This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json) Hash identifier: haETTCtyCi9UBqeDApom7og3wNLdso4UzZdyzX4EM7c= Subject key identifier: D0:AD:C2:99:5E:0F:46:9A:00:CC:E0:33:B9:B0:8D:E4:CE:CA:92:AC Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc Certificate serial: 019B68EA7F0141205958427AD6287096B96C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft Manifest number: 179D Signing time: Mon 29 Dec 2025 07:02:36 +0000 Manifest this update: Mon 29 Dec 2025 07:02:36 +0000 Manifest next update: Tue 30 Dec 2025 07:02:36 +0000 Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: NhRHBvBPpp8A33csE6cjUrliKiDzCvlGr/EpM3gkp8g=) 2: uPPSCEPI-zYe8c4juKISlbYTsmI.roa (hash: ItdA3QN2L+hecSiCaaiQJ/fE6U5Bp5eLGhZQrMhDtVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 07:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:68:ea:7f:01:41:20:59:58:42:7a:d6:28:70:96:b9:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc Validity Not Before: Dec 29 07:02:36 2025 GMT Not After : Dec 30 07:02:36 2025 GMT Subject: CN=d0adc2995e0f469a00cce033b9b08de4ceca92ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:51:63:23:e3:e9:a0:4a:a4:0b:df:e4:96:2a: 0c:e1:1b:30:70:91:b1:22:b3:12:a0:29:65:aa:26: 74:b7:b3:1b:b0:c1:77:da:0a:d3:e6:75:73:f1:01: 3f:0f:fc:da:c8:04:4b:58:15:27:95:5f:be:49:38: 0e:ca:a1:a9:44:88:81:bc:06:55:ba:97:21:2c:0e: 13:a8:6b:77:20:86:f7:c4:ce:86:88:af:2d:31:a1: df:00:ac:5c:20:98:9f:e0:d1:7f:52:71:27:4b:ce: e0:fd:cb:58:31:24:d3:91:f1:0e:0b:d8:2b:61:31: f7:4e:9e:2b:9b:f2:00:14:e5:4a:86:bb:79:4c:72: fa:19:6e:a7:ca:74:b5:68:f9:e5:6d:19:2e:76:68: 7d:64:da:65:89:70:27:bd:40:a2:02:b3:19:0d:a4: 30:d8:a8:4c:1f:77:eb:86:0e:db:37:45:41:f2:dc: 2f:0e:73:03:56:77:e1:1d:46:f9:19:e4:b1:60:01: 9f:58:d1:fb:df:da:0d:44:8f:f3:5a:6d:4f:27:cc: 91:8a:98:00:5c:54:2d:e9:2f:7d:78:8e:ef:0a:6b: 80:45:60:f9:64:5c:95:87:64:ff:0f:03:bc:40:42: 70:14:96:b5:05:95:1f:58:46:dc:c9:0e:0b:a4:b5: 5e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:AD:C2:99:5E:0F:46:9A:00:CC:E0:33:B9:B0:8D:E4:CE:CA:92:AC X509v3 Authority Key Identifier: keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:72:0b:a9:49:75:72:56:57:bc:01:0a:75:c5:29:e9:9f:2a: 50:21:25:9a:ac:15:b6:4f:19:7f:72:a2:0e:57:31:58:83:46: ec:49:05:3a:45:33:e7:e4:11:b7:bc:81:81:59:f5:ce:20:09: e3:99:54:eb:a3:d6:39:22:89:90:0f:5e:46:44:87:bc:b9:88: f3:0b:4a:5e:4a:af:72:d7:c0:3f:78:34:b2:b7:e5:a6:1f:85: 2b:f7:5c:1d:63:90:91:2d:21:0b:c8:f2:1f:bb:ae:f2:da:69: 08:93:af:95:cd:32:27:f4:18:d0:06:a4:f6:0a:55:19:1e:7b: bd:7a:af:df:28:4e:68:0e:aa:33:b6:0b:d9:ca:02:af:26:f6: 92:8f:18:a3:98:47:a6:a6:ab:61:26:b2:8e:ba:a0:6c:e0:fa: 68:1a:9a:25:04:ce:ec:81:bc:cc:8c:65:3e:12:b7:3e:aa:b9: ae:71:c3:53:c5:83:18:4b:db:ae:6c:f9:a0:c0:6f:c7:e0:21: d2:83:0b:30:31:7d:a1:15:b1:d4:df:b7:ec:3f:c6:97:ad:9f: 4f:20:02:f7:d7:88:9b:79:47:63:e2:6b:0c:d9:9a:7a:94:33: 40:65:d8:0e:13:cd:58:cf:1a:6d:36:01:15:54:44:71:99:fa: 3a:33:97:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZto6n8BQSBZWEJ61ihwlrlsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNDc4MDIxZjcyYTIxYjc3MTQyYTQ0ZDgxNWRkZTllZjI2 ODRjYmMwHhcNMjUxMjI5MDcwMjM2WhcNMjUxMjMwMDcwMjM2WjAzMTEwLwYDVQQD EyhkMGFkYzI5OTVlMGY0NjlhMDBjY2UwMzNiOWIwOGRlNGNlY2E5MmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1FjI+PpoEqkC9/klioM4RswcJGx IrMSoCllqiZ0t7MbsMF32grT5nVz8QE/D/zayARLWBUnlV++STgOyqGpRIiBvAZV upchLA4TqGt3IIb3xM6GiK8tMaHfAKxcIJif4NF/UnEnS87g/ctYMSTTkfEOC9gr YTH3Tp4rm/IAFOVKhrt5THL6GW6nynS1aPnlbRkudmh9ZNpliXAnvUCiArMZDaQw 2KhMH3frhg7bN0VB8twvDnMDVnfhHUb5GeSxYAGfWNH739oNRI/zWm1PJ8yRipgA XFQt6S99eI7vCmuARWD5ZFyVh2T/DwO8QEJwFJa1BZUfWEbcyQ4LpLVerwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNCtwpleD0aaAMzgM7mwjeTOypKsMB8GA1UdIwQY MBaAFO9HgCH3KiG3cUKkTYFd3p7yaEy8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzBlQUlmY3FJYmR4UXFSTmdWM2VudkpvVEx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81MTcyZWItNmZiOC00MjE2LThkODEt MzQ0MzQ2NGI5MjA5LzEvNzBlQUlmY3FJYmR4UXFSTmdWM2VudkpvVEx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi81MTcyZWItNmZiOC00MjE2LThkODEtMzQ0MzQ2NGI5MjA5 LzEvNzBlQUlmY3FJYmR4UXFSTmdWM2VudkpvVEx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVHILqUl1 clZXvAEKdcUp6Z8qUCElmqwVtk8Zf3KiDlcxWING7EkFOkUz5+QRt7yBgVn1ziAJ 45lU66PWOSKJkA9eRkSHvLmI8wtKXkqvctfAP3g0srflph+FK/dcHWOQkS0hC8jy H7uu8tppCJOvlc0yJ/QY0Aak9gpVGR57vXqv3yhOaA6qM7YL2coCryb2ko8Yo5hH pqarYSayjrqgbOD6aBqaJQTO7IG8zIxlPhK3Pqq5rnHDU8WDGEvbrmz5oMBvx+Ah 0oMLMDF9oRWx1N+37D/Gl62fTyAC99eIm3lHY+JrDNmaepQzQGXYDhPNWM8abTYB FVREcZn6OjOXZQ== -----END CERTIFICATE-----Generated at Mon Dec 29 16:19:55 2025 by rpki-client