This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json) Hash identifier: Gh5cQ3pU4sK2bZAv8/CyYoX29RyOrzkuSnsd4vCzPEc= Subject key identifier: CC:18:49:10:AF:3B:42:14:4D:F8:1B:19:3A:C0:D5:FE:29:AA:05:8D Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc Certificate serial: 019B6AD768968701FB313B6082CB878754D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft Manifest number: 179E Signing time: Mon 29 Dec 2025 16:01:00 +0000 Manifest this update: Mon 29 Dec 2025 16:01:00 +0000 Manifest next update: Tue 30 Dec 2025 16:01:00 +0000 Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: AH696GJQJF0xl+kI7wO54RO0bgHHHTCeaxd1xjD9X2M=) 2: uPPSCEPI-zYe8c4juKISlbYTsmI.roa (hash: ItdA3QN2L+hecSiCaaiQJ/fE6U5Bp5eLGhZQrMhDtVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 15:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6a:d7:68:96:87:01:fb:31:3b:60:82:cb:87:87:54:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc Validity Not Before: Dec 29 16:01:00 2025 GMT Not After : Dec 30 16:01:00 2025 GMT Subject: CN=cc184910af3b42144df81b193ac0d5fe29aa058d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8b:69:32:af:3f:05:72:97:95:87:66:93:80: 06:33:8d:4e:da:45:ea:c3:af:32:7c:03:fb:74:f8: 74:80:99:93:17:7d:ac:99:97:e7:26:5f:32:1c:a4: 26:e0:e8:ae:1d:7e:1f:12:40:25:bd:6e:4d:b3:e9: b8:2f:26:ca:fc:f5:94:71:4b:4d:1f:7d:6d:63:e1: d2:4d:e4:a7:fb:47:92:99:62:45:1d:ca:f7:eb:f0: 27:34:03:67:66:31:10:fb:66:51:96:34:f6:b3:2f: 24:4b:a8:ea:70:7f:ce:07:9c:c0:40:f4:9a:39:9d: 82:61:39:99:83:aa:a7:4f:01:48:64:bf:91:d0:c3: 6f:65:a8:3c:2c:fc:39:0a:1f:93:56:b5:9e:2e:71: df:79:06:9d:07:15:b9:96:f8:05:76:84:e1:7d:74: e5:25:4b:65:6c:37:14:8d:6d:14:67:50:e8:b5:aa: f2:6f:01:3d:3a:23:2d:93:6b:05:09:69:5f:d0:f6: 73:de:5b:97:51:05:3c:ff:3a:83:a4:b8:d5:e3:b9: be:4e:74:15:d8:65:0b:31:73:15:b3:38:84:5f:a7: 42:ab:17:a3:f1:1c:5b:e8:5c:a0:c4:e1:80:c9:70: 87:1d:d4:66:dd:be:7b:ab:cb:53:6e:11:10:52:78: 85:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:18:49:10:AF:3B:42:14:4D:F8:1B:19:3A:C0:D5:FE:29:AA:05:8D X509v3 Authority Key Identifier: keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:fc:c3:4a:ba:74:d9:a8:61:fc:45:ac:7a:7a:05:da:04:01: fb:b0:b6:28:70:1d:7a:66:84:c0:6d:56:d1:5b:91:54:c2:5f: 0e:50:16:55:88:94:d0:32:17:5c:56:40:cb:f3:e8:33:ec:48: 4e:fe:d2:dd:09:88:1f:24:e7:0e:07:d0:47:8f:52:a9:9f:30: 74:2a:0c:7c:59:ae:cb:45:5e:ff:f8:7c:6a:36:5d:68:5b:e9: 43:e9:90:38:5d:ad:74:0b:b4:65:f7:d4:46:d9:cd:94:e7:a5: aa:cd:b0:38:ba:08:a1:ec:2d:30:cf:9b:7e:dd:57:0b:7f:c6: cf:08:d7:3a:ee:50:55:d5:43:1b:a7:bb:d1:86:89:6d:f1:d1: 1c:16:4d:eb:48:b8:32:1c:bc:d0:98:c5:3c:ee:3b:b7:ae:ea: 92:d2:31:56:b5:00:8e:ae:48:c4:5f:97:a4:46:77:a5:56:7e: d5:d3:e8:ca:27:20:dd:bf:80:ea:4b:d5:62:fe:a7:ab:b3:91: 3f:29:e5:1e:16:d0:b0:57:f6:3a:b4:17:ca:e0:f5:9c:7d:98: f2:94:97:d7:67:d4:a9:f1:c4:44:02:73:d6:fb:5c:78:de:a0: 03:82:b6:df:60:50:95:51:42:73:3d:ef:52:f3:7d:b4:4f:ec: 6a:fc:05:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtq12iWhwH7MTtggsuHh1TZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNDc4MDIxZjcyYTIxYjc3MTQyYTQ0ZDgxNWRkZTllZjI2 ODRjYmMwHhcNMjUxMjI5MTYwMTAwWhcNMjUxMjMwMTYwMTAwWjAzMTEwLwYDVQQD EyhjYzE4NDkxMGFmM2I0MjE0NGRmODFiMTkzYWMwZDVmZTI5YWEwNThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyotpMq8/BXKXlYdmk4AGM41O2kXq w68yfAP7dPh0gJmTF32smZfnJl8yHKQm4OiuHX4fEkAlvW5Ns+m4LybK/PWUcUtN H31tY+HSTeSn+0eSmWJFHcr36/AnNANnZjEQ+2ZRljT2sy8kS6jqcH/OB5zAQPSa OZ2CYTmZg6qnTwFIZL+R0MNvZag8LPw5Ch+TVrWeLnHfeQadBxW5lvgFdoThfXTl JUtlbDcUjW0UZ1DotarybwE9OiMtk2sFCWlf0PZz3luXUQU8/zqDpLjV47m+TnQV 2GULMXMVsziEX6dCqxej8Rxb6FygxOGAyXCHHdRm3b57q8tTbhEQUniFtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMwYSRCvO0IUTfgbGTrA1f4pqgWNMB8GA1UdIwQY MBaAFO9HgCH3KiG3cUKkTYFd3p7yaEy8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzBlQUlmY3FJYmR4UXFSTmdWM2VudkpvVEx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81MTcyZWItNmZiOC00MjE2LThkODEt MzQ0MzQ2NGI5MjA5LzEvNzBlQUlmY3FJYmR4UXFSTmdWM2VudkpvVEx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi81MTcyZWItNmZiOC00MjE2LThkODEtMzQ0MzQ2NGI5MjA5 LzEvNzBlQUlmY3FJYmR4UXFSTmdWM2VudkpvVEx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMvzDSrp0 2ahh/EWsenoF2gQB+7C2KHAdemaEwG1W0VuRVMJfDlAWVYiU0DIXXFZAy/PoM+xI Tv7S3QmIHyTnDgfQR49SqZ8wdCoMfFmuy0Ve//h8ajZdaFvpQ+mQOF2tdAu0ZffU RtnNlOelqs2wOLoIoewtMM+bft1XC3/GzwjXOu5QVdVDG6e70YaJbfHRHBZN60i4 Mhy80JjFPO47t67qktIxVrUAjq5IxF+XpEZ3pVZ+1dPoyicg3b+A6kvVYv6nq7OR PynlHhbQsFf2OrQXyuD1nH2Y8pSX12fUqfHERAJz1vtceN6gA4K232BQlVFCcz3v UvN9tE/savwFsA== -----END CERTIFICATE-----Generated at Mon Dec 29 17:44:07 2025 by rpki-client