This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft File: TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft (raw, json) Hash identifier: zzVmjTaT6MlDHfjkb2E/B5p9QT6Wsd9hZ7LP3o30QqY= Subject key identifier: 25:68:49:0D:D7:27:2C:29:82:F0:4F:6A:A8:8A:E8:16:24:C0:9F:32 Authority key identifier: 4C:4B:E4:33:94:A7:C2:BF:1E:8F:DF:BB:1D:50:6F:A3:7A:C7:32:31 Certificate issuer: /CN=4c4be43394a7c2bf1e8fdfbb1d506fa37ac73231 Certificate serial: 019AF1D2465FC08DB9224EE42F4A47B7C80B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 04:01:20 +0000 Manifest this update: Sat 06 Dec 2025 04:01:20 +0000 Manifest next update: Sun 07 Dec 2025 04:01:20 +0000 Files and hashes: 1: 9dHpkAlOL0XgkLxchS4Qy2sMNCs.roa (hash: g9vMbBt1/drUDiVGZvjhkatTyph0Mun8c4A/qeNjgzE=) 2: TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl (hash: alkJGwnGWbQ+8cTwhv62sj3Uzd5KaIN1RG0LiF4v2P4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:46:5f:c0:8d:b9:22:4e:e4:2f:4a:47:b7:c8:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c4be43394a7c2bf1e8fdfbb1d506fa37ac73231 Validity Not Before: Dec 6 04:01:20 2025 GMT Not After : Dec 7 04:01:20 2025 GMT Subject: CN=2568490dd7272c2982f04f6aa88ae81624c09f32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e0:50:8c:6f:23:a3:83:46:35:a2:61:66:26: c7:86:70:12:9c:0a:d8:c0:68:05:1a:57:21:83:fb: 4c:42:e0:20:45:51:db:21:5b:53:59:c8:c7:28:48: a6:bf:68:cb:16:ca:5f:8d:b5:31:89:0e:de:86:6b: 97:88:60:31:db:ce:46:c6:b8:06:c6:36:b7:26:27: cb:33:6a:56:22:15:35:fb:2b:bd:8b:64:17:4f:7f: 5e:9d:f3:7a:e9:be:01:90:6e:b4:5e:a9:92:8d:e6: 8f:77:97:55:6b:57:3e:79:6c:f7:0b:d4:2b:a2:8a: da:f2:30:fe:4c:6a:d4:0d:bb:74:93:a2:5f:72:33: ff:e4:2b:4b:8c:e6:78:fe:45:57:da:03:f3:db:e9: 99:02:71:d6:80:8e:7c:9b:54:27:8c:93:cd:cc:15: f0:6f:d2:88:d2:57:a2:a7:78:1e:58:d4:12:15:b2: c5:3c:76:73:31:fe:7c:2b:a9:33:a7:62:fe:bc:6a: 32:f0:e2:11:e4:0f:6d:74:2d:34:d8:6e:92:de:73: 38:40:3f:0c:c9:db:7d:2b:60:8f:d6:cb:10:31:8c: 64:aa:12:e9:2f:3d:97:9e:35:80:46:9a:3f:e7:af: 5d:73:ce:48:59:43:8a:ab:17:48:15:ff:1f:6a:f9: 62:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:68:49:0D:D7:27:2C:29:82:F0:4F:6A:A8:8A:E8:16:24:C0:9F:32 X509v3 Authority Key Identifier: keyid:4C:4B:E4:33:94:A7:C2:BF:1E:8F:DF:BB:1D:50:6F:A3:7A:C7:32:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:8e:a7:9f:be:23:1d:2a:0f:a1:8d:4f:c4:81:d1:3f:7d:a6: 57:04:11:13:27:c5:32:ee:5c:ce:24:76:1c:b3:0b:95:13:05: e3:ac:ed:4b:df:9d:9f:c8:da:ea:05:67:3a:39:6e:78:1f:0d: 47:d3:46:f6:67:56:1e:e0:e6:83:d8:f5:6b:ea:1c:3a:b4:f0: 88:6f:b5:43:14:3f:22:61:cc:d6:27:bc:d8:51:da:fa:e1:28: 94:9f:8d:83:45:53:85:aa:dd:8c:db:65:7a:b9:15:fb:36:aa: c7:c0:08:a5:b6:1a:30:21:01:b4:67:07:fe:2b:b4:be:73:33: 88:c3:9f:2a:2e:41:2c:c9:e0:31:90:c2:4a:e8:e1:4e:ce:74: b6:bc:01:05:d8:ba:41:bb:e0:7a:bc:ef:bd:7a:0d:60:59:10: d5:67:e8:03:8f:36:f6:fe:1b:30:77:37:8c:08:fe:ef:9b:4f: e9:db:27:83:b3:cd:2e:1a:ef:74:70:81:60:ef:56:6a:51:23: 2f:7c:1c:1c:84:5e:a2:17:fc:0f:7a:82:ef:a7:d6:67:d1:f0: ce:3b:f1:a0:9b:f2:a1:56:59:2b:1d:de:01:5c:ba:57:0f:c0: 58:06:f8:22:8d:5b:a2:4f:d1:1c:0e:2b:3c:a5:00:00:92:98: 29:11:be:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0kZfwI25Ik7kL0pHt8gLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjNGJlNDMzOTRhN2MyYmYxZThmZGZiYjFkNTA2ZmEzN2Fj NzMyMzEwHhcNMjUxMjA2MDQwMTIwWhcNMjUxMjA3MDQwMTIwWjAzMTEwLwYDVQQD EygyNTY4NDkwZGQ3MjcyYzI5ODJmMDRmNmFhODhhZTgxNjI0YzA5ZjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8OBQjG8jo4NGNaJhZibHhnASnArY wGgFGlchg/tMQuAgRVHbIVtTWcjHKEimv2jLFspfjbUxiQ7ehmuXiGAx285GxrgG xja3JifLM2pWIhU1+yu9i2QXT39enfN66b4BkG60XqmSjeaPd5dVa1c+eWz3C9Qr oora8jD+TGrUDbt0k6JfcjP/5CtLjOZ4/kVX2gPz2+mZAnHWgI58m1QnjJPNzBXw b9KI0leip3geWNQSFbLFPHZzMf58K6kzp2L+vGoy8OIR5A9tdC002G6S3nM4QD8M ydt9K2CP1ssQMYxkqhLpLz2XnjWARpo/569dc85IWUOKqxdIFf8favliTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCVoSQ3XJywpgvBPaqiK6BYkwJ8yMB8GA1UdIwQY MBaAFExL5DOUp8K/Ho/fux1Qb6N6xzIxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEV2a001U253cjhlajktN0hWQnZvM3JITWpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9hNTA1NmYtNjk0OC00MTMwLTkwNzct NWYzZDA2ZjZhNWQyLzEvVEV2a001U253cjhlajktN0hWQnZvM3JITWpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9hNTA1NmYtNjk0OC00MTMwLTkwNzctNWYzZDA2ZjZhNWQy LzEvVEV2a001U253cjhlajktN0hWQnZvM3JITWpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGY6nn74j HSoPoY1PxIHRP32mVwQREyfFMu5cziR2HLMLlRMF46ztS9+dn8ja6gVnOjlueB8N R9NG9mdWHuDmg9j1a+ocOrTwiG+1QxQ/ImHM1ie82FHa+uEolJ+Ng0VThardjNtl erkV+zaqx8AIpbYaMCEBtGcH/iu0vnMziMOfKi5BLMngMZDCSujhTs50trwBBdi6 QbvgerzvvXoNYFkQ1WfoA4829v4bMHc3jAj+75tP6dsng7PNLhrvdHCBYO9WalEj L3wcHIReohf8D3qC76fWZ9HwzjvxoJvyoVZZKx3eAVy6Vw/AWAb4Io1bok/RHA4r PKUAAJKYKRG+lQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:13:00 2025 by rpki-client