This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft File: EDfew086MutlAvFmKoKiD4teohw.mft (raw, json) Hash identifier: 67eDLVBIeUtWcsmz/2s+Hyhflz7OEwqkN+QRdTgDQ0E= Subject key identifier: 7F:F7:CA:7D:59:BA:DE:2F:95:37:6C:2A:1D:D1:3F:35:AF:C1:D0:45 Authority key identifier: 10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C Certificate issuer: /CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c Certificate serial: 019AF19A964EC855CA93C106FB819F09577A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 03:00:31 +0000 Manifest this update: Sat 06 Dec 2025 03:00:31 +0000 Manifest next update: Sun 07 Dec 2025 03:00:31 +0000 Files and hashes: 1: EDfew086MutlAvFmKoKiD4teohw.crl (hash: kXLFN+mYcSRe4hjtFgLum85gjhD6fJOTO2COKaX+qGA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:96:4e:c8:55:ca:93:c1:06:fb:81:9f:09:57:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c Validity Not Before: Dec 6 03:00:31 2025 GMT Not After : Dec 7 03:00:31 2025 GMT Subject: CN=7ff7ca7d59bade2f95376c2a1dd13f35afc1d045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:98:3c:65:20:d8:d2:ab:09:a2:fa:5a:e1:63: d5:5b:68:53:bc:15:6e:c2:0b:af:01:44:5e:cf:38: d3:c1:1f:9a:78:67:d8:f9:00:d8:0c:74:b3:4f:13: d5:3c:31:2e:19:04:93:d1:43:e0:a4:71:a7:ce:66: ad:4d:fe:6e:3a:4b:86:56:64:8e:64:87:8c:06:10: ac:6e:3f:d8:c9:40:d8:7b:0c:f4:dc:d7:a7:e8:30: 10:8d:a3:81:8f:34:73:90:a9:c9:e9:46:83:09:fa: c0:4d:c5:38:7c:26:6a:69:96:36:ad:e9:47:86:d8: 9c:78:25:24:0e:19:6a:9d:57:7b:c0:1f:11:bb:bf: f2:4b:50:54:41:af:20:76:9a:50:6b:5b:25:77:c3: 79:f8:d6:d4:1a:71:39:72:5e:cd:cc:94:ce:a4:c7: 70:07:59:b1:ce:34:0d:31:d1:87:44:7f:d3:dd:4e: 62:c9:7c:a3:7a:cf:f8:f7:8f:99:9d:3a:6f:51:c2: 74:cb:d5:ab:da:87:e0:ba:b6:75:72:96:2b:0c:e3: 94:17:e4:7a:5c:2b:2e:c4:69:49:50:e2:e8:4c:60: 5e:58:0a:f1:b0:73:3f:fd:bf:5f:9c:35:88:e1:9a: 31:01:fb:43:a8:85:9a:20:5e:dd:83:f5:08:1b:03: e4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F7:CA:7D:59:BA:DE:2F:95:37:6C:2A:1D:D1:3F:35:AF:C1:D0:45 X509v3 Authority Key Identifier: keyid:10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:52:e0:91:2d:a7:49:e2:f0:2c:02:3a:63:e0:99:d0:44:e7: 89:ee:56:14:eb:1e:60:be:bd:55:7f:5c:e1:08:82:ad:2b:f9: 39:13:6f:21:44:ad:39:d3:bf:14:3c:13:eb:b1:6d:6a:05:14: 99:7c:3f:02:51:47:40:81:79:dc:19:af:ce:d3:61:e9:b0:55: 84:20:b3:63:2e:9b:f2:55:ed:e5:1c:6b:26:ca:c2:13:8c:55: e2:3f:31:be:93:12:45:ca:55:83:86:b0:32:33:37:ce:a2:f1: 0b:cb:33:32:ee:6c:41:e7:ce:d5:e6:0a:df:63:ea:4d:e6:5c: 70:ad:5a:4f:c1:98:68:54:df:4d:d7:bb:fe:60:a4:be:4a:b6: 1d:91:a6:3e:3c:cf:fa:6c:01:43:1c:c0:5b:86:fb:12:01:1a: f9:ff:61:6e:08:84:f2:7d:6e:ac:c7:cf:b7:49:e3:7d:9b:19: b2:ad:ab:4f:5f:b3:30:9a:21:22:50:ce:24:be:c7:91:f6:20: fa:60:3a:0a:14:90:a4:51:da:9c:30:72:8b:66:65:22:63:6d: 4b:8e:48:97:1c:6c:bd:27:6c:8a:14:33:88:d9:02:6e:2d:3a: c7:2c:d7:76:4f:3c:c4:f0:a4:e3:54:cf:ce:55:ff:5f:9e:2f: 84:f2:49:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmpZOyFXKk8EG+4GfCVd6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwMzdkZWMzNGYzYTMyZWI2NTAyZjE2NjJhODJhMjBmOGI1 ZWEyMWMwHhcNMjUxMjA2MDMwMDMxWhcNMjUxMjA3MDMwMDMxWjAzMTEwLwYDVQQD Eyg3ZmY3Y2E3ZDU5YmFkZTJmOTUzNzZjMmExZGQxM2YzNWFmYzFkMDQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupg8ZSDY0qsJovpa4WPVW2hTvBVu wguvAURezzjTwR+aeGfY+QDYDHSzTxPVPDEuGQST0UPgpHGnzmatTf5uOkuGVmSO ZIeMBhCsbj/YyUDYewz03Nen6DAQjaOBjzRzkKnJ6UaDCfrATcU4fCZqaZY2relH hticeCUkDhlqnVd7wB8Ru7/yS1BUQa8gdppQa1sld8N5+NbUGnE5cl7NzJTOpMdw B1mxzjQNMdGHRH/T3U5iyXyjes/494+ZnTpvUcJ0y9Wr2ofgurZ1cpYrDOOUF+R6 XCsuxGlJUOLoTGBeWArxsHM//b9fnDWI4ZoxAftDqIWaIF7dg/UIGwPkyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH/3yn1Zut4vlTdsKh3RPzWvwdBFMB8GA1UdIwQY MBaAFBA33sNPOjLrZQLxZiqCog+LXqIcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRURmZXcwODZNdXRsQXZGbUtvS2lENHRlb2h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9iNjgwYWYtZDVhYi00YjJmLWE4Mzct MGQ0MWE2NGU5MGVjLzEvRURmZXcwODZNdXRsQXZGbUtvS2lENHRlb2h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9iNjgwYWYtZDVhYi00YjJmLWE4MzctMGQ0MWE2NGU5MGVj LzEvRURmZXcwODZNdXRsQXZGbUtvS2lENHRlb2h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKVLgkS2n SeLwLAI6Y+CZ0ETnie5WFOseYL69VX9c4QiCrSv5ORNvIUStOdO/FDwT67FtagUU mXw/AlFHQIF53BmvztNh6bBVhCCzYy6b8lXt5RxrJsrCE4xV4j8xvpMSRcpVg4aw MjM3zqLxC8szMu5sQefO1eYK32PqTeZccK1aT8GYaFTfTde7/mCkvkq2HZGmPjzP +mwBQxzAW4b7EgEa+f9hbgiE8n1urMfPt0njfZsZsq2rT1+zMJohIlDOJL7HkfYg +mA6ChSQpFHanDByi2ZlImNtS45IlxxsvSdsihQziNkCbi06xyzXdk88xPCk41TP zlX/X54vhPJJlQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:44 2025 by rpki-client