This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft File: egadopx7Yd3rzAUk_QjlTf80wWg.mft (raw, json) Hash identifier: lRPa5AX2wdo7tP9VDv/rag4VxIX/OEAm59SUUWnIF7c= Subject key identifier: 6A:B1:A4:35:CA:A6:5B:6E:7A:92:87:46:84:AC:0A:AF:2C:51:19:BC Authority key identifier: 7A:06:9D:A2:9C:7B:61:DD:EB:CC:05:24:FD:08:E5:4D:FF:34:C1:68 Certificate issuer: /CN=7a069da29c7b61ddebcc0524fd08e54dff34c168 Certificate serial: 019AF12EC1EDA957908F65C4CAE0B7F63A4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egadopx7Yd3rzAUk_QjlTf80wWg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:02:44 +0000 Manifest this update: Sat 06 Dec 2025 01:02:44 +0000 Manifest next update: Sun 07 Dec 2025 01:02:44 +0000 Files and hashes: 1: egadopx7Yd3rzAUk_QjlTf80wWg.crl (hash: 3l4cHoGtFxn433nkuRqmKkGS89ito0/NIQzgDnt3Vj4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft rsync://rpki.ripe.net/repository/DEFAULT/egadopx7Yd3rzAUk_QjlTf80wWg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c1:ed:a9:57:90:8f:65:c4:ca:e0:b7:f6:3a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a069da29c7b61ddebcc0524fd08e54dff34c168 Validity Not Before: Dec 6 01:02:44 2025 GMT Not After : Dec 7 01:02:44 2025 GMT Subject: CN=6ab1a435caa65b6e7a92874684ac0aaf2c5119bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:92:ac:bf:40:76:0e:7b:2f:f5:bc:dc:e5:6c: d7:5b:09:de:7b:4e:d8:70:3b:29:f8:3c:74:c6:02: 08:e4:3a:88:c5:34:f9:50:e9:35:e9:4a:49:03:9b: 58:2a:6a:67:ed:ea:13:0f:fc:a8:6f:fc:21:8d:df: c2:d3:b1:3d:cf:86:44:b5:3f:4d:1a:04:d0:59:7a: 84:6d:71:b3:23:1f:22:b5:61:3e:9a:81:78:db:0d: 5d:0c:40:bd:34:2d:b6:a2:88:cb:53:b1:47:0d:b4: 63:b6:87:90:e9:b3:f7:51:f8:3a:00:1b:a9:58:9b: b1:9c:f3:59:a6:4a:9a:e6:5c:ec:56:05:18:c1:98: dd:b6:04:de:c5:dd:42:67:8f:9b:5d:fc:95:b1:e2: 38:5e:13:fc:4a:f0:fa:e1:48:e8:40:31:65:6a:91: 90:53:f1:07:d5:68:d1:77:13:9b:e9:74:89:91:42: f1:dd:66:9d:f1:38:15:b2:e1:5d:d5:79:1b:3d:48: 9b:f3:f1:67:12:e6:83:44:8e:97:bb:cd:27:0b:a6: 4c:4a:3c:16:5b:70:98:94:25:c2:45:ed:72:84:11: cd:a2:29:58:58:ca:aa:56:e6:f7:f2:e3:b4:16:bd: 88:b5:43:72:59:70:30:51:be:f6:90:4f:9d:22:0e: 1f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B1:A4:35:CA:A6:5B:6E:7A:92:87:46:84:AC:0A:AF:2C:51:19:BC X509v3 Authority Key Identifier: keyid:7A:06:9D:A2:9C:7B:61:DD:EB:CC:05:24:FD:08:E5:4D:FF:34:C1:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egadopx7Yd3rzAUk_QjlTf80wWg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:38:1b:05:20:82:97:c4:c3:a0:25:ea:26:0d:6d:db:9a:7a: 31:33:52:07:d7:14:07:a7:75:06:66:c2:9e:79:f0:85:f8:66: 33:68:ac:44:6c:21:06:41:6e:fb:5a:e6:a2:f6:43:dd:1b:81: b0:55:04:0b:20:b8:9e:2e:cb:cc:8a:01:39:1f:ec:01:0b:24: 6c:81:9a:d5:87:1e:d3:05:66:d2:7c:f1:67:8f:ad:36:af:5b: be:1d:ff:d7:8f:68:10:eb:63:b7:3c:d6:ba:de:04:07:e1:7c: 32:0f:a2:18:75:bf:94:59:50:4f:85:36:fa:95:fd:34:40:1a: da:6c:1e:77:4c:6b:87:d3:81:aa:ce:bb:dd:9d:a3:51:60:a6: 33:97:60:5f:ea:6c:23:c8:b3:fa:d2:6d:b4:af:e6:58:fe:e2: 3a:16:0c:28:65:33:56:74:d5:35:61:3f:46:4f:fa:9d:2f:b8: 28:46:aa:78:fe:54:81:df:ca:18:f9:3f:0d:af:4f:6b:3a:36: a1:8a:ff:2b:60:70:07:1a:7a:5b:03:ef:8d:ba:31:52:0c:7b: 7d:9f:76:9e:39:19:34:61:03:6a:04:c2:10:01:97:23:62:77: 25:25:02:b0:cf:95:e9:4e:e8:ad:15:66:36:71:a2:84:fd:ea: 4a:b6:7a:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsHtqVeQj2XEyuC39jpKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMDY5ZGEyOWM3YjYxZGRlYmNjMDUyNGZkMDhlNTRkZmYz NGMxNjgwHhcNMjUxMjA2MDEwMjQ0WhcNMjUxMjA3MDEwMjQ0WjAzMTEwLwYDVQQD Eyg2YWIxYTQzNWNhYTY1YjZlN2E5Mjg3NDY4NGFjMGFhZjJjNTExOWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZKsv0B2Dnsv9bzc5WzXWwnee07Y cDsp+Dx0xgII5DqIxTT5UOk16UpJA5tYKmpn7eoTD/yob/whjd/C07E9z4ZEtT9N GgTQWXqEbXGzIx8itWE+moF42w1dDEC9NC22oojLU7FHDbRjtoeQ6bP3Ufg6ABup WJuxnPNZpkqa5lzsVgUYwZjdtgTexd1CZ4+bXfyVseI4XhP8SvD64UjoQDFlapGQ U/EH1WjRdxOb6XSJkULx3Wad8TgVsuFd1XkbPUib8/FnEuaDRI6Xu80nC6ZMSjwW W3CYlCXCRe1yhBHNoilYWMqqVub38uO0Fr2ItUNyWXAwUb72kE+dIg4fIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGqxpDXKpltuepKHRoSsCq8sURm8MB8GA1UdIwQY MBaAFHoGnaKce2Hd68wFJP0I5U3/NMFoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWdhZG9weDdZZDNyekFVa19RamxUZjgwd1dnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82MDM5ZTgtMmQ2OC00MzEwLWEzYWMt NGJmZWZlNDE2ZjI2LzEvZWdhZG9weDdZZDNyekFVa19RamxUZjgwd1dnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC82MDM5ZTgtMmQ2OC00MzEwLWEzYWMtNGJmZWZlNDE2ZjI2 LzEvZWdhZG9weDdZZDNyekFVa19RamxUZjgwd1dnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZDgbBSCC l8TDoCXqJg1t25p6MTNSB9cUB6d1BmbCnnnwhfhmM2isRGwhBkFu+1rmovZD3RuB sFUECyC4ni7LzIoBOR/sAQskbIGa1Yce0wVm0nzxZ4+tNq9bvh3/149oEOtjtzzW ut4EB+F8Mg+iGHW/lFlQT4U2+pX9NEAa2mwed0xrh9OBqs673Z2jUWCmM5dgX+ps I8iz+tJttK/mWP7iOhYMKGUzVnTVNWE/Rk/6nS+4KEaqeP5Ugd/KGPk/Da9Pazo2 oYr/K2BwBxp6WwPvjboxUgx7fZ92njkZNGEDagTCEAGXI2J3JSUCsM+V6U7orRVm NnGihP3qSrZ6Ng== -----END CERTIFICATE-----Generated at Sat Dec 6 11:06:11 2025 by rpki-client