This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft File: 0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft (raw, json) Hash identifier: TgWRPr9o+v34j1CvSbl4vsZLU8dx7L30fWNImIvW/T8= Subject key identifier: 90:0B:DB:F8:72:3A:8C:3C:61:01:C4:0F:02:E1:50:54:A0:0D:90:0E Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde Certificate serial: 019AF35243C424BFF538F9A85E87B2B63B1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft Manifest number: 128B Signing time: Sat 06 Dec 2025 11:00:45 +0000 Manifest this update: Sat 06 Dec 2025 11:00:45 +0000 Manifest next update: Sun 07 Dec 2025 11:00:45 +0000 Files and hashes: 1: 0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl (hash: fhlawdLts9prjjst+AWaDnNyc4JsQJqCGpNHzZ6FaCI=) 2: SAF1KbjuvZdI9BSVM80ADIZ6zn0.roa (hash: wfp9L/QbKQTs8wDMXGcfyHh9p8y5+4/kclZuUrsUs5I=) 3: jOqd2wJBuE3wT3pRawlL9knhjV8.roa (hash: pvOd4te8ScnLLx0JwvYK3xwrNCWYubvf6Z+FLbM/DCM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:43:c4:24:bf:f5:38:f9:a8:5e:87:b2:b6:3b:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde Validity Not Before: Dec 6 11:00:45 2025 GMT Not After : Dec 7 11:00:45 2025 GMT Subject: CN=900bdbf8723a8c3c6101c40f02e15054a00d900e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:94:6b:69:d3:72:42:32:a8:35:86:31:a0:0a: 40:de:64:50:d3:5f:30:e7:cd:98:73:86:35:97:98: 9e:5a:49:ec:35:ea:b4:d3:3b:9e:ce:84:93:a9:91: d1:d5:f4:2c:d4:61:a0:f0:54:9a:ff:da:7e:bd:06: 95:1f:5a:48:6a:df:6b:40:e2:2b:b3:02:1e:1e:08: 8f:e0:41:94:e1:df:24:f0:e1:1c:ae:a1:cc:d3:91: a2:b9:d4:c1:d0:56:9a:9d:25:a2:93:cb:8e:c7:4a: 65:db:81:b8:b8:43:df:2b:d3:83:57:f6:19:e7:3f: d7:4b:49:a3:8d:27:2e:db:d5:4b:71:6f:db:84:7d: 4b:74:c1:40:44:ac:e1:ec:0b:47:b4:b5:07:90:f1: 57:6f:1d:91:2f:52:c7:00:c5:c5:34:59:3a:82:78: ad:2e:6f:73:9b:f9:60:c7:66:d7:a0:8c:be:42:4d: d5:5f:c9:f3:93:79:f0:f8:56:27:9a:04:77:9b:93: f5:ff:d9:1c:74:2d:6d:8f:26:9a:cc:a8:36:29:d6: 1c:bb:1a:59:3c:da:f6:4f:30:2d:fa:7a:3f:f9:d0: 71:ee:0c:67:4f:1d:f3:e2:49:89:21:26:5d:8d:7f: 61:89:fb:62:8b:c0:1e:ca:3d:78:62:44:50:08:04: 71:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:0B:DB:F8:72:3A:8C:3C:61:01:C4:0F:02:E1:50:54:A0:0D:90:0E X509v3 Authority Key Identifier: keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:c7:46:6f:2c:fb:d5:44:62:0e:39:be:64:21:0f:23:6e:40: 66:8c:91:05:6b:60:02:5c:c1:6b:99:54:2b:64:dd:5f:b6:c9: 3b:e3:36:20:44:03:c0:ec:4b:1d:c3:6b:d5:0c:db:0f:3e:15: 85:d2:0c:f6:49:ac:4a:4f:4e:1d:05:99:6b:3e:ae:41:24:9d: cf:40:5b:1a:34:3d:12:eb:a6:9e:38:f6:17:e9:72:2b:c8:61: d3:71:7b:46:d9:cc:88:81:16:af:00:af:98:71:00:f8:5a:0b: e7:e4:03:73:64:e2:8b:33:f9:e3:bb:b7:e0:13:ca:83:d2:72: e2:88:10:56:e2:45:42:f2:01:1f:f1:19:0e:f7:43:53:b9:1a: 4c:13:91:68:cd:a7:ff:71:72:fe:cb:d0:41:4c:61:7a:f3:a1: 83:69:d3:4c:62:18:27:c9:b7:55:ca:e1:18:0e:1d:90:75:0f: a9:3b:f5:d4:80:9c:8f:2e:b3:98:be:e9:38:f5:3c:93:20:09: 02:bd:fc:4c:97:58:16:81:fd:ae:d3:ce:6f:ae:b0:c2:a5:31: 48:e9:79:7d:6a:93:55:44:99:88:b2:e5:5d:9f:2c:eb:cf:d6: 62:e4:37:92:96:e1:2e:4d:c4:85:47:e7:4c:ad:66:c7:da:cc: a3:53:9e:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUkPEJL/1OPmoXoeytjsfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwNDI2NWZiMTFjMmEyMjBiYzM1MDcxODY3M2UwNzA0ZDFl ZGFkZGUwHhcNMjUxMjA2MTEwMDQ1WhcNMjUxMjA3MTEwMDQ1WjAzMTEwLwYDVQQD Eyg5MDBiZGJmODcyM2E4YzNjNjEwMWM0MGYwMmUxNTA1NGEwMGQ5MDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJRradNyQjKoNYYxoApA3mRQ018w 582Yc4Y1l5ieWknsNeq00zuezoSTqZHR1fQs1GGg8FSa/9p+vQaVH1pIat9rQOIr swIeHgiP4EGU4d8k8OEcrqHM05GiudTB0FaanSWik8uOx0pl24G4uEPfK9ODV/YZ 5z/XS0mjjScu29VLcW/bhH1LdMFARKzh7AtHtLUHkPFXbx2RL1LHAMXFNFk6gnit Lm9zm/lgx2bXoIy+Qk3VX8nzk3nw+FYnmgR3m5P1/9kcdC1tjyaazKg2KdYcuxpZ PNr2TzAt+no/+dBx7gxnTx3z4kmJISZdjX9hiftii8Aeyj14YkRQCARxcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJAL2/hyOow8YQHEDwLhUFSgDZAOMB8GA1UdIwQY MBaAFNBCZfsRwqIgvDUHGGc+BwTR7a3eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEVKbC14SENvaUM4TlFjWVp6NEhCTkh0cmQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9mYTczZjgtMzNlMC00MDMyLTg0ZWMt YTk2ZWY2ZjY0MzVjLzEvMEVKbC14SENvaUM4TlFjWVp6NEhCTkh0cmQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9mYTczZjgtMzNlMC00MDMyLTg0ZWMtYTk2ZWY2ZjY0MzVj LzEvMEVKbC14SENvaUM4TlFjWVp6NEhCTkh0cmQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI8dGbyz7 1URiDjm+ZCEPI25AZoyRBWtgAlzBa5lUK2TdX7bJO+M2IEQDwOxLHcNr1QzbDz4V hdIM9kmsSk9OHQWZaz6uQSSdz0BbGjQ9Euumnjj2F+lyK8hh03F7RtnMiIEWrwCv mHEA+FoL5+QDc2TiizP547u34BPKg9Jy4ogQVuJFQvIBH/EZDvdDU7kaTBORaM2n /3Fy/svQQUxhevOhg2nTTGIYJ8m3VcrhGA4dkHUPqTv11ICcjy6zmL7pOPU8kyAJ Ar38TJdYFoH9rtPOb66wwqUxSOl5fWqTVUSZiLLlXZ8s68/WYuQ3kpbhLk3EhUfn TK1mx9rMo1Oevw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:14:49 2025 by rpki-client