This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft File: e20oQEBEI571gkLyEOCxZmfrQNA.mft (raw, json) Hash identifier: pWeudwZ42bv5be+NujkVB87rnlN+BvA7nnRp662slEs= Subject key identifier: BE:DB:0B:14:D4:A0:70:51:FE:F1:62:18:DC:D3:C9:EF:0D:9E:74:04 Authority key identifier: 7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0 Certificate issuer: /CN=7b6d28404044239ef58242f210e0b16667eb40d0 Certificate serial: 019AF19A8FF31A0112E358EA84BFA45D7F14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft Manifest number: 16F1 Signing time: Sat 06 Dec 2025 03:00:29 +0000 Manifest this update: Sat 06 Dec 2025 03:00:29 +0000 Manifest next update: Sun 07 Dec 2025 03:00:29 +0000 Files and hashes: 1: e20oQEBEI571gkLyEOCxZmfrQNA.crl (hash: MeLSLBElgE1W6QkB/fb7XooIYAiMsmvjb++8iK9wDVk=) 2: hlbCnpGhMRluMY_1waDMmeV9vY4.roa (hash: KZsIHpuRlGx7ybmtLKdiNmONLiSIwlKsEPr24QJ/98Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:8f:f3:1a:01:12:e3:58:ea:84:bf:a4:5d:7f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b6d28404044239ef58242f210e0b16667eb40d0 Validity Not Before: Dec 6 03:00:29 2025 GMT Not After : Dec 7 03:00:29 2025 GMT Subject: CN=bedb0b14d4a07051fef16218dcd3c9ef0d9e7404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:16:ed:9b:16:35:85:3b:a5:ee:54:67:ec:62: 09:01:4b:ab:6f:46:7a:28:9e:85:20:26:f5:46:6d: d9:c1:59:d7:c3:75:13:83:6b:c5:3f:39:dd:42:86: fb:b2:48:ab:92:f1:45:b6:3a:6d:13:02:ef:c8:0c: 64:98:12:fd:e8:9a:24:75:ad:1c:c6:2c:21:91:c2: 8a:ee:2f:51:5b:5c:19:57:26:6d:89:7e:02:31:6f: 8c:51:cb:99:13:78:a5:e0:ed:50:bb:52:63:c0:7b: 57:c3:49:35:ed:78:5b:44:e7:44:58:75:06:44:35: b1:5e:e2:72:0b:f8:2a:30:1f:01:b7:b3:e3:40:55: 97:79:ba:d1:a1:68:33:fb:75:d0:b8:4e:8a:b7:7a: b8:c1:df:02:da:42:d1:3b:79:8c:e5:3a:47:b1:58: 8e:c9:94:5f:86:98:a3:49:cd:19:16:ee:63:d0:d2: 17:1f:76:5c:5b:0c:28:82:6f:b3:61:35:06:f6:55: 76:f2:6f:55:5c:74:2a:7d:13:c7:4d:8c:48:ad:ce: 1c:a4:82:57:c4:19:df:e6:af:d5:a6:f5:db:da:9f: c5:7c:f9:d6:9a:77:13:98:fa:f4:90:ce:c5:86:63: 4b:71:20:8d:98:ef:4a:62:3b:a1:aa:58:87:b2:1b: 1c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DB:0B:14:D4:A0:70:51:FE:F1:62:18:DC:D3:C9:EF:0D:9E:74:04 X509v3 Authority Key Identifier: keyid:7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:29:88:4f:a2:d1:ff:b2:45:8c:33:0d:b4:53:0d:6e:e2:94: 97:6f:e0:ce:3a:0d:93:31:4d:76:7f:6c:2a:d6:23:77:ee:8d: 50:c5:87:be:01:0b:87:9a:13:74:ad:f9:0b:56:3f:67:9f:86: 6c:25:22:d4:ec:ac:88:62:04:27:7b:31:7b:0e:5e:9d:21:0b: 71:b2:48:c6:34:06:51:7a:bd:1f:bb:96:24:7d:a1:58:22:1a: d0:9b:7a:0c:26:d2:46:8c:a2:f8:d3:73:63:cc:d8:ea:4a:c1: 63:87:d0:15:57:45:3d:a7:95:d0:9f:21:06:39:ca:ce:47:bf: 65:88:ef:c1:0e:ab:e9:97:ff:ef:55:2f:e1:89:6b:24:8d:09: 5f:9e:15:ea:ca:65:88:d7:99:24:79:9b:48:ad:44:fd:20:74: 8a:cc:37:87:9f:4d:81:bf:9a:ff:bc:16:6d:fc:96:5c:24:5b: aa:7d:28:60:a3:81:aa:7a:8f:0b:df:70:28:0e:78:5d:9f:9e: e9:30:a0:fe:8d:a6:cb:de:de:d7:28:d2:76:76:96:5c:85:fd: b3:db:b1:90:3d:96:a5:8a:ff:77:22:a2:36:19:11:7b:e2:9c: 86:7b:24:32:46:a1:2d:4f:6b:a4:04:21:d5:69:71:ff:96:0d: 21:9c:0f:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmo/zGgES41jqhL+kXX8UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiNmQyODQwNDA0NDIzOWVmNTgyNDJmMjEwZTBiMTY2Njdl YjQwZDAwHhcNMjUxMjA2MDMwMDI5WhcNMjUxMjA3MDMwMDI5WjAzMTEwLwYDVQQD EyhiZWRiMGIxNGQ0YTA3MDUxZmVmMTYyMThkY2QzYzllZjBkOWU3NDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhbtmxY1hTul7lRn7GIJAUurb0Z6 KJ6FICb1Rm3ZwVnXw3UTg2vFPzndQob7skirkvFFtjptEwLvyAxkmBL96Jokda0c xiwhkcKK7i9RW1wZVyZtiX4CMW+MUcuZE3il4O1Qu1JjwHtXw0k17XhbROdEWHUG RDWxXuJyC/gqMB8Bt7PjQFWXebrRoWgz+3XQuE6Kt3q4wd8C2kLRO3mM5TpHsViO yZRfhpijSc0ZFu5j0NIXH3ZcWwwogm+zYTUG9lV28m9VXHQqfRPHTYxIrc4cpIJX xBnf5q/VpvXb2p/FfPnWmncTmPr0kM7FhmNLcSCNmO9KYjuhqliHshscmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL7bCxTUoHBR/vFiGNzTye8NnnQEMB8GA1UdIwQY MBaAFHttKEBARCOe9YJC8hDgsWZn60DQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTIwb1FFQkVJNTcxZ2tMeUVPQ3habWZyUU5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9jMzI4OWYtNzZlOS00ODkzLTljZDEt YTY1ZmJkODMwMzU4LzEvZTIwb1FFQkVJNTcxZ2tMeUVPQ3habWZyUU5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9jMzI4OWYtNzZlOS00ODkzLTljZDEtYTY1ZmJkODMwMzU4 LzEvZTIwb1FFQkVJNTcxZ2tMeUVPQ3habWZyUU5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiSmIT6LR /7JFjDMNtFMNbuKUl2/gzjoNkzFNdn9sKtYjd+6NUMWHvgELh5oTdK35C1Y/Z5+G bCUi1OysiGIEJ3sxew5enSELcbJIxjQGUXq9H7uWJH2hWCIa0Jt6DCbSRoyi+NNz Y8zY6krBY4fQFVdFPaeV0J8hBjnKzke/ZYjvwQ6r6Zf/71Uv4YlrJI0JX54V6spl iNeZJHmbSK1E/SB0isw3h59Ngb+a/7wWbfyWXCRbqn0oYKOBqnqPC99wKA54XZ+e 6TCg/o2my97e1yjSdnaWXIX9s9uxkD2WpYr/dyKiNhkRe+KchnskMkahLU9rpAQh 1Wlx/5YNIZwP/g== -----END CERTIFICATE-----Generated at Sat Dec 6 07:59:57 2025 by rpki-client