This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft File: eY97H9gCs9xqvXpc2nhqYxHh1j0.mft (raw, json) Hash identifier: TqTzRjD3dSAk/H7vUBm3eBudoRHbCKSJJ9JgJM8Pru4= Subject key identifier: 62:68:C6:F8:C0:5B:1B:4D:85:E8:79:59:D2:CA:34:55:EF:19:FA:1F Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d Certificate serial: 019B2FD5A01AA9B0BFB2C12ED54A0B6F8012 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft Manifest number: 0FC7 Signing time: Thu 18 Dec 2025 05:01:27 +0000 Manifest this update: Thu 18 Dec 2025 05:01:27 +0000 Manifest next update: Fri 19 Dec 2025 05:01:27 +0000 Files and hashes: 1: eY97H9gCs9xqvXpc2nhqYxHh1j0.crl (hash: UdIHv2wKkrzlMV9eZIIjm+MaGIDTig54mlrQcuKZY6I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:d5:a0:1a:a9:b0:bf:b2:c1:2e:d5:4a:0b:6f:80:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d Validity Not Before: Dec 18 05:01:27 2025 GMT Not After : Dec 19 05:01:27 2025 GMT Subject: CN=6268c6f8c05b1b4d85e87959d2ca3455ef19fa1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:17:3e:c2:e5:7e:a5:e9:45:9e:e5:04:b2:6f: 1c:36:51:19:be:d4:f8:4b:07:93:c7:62:d1:04:c0: b2:aa:36:03:29:c2:3f:29:ab:dd:82:1e:9d:80:9b: c1:ea:c8:51:ce:43:e5:93:73:71:0b:e6:d5:7d:1c: 3b:1f:ba:99:63:5f:57:a1:0a:49:ff:27:14:19:b9: e9:c7:d5:23:98:61:e4:58:9f:9f:21:66:e1:94:e2: f3:e7:05:d7:8e:ed:fe:d7:c9:4e:94:ad:f3:eb:ff: a9:97:d2:75:47:fa:33:e6:9e:a6:28:e9:76:74:bc: 68:cc:95:e9:cc:bf:cd:fc:01:60:35:2c:3f:bd:c4: 88:3d:4c:4c:54:47:11:a6:37:94:3f:c3:bb:16:26: af:34:b4:4b:dd:c6:f9:b3:a4:22:31:09:5f:c8:a2: 0f:7f:57:ae:f9:9f:3e:83:b1:89:b0:48:88:52:f8: a2:1f:0a:e5:7d:e4:5f:91:5f:d9:7b:47:4d:fb:65: eb:f2:f0:cb:76:c1:3f:5d:4e:f5:23:5c:82:7d:dd: a3:ac:67:c0:f7:47:2e:0e:4e:8e:c6:29:99:f1:20: 63:c6:8f:0d:50:67:62:fc:32:52:42:ec:02:36:4c: 2b:bc:4d:b5:f4:b7:4e:38:6a:00:e4:ff:79:54:95: 84:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:68:C6:F8:C0:5B:1B:4D:85:E8:79:59:D2:CA:34:55:EF:19:FA:1F X509v3 Authority Key Identifier: keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:39:fb:84:e2:45:72:6f:92:02:bb:3f:d8:40:4d:ee:da:73: f8:25:c8:f2:67:c1:e3:9d:5b:50:0a:a1:f9:4d:e7:7c:29:13: b5:84:10:74:75:0a:18:f9:1a:b4:b0:f7:99:94:ef:f1:27:0d: 91:41:1c:83:7b:f5:03:51:9e:d5:71:a4:61:c7:ef:00:fa:5b: 63:76:1b:a3:4c:b0:c5:9a:24:98:31:69:d9:32:a5:cf:80:fd: b5:23:e7:75:92:82:ba:8f:6b:c7:56:ba:cc:44:13:8f:7f:be: cc:64:4b:6c:57:65:93:42:f4:5f:b0:a6:26:4a:d9:e5:27:e2: eb:69:10:cc:b1:ca:bb:1c:df:18:7c:85:8f:cb:94:c8:09:67: b9:5f:80:9b:07:d7:c2:1b:e1:ab:3a:04:15:82:29:d9:95:67: d1:45:88:af:52:ca:ab:01:03:9c:41:0a:e6:ea:f2:1a:ee:06: 09:45:e4:6b:87:b5:e8:92:6c:65:7a:d5:ae:fc:f3:3a:c7:8e: e8:91:72:77:fe:07:9e:9f:77:7b:71:b8:bc:ab:be:31:62:96: da:c0:57:18:1b:28:79:26:a9:2d:66:e4:57:44:8c:dc:ac:2c: 8b:af:f5:0b:ea:58:15:25:36:c6:89:d8:5c:9b:58:78:cb:3e: e3:40:38:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsv1aAaqbC/ssEu1UoLb4ASMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5OGY3YjFmZDgwMmIzZGM2YWJkN2E1Y2RhNzg2YTYzMTFl MWQ2M2QwHhcNMjUxMjE4MDUwMTI3WhcNMjUxMjE5MDUwMTI3WjAzMTEwLwYDVQQD Eyg2MjY4YzZmOGMwNWIxYjRkODVlODc5NTlkMmNhMzQ1NWVmMTlmYTFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhc+wuV+pelFnuUEsm8cNlEZvtT4 SweTx2LRBMCyqjYDKcI/Kavdgh6dgJvB6shRzkPlk3NxC+bVfRw7H7qZY19XoQpJ /ycUGbnpx9UjmGHkWJ+fIWbhlOLz5wXXju3+18lOlK3z6/+pl9J1R/oz5p6mKOl2 dLxozJXpzL/N/AFgNSw/vcSIPUxMVEcRpjeUP8O7FiavNLRL3cb5s6QiMQlfyKIP f1eu+Z8+g7GJsEiIUviiHwrlfeRfkV/Ze0dN+2Xr8vDLdsE/XU71I1yCfd2jrGfA 90cuDk6OximZ8SBjxo8NUGdi/DJSQuwCNkwrvE219LdOOGoA5P95VJWEMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGJoxvjAWxtNheh5WdLKNFXvGfofMB8GA1UdIwQY MBaAFHmPex/YArPcar16XNp4amMR4dY9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVk5N0g5Z0NzOXhxdlhwYzJuaHFZeEhoMWowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8zMDg4M2EtMTZkNy00MjEyLTkxOTkt MDlkMGFhMjhlNTUxLzEvZVk5N0g5Z0NzOXhxdlhwYzJuaHFZeEhoMWowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My8zMDg4M2EtMTZkNy00MjEyLTkxOTktMDlkMGFhMjhlNTUx LzEvZVk5N0g5Z0NzOXhxdlhwYzJuaHFZeEhoMWowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwTn7hOJF cm+SArs/2EBN7tpz+CXI8mfB451bUAqh+U3nfCkTtYQQdHUKGPkatLD3mZTv8ScN kUEcg3v1A1Ge1XGkYcfvAPpbY3Ybo0ywxZokmDFp2TKlz4D9tSPndZKCuo9rx1a6 zEQTj3++zGRLbFdlk0L0X7CmJkrZ5Sfi62kQzLHKuxzfGHyFj8uUyAlnuV+AmwfX whvhqzoEFYIp2ZVn0UWIr1LKqwEDnEEK5uryGu4GCUXka4e16JJsZXrVrvzzOseO 6JFyd/4Hnp93e3G4vKu+MWKW2sBXGBsoeSapLWbkV0SM3Kwsi6/1C+pYFSU2xonY XJtYeMs+40A4BA== -----END CERTIFICATE-----Generated at Thu Dec 18 11:22:52 2025 by rpki-client