This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft File: EdGf2unFPY0oseQcqROcM1VrpiU.mft (raw, json) Hash identifier: cPyoUdtxaXoZO7utrpESo6lIVfJTE/CCuvBfyzqSCYM= Subject key identifier: 9F:ED:EA:E5:92:10:FE:46:6E:0F:D6:C1:26:64:B1:E7:73:66:EF:F5 Authority key identifier: 11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25 Certificate issuer: /CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625 Certificate serial: 019AF31C9AD9F6858D9337D9CD7E090C489A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft Manifest number: 0BC1 Signing time: Sat 06 Dec 2025 10:02:09 +0000 Manifest this update: Sat 06 Dec 2025 10:02:09 +0000 Manifest next update: Sun 07 Dec 2025 10:02:09 +0000 Files and hashes: 1: EdGf2unFPY0oseQcqROcM1VrpiU.crl (hash: 4MFuvk4FCrM+sDH1BOXL7HWKGq6+cJ6twMOF4IS5vX4=) 2: hjbzdQG0z4fmkgxJ5yW_AFN2Z3I.roa (hash: FIaXEpRqjmfrs5VrZ6nFL+BtqxgLq2lRPch8+CMAMWI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:9a:d9:f6:85:8d:93:37:d9:cd:7e:09:0c:48:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625 Validity Not Before: Dec 6 10:02:09 2025 GMT Not After : Dec 7 10:02:09 2025 GMT Subject: CN=9fedeae59210fe466e0fd6c12664b1e77366eff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:57:a2:dc:fb:3e:2c:ab:1e:7a:f9:c7:97:ad: f3:ec:5b:6d:bd:7b:66:2d:f2:54:8e:ed:a4:f4:2b: 26:df:31:59:34:ed:37:9b:03:cb:d7:55:cb:b7:e3: 09:17:9d:6c:14:63:8f:71:0b:26:9c:28:1d:00:3b: c9:08:41:ce:a6:07:35:19:83:18:54:78:65:ec:ac: 6d:99:b6:e9:45:ec:34:11:54:68:c2:29:48:90:dd: ba:27:b7:b3:9d:22:d0:c9:e7:7e:97:08:39:52:85: 53:fa:6d:9e:6e:45:c7:2c:2c:a0:71:50:e9:0f:6d: a1:f6:77:6b:a2:dd:24:4c:b8:77:88:d4:cc:c9:3a: d7:9d:2e:17:fa:b5:3e:69:a4:5c:f1:a1:c5:7a:5b: 5c:9f:9b:da:03:9d:d0:b7:17:18:a7:6e:ea:0b:30: e6:d1:f9:dd:25:08:6f:4f:26:1a:1b:e9:7b:93:28: 07:e3:c1:e4:0d:d4:69:79:62:e3:7e:05:68:3c:78: 35:1b:48:eb:86:d2:15:46:56:45:20:a8:ce:bc:e1: c1:e0:2f:9e:bc:62:04:e6:89:b6:dd:36:e9:d2:5d: cc:05:43:7d:17:8e:5a:e7:ee:5d:c2:60:6b:47:1f: 95:57:50:47:00:8e:f2:0b:c2:0e:02:be:81:1d:1e: d2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:ED:EA:E5:92:10:FE:46:6E:0F:D6:C1:26:64:B1:E7:73:66:EF:F5 X509v3 Authority Key Identifier: keyid:11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption dd:c9:8b:b3:18:9b:02:53:3e:a3:0e:54:6e:92:00:71:a1:a3: c5:34:84:46:47:22:36:68:6c:0c:28:bb:09:b8:f3:cf:01:74: ff:10:bf:7a:0b:e8:68:07:96:f7:a9:c7:a0:10:77:ec:f6:7d: f4:d7:5e:9a:dd:d1:3a:81:86:d9:91:8e:ad:e5:24:50:41:fb: 22:6d:79:be:26:94:7a:53:e0:67:3f:1d:74:1e:9c:bb:5a:6f: 97:e7:d7:90:fa:de:af:c9:40:e0:bd:ac:26:ce:a9:25:bb:44: a7:90:8e:a5:54:59:79:4b:e3:f8:49:1e:9d:82:ee:e1:34:e1: d1:27:d6:67:dd:c9:ec:3f:8b:9b:6a:29:48:e9:97:5e:b0:cd: f5:15:af:f6:00:db:71:ff:7e:cc:2c:ba:25:a9:ec:81:bc:52: 2d:67:54:4f:93:a1:92:e4:e8:49:a6:d5:e8:01:cd:e6:d9:8a: ec:33:05:c5:15:4b:6a:35:17:dc:e0:0f:b3:4c:2c:a9:e9:28: 47:0f:22:c5:65:5c:74:fd:2a:7a:d9:7d:d5:43:b6:6a:2c:97: a7:e6:22:e7:d9:b0:3d:cb:59:03:65:82:58:1f:b3:77:7e:44: af:85:54:0b:30:3c:c9:b9:83:42:40:ff:a2:85:23:15:94:0b: e1:61:75:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHJrZ9oWNkzfZzX4JDEiaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExZDE5ZmRhZTljNTNkOGQyOGIxZTQxY2E5MTM5YzMzNTU2 YmE2MjUwHhcNMjUxMjA2MTAwMjA5WhcNMjUxMjA3MTAwMjA5WjAzMTEwLwYDVQQD Eyg5ZmVkZWFlNTkyMTBmZTQ2NmUwZmQ2YzEyNjY0YjFlNzczNjZlZmY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVei3Ps+LKseevnHl63z7FttvXtm LfJUju2k9Csm3zFZNO03mwPL11XLt+MJF51sFGOPcQsmnCgdADvJCEHOpgc1GYMY VHhl7KxtmbbpRew0EVRowilIkN26J7eznSLQyed+lwg5UoVT+m2ebkXHLCygcVDp D22h9ndrot0kTLh3iNTMyTrXnS4X+rU+aaRc8aHFeltcn5vaA53QtxcYp27qCzDm 0fndJQhvTyYaG+l7kygH48HkDdRpeWLjfgVoPHg1G0jrhtIVRlZFIKjOvOHB4C+e vGIE5om23Tbp0l3MBUN9F45a5+5dwmBrRx+VV1BHAI7yC8IOAr6BHR7S8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ/t6uWSEP5Gbg/WwSZksedzZu/1MB8GA1UdIwQY MBaAFBHRn9rpxT2NKLHkHKkTnDNVa6YlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWRHZjJ1bkZQWTBvc2VRY3FST2NNMVZycGlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81YzQ2ZDItOTgxOC00YWZjLTg4MGUt MWNjNWZkMjU0NGU5LzEvRWRHZjJ1bkZQWTBvc2VRY3FST2NNMVZycGlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS81YzQ2ZDItOTgxOC00YWZjLTg4MGUtMWNjNWZkMjU0NGU5 LzEvRWRHZjJ1bkZQWTBvc2VRY3FST2NNMVZycGlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3cmLsxib AlM+ow5UbpIAcaGjxTSERkciNmhsDCi7CbjzzwF0/xC/egvoaAeW96nHoBB37PZ9 9Ndemt3ROoGG2ZGOreUkUEH7Im15viaUelPgZz8ddB6cu1pvl+fXkPrer8lA4L2s Js6pJbtEp5COpVRZeUvj+EkenYLu4TTh0SfWZ93J7D+Lm2opSOmXXrDN9RWv9gDb cf9+zCy6JansgbxSLWdUT5OhkuToSabV6AHN5tmK7DMFxRVLajUX3OAPs0wsqeko Rw8ixWVcdP0qetl91UO2aiyXp+Yi59mwPctZA2WCWB+zd35Er4VUCzA8ybmDQkD/ ooUjFZQL4WF1oA== -----END CERTIFICATE-----Generated at Sat Dec 6 20:00:26 2025 by rpki-client