This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json) Hash identifier: 9D7xIvzuIY58hZRlSgzqjM5nVjksNLjFglM3CDVyhUk= Subject key identifier: B9:B3:A3:0C:32:00:31:6C:07:8F:44:B0:44:0D:31:F8:D6:4E:D0:46 Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a Certificate serial: 019B6CC6964308774B7C243FB79DCE570A04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft Manifest number: 14E9 Signing time: Tue 30 Dec 2025 01:01:52 +0000 Manifest this update: Tue 30 Dec 2025 01:01:52 +0000 Manifest next update: Wed 31 Dec 2025 01:01:52 +0000 Files and hashes: 1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: 2iN7Lj5UuNhdn514p/dtcWYZxlLTz9CgSHW4znLetD0=) 2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:c6:96:43:08:77:4b:7c:24:3f:b7:9d:ce:57:0a:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a Validity Not Before: Dec 30 01:01:52 2025 GMT Not After : Dec 31 01:01:52 2025 GMT Subject: CN=b9b3a30c3200316c078f44b0440d31f8d64ed046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:fd:7c:e6:c9:fe:87:8d:26:cf:0a:16:ea:bb: 53:79:9c:4c:db:c0:30:76:1e:15:b5:16:8e:67:c4: 45:0d:ca:22:71:38:aa:3d:9a:6f:29:58:77:32:32: 9c:52:39:dd:25:c5:99:a0:f0:37:24:57:c5:0b:30: 2f:26:7a:af:33:89:3e:32:3f:67:97:1e:5a:b6:7e: 7e:da:85:16:c4:05:35:6f:01:0a:c5:1f:3e:13:89: 72:e8:a0:86:6a:43:7f:48:3a:57:1b:dc:90:f0:fb: e1:10:12:63:bb:f4:0d:4e:c4:52:5e:f8:39:5b:8a: ea:76:8e:67:36:6d:95:7d:72:40:1b:46:15:4e:35: d7:92:4d:ac:6f:fb:ed:ad:f5:34:fb:9d:70:54:ea: 48:d4:66:7a:24:40:bb:05:e4:38:70:95:1c:86:79: 0d:60:33:6d:f7:45:d3:e0:af:78:fa:ca:da:f0:53: 90:cf:e5:bd:0f:65:9f:44:30:3e:4f:2c:76:64:e1: 93:46:54:13:2c:6e:97:ea:54:d4:9b:ad:b0:43:dd: a3:66:e5:74:b5:48:ca:41:c9:93:a4:a0:9f:3b:f8: 30:f4:0f:87:f0:e2:dd:4d:f2:d3:8a:cb:13:bd:6a: 23:0f:26:fc:e6:d0:f9:45:e7:4d:08:c8:3b:09:55: e9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B3:A3:0C:32:00:31:6C:07:8F:44:B0:44:0D:31:F8:D6:4E:D0:46 X509v3 Authority Key Identifier: keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:42:5f:f5:c8:2f:d7:40:ea:89:6e:ea:a2:4d:97:b0:a7:26: ad:a3:13:9c:3a:9e:26:7c:16:50:ea:83:bc:96:55:22:e6:97: df:10:df:a6:b3:77:0e:d8:da:e9:93:92:c3:2c:5c:b0:b3:52: 0e:51:1b:aa:42:19:78:e1:24:fd:79:16:c8:d4:0d:b0:6b:f8: 43:4d:5b:ac:21:75:60:2b:bb:6a:6f:30:09:be:97:ef:2a:a1: 2f:be:8d:cb:e8:43:9c:f9:cd:b5:9f:b0:9c:a3:c1:00:a2:bc: e1:59:3c:cc:70:a3:42:82:83:cf:8b:10:63:32:77:18:6b:ca: 9a:44:3a:95:c8:22:c8:3d:77:a1:62:da:4b:ef:61:4e:2a:bb: b3:11:1f:d6:30:3c:9e:f6:dc:00:38:1d:e0:92:fd:8f:aa:a5: be:86:17:93:20:45:c0:9b:b2:22:c1:e5:b5:46:dc:e7:01:f4: 20:16:1e:36:e8:ac:74:34:a7:a2:6b:2a:da:8c:a1:b8:7b:47: 02:dc:00:81:8c:af:11:c9:44:12:40:c7:3a:6c:d6:09:31:6d: 0c:35:1a:c3:69:dc:c8:d8:46:e5:6a:38:41:89:80:95:9f:b0: ab:dc:40:77:3a:f7:c5:f7:21:ab:f2:b5:5f:69:70:66:dc:ca: 44:97:65:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsxpZDCHdLfCQ/t53OVwoEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyYTEwZGU2ZmZhZTU5MDQyNzI0NGEwMzM0M2RiNjZhYzU2 NDI3NWEwHhcNMjUxMjMwMDEwMTUyWhcNMjUxMjMxMDEwMTUyWjAzMTEwLwYDVQQD EyhiOWIzYTMwYzMyMDAzMTZjMDc4ZjQ0YjA0NDBkMzFmOGQ2NGVkMDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzf185sn+h40mzwoW6rtTeZxM28Aw dh4VtRaOZ8RFDcoicTiqPZpvKVh3MjKcUjndJcWZoPA3JFfFCzAvJnqvM4k+Mj9n lx5atn5+2oUWxAU1bwEKxR8+E4ly6KCGakN/SDpXG9yQ8PvhEBJju/QNTsRSXvg5 W4rqdo5nNm2VfXJAG0YVTjXXkk2sb/vtrfU0+51wVOpI1GZ6JEC7BeQ4cJUchnkN YDNt90XT4K94+sra8FOQz+W9D2WfRDA+Tyx2ZOGTRlQTLG6X6lTUm62wQ92jZuV0 tUjKQcmTpKCfO/gw9A+H8OLdTfLTissTvWojDyb85tD5RedNCMg7CVXpxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLmzowwyADFsB49EsEQNMfjWTtBGMB8GA1UdIwQY MBaAFOKhDeb/rlkEJyRKAzQ9tmrFZCdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTct NTc1NTQwNTg2MjBiLzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTctNTc1NTQwNTg2MjBi LzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvEJf9cgv 10DqiW7qok2XsKcmraMTnDqeJnwWUOqDvJZVIuaX3xDfprN3Dtja6ZOSwyxcsLNS DlEbqkIZeOEk/XkWyNQNsGv4Q01brCF1YCu7am8wCb6X7yqhL76Ny+hDnPnNtZ+w nKPBAKK84Vk8zHCjQoKDz4sQYzJ3GGvKmkQ6lcgiyD13oWLaS+9hTiq7sxEf1jA8 nvbcADgd4JL9j6qlvoYXkyBFwJuyIsHltUbc5wH0IBYeNuisdDSnomsq2oyhuHtH AtwAgYyvEclEEkDHOmzWCTFtDDUaw2ncyNhG5Wo4QYmAlZ+wq9xAdzr3xfchq/K1 X2lwZtzKRJdl6w== -----END CERTIFICATE-----Generated at Tue Dec 30 10:35:05 2025 by rpki-client