This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft File: EdGf2unFPY0oseQcqROcM1VrpiU.mft (raw, json) Hash identifier: MUnBK++UzvQWg2yDHfimIkLFGBnzKMjKq9QZfLsTp3I= Subject key identifier: 87:5D:AF:B6:36:E6:DB:1E:2D:BF:77:BE:69:12:06:A7:59:E8:8F:13 Authority key identifier: 11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25 Certificate issuer: /CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625 Certificate serial: 019B34C468E0DEB029FA8D294D582857419B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft Manifest number: 0BE3 Signing time: Fri 19 Dec 2025 04:00:45 +0000 Manifest this update: Fri 19 Dec 2025 04:00:45 +0000 Manifest next update: Sat 20 Dec 2025 04:00:45 +0000 Files and hashes: 1: EdGf2unFPY0oseQcqROcM1VrpiU.crl (hash: 0BYJIlF56u/itiTYX7BSsxWfunaOeKbhhMSCIyg2Tv4=) 2: hjbzdQG0z4fmkgxJ5yW_AFN2Z3I.roa (hash: FIaXEpRqjmfrs5VrZ6nFL+BtqxgLq2lRPch8+CMAMWI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 04:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c4:68:e0:de:b0:29:fa:8d:29:4d:58:28:57:41:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625 Validity Not Before: Dec 19 04:00:45 2025 GMT Not After : Dec 20 04:00:45 2025 GMT Subject: CN=875dafb636e6db1e2dbf77be691206a759e88f13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:68:62:04:e0:0f:57:61:6e:39:48:e6:15:d0: c2:d6:35:c1:1f:76:32:55:e1:32:04:80:91:e1:64: 57:64:27:d9:2c:87:9e:24:d4:bd:2f:b6:6e:30:9b: ca:1b:a7:dc:17:94:65:2a:6a:d4:40:f7:ef:92:6c: b5:7f:83:fe:df:e3:60:60:a4:54:12:37:d2:6d:56: 4b:c4:7c:24:6d:0e:bc:15:bc:5d:15:4a:cc:47:55: eb:8e:76:72:37:eb:69:db:09:e9:8b:94:7d:25:a2: 6b:57:a0:03:e9:19:2a:36:89:0c:c6:7b:c8:33:6a: 46:6a:d5:26:6b:97:f4:89:48:03:93:79:20:4e:e6: c8:6e:ee:85:a3:36:fd:48:78:76:a2:bb:2f:8c:a0: fa:72:26:89:7d:b5:ab:e4:5c:23:2f:dd:61:ef:46: cd:bf:88:40:8c:39:b3:5e:6d:04:5b:46:b7:c1:22: 26:68:e1:66:65:65:82:f2:d1:7e:e3:80:9e:3d:70: 46:29:3b:c1:83:ee:e1:cd:58:a4:65:e2:47:56:52: 8b:50:ba:5d:b2:ee:fd:8d:68:bf:e1:b0:33:34:f1: 54:17:46:10:46:7b:8a:f9:f1:34:2d:7d:45:e9:97: 5d:8f:bc:d4:1a:2c:92:73:08:0c:90:06:9c:a0:ad: 37:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5D:AF:B6:36:E6:DB:1E:2D:BF:77:BE:69:12:06:A7:59:E8:8F:13 X509v3 Authority Key Identifier: keyid:11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:9a:e0:93:0a:c9:d0:1d:c4:02:34:e8:f6:6b:17:b4:c2:13: 00:db:43:66:9d:2f:1a:ff:08:33:fd:e8:a0:74:3b:86:ac:68: 22:4d:e6:95:bd:30:19:0b:36:5b:7a:43:da:8b:e8:6d:a6:3f: 9f:71:cf:b7:17:d9:39:c9:f4:e1:c6:ef:ff:22:04:6e:ae:7a: ab:00:98:da:76:85:2d:0b:0f:25:27:5a:b9:64:ad:5b:04:24: b3:92:c3:16:e6:60:66:c8:6b:9b:9c:d6:0e:b7:d3:4c:6b:67: f6:cd:97:50:91:4d:f3:dd:bd:ac:60:47:38:77:24:1b:03:3f: 62:c4:0b:c0:59:50:2b:3a:24:44:90:a9:37:07:a2:b5:aa:57: 0c:46:7b:c6:6e:1f:3f:55:37:48:df:b8:c4:e5:18:f4:95:c1: 17:ca:89:18:16:e2:33:59:1e:2a:94:cb:f8:e4:89:16:7b:b2: a6:4c:89:80:b6:87:3b:17:fb:53:35:5e:b1:e9:30:54:3c:53: 2e:91:97:c8:75:98:c1:7c:9e:b4:87:31:ec:7a:73:23:f9:19: cb:2d:8e:bd:36:03:0c:01:6a:ac:f1:d7:9e:04:28:18:70:3f: 4e:c3:9d:64:03:23:c4:d9:7a:3a:fd:b3:d9:10:2d:a6:00:d2: 5a:b7:e9:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xGjg3rAp+o0pTVgoV0GbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExZDE5ZmRhZTljNTNkOGQyOGIxZTQxY2E5MTM5YzMzNTU2 YmE2MjUwHhcNMjUxMjE5MDQwMDQ1WhcNMjUxMjIwMDQwMDQ1WjAzMTEwLwYDVQQD Eyg4NzVkYWZiNjM2ZTZkYjFlMmRiZjc3YmU2OTEyMDZhNzU5ZTg4ZjEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2hiBOAPV2FuOUjmFdDC1jXBH3Yy VeEyBICR4WRXZCfZLIeeJNS9L7ZuMJvKG6fcF5RlKmrUQPfvkmy1f4P+3+NgYKRU EjfSbVZLxHwkbQ68FbxdFUrMR1XrjnZyN+tp2wnpi5R9JaJrV6AD6RkqNokMxnvI M2pGatUma5f0iUgDk3kgTubIbu6Fozb9SHh2orsvjKD6ciaJfbWr5FwjL91h70bN v4hAjDmzXm0EW0a3wSImaOFmZWWC8tF+44CePXBGKTvBg+7hzVikZeJHVlKLULpd su79jWi/4bAzNPFUF0YQRnuK+fE0LX1F6Zddj7zUGiyScwgMkAacoK03LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIddr7Y25tseLb93vmkSBqdZ6I8TMB8GA1UdIwQY MBaAFBHRn9rpxT2NKLHkHKkTnDNVa6YlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWRHZjJ1bkZQWTBvc2VRY3FST2NNMVZycGlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81YzQ2ZDItOTgxOC00YWZjLTg4MGUt MWNjNWZkMjU0NGU5LzEvRWRHZjJ1bkZQWTBvc2VRY3FST2NNMVZycGlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS81YzQ2ZDItOTgxOC00YWZjLTg4MGUtMWNjNWZkMjU0NGU5 LzEvRWRHZjJ1bkZQWTBvc2VRY3FST2NNMVZycGlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoprgkwrJ 0B3EAjTo9msXtMITANtDZp0vGv8IM/3ooHQ7hqxoIk3mlb0wGQs2W3pD2ovobaY/ n3HPtxfZOcn04cbv/yIEbq56qwCY2naFLQsPJSdauWStWwQks5LDFuZgZshrm5zW DrfTTGtn9s2XUJFN8929rGBHOHckGwM/YsQLwFlQKzokRJCpNweitapXDEZ7xm4f P1U3SN+4xOUY9JXBF8qJGBbiM1keKpTL+OSJFnuypkyJgLaHOxf7UzVesekwVDxT LpGXyHWYwXyetIcx7HpzI/kZyy2OvTYDDAFqrPHXngQoGHA/TsOdZAMjxNl6Ov2z 2RAtpgDSWrfpUg== -----END CERTIFICATE-----Generated at Fri Dec 19 12:55:53 2025 by rpki-client