This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft File: E9g7Il3TOGDFHcRKqI218D3BWnQ.mft (raw, json) Hash identifier: 5M5SMZfdL/r6Id/JjDk4T35OfiaO6S3Xx1RkOArSuCw= Subject key identifier: 83:B3:07:62:A3:FF:4E:63:3D:66:80:5D:82:A4:21:1E:C3:89:CD:B9 Authority key identifier: 13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74 Certificate issuer: /CN=13d83b225dd33860c51dc44aa88db5f03dc15a74 Certificate serial: 019B55CFB1F7A4F88393B0B0A0EE9F753580 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft Manifest number: 1726 Signing time: Thu 25 Dec 2025 14:00:33 +0000 Manifest this update: Thu 25 Dec 2025 14:00:33 +0000 Manifest next update: Fri 26 Dec 2025 14:00:33 +0000 Files and hashes: 1: 9htWy01pg2D2zYDPH366mUte-18.roa (hash: EzJGaZ3hn2rEMiPwCBKqVw/ZKa/ezLWPSIlGniopSlk=) 2: E9g7Il3TOGDFHcRKqI218D3BWnQ.crl (hash: dkvzy1kbJAbD2r5CcGppfY/fEmhC277O/zZEJvvX1Rs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 10:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:55:cf:b1:f7:a4:f8:83:93:b0:b0:a0:ee:9f:75:35:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13d83b225dd33860c51dc44aa88db5f03dc15a74 Validity Not Before: Dec 25 14:00:33 2025 GMT Not After : Dec 26 14:00:33 2025 GMT Subject: CN=83b30762a3ff4e633d66805d82a4211ec389cdb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:85:b1:cd:65:20:33:35:bc:ce:7d:53:bd:b8: ab:89:d0:57:cb:06:c5:82:37:b2:50:75:23:80:ae: cd:b3:cb:a5:b6:56:66:2b:eb:2f:89:f9:e2:3f:3e: 98:b3:ab:a4:75:e6:14:39:47:86:ca:4e:c7:68:92: 0a:c4:b5:f6:19:26:98:e2:aa:3b:d6:82:82:87:f8: b2:af:e0:ed:a5:97:e1:57:43:37:7f:df:5d:44:1e: 44:1e:f1:01:8d:6d:8a:b3:d4:fc:0e:de:6b:83:3c: 46:be:7f:4d:ae:9f:6f:01:2e:05:07:98:2c:e9:56: d0:c9:12:f2:7f:72:72:a5:b1:77:76:0e:cd:fb:3d: 4f:ab:23:da:12:17:ee:30:6b:9f:b4:8e:3d:0e:e4: 2a:20:42:62:8f:20:11:30:59:1c:82:ce:d6:fc:43: ef:89:cb:ce:84:f1:6c:87:a7:fa:fe:3e:92:dc:d6: d7:20:ed:5e:42:49:12:93:c8:c6:69:92:4b:77:4d: 5c:7d:97:ae:f6:79:67:94:22:9d:63:ab:16:75:d9: 3d:53:33:52:84:b0:c0:e3:1c:8b:c4:5c:b4:de:23: 8f:83:be:59:35:60:23:e2:cb:e5:0e:82:48:e5:50: ac:e0:43:b0:9c:ff:bd:19:69:f8:ed:20:b5:43:eb: 84:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B3:07:62:A3:FF:4E:63:3D:66:80:5D:82:A4:21:1E:C3:89:CD:B9 X509v3 Authority Key Identifier: keyid:13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:ae:21:53:98:37:5c:6e:9e:73:f4:69:85:9f:73:8b:4e:b8: f3:e5:f7:08:c2:2e:78:a1:0b:64:84:df:2f:ee:e2:c3:5b:3c: 07:99:d9:93:cc:4e:83:77:db:c3:17:55:e6:d3:fd:ca:ce:cd: df:0f:f7:d7:a2:b3:4f:2a:80:68:e9:21:f6:98:d1:af:bd:4c: 82:a4:47:92:fb:bc:01:bd:c3:45:f1:92:ae:71:2d:2d:b9:54: 3c:70:8f:bf:bf:80:05:ff:ab:19:9f:04:38:a1:c5:5c:c0:38: ec:c6:13:bd:93:f6:62:07:d1:68:66:77:47:80:00:96:ae:2a: 59:95:6c:ad:51:86:5a:fa:19:77:55:f5:2f:8d:a3:1f:d7:bc: 41:8d:fa:9c:66:96:a9:7f:98:db:7d:82:b4:63:4a:bd:04:ec: 79:af:15:2a:59:6b:91:51:2b:c3:6f:9e:ec:53:a6:7b:40:81: c5:70:80:b7:d1:bb:9b:82:58:d8:98:3b:ce:44:41:2e:52:55: ca:12:8e:52:62:0f:22:5b:41:db:c4:f3:58:0b:10:d4:9c:4e: 99:85:93:0c:4f:e9:cb:ca:85:84:a3:5e:c2:04:97:69:82:a0: 15:df:7a:75:94:22:77:2f:3d:0d:da:9d:cb:7d:64:07:95:20: 50:07:7b:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtVz7H3pPiDk7CwoO6fdTWAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzZDgzYjIyNWRkMzM4NjBjNTFkYzQ0YWE4OGRiNWYwM2Rj MTVhNzQwHhcNMjUxMjI1MTQwMDMzWhcNMjUxMjI2MTQwMDMzWjAzMTEwLwYDVQQD Eyg4M2IzMDc2MmEzZmY0ZTYzM2Q2NjgwNWQ4MmE0MjExZWMzODljZGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooWxzWUgMzW8zn1TvbiridBXywbF gjeyUHUjgK7Ns8ultlZmK+svifniPz6Ys6ukdeYUOUeGyk7HaJIKxLX2GSaY4qo7 1oKCh/iyr+DtpZfhV0M3f99dRB5EHvEBjW2Ks9T8Dt5rgzxGvn9Nrp9vAS4FB5gs 6VbQyRLyf3JypbF3dg7N+z1PqyPaEhfuMGuftI49DuQqIEJijyARMFkcgs7W/EPv icvOhPFsh6f6/j6S3NbXIO1eQkkSk8jGaZJLd01cfZeu9nlnlCKdY6sWddk9UzNS hLDA4xyLxFy03iOPg75ZNWAj4svlDoJI5VCs4EOwnP+9GWn47SC1Q+uE6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIOzB2Kj/05jPWaAXYKkIR7Dic25MB8GA1UdIwQY MBaAFBPYOyJd0zhgxR3ESqiNtfA9wVp0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRTlnN0lsM1RPR0RGSGNSS3FJMjE4RDNCV25RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9mMjExMWEtM2Y0Ny00ZmYwLWE1MWQt YjI1MTM3N2FkZDg2LzEvRTlnN0lsM1RPR0RGSGNSS3FJMjE4RDNCV25RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC9mMjExMWEtM2Y0Ny00ZmYwLWE1MWQtYjI1MTM3N2FkZDg2 LzEvRTlnN0lsM1RPR0RGSGNSS3FJMjE4RDNCV25RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJa4hU5g3 XG6ec/RphZ9zi0648+X3CMIueKELZITfL+7iw1s8B5nZk8xOg3fbwxdV5tP9ys7N 3w/316KzTyqAaOkh9pjRr71MgqRHkvu8Ab3DRfGSrnEtLblUPHCPv7+ABf+rGZ8E OKHFXMA47MYTvZP2YgfRaGZ3R4AAlq4qWZVsrVGGWvoZd1X1L42jH9e8QY36nGaW qX+Y232CtGNKvQTsea8VKllrkVErw2+e7FOme0CBxXCAt9G7m4JY2Jg7zkRBLlJV yhKOUmIPIltB28TzWAsQ1JxOmYWTDE/py8qFhKNewgSXaYKgFd96dZQidy89Ddqd y31kB5UgUAd7qA== -----END CERTIFICATE-----Generated at Thu Dec 25 19:40:14 2025 by rpki-client