:a4:43:4b:81: 6c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:42:26:89:FF:08:87:99:63:B7:13:78:59:24:BA:C2:63:34:98:09 X509v3 Authority Key Identifier: keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:21:81:4b:83:65:23:0d:a9:05:8a:a8:c3:27:43:42:1e:59: 96:9f:f0:bb:59:3d:3e:65:e5:d8:c0:63:7a:3b:81:a8:20:a1: 1f:5c:7e:57:09:2c:4e:8a:75:37:15:f4:80:79:02:bd:11:38: a2:fd:09:06:90:7a:3e:52:4f:bd:03:4e:8c:62:70:25:00:c8: 67:dd:e1:40:b3:c9:23:09:a3:1a:e7:17:17:93:0d:95:51:14: 6d:9e:37:33:95:49:fd:5d:aa:26:c0:8d:86:4e:26:7e:44:e4: c3:8c:5d:e7:6e:82:0a:b8:f4:b7:35:0e:18:52:70:38:7a:1a: f3:b7:b9:3d:cc:f3:7b:6a:73:c6:b0:77:4d:41:f5:36:c0:c0: 3a:d3:da:82:50:e2:88:46:13:03:c2:06:c2:3b:75:d6:81:b4: 41:8b:91:63:f1:7e:a7:fc:7f:31:b7:4c:f0:6a:3e:db:55:b2: c9:99:0a:fb:9c:e2:fb:da:54:e9:66:98:d9:b6:5f:2a:8b:2e: ac:a6:50:e3:86:98:4e:9f:2d:12:d0:a1:5f:fe:7b:f5:85:95: ef:f6:d3:86:8f:0a:48:b7:54:e2:60:b5:74:f4:5b:81:96:c8: 00:66:7a:33:ef:60:b9:81:27:04:58:73:a0:13:b4:a4:f7:dc: ad:8f:00:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CqvcgI1XGGUDF0Ivh5cbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNDc4MDIxZjcyYTIxYjc3MTQyYTQ0ZDgxNWRkZTllZjI2 ODRjYmMwHhcNMjUxMjA2MTkwMTQ4WhcNMjUxMjA3MTkwMTQ4WjAzMTEwLwYDVQQD Eyg5YTQyMjY4OWZmMDg4Nzk5NjNiNzEzNzg1OTI0YmFjMjYzMzQ5ODA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOshJpU46pr+0+vy6Y0PInYITMN/ JlAGo5pklZ0n/6jbxHQhxlt6XkI5yWQ3VV4Z1Wv4KPi3426kGexaRD0v9KvizXuj IllttkSlXt7b5E3QjOFtCKRyZEksr+2hg00/U1RsyHYO/n6ITDIxfEoua+HPXiz0 axMwn21h2LZEmlyccqurdMj127vVY0KiMzCOMCGsiVJgnjHUlCVYxex3LzyfyFST 6YROy7AlQHeMnPs/onfimK+IBSCGi+5AT/YyQ7S0+hu7Ze3C0Z/J9Ceh9qhjshK+ 4vwiUWh/B04xIxJYfQgrtdlGNzTVJE24p/EL5t+Xelj9iZC5raRDS4Fs7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJpCJon/CIeZY7cTeFkkusJjNJgJMB8GA1UdIwQY MBaAFO9HgCH3KiG3cUKkTYFd3p7yaEy8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzBlQUlmY3FJYmR4UXFSTmdWM2VudkpvVEx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81MTcyZWItNmZiOC00MjE2LThkODEt MzQ0MzQ2NGI5MjA5LzEvNzBlQUlmY3FJYmR4UXFSTmdWM2VudkpvVEx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi81MTcyZWItNmZiOC00MjE2LThkODEtMzQ0MzQ2NGI5MjA5 LzEvNzBlQUlmY3FJYmR4UXFSTmdWM2VudkpvVEx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABCGBS4Nl Iw2pBYqowydDQh5Zlp/wu1k9PmXl2MBjejuBqCChH1x+VwksTop1NxX0gHkCvRE4 ov0JBpB6PlJPvQNOjGJwJQDIZ93hQLPJIwmjGucXF5MNlVEUbZ43M5VJ/V2qJsCN hk4mfkTkw4xd526CCrj0tzUOGFJwOHoa87e5Pczze2pzxrB3TUH1NsDAOtPaglDi iEYTA8IGwjt11oG0QYuRY/F+p/x/MbdM8Go+21WyyZkK+5zi+9pU6WaY2bZfKosu rKZQ44aYTp8tEtChX/579YWV7/bTho8KSLdU4mC1dPRbgZbIAGZ6M+9guYEnBFhz oBO0pPfcrY8Apg== -----END CERTIFICATE-----Generated at Sat Dec 6 22:28:27 2025 by rpki-client