This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: Gh5cQ3pU4sK2bZAv8/CyYoX29RyOrzkuSnsd4vCzPEc=
Subject key identifier: CC:18:49:10:AF:3B:42:14:4D:F8:1B:19:3A:C0:D5:FE:29:AA:05:8D
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 019B6AD768968701FB313B6082CB878754D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 179E
Signing time: Mon 29 Dec 2025 16:01:00 +0000
Manifest this update: Mon 29 Dec 2025 16:01:00 +0000
Manifest next update: Tue 30 Dec 2025 16:01:00 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: AH696GJQJF0xl+kI7wO54RO0bgHHHTCeaxd1xjD9X2M=)
2: uPPSCEPI-zYe8c4juKISlbYTsmI.roa (hash: ItdA3QN2L+hecSiCaaiQJ/fE6U5Bp5eLGhZQrMhDtVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Dec 2025 15:21:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:6a:d7:68:96:87:01:fb:31:3b:60:82:cb:87:87:54:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: Dec 29 16:01:00 2025 GMT
Not After : Dec 30 16:01:00 2025 GMT
Subject: CN=cc184910af3b42144df81b193ac0d5fe29aa058d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8b:69:32:af:3f:05:72:97:95:87:66:93:80:
06:33:8d:4e:da:45:ea:c3:af:32:7c:03:fb:74:f8:
74:80:99:93:17:7d:ac:99:97:e7:26:5f:32:1c:a4:
26:e0:e8:ae:1d:7e:1f:12:40:25:bd:6e:4d:b3:e9:
b8:2f:26:ca:fc:f5:94:71:4b:4d:1f:7d:6d:63:e1:
d2:4d:e4:a7:fb:47:92:99:62:45:1d:ca:f7:eb:f0:
27:34:03:67:66:31:10:fb:66:51:96:34:f6:b3:2f:
24:4b:a8:ea:70:7f:ce:07:9c:c0:40:f4:9a:39:9d:
82:61:39:99:83:aa:a7:4f:01:48:64:bf:91:d0:c3:
6f:65:a8:3c:2c:fc:39:0a:1f:93:56:b5:9e:2e:71:
df:79:06:9d:07:15:b9:96:f8:05:76:84:e1:7d:74:
e5:25:4b:65:6c:37:14:8d:6d:14:67:50:e8:b5:aa:
f2:6f:01:3d:3a:23:2d:93:6b:05:09:69:5f:d0:f6:
73:de:5b:97:51:05:3c:ff:3a:83:a4:b8:d5:e3:b9:
be:4e:74:15:d8:65:0b:31:73:15:b3:38:84:5f:a7:
42:ab:17:a3:f1:1c:5b:e8:5c:a0:c4:e1:80:c9:70:
87:1d:d4:66:dd:be:7b:ab:cb:53:6e:11:10:52:78:
85:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:18:49:10:AF:3B:42:14:4D:F8:1B:19:3A:C0:D5:FE:29:AA:05:8D
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:fc:c3:4a:ba:74:d9:a8:61:fc:45:ac:7a:7a:05:da:04:01:
fb:b0:b6:28:70:1d:7a:66:84:c0:6d:56:d1:5b:91:54:c2:5f:
0e:50:16:55:88:94:d0:32:17:5c:56:40:cb:f3:e8:33:ec:48:
4e:fe:d2:dd:09:88:1f:24:e7:0e:07:d0:47:8f:52:a9:9f:30:
74:2a:0c:7c:59:ae:cb:45:5e:ff:f8:7c:6a:36:5d:68:5b:e9:
43:e9:90:38:5d:ad:74:0b:b4:65:f7:d4:46:d9:cd:94:e7:a5:
aa:cd:b0:38:ba:08:a1:ec:2d:30:cf:9b:7e:dd:57:0b:7f:c6:
cf:08:d7:3a:ee:50:55:d5:43:1b:a7:bb:d1:86:89:6d:f1:d1:
1c:16:4d:eb:48:b8:32:1c:bc:d0:98:c5:3c:ee:3b:b7:ae:ea:
92:d2:31:56:b5:00:8e:ae:48:c4:5f:97:a4:46:77:a5:56:7e:
d5:d3:e8:ca:27:20:dd:bf:80:ea:4b:d5:62:fe:a7:ab:b3:91:
3f:29:e5:1e:16:d0:b0:57:f6:3a:b4:17:ca:e0:f5:9c:7d:98:
f2:94:97:d7:67:d4:a9:f1:c4:44:02:73:d6:fb:5c:78:de:a0:
03:82:b6:df:60:50:95:51:42:73:3d:ef:52:f3:7d:b4:4f:ec:
6a:fc:05:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 29 17:44:07 2025 by rpki-client