This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft File: ES1lq7x-8AUScohER5KrhvsVwu4.mft (raw, json) Hash identifier: ui4oseFjsANjnfynFTbSb/slcXt4DmiBxQOg+KvxHdU= Subject key identifier: 6C:4E:6C:25:39:95:28:CC:53:BE:D7:EF:75:0F:4C:C4:F5:39:4C:04 Authority key identifier: 11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE Certificate issuer: /CN=112d65abbc7ef005127288444792ab86fb15c2ee Certificate serial: 019AF57851530C29B9EF5C6D2A9875016998 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft Manifest number: 08E5 Signing time: Sat 06 Dec 2025 21:01:34 +0000 Manifest this update: Sat 06 Dec 2025 21:01:34 +0000 Manifest next update: Sun 07 Dec 2025 21:01:34 +0000 Files and hashes: 1: ES1lq7x-8AUScohER5KrhvsVwu4.crl (hash: JrGp3kmZ9IF9LSCSfftxba94JQRHo4r8sXr9ra9RoUQ=) 2: pWMenEyK3oj7AZ6h81KI2eooBIo.roa (hash: 6KZd57Ad66QVQkNRU3497fAssJrDtYq8EPVr4qqDMKo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:78:51:53:0c:29:b9:ef:5c:6d:2a:98:75:01:69:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=112d65abbc7ef005127288444792ab86fb15c2ee Validity Not Before: Dec 6 21:01:34 2025 GMT Not After : Dec 7 21:01:34 2025 GMT Subject: CN=6c4e6c25399528cc53bed7ef750f4cc4f5394c04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cb:6f:44:d9:3a:c3:e8:94:ca:3a:4f:38:b0: 6f:45:89:88:21:81:ce:a3:95:35:13:f6:ef:d1:d3: 80:b5:88:0a:f0:bd:ce:6f:2d:8e:1e:fc:3a:bb:72: f9:fa:19:9b:39:0d:05:93:08:19:c8:31:e5:7c:6e: 09:9c:cf:36:93:fa:b2:9a:0f:20:06:08:37:a7:1f: 8f:85:2c:41:8e:74:5b:2f:66:b8:87:17:aa:79:90: 84:0a:cc:11:39:bd:5f:6c:b1:7d:af:7f:bc:da:16: 42:80:b9:38:35:dd:6b:b5:20:c5:eb:3e:05:15:22: 33:34:13:6c:d9:68:4b:94:04:d7:21:e4:be:57:f0: fd:3d:fd:72:aa:05:f3:3d:57:d7:17:0f:dd:2e:5b: 46:2e:a3:19:00:f1:c0:45:a2:78:7f:32:f9:6b:27: 23:3f:41:c2:47:d4:38:7d:aa:59:e3:5a:c2:69:53: 80:1e:15:83:45:89:55:2a:1e:7d:f3:5e:43:08:6f: 4e:63:5e:57:04:80:4a:5f:74:90:56:aa:04:a3:32: 1f:da:37:02:4c:4c:f8:17:65:2a:fc:97:43:25:8e: 40:f1:4a:11:f1:6c:27:b6:0a:af:cc:3c:4f:f8:ae: d4:83:45:13:39:4e:74:9b:bb:b7:74:c5:1f:e0:ad: 44:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4E:6C:25:39:95:28:CC:53:BE:D7:EF:75:0F:4C:C4:F5:39:4C:04 X509v3 Authority Key Identifier: keyid:11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:13:ac:cc:c6:b7:41:86:61:9b:9c:ed:6b:aa:a5:b0:78:bd: 63:c1:ef:30:20:4d:ab:9e:65:9d:9d:83:87:2a:90:95:d4:83: 40:be:d2:cf:21:cd:5a:a1:9f:9d:b4:07:e3:a4:4f:51:76:59: 11:3b:4c:91:d1:b4:0f:e5:0d:e8:c1:e9:10:eb:fc:c5:d2:44: 88:f7:0e:c2:98:d0:38:7f:f1:b7:ea:0a:ef:8c:40:84:d9:66: 6f:f5:db:d0:db:6e:92:02:c2:f8:18:39:b1:7e:99:05:d7:42: 04:db:97:41:9b:f6:46:e9:25:fb:17:cd:16:84:5d:5f:66:da: 16:4d:69:7c:24:41:db:d4:5a:62:60:fb:68:4b:99:10:a6:22: 79:0b:89:fa:b3:6f:10:be:52:b9:41:64:0c:a9:23:c0:58:df: 38:44:03:79:ae:f2:53:e2:af:4e:86:7c:e9:bb:c1:67:fd:3f: e4:32:01:e5:6e:43:25:4b:a4:bf:ee:5c:93:f9:f0:c5:2c:85: 5c:a7:3d:47:0c:bf:25:a3:3f:06:e1:1f:31:f8:9a:ef:9d:74: 63:fc:c4:4f:f4:50:04:86:92:b4:f5:58:19:ba:36:ce:f1:55: 93:0b:92:f5:be:26:14:df:41:1f:21:8c:38:b1:5b:ad:a3:24: e2:3f:d1:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1eFFTDCm571xtKph1AWmYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMmQ2NWFiYmM3ZWYwMDUxMjcyODg0NDQ3OTJhYjg2ZmIx NWMyZWUwHhcNMjUxMjA2MjEwMTM0WhcNMjUxMjA3MjEwMTM0WjAzMTEwLwYDVQQD Eyg2YzRlNmMyNTM5OTUyOGNjNTNiZWQ3ZWY3NTBmNGNjNGY1Mzk0YzA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0stvRNk6w+iUyjpPOLBvRYmIIYHO o5U1E/bv0dOAtYgK8L3Oby2OHvw6u3L5+hmbOQ0FkwgZyDHlfG4JnM82k/qymg8g Bgg3px+PhSxBjnRbL2a4hxeqeZCECswROb1fbLF9r3+82hZCgLk4Nd1rtSDF6z4F FSIzNBNs2WhLlATXIeS+V/D9Pf1yqgXzPVfXFw/dLltGLqMZAPHARaJ4fzL5aycj P0HCR9Q4fapZ41rCaVOAHhWDRYlVKh59815DCG9OY15XBIBKX3SQVqoEozIf2jcC TEz4F2Uq/JdDJY5A8UoR8WwntgqvzDxP+K7Ug0UTOU50m7u3dMUf4K1EtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGxObCU5lSjMU77X73UPTMT1OUwEMB8GA1UdIwQY MBaAFBEtZau8fvAFEnKIREeSq4b7FcLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVMxbHE3eC04QVVTY29oRVI1S3JodnNWd3U0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9hMDM3YjEtMTMzYS00NjM5LThjN2Yt NjM2ODU3ZWUxNzkyLzEvRVMxbHE3eC04QVVTY29oRVI1S3JodnNWd3U0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9hMDM3YjEtMTMzYS00NjM5LThjN2YtNjM2ODU3ZWUxNzky LzEvRVMxbHE3eC04QVVTY29oRVI1S3JodnNWd3U0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPBOszMa3 QYZhm5zta6qlsHi9Y8HvMCBNq55lnZ2DhyqQldSDQL7SzyHNWqGfnbQH46RPUXZZ ETtMkdG0D+UN6MHpEOv8xdJEiPcOwpjQOH/xt+oK74xAhNlmb/Xb0NtukgLC+Bg5 sX6ZBddCBNuXQZv2Rukl+xfNFoRdX2baFk1pfCRB29RaYmD7aEuZEKYieQuJ+rNv EL5SuUFkDKkjwFjfOEQDea7yU+KvToZ86bvBZ/0/5DIB5W5DJUukv+5ck/nwxSyF XKc9Rwy/JaM/BuEfMfia7510Y/zET/RQBIaStPVYGbo2zvFVkwuS9b4mFN9BHyGM OLFbraMk4j/R9w== -----END CERTIFICATE-----Generated at Sun Dec 7 01:33:41 2025 by rpki-client