This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft File: ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft (raw, json) Hash identifier: 0zqMvBXNxNOXFV43UjoK5+wpnJtLH5Q/T0ZuBSnGoco= Subject key identifier: F8:5F:71:49:31:79:CC:8C:7B:DB:BA:DF:B0:18:28:02:D0:B0:47:5D Authority key identifier: 7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C Certificate issuer: /CN=7a43253a368fc6475853971ba9235be0233d8b7c Certificate serial: 019B2740B2D6141B7A68D03CE93EF28E7E51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft Manifest number: 11F5 Signing time: Tue 16 Dec 2025 13:01:50 +0000 Manifest this update: Tue 16 Dec 2025 13:01:50 +0000 Manifest next update: Wed 17 Dec 2025 13:01:50 +0000 Files and hashes: 1: EyXyZh1NMVmQSwOvgsi_6X0fzdc.roa (hash: zdUTP+PrB9t/KpvAQvCmMyip6WSChLUYJHZuuaMU0rs=) 2: ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl (hash: taV3rtvFWhiaiyhY5nhD1h75W9yV+cE9+kS85i70DLI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 13:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:40:b2:d6:14:1b:7a:68:d0:3c:e9:3e:f2:8e:7e:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a43253a368fc6475853971ba9235be0233d8b7c Validity Not Before: Dec 16 13:01:50 2025 GMT Not After : Dec 17 13:01:50 2025 GMT Subject: CN=f85f71493179cc8c7bdbbadfb0182802d0b0475d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:13:bf:7f:e9:8d:7d:7c:d3:54:f4:46:52:d4: 48:c4:e5:2e:ce:46:e6:7c:6c:a9:ec:ff:95:69:17: 8f:70:12:d1:8c:43:be:42:4c:9d:00:13:0a:fb:c6: a0:8d:50:db:44:83:b3:b1:a5:3e:10:d9:b2:f1:47: 07:ba:a9:44:a3:ab:52:40:3a:2b:60:e2:e3:cc:97: 45:35:9b:e9:e9:0a:fa:d0:fc:97:0a:04:3c:d8:da: e9:9c:a3:97:58:47:a0:ed:8b:c5:9f:c6:0e:fa:66: 64:9b:4e:c8:15:dd:e5:4c:f9:ff:4b:fd:49:14:d5: 89:12:23:08:c7:13:ce:b6:ba:06:93:e6:25:8b:64: 7a:26:cb:bd:c8:3f:12:ca:d5:9a:99:0d:69:b8:02: 54:ab:10:69:01:52:30:3c:36:45:7e:e9:d5:63:f1: 4e:74:59:a0:47:16:c0:99:27:8b:c2:25:20:6b:fe: 4e:fa:94:37:17:21:ec:fd:3f:bf:fc:2c:06:07:bb: 2a:53:5f:d6:39:51:7a:91:1c:92:8f:59:f6:da:00: 76:9d:f5:6c:45:00:23:81:72:f0:74:58:d9:9d:96: f2:e3:e6:5b:1f:bd:7a:ac:f9:27:26:dd:7a:c9:88: 7a:75:e0:31:f8:49:4d:aa:0c:8b:ec:c3:ca:2a:e6: 41:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:5F:71:49:31:79:CC:8C:7B:DB:BA:DF:B0:18:28:02:D0:B0:47:5D X509v3 Authority Key Identifier: keyid:7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:2c:19:da:33:68:d0:83:d0:25:90:4e:99:cf:84:9c:ce:1c: 34:89:f2:8f:9d:8c:5d:ab:c4:b9:e2:e4:d5:d9:31:67:0a:e8: fa:f8:b5:6a:78:44:1c:d7:1a:31:33:39:d2:f5:54:9b:2b:a4: ce:5f:84:ab:e0:ab:60:66:07:6a:af:a7:a2:83:7b:f2:a7:0a: 90:87:f3:2a:b8:a6:7b:d2:34:91:7b:a4:7a:e7:aa:b6:70:fd: a5:ee:5c:d1:90:1c:20:c1:3a:09:35:31:2d:ca:f0:14:6d:dd: fc:cf:53:9e:e0:30:25:4c:fd:6c:b8:12:e5:2d:13:c3:b9:f9: a5:6b:ea:b7:53:fe:33:da:94:cb:a6:ac:d7:a5:f4:59:f9:70: a9:96:6e:38:0c:e5:ff:ad:9b:b3:e8:f8:df:f5:70:99:23:1b: 12:e4:28:84:39:8e:39:d8:dc:fb:ee:21:9a:6c:7c:c7:cc:c2: 9e:ff:e8:aa:04:cc:65:d7:6f:cb:4f:dc:17:a4:ca:d2:e4:2c: 2c:77:60:76:c3:30:9c:be:a7:0f:54:bf:8b:90:a8:69:b6:2a: 84:b8:4f:4e:94:3a:d1:b9:69:31:20:89:12:49:4f:23:59:36: 01:b3:2a:28:e6:d1:3c:21:ea:76:d1:44:af:6d:38:1a:fb:d7: 5c:fc:5b:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnQLLWFBt6aNA86T7yjn5RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhNDMyNTNhMzY4ZmM2NDc1ODUzOTcxYmE5MjM1YmUwMjMz ZDhiN2MwHhcNMjUxMjE2MTMwMTUwWhcNMjUxMjE3MTMwMTUwWjAzMTEwLwYDVQQD EyhmODVmNzE0OTMxNzljYzhjN2JkYmJhZGZiMDE4MjgwMmQwYjA0NzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRO/f+mNfXzTVPRGUtRIxOUuzkbm fGyp7P+VaRePcBLRjEO+QkydABMK+8agjVDbRIOzsaU+ENmy8UcHuqlEo6tSQDor YOLjzJdFNZvp6Qr60PyXCgQ82NrpnKOXWEeg7YvFn8YO+mZkm07IFd3lTPn/S/1J FNWJEiMIxxPOtroGk+Yli2R6Jsu9yD8SytWamQ1puAJUqxBpAVIwPDZFfunVY/FO dFmgRxbAmSeLwiUga/5O+pQ3FyHs/T+//CwGB7sqU1/WOVF6kRySj1n22gB2nfVs RQAjgXLwdFjZnZby4+ZbH716rPknJt16yYh6deAx+ElNqgyL7MPKKuZBowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPhfcUkxecyMe9u637AYKALQsEddMB8GA1UdIwQY MBaAFHpDJTo2j8ZHWFOXG6kjW+AjPYt8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWtNbE9qYVB4a2RZVTVjYnFTTmI0Q005aTN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9iY2FlN2QtOWRhYS00ZmMxLTgwN2It N2Y2ZGVhMzhlN2FhLzEvZWtNbE9qYVB4a2RZVTVjYnFTTmI0Q005aTN3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9iY2FlN2QtOWRhYS00ZmMxLTgwN2ItN2Y2ZGVhMzhlN2Fh LzEvZWtNbE9qYVB4a2RZVTVjYnFTTmI0Q005aTN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApiwZ2jNo 0IPQJZBOmc+EnM4cNInyj52MXavEueLk1dkxZwro+vi1anhEHNcaMTM50vVUmyuk zl+Eq+CrYGYHaq+nooN78qcKkIfzKrime9I0kXukeueqtnD9pe5c0ZAcIME6CTUx LcrwFG3d/M9TnuAwJUz9bLgS5S0Tw7n5pWvqt1P+M9qUy6as16X0WflwqZZuOAzl /62bs+j43/VwmSMbEuQohDmOOdjc++4hmmx8x8zCnv/oqgTMZddvy0/cF6TK0uQs LHdgdsMwnL6nD1S/i5CoabYqhLhPTpQ60blpMSCJEklPI1k2AbMqKObRPCHqdtFE r204GvvXXPxbBA== -----END CERTIFICATE-----Generated at Tue Dec 16 22:44:32 2025 by rpki-client