This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json) Hash identifier: SYkQ+etClWnfyaqdmEN5ocmJYj2laams5Xtwlarso8I= Subject key identifier: 7A:C2:47:10:25:AD:13:8E:18:85:24:7F:47:88:9F:16:8F:48:65:5D Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d Certificate serial: 019AF31CD350E38E75657DE7454198E7FAD6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft Manifest number: 046F Signing time: Sat 06 Dec 2025 10:02:23 +0000 Manifest this update: Sat 06 Dec 2025 10:02:23 +0000 Manifest next update: Sun 07 Dec 2025 10:02:23 +0000 Files and hashes: 1: cChdW9IKygfKR2rAFYsXhx5RqmU.roa (hash: TyxqseiqVgQ1lk5s+kcYQAHiXGFHWxgFXhhbbIVGfj4=) 2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: l7zsFF30nLmr11ZEdw+NotSAj4an8Knq3RQ2svx2S6I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:d3:50:e3:8e:75:65:7d:e7:45:41:98:e7:fa:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d Validity Not Before: Dec 6 10:02:23 2025 GMT Not After : Dec 7 10:02:23 2025 GMT Subject: CN=7ac2471025ad138e1885247f47889f168f48655d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:df:bd:64:af:fc:3b:df:d1:35:2d:90:94:bc: d1:4e:0d:fe:99:7e:a1:fd:28:0f:b8:d0:69:fe:1d: 3a:17:c1:6b:25:45:67:52:ea:7c:e5:67:cd:fd:17: 3c:28:0f:7a:2d:92:f1:0d:91:cc:91:8c:e4:fe:85: c0:e9:ee:68:a8:17:36:95:c6:99:a4:cc:ca:3d:d2: ab:7d:a7:99:8a:ca:2a:80:17:d7:a4:81:1e:82:ff: 91:43:fd:d0:41:ca:1a:2f:96:d3:5a:55:aa:0d:8e: 5d:0b:2d:e4:47:34:6c:48:9b:39:0f:5d:78:b9:ae: f6:a3:64:c1:08:ba:5c:0d:13:80:7c:50:35:d0:e4: d0:9b:b8:ee:c5:c8:ac:75:f8:26:3d:47:fc:43:6e: 1d:63:9b:5e:97:46:4e:29:07:a8:30:22:3b:9b:ed: 78:ed:d9:c3:2f:ad:3e:aa:a5:14:76:00:eb:65:58: a4:e9:30:18:fc:eb:aa:b2:1b:e7:10:c3:5e:b8:db: 17:96:77:f0:bb:27:82:d3:b4:05:8d:f8:c4:aa:2d: 75:8f:b2:79:69:50:70:45:04:b9:e7:11:77:8b:99: a5:7f:47:e8:f8:93:10:b7:54:19:21:d9:34:d7:92: 82:f5:27:97:0e:ab:9d:7c:9a:d2:43:22:df:a6:0d: 73:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C2:47:10:25:AD:13:8E:18:85:24:7F:47:88:9F:16:8F:48:65:5D X509v3 Authority Key Identifier: keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:fe:39:9c:a1:1d:72:2d:13:45:16:e4:5e:2f:c2:54:7b:a0: 67:3d:a5:a0:ba:dc:6c:20:73:b7:c1:5b:76:39:b4:1d:b6:25: 7c:15:a5:f2:93:8d:e0:fa:65:8e:30:1d:12:09:6d:21:06:1d: 99:00:ae:57:51:17:49:f7:9e:97:70:bd:b5:59:3d:63:22:89: 85:cd:d0:40:ed:b1:86:b0:84:af:a3:fb:07:53:86:87:5e:de: 25:c5:b5:73:05:e5:b1:63:81:23:9c:5b:a9:d1:bf:fb:d2:bd: 5d:57:15:ac:ad:3d:26:34:72:42:40:55:41:21:41:98:76:94: f3:38:07:44:af:5d:3d:0f:26:bf:68:6d:b1:9c:ce:33:6d:43: ce:2e:26:c6:83:ca:4d:80:47:ba:55:af:aa:ce:bd:94:87:81: bb:79:d1:66:fb:68:76:28:6e:6c:f9:ed:b9:ca:9d:64:fa:8a: 89:26:ee:7a:17:61:91:0c:8a:d5:e6:72:8f:40:89:0a:47:b9: 56:dd:fb:86:7f:25:cd:06:79:b3:68:6a:63:c1:6f:76:e8:a5: bd:94:d1:1e:cd:e5:e0:b6:d6:6d:75:7f:e0:af:1d:d3:91:59: b8:3a:00:c3:c4:cc:35:85:ba:de:34:6e:db:a3:2a:f1:d2:14: 2e:a8:44:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHNNQ4451ZX3nRUGY5/rWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMGI2NGNiNmYxOGExMTQxNzQyMzEwNTBiMDE3OTkzMWI1 ZTQ4NmQwHhcNMjUxMjA2MTAwMjIzWhcNMjUxMjA3MTAwMjIzWjAzMTEwLwYDVQQD Eyg3YWMyNDcxMDI1YWQxMzhlMTg4NTI0N2Y0Nzg4OWYxNjhmNDg2NTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvd+9ZK/8O9/RNS2QlLzRTg3+mX6h /SgPuNBp/h06F8FrJUVnUup85WfN/Rc8KA96LZLxDZHMkYzk/oXA6e5oqBc2lcaZ pMzKPdKrfaeZisoqgBfXpIEegv+RQ/3QQcoaL5bTWlWqDY5dCy3kRzRsSJs5D114 ua72o2TBCLpcDROAfFA10OTQm7juxcisdfgmPUf8Q24dY5tel0ZOKQeoMCI7m+14 7dnDL60+qqUUdgDrZVik6TAY/OuqshvnEMNeuNsXlnfwuyeC07QFjfjEqi11j7J5 aVBwRQS55xF3i5mlf0fo+JMQt1QZIdk015KC9SeXDqudfJrSQyLfpg1zWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHrCRxAlrROOGIUkf0eInxaPSGVdMB8GA1UdIwQY MBaAFHoLZMtvGKEUF0IxBQsBeZMbXkhtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS80MDM5ZDktYThiMC00NjU0LWE1YzMt MjJhZTU0MmViNWRmLzEvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS80MDM5ZDktYThiMC00NjU0LWE1YzMtMjJhZTU0MmViNWRm LzEvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGf45nKEd ci0TRRbkXi/CVHugZz2loLrcbCBzt8Fbdjm0HbYlfBWl8pON4PpljjAdEgltIQYd mQCuV1EXSfeel3C9tVk9YyKJhc3QQO2xhrCEr6P7B1OGh17eJcW1cwXlsWOBI5xb qdG/+9K9XVcVrK09JjRyQkBVQSFBmHaU8zgHRK9dPQ8mv2htsZzOM21Dzi4mxoPK TYBHulWvqs69lIeBu3nRZvtodihubPntucqdZPqKiSbuehdhkQyK1eZyj0CJCke5 Vt37hn8lzQZ5s2hqY8FvduilvZTRHs3l4LbWbXV/4K8d05FZuDoAw8TMNYW63jRu 26Mq8dIULqhETg== -----END CERTIFICATE-----Generated at Sat Dec 6 20:59:26 2025 by rpki-client