This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft File: E9g7Il3TOGDFHcRKqI218D3BWnQ.mft (raw, json) Hash identifier: luMETPdmjCQCsnP01eVYi25E+T17U2E5xR+pMX4d4iY= Subject key identifier: 51:A6:C4:DA:4D:9C:55:31:A9:1A:71:21:6B:5A:DF:BC:9A:A8:8C:B1 Authority key identifier: 13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74 Certificate issuer: /CN=13d83b225dd33860c51dc44aa88db5f03dc15a74 Certificate serial: 019B465CD9098927706DE37F6752AFBC54BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft Manifest number: 171E Signing time: Mon 22 Dec 2025 14:00:48 +0000 Manifest this update: Mon 22 Dec 2025 14:00:48 +0000 Manifest next update: Tue 23 Dec 2025 14:00:48 +0000 Files and hashes: 1: 9htWy01pg2D2zYDPH366mUte-18.roa (hash: EzJGaZ3hn2rEMiPwCBKqVw/ZKa/ezLWPSIlGniopSlk=) 2: E9g7Il3TOGDFHcRKqI218D3BWnQ.crl (hash: O4g0FK83fv5pBw7BaaEAhXNLcJncQc47wHGn8nB7Bug=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 10:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:5c:d9:09:89:27:70:6d:e3:7f:67:52:af:bc:54:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13d83b225dd33860c51dc44aa88db5f03dc15a74 Validity Not Before: Dec 22 14:00:48 2025 GMT Not After : Dec 23 14:00:48 2025 GMT Subject: CN=51a6c4da4d9c5531a91a71216b5adfbc9aa88cb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7f:16:7a:0e:11:da:0c:ae:67:b5:46:46:55: 1e:09:c0:9a:b9:a2:95:2c:25:54:d6:25:bd:14:95: 97:6f:64:ff:75:fc:09:d9:b4:74:2d:0c:29:04:e4: 08:bd:85:4c:a5:36:95:65:60:11:2a:93:b3:06:3a: 88:3b:7d:a2:0b:ee:85:3e:cb:f5:8a:fc:e5:01:fd: 7e:f3:78:da:23:a7:67:6c:97:50:7f:e0:0f:ec:08: 96:f6:75:f8:61:7b:58:60:fe:21:46:64:5a:96:2f: df:e2:08:da:dd:c1:47:91:1f:8b:f2:63:96:5c:89: f1:bc:90:7d:d4:d6:53:02:b2:5b:e4:03:ff:cd:5b: 13:69:d5:ea:88:65:58:80:5e:c3:ad:6f:68:08:62: fc:26:50:14:c8:87:a2:66:37:32:63:86:65:cf:83: 0b:e5:9f:20:fc:da:9a:fe:c7:dd:74:eb:f5:60:3c: f9:e1:ab:53:79:db:c8:25:9f:c4:8f:a2:f5:71:37: e9:47:4f:c1:03:00:82:b4:16:27:3f:75:cc:37:5a: ce:58:9e:f6:9e:a2:22:75:77:dc:84:5d:1d:66:c0: 85:03:ec:36:e2:d7:81:8b:c2:a2:6a:45:3d:37:d4: af:21:83:c3:df:e6:22:69:bd:ce:87:fd:33:00:16: ba:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A6:C4:DA:4D:9C:55:31:A9:1A:71:21:6B:5A:DF:BC:9A:A8:8C:B1 X509v3 Authority Key Identifier: keyid:13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:7c:77:9a:18:ed:41:0e:5e:c2:76:77:6d:de:7c:fb:cf:19: cf:8f:bc:9d:c0:12:dc:81:e2:44:e3:54:de:1e:fb:b7:8e:b3: 25:fc:5a:12:25:ee:7d:ac:e4:0e:3a:e9:2b:e1:2e:91:68:63: 68:39:9d:fe:91:9a:1c:46:5d:a8:2f:d6:50:52:e3:8b:6a:63: 0b:01:cd:31:85:2e:b6:0d:79:43:32:3e:21:07:f4:28:03:76: 98:54:3d:a4:e5:f2:1c:4e:35:f0:3f:c1:6a:16:b3:1a:b7:5d: 30:d1:39:76:3d:90:6b:a3:30:97:b3:53:07:db:9b:46:21:9f: db:13:b1:c9:de:27:1c:8c:2c:0b:27:8d:2d:57:9d:72:b6:fd: 2b:a6:24:2e:1f:7e:98:07:b5:4a:88:03:dd:39:55:66:23:b3: d7:88:74:b7:d5:c4:43:eb:c4:99:44:9e:ca:89:c7:a2:b4:e6: 51:7a:63:e0:ab:3d:12:ee:d9:47:ed:d7:ee:62:7c:2c:d6:de: c4:5f:c4:b8:44:3b:e3:3c:ea:eb:95:fa:84:65:13:47:cf:91: 2a:c1:f4:a7:db:71:01:44:85:68:b9:e7:c3:31:3f:b2:02:64: 2a:6a:f3:36:ee:6c:77:66:bf:09:68:27:bd:b9:3f:1b:80:12: 2d:38:cf:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGXNkJiSdwbeN/Z1KvvFS+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzZDgzYjIyNWRkMzM4NjBjNTFkYzQ0YWE4OGRiNWYwM2Rj MTVhNzQwHhcNMjUxMjIyMTQwMDQ4WhcNMjUxMjIzMTQwMDQ4WjAzMTEwLwYDVQQD Eyg1MWE2YzRkYTRkOWM1NTMxYTkxYTcxMjE2YjVhZGZiYzlhYTg4Y2IxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0H8Weg4R2gyuZ7VGRlUeCcCauaKV LCVU1iW9FJWXb2T/dfwJ2bR0LQwpBOQIvYVMpTaVZWARKpOzBjqIO32iC+6FPsv1 ivzlAf1+83jaI6dnbJdQf+AP7AiW9nX4YXtYYP4hRmRali/f4gja3cFHkR+L8mOW XInxvJB91NZTArJb5AP/zVsTadXqiGVYgF7DrW9oCGL8JlAUyIeiZjcyY4Zlz4ML 5Z8g/Nqa/sfddOv1YDz54atTedvIJZ/Ej6L1cTfpR0/BAwCCtBYnP3XMN1rOWJ72 nqIidXfchF0dZsCFA+w24teBi8KiakU9N9SvIYPD3+Yiab3Oh/0zABa6VQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFGmxNpNnFUxqRpxIWta37yaqIyxMB8GA1UdIwQY MBaAFBPYOyJd0zhgxR3ESqiNtfA9wVp0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRTlnN0lsM1RPR0RGSGNSS3FJMjE4RDNCV25RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9mMjExMWEtM2Y0Ny00ZmYwLWE1MWQt YjI1MTM3N2FkZDg2LzEvRTlnN0lsM1RPR0RGSGNSS3FJMjE4RDNCV25RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC9mMjExMWEtM2Y0Ny00ZmYwLWE1MWQtYjI1MTM3N2FkZDg2 LzEvRTlnN0lsM1RPR0RGSGNSS3FJMjE4RDNCV25RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjnx3mhjt QQ5ewnZ3bd58+88Zz4+8ncAS3IHiRONU3h77t46zJfxaEiXufazkDjrpK+EukWhj aDmd/pGaHEZdqC/WUFLji2pjCwHNMYUutg15QzI+IQf0KAN2mFQ9pOXyHE418D/B ahazGrddMNE5dj2Qa6Mwl7NTB9ubRiGf2xOxyd4nHIwsCyeNLVedcrb9K6YkLh9+ mAe1SogD3TlVZiOz14h0t9XEQ+vEmUSeyonHorTmUXpj4Ks9Eu7ZR+3X7mJ8LNbe xF/EuEQ74zzq65X6hGUTR8+RKsH0p9txAUSFaLnnwzE/sgJkKmrzNu5sd2a/CWgn vbk/G4ASLTjPMQ== -----END CERTIFICATE-----Generated at Mon Dec 22 16:37:02 2025 by rpki-client