This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft File: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft (raw, json) Hash identifier: qZYW2rYBP/4k6sTlH9tRnITvV5K+UDu1BnJrXi02yUg= Subject key identifier: 62:E3:BC:B5:2D:A8:06:82:DF:EB:97:C6:4A:57:76:10:4B:C8:3D:88 Authority key identifier: 13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF Certificate issuer: /CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf Certificate serial: 019AF1D25BF7F4EF5D180998C908D0F141AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft Manifest number: 175B Signing time: Sat 06 Dec 2025 04:01:26 +0000 Manifest this update: Sat 06 Dec 2025 04:01:26 +0000 Manifest next update: Sun 07 Dec 2025 04:01:26 +0000 Files and hashes: 1: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl (hash: C9MRsev3C4pgbnNfrhrvEOBtLG5vBUC2mK66d36tutE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:5b:f7:f4:ef:5d:18:09:98:c9:08:d0:f1:41:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf Validity Not Before: Dec 6 04:01:26 2025 GMT Not After : Dec 7 04:01:26 2025 GMT Subject: CN=62e3bcb52da80682dfeb97c64a5776104bc83d88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:42:e2:13:6c:f0:78:43:73:00:2d:83:00:83: fb:0c:85:fd:20:ea:0e:4d:1f:42:b2:52:dc:f5:d3: 5c:69:c3:ec:9a:c1:ee:1f:2c:6c:41:d0:5c:3a:3a: 12:af:22:a2:69:68:01:6e:28:e2:79:45:8d:df:cc: da:3d:f5:2b:81:25:19:dd:5d:ea:a3:d4:30:7f:de: 91:d7:b3:df:45:2c:5d:fd:d8:a2:41:b7:d0:6d:b6: 42:bc:a3:4f:87:9e:dd:25:bd:92:18:42:d3:30:29: 55:5e:0c:15:86:b3:ea:c8:09:7c:b6:99:c1:82:b3: d9:72:29:41:f1:9d:6c:86:25:e7:08:75:6d:75:dc: 8d:22:b9:76:19:a5:4e:26:0c:75:64:30:ea:ae:99: db:a7:b5:0a:0d:ca:e0:3d:27:2d:f5:5f:19:cc:1a: 63:22:c3:27:b6:88:24:6d:b5:fb:8a:b8:5c:55:d7: ac:3c:ea:bc:2d:36:62:05:f7:9f:0d:5c:b3:0e:42: 08:bd:33:88:f7:20:8e:19:55:69:32:09:ba:00:7b: 3f:22:27:42:02:1f:e8:a3:64:12:9b:f7:3e:69:0a: d2:b5:ff:17:51:57:45:39:0c:74:35:c9:7b:eb:76: d5:a9:ae:96:7a:41:e2:19:65:b1:d0:30:f3:dc:60: a5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E3:BC:B5:2D:A8:06:82:DF:EB:97:C6:4A:57:76:10:4B:C8:3D:88 X509v3 Authority Key Identifier: keyid:13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:fd:4c:7d:91:b1:21:56:5e:8d:72:7a:d7:5f:c3:a0:84:6b: 73:9b:2d:84:90:bf:5b:ca:fc:b7:5d:57:67:10:33:bd:4e:41: 91:52:ca:2b:22:bd:15:c7:33:66:69:ef:af:89:e1:a5:61:2c: b6:eb:4e:47:f6:aa:70:06:d9:08:93:21:e5:5f:95:ca:ac:ac: 3e:ec:ec:03:db:5a:f9:84:64:d7:92:da:52:5d:69:3f:8b:11: b0:aa:8f:67:2c:6a:95:4e:18:e1:68:59:56:f9:23:b2:a3:22: bc:ac:79:47:a4:01:62:ee:3d:05:c7:7c:6f:32:56:0c:b0:fa: 9d:0c:bb:a3:a9:bc:aa:b8:5e:c3:23:dd:07:a7:38:e5:e2:fe: 5e:ff:f3:f6:f5:c2:96:df:34:a1:9e:bf:b6:da:99:3a:fd:9b: 97:77:f5:e1:0f:89:8e:e3:2c:03:60:06:b9:78:88:7d:83:da: d4:b8:25:de:82:a0:f1:e1:db:41:29:6c:61:ad:90:c6:5b:4b: b5:74:fc:0e:42:b3:50:3a:ce:84:91:5d:95:c7:4d:9c:ed:7a: 24:ee:97:b2:d7:2c:43:1e:0e:86:c2:d3:ba:db:fe:a0:62:33: 08:fa:39:61:7c:5f:0b:8b:91:90:d7:f6:b8:5b:be:15:e3:d4: dd:ee:d7:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0lv39O9dGAmYyQjQ8UGuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzMzIzZWFjZDc3ZTVjYTU5NTJkZDY3YzI4ZjRmZDkwZDMy YWZhZGYwHhcNMjUxMjA2MDQwMTI2WhcNMjUxMjA3MDQwMTI2WjAzMTEwLwYDVQQD Eyg2MmUzYmNiNTJkYTgwNjgyZGZlYjk3YzY0YTU3NzYxMDRiYzgzZDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnULiE2zweENzAC2DAIP7DIX9IOoO TR9CslLc9dNcacPsmsHuHyxsQdBcOjoSryKiaWgBbijieUWN38zaPfUrgSUZ3V3q o9Qwf96R17PfRSxd/diiQbfQbbZCvKNPh57dJb2SGELTMClVXgwVhrPqyAl8tpnB grPZcilB8Z1shiXnCHVtddyNIrl2GaVOJgx1ZDDqrpnbp7UKDcrgPSct9V8ZzBpj IsMntogkbbX7irhcVdesPOq8LTZiBfefDVyzDkIIvTOI9yCOGVVpMgm6AHs/IidC Ah/oo2QSm/c+aQrStf8XUVdFOQx0Ncl763bVqa6WekHiGWWx0DDz3GClcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGLjvLUtqAaC3+uXxkpXdhBLyD2IMB8GA1UdIwQY MBaAFBMyPqzXflyllS3WfCj0/ZDTKvrfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRXpJLXJOZC1YS1dWTGRaOEtQVDlrTk1xLXQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9jYmVhYzgtZWJlZC00NWZiLWI3MjQt NzBiMWM2OWI0MjMyLzEvRXpJLXJOZC1YS1dWTGRaOEtQVDlrTk1xLXQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9jYmVhYzgtZWJlZC00NWZiLWI3MjQtNzBiMWM2OWI0MjMy LzEvRXpJLXJOZC1YS1dWTGRaOEtQVDlrTk1xLXQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQv1MfZGx IVZejXJ611/DoIRrc5sthJC/W8r8t11XZxAzvU5BkVLKKyK9FcczZmnvr4nhpWEs tutOR/aqcAbZCJMh5V+VyqysPuzsA9ta+YRk15LaUl1pP4sRsKqPZyxqlU4Y4WhZ VvkjsqMivKx5R6QBYu49Bcd8bzJWDLD6nQy7o6m8qrhewyPdB6c45eL+Xv/z9vXC lt80oZ6/ttqZOv2bl3f14Q+JjuMsA2AGuXiIfYPa1Lgl3oKg8eHbQSlsYa2QxltL tXT8DkKzUDrOhJFdlcdNnO16JO6XstcsQx4OhsLTutv+oGIzCPo5YXxfC4uRkNf2 uFu+FePU3e7XNw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:34:39 2025 by rpki-client