This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft File: 4njEqqAhvti5JuNZH99QyN9rwXI.mft (raw, json) Hash identifier: GvF8m/YrnhuGn5d6qfBXBvy9IxzmRstok0z0UNUwwvs= Subject key identifier: 3D:C2:48:95:25:EC:E6:E3:F7:FA:AF:E4:E3:19:76:60:69:AD:23:67 Authority key identifier: E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72 Certificate issuer: /CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172 Certificate serial: 019AF54091B37467AD2E865145E0A9DC6AE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft Manifest number: 09D8 Signing time: Sat 06 Dec 2025 20:00:40 +0000 Manifest this update: Sat 06 Dec 2025 20:00:40 +0000 Manifest next update: Sun 07 Dec 2025 20:00:40 +0000 Files and hashes: 1: 1ypxGUz02dU-GrVHnawwOGAtbp8.roa (hash: s/FzoESG6FigLmQ9qVLEYvChgXRxC5KQ8IrkGKlYCxY=) 2: 4njEqqAhvti5JuNZH99QyN9rwXI.crl (hash: g5J/J7wKPwpsBLGdNqBW8c31zOuaLGtT0Sanxc7R1Uo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 20:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:40:91:b3:74:67:ad:2e:86:51:45:e0:a9:dc:6a:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172 Validity Not Before: Dec 6 20:00:40 2025 GMT Not After : Dec 7 20:00:40 2025 GMT Subject: CN=3dc2489525ece6e3f7faafe4e319766069ad2367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e5:78:56:a0:53:b5:83:0b:49:7a:cc:3f:e1: e2:69:b0:2b:ff:0f:5e:13:a1:63:58:18:25:89:be: 47:33:1a:aa:39:dc:8d:c9:52:2e:73:18:3a:b6:7e: 38:50:04:07:84:5e:2d:f2:e4:63:8f:58:b3:f1:86: b2:a4:6e:43:71:43:26:ae:9c:97:4c:c8:7c:a0:20: 22:e7:be:6f:b7:0c:ea:fe:dd:18:15:2a:e6:87:04: b7:3e:6b:0e:12:d3:d8:40:89:aa:8b:20:25:a8:d7: 8e:ef:01:78:65:1f:34:83:73:d5:96:5a:b6:5f:e0: b7:8c:a9:e8:52:a3:6c:1d:86:a9:29:59:51:8e:06: 59:6e:38:fc:3f:c7:22:84:fe:bc:49:22:18:49:f7: c5:c7:cd:a4:10:4d:24:6c:d6:4e:86:28:06:bb:76: c5:cc:8b:f8:15:af:98:9f:02:ef:cd:c0:75:c5:1f: 36:d5:60:cd:ff:29:42:f8:90:43:c8:b9:fc:a0:72: 8e:77:16:d9:09:27:2c:98:7a:9b:72:5e:fa:91:9f: 85:5c:ce:d0:05:82:7f:59:6f:89:af:be:0e:7d:3c: 3b:05:07:67:d2:b2:98:bd:a6:0b:d4:d3:ba:a5:f1: 0c:b6:87:75:7f:17:98:14:17:59:8a:87:9d:7e:10: 9e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C2:48:95:25:EC:E6:E3:F7:FA:AF:E4:E3:19:76:60:69:AD:23:67 X509v3 Authority Key Identifier: keyid:E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:7e:28:43:06:cf:43:1f:03:95:a9:27:0a:36:3e:80:e7:ca: ba:ab:75:2a:38:8e:88:d1:5e:86:00:76:e9:8d:85:1f:4a:57: bc:2f:46:56:e2:73:82:df:16:c4:87:3d:ea:05:f5:a6:fc:58: ce:87:cb:bb:37:21:b4:46:0c:d0:5e:fd:ce:41:af:64:09:38: 6c:f7:76:ea:c8:7c:bd:2a:75:72:9d:5d:bd:a6:55:76:72:a7: 88:cd:95:8b:03:b3:32:a7:69:1e:95:7b:6c:49:4b:c3:6e:f8: 02:4b:39:f6:bb:3a:ca:15:88:44:62:28:e3:6c:cd:68:6f:d7: 20:d0:57:8f:44:53:69:d1:25:eb:11:53:c3:a0:04:af:01:37: 99:0b:3f:e0:d2:0f:4c:8e:cf:14:f3:6e:9a:f4:3e:97:d3:c2: a9:77:fa:ab:e4:ab:6a:ad:bb:fa:2e:1f:d2:dd:c4:b8:37:63: 3f:03:57:00:8d:0a:5b:1e:58:71:0c:5e:e4:f4:0d:60:b9:19: 5f:17:6c:d4:11:98:7f:54:24:00:2c:cb:bf:eb:06:06:c7:4c: 61:23:9f:e3:c8:43:27:5f:89:25:43:64:4e:05:c2:16:b4:2f: a3:37:f1:3f:f1:15:ba:31:87:e1:ed:e7:58:26:5a:c0:f6:6c: eb:7d:ea:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1QJGzdGetLoZRReCp3GriMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyNzhjNGFhYTAyMWJlZDhiOTI2ZTM1OTFmZGY1MGM4ZGY2 YmMxNzIwHhcNMjUxMjA2MjAwMDQwWhcNMjUxMjA3MjAwMDQwWjAzMTEwLwYDVQQD EygzZGMyNDg5NTI1ZWNlNmUzZjdmYWFmZTRlMzE5NzY2MDY5YWQyMzY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OV4VqBTtYMLSXrMP+HiabAr/w9e E6FjWBglib5HMxqqOdyNyVIucxg6tn44UAQHhF4t8uRjj1iz8YaypG5DcUMmrpyX TMh8oCAi575vtwzq/t0YFSrmhwS3PmsOEtPYQImqiyAlqNeO7wF4ZR80g3PVllq2 X+C3jKnoUqNsHYapKVlRjgZZbjj8P8cihP68SSIYSffFx82kEE0kbNZOhigGu3bF zIv4Fa+YnwLvzcB1xR821WDN/ylC+JBDyLn8oHKOdxbZCScsmHqbcl76kZ+FXM7Q BYJ/WW+Jr74OfTw7BQdn0rKYvaYL1NO6pfEMtod1fxeYFBdZioedfhCeTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD3CSJUl7Obj9/qv5OMZdmBprSNnMB8GA1UdIwQY MBaAFOJ4xKqgIb7YuSbjWR/fUMjfa8FyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNG5qRXFxQWh2dGk1SnVOWkg5OVF5Tjlyd1hJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jMDY5MzctOTNiMy00NDJlLTg2NzYt ZmM0MzM5MTk4OGY3LzEvNG5qRXFxQWh2dGk1SnVOWkg5OVF5Tjlyd1hJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9jMDY5MzctOTNiMy00NDJlLTg2NzYtZmM0MzM5MTk4OGY3 LzEvNG5qRXFxQWh2dGk1SnVOWkg5OVF5Tjlyd1hJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu34oQwbP Qx8DlaknCjY+gOfKuqt1KjiOiNFehgB26Y2FH0pXvC9GVuJzgt8WxIc96gX1pvxY zofLuzchtEYM0F79zkGvZAk4bPd26sh8vSp1cp1dvaZVdnKniM2ViwOzMqdpHpV7 bElLw274Aks59rs6yhWIRGIo42zNaG/XINBXj0RTadEl6xFTw6AErwE3mQs/4NIP TI7PFPNumvQ+l9PCqXf6q+Sraq27+i4f0t3EuDdjPwNXAI0KWx5YcQxe5PQNYLkZ Xxds1BGYf1QkACzLv+sGBsdMYSOf48hDJ1+JJUNkTgXCFrQvozfxP/EVujGH4e3n WCZawPZs633q+w== -----END CERTIFICATE-----Generated at Sun Dec 7 03:09:35 2025 by rpki-client