This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft File: eYCaQAStlYNQpkbViavLPP3z7S4.mft (raw, json) Hash identifier: h17z+MLZmUJEMMTsVHs5lFzkwTp7zKLGHWtX9ghws14= Subject key identifier: 7F:8C:12:F2:71:9A:35:CD:54:52:62:B2:8C:F4:79:FA:E0:52:03:8E Authority key identifier: 79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E Certificate issuer: /CN=79809a4004ad958350a646d589abcb3cfdf3ed2e Certificate serial: 019AF20931D8D14C91392453E28EAB4B43C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft Manifest number: 08E4 Signing time: Sat 06 Dec 2025 05:01:20 +0000 Manifest this update: Sat 06 Dec 2025 05:01:20 +0000 Manifest next update: Sun 07 Dec 2025 05:01:20 +0000 Files and hashes: 1: eYCaQAStlYNQpkbViavLPP3z7S4.crl (hash: YlIPkeEikmASR/ikWEu99tWFTJFWEyDaNyG7VwwkpcA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:31:d8:d1:4c:91:39:24:53:e2:8e:ab:4b:43:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79809a4004ad958350a646d589abcb3cfdf3ed2e Validity Not Before: Dec 6 05:01:20 2025 GMT Not After : Dec 7 05:01:20 2025 GMT Subject: CN=7f8c12f2719a35cd545262b28cf479fae052038e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:eb:1b:4a:12:4b:29:f9:71:cb:c5:74:94:a5: 51:be:3c:35:94:92:ab:60:6d:56:a4:bb:a7:c9:ee: 48:6a:6e:fa:62:3f:56:22:9a:ea:ca:d3:f7:5a:48: 8f:39:6e:b1:bd:36:6e:a5:a9:5a:03:cf:e8:7f:dc: 5c:51:b2:f5:5c:6f:9a:14:ac:13:8a:e7:22:6c:a2: 20:b3:4a:45:a9:14:f5:eb:c8:91:90:b5:c8:b7:22: 1b:6b:bf:2f:12:94:5c:5f:68:ff:8e:d3:ae:b0:4f: 37:00:90:2c:c2:24:e3:2d:34:76:4b:aa:59:86:09: 1a:80:c3:08:5c:19:fe:07:06:76:42:87:0e:e8:7f: b9:f3:cd:a5:31:1f:ae:2e:37:74:96:7d:2e:cd:41: b1:29:cf:ce:c0:1c:40:d9:f1:0b:c4:38:69:88:06: 12:8c:80:cd:d3:17:dc:5a:75:a7:e8:67:4c:cd:4c: 1d:04:66:a0:b6:4f:df:69:92:36:96:e6:14:26:f9: 68:7d:d3:af:04:4b:f0:d6:e9:06:df:7f:2b:8f:a8: 5a:b8:fd:d8:6e:9d:37:fe:42:00:ed:87:99:e4:9c: 7b:16:31:12:f4:7b:54:14:8d:04:6a:eb:a6:a2:b1: 5a:46:7c:3f:58:90:6a:86:96:2f:8f:87:46:c3:75: e4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8C:12:F2:71:9A:35:CD:54:52:62:B2:8C:F4:79:FA:E0:52:03:8E X509v3 Authority Key Identifier: keyid:79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:61:70:7c:15:44:3b:1e:d8:68:33:e1:cf:49:70:4f:e4:b9: 39:3e:61:1e:dc:ee:5d:13:53:76:d0:5d:a5:e0:9e:3d:1f:73: b8:78:ed:b7:f1:39:e3:83:a2:71:df:f4:e8:a9:fa:a4:5f:b8: bc:87:7e:c0:76:bc:87:75:13:d7:85:2d:8e:d1:57:15:17:14: c4:29:0a:d2:48:74:70:be:f4:2a:39:82:38:ee:bd:16:c0:4c: 94:5d:37:f1:df:4a:f9:b6:1f:1a:19:cb:f8:30:13:2e:03:9a: a7:6e:5c:e4:49:52:9c:4b:c5:36:d8:a3:83:3c:f7:54:b6:98: db:8d:4e:61:ba:d9:a4:1a:d4:d8:7b:c8:7b:13:d4:05:19:e0: d2:63:cd:74:13:ee:2e:e6:22:1d:47:9c:72:2d:e9:70:c7:e1: 05:d4:4a:47:f0:a4:a3:08:93:d5:4a:df:20:2b:c5:e6:d5:f5: 90:8f:d9:03:88:d0:82:21:0d:d1:6a:f1:5b:7d:14:c0:05:dd: a2:6d:4d:ac:79:aa:6f:f4:59:66:9d:7d:68:4f:e6:37:15:6e: ba:4e:f0:5b:0a:ba:c9:3d:ec:4d:0c:c9:fd:80:06:ca:52:9c: 86:19:25:09:01:e8:92:84:3e:de:71:25:ee:c1:d9:de:0f:3b: 30:8b:b4:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCTHY0UyROSRT4o6rS0PGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5ODA5YTQwMDRhZDk1ODM1MGE2NDZkNTg5YWJjYjNjZmRm M2VkMmUwHhcNMjUxMjA2MDUwMTIwWhcNMjUxMjA3MDUwMTIwWjAzMTEwLwYDVQQD Eyg3ZjhjMTJmMjcxOWEzNWNkNTQ1MjYyYjI4Y2Y0NzlmYWUwNTIwMzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+sbShJLKflxy8V0lKVRvjw1lJKr YG1WpLunye5Iam76Yj9WIprqytP3WkiPOW6xvTZupalaA8/of9xcUbL1XG+aFKwT iucibKIgs0pFqRT168iRkLXItyIba78vEpRcX2j/jtOusE83AJAswiTjLTR2S6pZ hgkagMMIXBn+BwZ2QocO6H+5882lMR+uLjd0ln0uzUGxKc/OwBxA2fELxDhpiAYS jIDN0xfcWnWn6GdMzUwdBGagtk/faZI2luYUJvlofdOvBEvw1ukG338rj6hauP3Y bp03/kIA7YeZ5Jx7FjES9HtUFI0EauumorFaRnw/WJBqhpYvj4dGw3XkHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+MEvJxmjXNVFJisoz0efrgUgOOMB8GA1UdIwQY MBaAFHmAmkAErZWDUKZG1Ymryzz98+0uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81YjQ1ZjgtOWEzMC00MWQzLWI2MTEt ZDVhYTY0NzdlZmRlLzEvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC81YjQ1ZjgtOWEzMC00MWQzLWI2MTEtZDVhYTY0NzdlZmRl LzEvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlmFwfBVE Ox7YaDPhz0lwT+S5OT5hHtzuXRNTdtBdpeCePR9zuHjtt/E544Oicd/06Kn6pF+4 vId+wHa8h3UT14UtjtFXFRcUxCkK0kh0cL70KjmCOO69FsBMlF038d9K+bYfGhnL +DATLgOap25c5ElSnEvFNtijgzz3VLaY241OYbrZpBrU2HvIexPUBRng0mPNdBPu LuYiHUecci3pcMfhBdRKR/CkowiT1UrfICvF5tX1kI/ZA4jQgiEN0WrxW30UwAXd om1NrHmqb/RZZp19aE/mNxVuuk7wWwq6yT3sTQzJ/YAGylKchhklCQHokoQ+3nEl 7sHZ3g87MIu0BQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:01:06 2025 by rpki-client