This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.mft File: ehKIruzRFJyedF-YZT5okK-iU6s.mft (raw, json) Hash identifier: 4VLeNlBh71gNpIXcDUj8VJpcTNVgVI/ejLk9HTaY6Zc= Subject key identifier: C3:53:55:13:88:0B:AC:0A:D0:71:72:B9:1F:68:30:68:EB:43:23:AC Authority key identifier: 7A:12:88:AE:EC:D1:14:9C:9E:74:5F:98:65:3E:68:90:AF:A2:53:AB Certificate issuer: /CN=7a1288aeecd1149c9e745f98653e6890afa253ab Certificate serial: 019AF5AE916CDD955A760C5E8345BA4C944A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehKIruzRFJyedF-YZT5okK-iU6s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.mft Manifest number: 0251 Signing time: Sat 06 Dec 2025 22:00:49 +0000 Manifest this update: Sat 06 Dec 2025 22:00:49 +0000 Manifest next update: Sun 07 Dec 2025 22:00:49 +0000 Files and hashes: 1: ehKIruzRFJyedF-YZT5okK-iU6s.crl (hash: maOkPww4vLjw37aB8pAHdBeqULyjNdwShZNMZJphbv8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.mft rsync://rpki.ripe.net/repository/DEFAULT/ehKIruzRFJyedF-YZT5okK-iU6s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:91:6c:dd:95:5a:76:0c:5e:83:45:ba:4c:94:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a1288aeecd1149c9e745f98653e6890afa253ab Validity Not Before: Dec 6 22:00:49 2025 GMT Not After : Dec 7 22:00:49 2025 GMT Subject: CN=c3535513880bac0ad07172b91f683068eb4323ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:48:75:a7:4a:15:e0:56:34:df:42:44:1f:b0: 67:bf:ab:6f:c6:9b:71:6c:d7:cf:b3:8f:70:79:2a: 23:09:69:73:17:ef:4a:ea:3c:04:4d:65:31:99:50: d0:56:cf:70:81:94:b9:52:0c:f6:d6:79:ba:53:fa: d7:06:f3:b0:b6:71:50:3b:a2:6c:b6:4c:18:e9:bf: 07:00:22:93:95:33:19:24:64:b2:95:f3:8a:6a:1f: 9d:7e:c4:0c:99:17:76:76:25:a2:db:02:0e:d3:be: ef:f9:28:cd:2e:da:5a:13:e3:64:d7:cd:ea:fe:02: 75:ca:07:cc:81:bc:3c:98:53:80:ee:7e:f3:43:0c: d8:bf:4a:1a:1d:41:94:f3:06:7b:01:4e:4b:50:9c: cf:76:2a:6f:95:96:a6:6a:2a:e9:66:87:38:32:a1: fe:b3:6e:05:e1:21:f7:90:92:e2:58:56:94:fc:a8: 19:61:84:27:70:81:92:a6:97:2b:c0:68:07:17:58: 42:96:eb:cf:c1:1a:a8:ef:96:aa:43:f7:ae:a7:66: fd:65:8c:3a:8d:96:02:5c:dd:25:27:7c:19:f2:57: cc:bc:c8:b3:dc:2a:84:f4:69:a2:62:13:87:56:a1: 25:ea:ae:17:15:cb:57:fe:d0:a0:32:fb:a1:11:e7: 98:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:53:55:13:88:0B:AC:0A:D0:71:72:B9:1F:68:30:68:EB:43:23:AC X509v3 Authority Key Identifier: keyid:7A:12:88:AE:EC:D1:14:9C:9E:74:5F:98:65:3E:68:90:AF:A2:53:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehKIruzRFJyedF-YZT5okK-iU6s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:6f:19:ad:c5:8f:9d:cb:fb:15:5e:31:ac:7f:fa:d7:26:be: f9:d5:2d:90:ac:19:c6:c6:c2:98:fe:d4:85:3b:87:9c:a4:9d: 3a:17:3d:12:4c:54:95:94:a7:61:d7:da:4d:fa:06:25:fd:db: e6:a5:c6:f4:5b:f4:e9:e2:20:49:a4:a9:83:b4:6c:5d:3f:49: 7b:bf:1c:ad:8c:c6:de:0a:6b:e4:7e:e7:13:32:c9:3e:77:9c: 4b:48:18:56:7a:35:b8:c5:bb:ff:5e:6c:8a:8f:4e:70:62:ff: ca:6b:b4:52:e7:ce:e9:b2:cd:93:ee:12:87:7a:20:0b:c8:21: a1:c8:64:71:8f:7b:86:82:0a:e0:12:c2:27:8a:9e:c2:81:90: 8c:c9:da:38:bb:67:b2:bc:40:40:f4:e4:a5:84:a0:4e:bd:d4: e3:16:b9:2f:92:e1:d4:88:46:17:64:9c:cb:a5:da:15:dd:41: 0f:5c:fc:98:cd:46:9c:ed:c9:11:63:69:57:6a:c2:ee:41:e6: 8e:02:04:eb:f0:75:ac:9b:25:43:24:86:b1:84:08:00:7d:8e: 71:0c:7d:20:87:f7:da:03:ef:d3:27:7c:c3:0a:4d:93:1c:39: 77:7a:3b:af:8a:e6:5d:89:5e:7b:43:7e:e2:7d:4a:64:22:11: bc:b0:06:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rpFs3ZVadgxeg0W6TJRKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMTI4OGFlZWNkMTE0OWM5ZTc0NWY5ODY1M2U2ODkwYWZh MjUzYWIwHhcNMjUxMjA2MjIwMDQ5WhcNMjUxMjA3MjIwMDQ5WjAzMTEwLwYDVQQD EyhjMzUzNTUxMzg4MGJhYzBhZDA3MTcyYjkxZjY4MzA2OGViNDMyM2FjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0h1p0oV4FY030JEH7Bnv6tvxptx bNfPs49weSojCWlzF+9K6jwETWUxmVDQVs9wgZS5Ugz21nm6U/rXBvOwtnFQO6Js tkwY6b8HACKTlTMZJGSylfOKah+dfsQMmRd2diWi2wIO077v+SjNLtpaE+Nk183q /gJ1ygfMgbw8mFOA7n7zQwzYv0oaHUGU8wZ7AU5LUJzPdipvlZamairpZoc4MqH+ s24F4SH3kJLiWFaU/KgZYYQncIGSppcrwGgHF1hCluvPwRqo75aqQ/eup2b9ZYw6 jZYCXN0lJ3wZ8lfMvMiz3CqE9GmiYhOHVqEl6q4XFctX/tCgMvuhEeeYUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMNTVROIC6wK0HFyuR9oMGjrQyOsMB8GA1UdIwQY MBaAFHoSiK7s0RScnnRfmGU+aJCvolOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWhLSXJ1elJGSnllZEYtWVpUNW9rSy1pVTZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9iNGYzZDAtYjFkMS00NmJlLWExOTAt OGUyMDI3Njk1ZDA3LzEvZWhLSXJ1elJGSnllZEYtWVpUNW9rSy1pVTZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9iNGYzZDAtYjFkMS00NmJlLWExOTAtOGUyMDI3Njk1ZDA3 LzEvZWhLSXJ1elJGSnllZEYtWVpUNW9rSy1pVTZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABW8ZrcWP ncv7FV4xrH/61ya++dUtkKwZxsbCmP7UhTuHnKSdOhc9EkxUlZSnYdfaTfoGJf3b 5qXG9Fv06eIgSaSpg7RsXT9Je78crYzG3gpr5H7nEzLJPnecS0gYVno1uMW7/15s io9OcGL/ymu0UufO6bLNk+4Sh3ogC8ghochkcY97hoIK4BLCJ4qewoGQjMnaOLtn srxAQPTkpYSgTr3U4xa5L5Lh1IhGF2Scy6XaFd1BD1z8mM1GnO3JEWNpV2rC7kHm jgIE6/B1rJslQySGsYQIAH2OcQx9IIf32gPv0yd8wwpNkxw5d3o7r4rmXYlee0N+ 4n1KZCIRvLAGpQ== -----END CERTIFICATE-----Generated at Sun Dec 7 03:15:05 2025 by rpki-client