This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft File: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft (raw, json) Hash identifier: aRxD+E764B4UNnU7wL4ZY7uKWuP6rA+9wAPeAjaXsbM= Subject key identifier: 44:21:D0:00:AC:93:59:83:5E:DB:AA:B2:17:8A:42:70:3C:E1:A0:29 Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6 Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6 Certificate serial: 019B3F7EE89F183927BC686BD0855958EFDA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft Manifest number: 103C Signing time: Sun 21 Dec 2025 06:00:40 +0000 Manifest this update: Sun 21 Dec 2025 06:00:40 +0000 Manifest next update: Mon 22 Dec 2025 06:00:40 +0000 Files and hashes: 1: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl (hash: 5R8mJc5D7DpRy51PEkde2sc/kZud5jNZWQySrv92Fr4=) 2: 5YRtqk6Jp7Zam_D7fc_X7XfH8s4.roa (hash: X5F/YiS9H2WE1ZFG9REO1WI3BKWNsouj5lZWL1J+hoo=) 3: S02swQr7SFMh1XkGlgNtdFd8qjU.roa (hash: kmf6fs03LsiKFjFFr7/yypScWdj2E7KkoQrmpe8X1MU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7e:e8:9f:18:39:27:bc:68:6b:d0:85:59:58:ef:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6 Validity Not Before: Dec 21 06:00:40 2025 GMT Not After : Dec 22 06:00:40 2025 GMT Subject: CN=4421d000ac9359835edbaab2178a42703ce1a029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9a:02:19:fa:7d:03:f7:72:5f:5a:5a:a5:a5: a0:cf:c2:14:f9:64:20:f1:80:ad:0d:70:1a:82:b4: 4f:a8:81:d0:7b:c3:80:cd:50:84:cf:29:5c:f1:83: 6c:73:99:d6:86:3e:90:57:cd:b7:af:cc:4e:ca:79: 7e:cd:eb:67:62:a1:20:f9:60:9c:69:ed:a5:81:1a: 6d:04:32:46:a4:98:41:22:7f:db:bc:35:f7:20:2e: 71:77:22:4f:6b:6f:e8:25:76:94:da:54:66:bb:e1: 88:9e:fa:aa:e0:ea:3a:9e:5c:21:2e:be:ca:e7:ca: 94:90:8a:f3:f4:21:82:1a:39:07:49:c8:cb:62:7e: 50:33:12:7c:fb:3a:0c:b5:8e:a5:87:11:83:b2:f1: 61:f9:74:00:19:4a:c1:67:78:62:5d:57:1d:67:d3: 25:60:b8:54:89:fa:3e:81:2f:a6:6c:6f:18:85:14: 36:70:b3:99:1b:f4:4d:cf:2e:fd:5a:89:09:bc:6b: 7a:79:a1:12:d1:57:89:47:f9:2f:da:36:7c:d7:5d: ee:05:7f:d6:0e:fa:07:6c:a3:53:e2:5f:30:68:c6: dd:89:e1:45:05:c3:cc:36:ec:53:ea:3a:f7:a9:3a: 6b:f7:49:18:26:b1:e7:6a:97:c5:22:3f:14:23:db: ca:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:21:D0:00:AC:93:59:83:5E:DB:AA:B2:17:8A:42:70:3C:E1:A0:29 X509v3 Authority Key Identifier: keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:46:d4:1c:d4:0f:83:c2:37:1d:6e:67:0b:be:88:e6:70:2d: 40:5f:6e:9d:c1:58:12:86:d6:e2:99:69:cb:22:a9:d6:e8:d0: d8:f2:25:d4:27:51:21:4c:5b:a4:c8:f2:1c:7f:1f:50:1f:3c: ac:4c:1c:55:ec:1d:5a:5e:04:b6:f4:79:01:d3:30:e3:70:36: 55:9d:c1:3b:72:91:d5:2b:bc:68:0c:fd:f7:72:f7:f3:b2:6d: 8a:e7:57:84:33:b6:da:de:fb:92:87:89:49:2a:b4:51:74:64: 4a:ed:bc:d2:a9:12:a2:44:3a:ac:13:89:db:75:38:94:79:5d: 7d:c9:dd:ba:3b:15:86:0a:84:ca:46:56:1b:29:bf:5d:5b:34: 33:4b:30:0a:2e:a7:44:d2:24:57:6a:dd:86:41:70:29:0f:2c: 02:63:72:e2:b9:de:29:08:87:5f:ee:f9:c8:ff:b0:35:87:10: 50:15:f3:0f:2e:67:b5:0f:48:6e:e6:b2:2c:aa:82:ec:d3:25: 8f:e2:b6:64:78:2a:e2:ea:9d:8a:df:fd:2c:d4:bd:6e:4d:e9: 9e:e6:53:59:76:2d:f4:22:52:27:9b:c3:28:28:d1:d5:95:e7: 66:e1:23:b8:94:c5:9a:55:b1:32:4c:74:b2:53:86:46:4d:62: 6c:94:a6:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/fuifGDknvGhr0IVZWO/aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwNDY4N2EzZWU2MzIyYjc1N2RlODFlN2Y1M2M1ZDMyZWVi ZTMzYTYwHhcNMjUxMjIxMDYwMDQwWhcNMjUxMjIyMDYwMDQwWjAzMTEwLwYDVQQD Eyg0NDIxZDAwMGFjOTM1OTgzNWVkYmFhYjIxNzhhNDI3MDNjZTFhMDI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JoCGfp9A/dyX1papaWgz8IU+WQg 8YCtDXAagrRPqIHQe8OAzVCEzylc8YNsc5nWhj6QV823r8xOynl+zetnYqEg+WCc ae2lgRptBDJGpJhBIn/bvDX3IC5xdyJPa2/oJXaU2lRmu+GInvqq4Oo6nlwhLr7K 58qUkIrz9CGCGjkHScjLYn5QMxJ8+zoMtY6lhxGDsvFh+XQAGUrBZ3hiXVcdZ9Ml YLhUifo+gS+mbG8YhRQ2cLOZG/RNzy79WokJvGt6eaES0VeJR/kv2jZ8113uBX/W DvoHbKNT4l8waMbdieFFBcPMNuxT6jr3qTpr90kYJrHnapfFIj8UI9vKWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEQh0ACsk1mDXtuqsheKQnA84aApMB8GA1UdIwQY MBaAFNBGh6PuYyK3V96B5/U8XTLuvjOmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iZmRkMTktNmJiYS00ZGM5LWFmYzYt OTdiZTQyNmEyMzM0LzEvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9iZmRkMTktNmJiYS00ZGM5LWFmYzYtOTdiZTQyNmEyMzM0 LzEvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfEbUHNQP g8I3HW5nC76I5nAtQF9uncFYEobW4plpyyKp1ujQ2PIl1CdRIUxbpMjyHH8fUB88 rEwcVewdWl4EtvR5AdMw43A2VZ3BO3KR1Su8aAz993L387JtiudXhDO22t77koeJ SSq0UXRkSu280qkSokQ6rBOJ23U4lHldfcndujsVhgqEykZWGym/XVs0M0swCi6n RNIkV2rdhkFwKQ8sAmNy4rneKQiHX+75yP+wNYcQUBXzDy5ntQ9IbuayLKqC7NMl j+K2ZHgq4uqdit/9LNS9bk3pnuZTWXYt9CJSJ5vDKCjR1ZXnZuEjuJTFmlWxMkx0 slOGRk1ibJSmiQ== -----END CERTIFICATE-----Generated at Sun Dec 21 10:35:57 2025 by rpki-client