This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json) Hash identifier: qzKvK0oA+BWg8lf22W2YE5KLkh9anxhxgMnClBfPRtc= Subject key identifier: C9:7B:A0:43:A8:C3:AA:F2:C4:39:53:6A:59:AB:3A:FA:00:E8:66:31 Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd Certificate serial: 019B405AB95B79CB067D4D5917570C7EF916 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft Manifest number: 0C43 Signing time: Sun 21 Dec 2025 10:00:46 +0000 Manifest this update: Sun 21 Dec 2025 10:00:46 +0000 Manifest next update: Mon 22 Dec 2025 10:00:46 +0000 Files and hashes: 1: 1-VdOr1FUP7HNxfqfhOHB4LyOJ2Y.roa (hash: QB9LyYahw6voR06UwItPSAyVLMKgN6beiVidIvS+Rxs=) 2: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: PYEPhtBRBB3+JwXJ/qeOrH9m9Ypx5s3CRQduWP/qgpI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 10:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5a:b9:5b:79:cb:06:7d:4d:59:17:57:0c:7e:f9:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd Validity Not Before: Dec 21 10:00:46 2025 GMT Not After : Dec 22 10:00:46 2025 GMT Subject: CN=c97ba043a8c3aaf2c439536a59ab3afa00e86631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b3:3e:e4:e6:8d:9e:c4:60:8a:d7:bc:bc:2b: 4b:5d:5e:af:8e:2a:46:6d:89:9f:54:06:0f:c7:12: ed:1b:70:db:61:54:9b:29:fb:26:d8:e5:ba:5a:ac: 30:df:a8:4d:e9:e9:b6:f3:74:13:93:e5:4b:8f:06: 50:e6:d8:27:8b:b0:77:c9:15:22:ea:32:66:ed:48: 3f:47:c6:64:22:cb:84:b9:6a:39:fa:36:de:c4:91: 44:6c:b6:bb:e9:70:68:f5:03:6a:a2:37:9f:b8:34: 3a:6c:bb:87:07:8b:45:8a:e8:ad:7c:e7:47:22:fc: f9:d5:1a:77:65:22:3b:ec:94:7e:19:6e:bd:b1:4e: 66:68:6e:fe:cd:86:2b:b5:1d:b0:33:2f:5b:16:54: 1c:1f:78:bc:3f:52:f8:14:86:3f:6d:63:8d:32:02: 59:80:47:5e:e1:e5:8f:14:78:70:55:ef:e8:55:31: a7:3b:89:ce:33:62:aa:b0:34:42:55:b9:e4:2a:a3: 01:12:d6:cb:3a:44:25:6e:9f:33:2c:fc:96:54:b6: 5b:d9:9f:b4:ba:de:f4:ce:ea:23:c8:e0:6f:09:2f: ae:aa:58:ed:df:5d:2f:6e:e1:53:56:e0:89:6c:b4: 55:35:36:b9:20:aa:65:e8:6d:0f:3d:27:c7:23:1c: 7c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7B:A0:43:A8:C3:AA:F2:C4:39:53:6A:59:AB:3A:FA:00:E8:66:31 X509v3 Authority Key Identifier: keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:9c:f8:74:11:fe:9e:99:12:68:1b:68:db:17:42:dc:21:0b: e6:bb:22:fd:60:4f:5a:f5:0f:a0:46:8e:14:26:10:17:ee:cc: 31:d0:95:da:d4:a0:13:1d:4e:53:28:8e:8e:70:78:54:8b:9a: a7:82:cf:96:5b:64:43:f5:0e:20:ee:e5:3b:61:bc:77:dc:59: a4:8b:55:bf:00:c6:84:80:ec:ab:cd:20:e3:70:30:4b:8b:83: ae:69:27:0e:b1:ad:eb:4b:37:75:d5:a6:48:37:e5:ab:00:b7: d0:24:bc:74:fa:35:ad:64:0b:94:58:31:02:a2:7d:52:0d:70: f8:b4:a3:48:90:67:5d:b6:7d:b7:46:b7:87:1a:37:28:4d:ee: 8a:41:f7:74:70:71:8c:94:1e:c0:f4:9b:a5:9c:2d:1b:49:89: 1d:2d:bb:0f:40:62:3a:fb:cb:9c:dd:ae:68:1e:77:cf:ef:66: ec:22:cf:16:cc:b0:3d:cc:86:df:87:b9:66:cb:21:e2:04:45: fd:97:7d:70:43:92:ac:43:e0:36:ce:70:07:ca:c9:62:48:6a: 63:d1:5d:86:79:f3:9b:24:81:d9:8c:e3:ab:77:54:79:1f:63: 68:1d:67:29:23:fa:38:ce:dc:a4:0c:48:63:d6:43:ff:27:ab: da:d7:79:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAWrlbecsGfU1ZF1cMfvkWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwODExY2UwY2U3MzUzZjAzZWRlOWNiN2NhNTExNjI1NWZi ZmI3YmQwHhcNMjUxMjIxMTAwMDQ2WhcNMjUxMjIyMTAwMDQ2WjAzMTEwLwYDVQQD EyhjOTdiYTA0M2E4YzNhYWYyYzQzOTUzNmE1OWFiM2FmYTAwZTg2NjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2rM+5OaNnsRgite8vCtLXV6vjipG bYmfVAYPxxLtG3DbYVSbKfsm2OW6Wqww36hN6em283QTk+VLjwZQ5tgni7B3yRUi 6jJm7Ug/R8ZkIsuEuWo5+jbexJFEbLa76XBo9QNqojefuDQ6bLuHB4tFiuitfOdH Ivz51Rp3ZSI77JR+GW69sU5maG7+zYYrtR2wMy9bFlQcH3i8P1L4FIY/bWONMgJZ gEde4eWPFHhwVe/oVTGnO4nOM2KqsDRCVbnkKqMBEtbLOkQlbp8zLPyWVLZb2Z+0 ut70zuojyOBvCS+uqljt310vbuFTVuCJbLRVNTa5IKpl6G0PPSfHIxx8ZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMl7oEOow6ryxDlTalmrOvoA6GYxMB8GA1UdIwQY MBaAFHCBHODOc1PwPt6ct8pRFiVfv7e9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0lFYzRNNXpVX0EtM3B5M3lsRVdKVi1fdDcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My80NWU2MzItYjBmZC00ZDgxLTljZjct OGZkMjIxMDU4MDZiLzEvY0lFYzRNNXpVX0EtM3B5M3lsRVdKVi1fdDcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My80NWU2MzItYjBmZC00ZDgxLTljZjctOGZkMjIxMDU4MDZi LzEvY0lFYzRNNXpVX0EtM3B5M3lsRVdKVi1fdDcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOJz4dBH+ npkSaBto2xdC3CEL5rsi/WBPWvUPoEaOFCYQF+7MMdCV2tSgEx1OUyiOjnB4VIua p4LPlltkQ/UOIO7lO2G8d9xZpItVvwDGhIDsq80g43AwS4uDrmknDrGt60s3ddWm SDflqwC30CS8dPo1rWQLlFgxAqJ9Ug1w+LSjSJBnXbZ9t0a3hxo3KE3uikH3dHBx jJQewPSbpZwtG0mJHS27D0BiOvvLnN2uaB53z+9m7CLPFsywPcyG34e5Zssh4gRF /Zd9cEOSrEPgNs5wB8rJYkhqY9FdhnnzmySB2Yzjq3dUeR9jaB1nKSP6OM7cpAxI Y9ZD/yer2td56Q== -----END CERTIFICATE-----Generated at Sun Dec 21 15:18:28 2025 by rpki-client