This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json) Hash identifier: RXYpUEL6x5gxWbYWZwvWrQYASmrbOsjwHXnGOFYtb0g= Subject key identifier: ED:95:11:E0:00:84:30:13:BE:FD:98:8D:7E:2E:D6:98:8B:1F:64:9B Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea Certificate serial: 019B304334037128A53B8617F990A019993E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft Manifest number: 0D82 Signing time: Thu 18 Dec 2025 07:01:09 +0000 Manifest this update: Thu 18 Dec 2025 07:01:09 +0000 Manifest next update: Fri 19 Dec 2025 07:01:09 +0000 Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: bX6bgSyrojHCK7csEZQl6+e6v7trou5jUQjUJmdWbyU=) 2: DQo4EErqs46yA4QIpyLHGlOprVU.roa (hash: jpEUtUNk7NIqvU0XQCmCZgYXNkApAZ2zVdQgWdhDGWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 07:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:43:34:03:71:28:a5:3b:86:17:f9:90:a0:19:99:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea Validity Not Before: Dec 18 07:01:09 2025 GMT Not After : Dec 19 07:01:09 2025 GMT Subject: CN=ed9511e000843013befd988d7e2ed6988b1f649b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:d8:6f:09:68:b3:36:de:41:cd:f3:2b:c0:61: e8:91:f2:b5:ef:84:05:be:8c:1d:0b:de:91:07:da: aa:fc:f7:34:3e:f8:41:60:e8:ba:e8:db:3a:c1:2c: b4:90:8f:e0:63:fe:2c:2a:4a:d5:58:6a:27:f7:4a: fc:43:b2:1f:18:47:af:66:41:46:c3:03:0a:a6:c1: 8c:a3:6e:83:dc:0e:09:19:8c:d2:c4:7c:58:0f:bd: c8:2e:51:80:bd:c5:21:e9:6e:c9:be:8b:f5:0d:b2: 4e:ff:19:92:94:96:81:24:71:19:7e:bd:fa:57:26: 93:cd:36:38:0b:aa:88:2c:af:46:f9:45:42:3f:26: cf:67:2e:e9:e5:61:bb:fe:18:09:e8:6f:fd:f3:50: 72:79:1d:81:23:39:fa:f6:13:1b:c7:84:20:8a:6a: 80:63:a5:5e:57:28:66:89:2c:d4:78:01:6d:b6:b6: 84:3e:9b:1f:f7:54:38:c4:c3:ec:04:15:03:1e:00: 05:7e:e2:93:c7:07:96:4f:0d:cc:fa:9b:5d:a0:21: d3:d2:75:04:ac:a9:e0:ac:f3:ed:52:8e:b5:c6:f5: 44:4e:3f:af:11:92:d6:1f:94:64:10:84:20:bc:c2: c1:7e:03:ab:a9:ba:7e:d1:73:ce:81:45:a2:db:a6: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:95:11:E0:00:84:30:13:BE:FD:98:8D:7E:2E:D6:98:8B:1F:64:9B X509v3 Authority Key Identifier: keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:c8:46:a3:96:91:09:c0:90:00:05:c6:ec:8d:3e:46:9a:df: ca:77:0e:18:69:8f:ec:1a:94:a4:eb:bb:34:03:d9:07:99:d7: a4:c7:e5:7c:15:44:03:b7:d0:a5:6f:36:e5:fc:b8:ca:83:87: 35:63:de:99:b3:6a:62:ac:10:06:10:68:be:d1:2f:98:40:d1: a6:3a:c3:9c:f9:2c:60:91:64:dc:f0:79:ca:ac:2c:c4:2e:f2: fa:69:e6:39:a8:e0:13:dd:ae:a1:62:4b:28:ba:36:aa:10:5f: db:6a:7c:c8:c5:aa:27:3f:66:2f:40:34:ae:ae:e2:03:0e:b8: 85:06:96:50:29:cf:53:d3:d5:1d:a1:02:c6:71:1f:0b:8e:c3: 40:b7:1a:cc:47:78:df:0d:3f:7d:aa:87:f7:dd:58:a3:49:ab: db:eb:1e:a1:b5:cf:2b:0f:e0:af:9c:ce:44:99:f5:db:c3:4b: bd:7b:67:f3:d7:89:0f:aa:1e:f4:28:94:4e:cb:ee:a7:31:b4: e5:fc:5e:02:29:48:f1:50:39:60:bb:d1:3e:34:05:54:3e:22: b4:cd:b6:d8:0a:64:16:c3:93:a3:f9:af:40:e9:bb:4a:03:24: 63:28:c6:84:d8:f5:ad:54:2a:74:56:17:42:ad:4a:8f:83:de: fe:ac:2e:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZswQzQDcSilO4YX+ZCgGZk+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwNjdhN2I5ZGU3NjdlYjk3ZGI2NGU1MTY0Nzg0OTQ2MzNi ZDU0ZWEwHhcNMjUxMjE4MDcwMTA5WhcNMjUxMjE5MDcwMTA5WjAzMTEwLwYDVQQD EyhlZDk1MTFlMDAwODQzMDEzYmVmZDk4OGQ3ZTJlZDY5ODhiMWY2NDliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjNhvCWizNt5BzfMrwGHokfK174QF vowdC96RB9qq/Pc0PvhBYOi66Ns6wSy0kI/gY/4sKkrVWGon90r8Q7IfGEevZkFG wwMKpsGMo26D3A4JGYzSxHxYD73ILlGAvcUh6W7Jvov1DbJO/xmSlJaBJHEZfr36 VyaTzTY4C6qILK9G+UVCPybPZy7p5WG7/hgJ6G/981ByeR2BIzn69hMbx4QgimqA Y6VeVyhmiSzUeAFttraEPpsf91Q4xMPsBBUDHgAFfuKTxweWTw3M+ptdoCHT0nUE rKngrPPtUo61xvVETj+vEZLWH5RkEIQgvMLBfgOrqbp+0XPOgUWi26ZsAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO2VEeAAhDATvv2YjX4u1piLH2SbMB8GA1UdIwQY MBaAFOBnp7nedn65fbZOUWR4SUYzvVTqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYt NzY4ZjNkNmVlMTllLzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYtNzY4ZjNkNmVlMTll LzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnchGo5aR CcCQAAXG7I0+RprfyncOGGmP7BqUpOu7NAPZB5nXpMflfBVEA7fQpW825fy4yoOH NWPembNqYqwQBhBovtEvmEDRpjrDnPksYJFk3PB5yqwsxC7y+mnmOajgE92uoWJL KLo2qhBf22p8yMWqJz9mL0A0rq7iAw64hQaWUCnPU9PVHaECxnEfC47DQLcazEd4 3w0/faqH991Yo0mr2+seobXPKw/gr5zORJn128NLvXtn89eJD6oe9CiUTsvupzG0 5fxeAilI8VA5YLvRPjQFVD4itM222ApkFsOTo/mvQOm7SgMkYyjGhNj1rVQqdFYX Qq1Kj4Pe/qwuaQ== -----END CERTIFICATE-----Generated at Thu Dec 18 16:15:36 2025 by rpki-client