This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft File: 40Y8J4uE4t8ApHvC2AyNgP-puok.mft (raw, json) Hash identifier: 8vBo/S5fZkq9+xg6/PA0awJVPY3L8/o1x/qv6SGICEU= Subject key identifier: E2:9B:87:C4:04:F3:5D:C3:8C:19:95:DF:91:E3:78:82:AF:71:0D:12 Authority key identifier: E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89 Certificate issuer: /CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89 Certificate serial: 019B3EDA97F79380D08FCF4C88DF63F2396F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft Manifest number: 1788 Signing time: Sun 21 Dec 2025 03:01:11 +0000 Manifest this update: Sun 21 Dec 2025 03:01:11 +0000 Manifest next update: Mon 22 Dec 2025 03:01:11 +0000 Files and hashes: 1: 40Y8J4uE4t8ApHvC2AyNgP-puok.crl (hash: N7wkg98+YcGvXgN9u+3ss94jI8TI2Y4M7Bb4vhmQMDY=) 2: 4mphuMGYKre7KcVIZklqvnEwe9w.roa (hash: BDdrPj5npMilCe1H11h3z51bgzRRHnfwNgW8/PXQiwk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:da:97:f7:93:80:d0:8f:cf:4c:88:df:63:f2:39:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89 Validity Not Before: Dec 21 03:01:11 2025 GMT Not After : Dec 22 03:01:11 2025 GMT Subject: CN=e29b87c404f35dc38c1995df91e37882af710d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:75:0b:99:a2:f6:1d:6b:b9:52:22:83:d6:f5: 7a:2b:24:f4:79:f3:9d:93:90:f5:70:7e:4e:86:e1: bb:66:bf:37:9c:80:86:c7:ed:24:93:75:4b:73:41: a7:f4:e9:d1:ea:79:f0:92:99:11:cc:43:18:34:f5: 8c:59:d6:61:ad:83:0a:04:03:c6:41:80:6b:41:a0: 0c:fd:03:24:c9:f4:25:85:dd:32:99:1d:41:15:c9: 87:e7:1b:4a:a5:9c:62:8d:ed:05:08:ac:e4:d5:33: ac:13:93:f9:6c:5d:25:bd:cc:ad:5e:64:9a:9a:40: 7e:9e:92:4e:8b:bf:49:c0:58:dc:c5:45:99:aa:66: 96:8b:3a:73:35:20:38:d1:b4:7d:57:c7:55:ce:0d: a9:9d:71:5b:82:69:ef:e9:9a:ee:83:4b:61:f3:7b: 6e:a5:48:86:a7:b0:97:8a:a5:32:d2:6c:e2:04:df: 1a:34:06:f9:db:ba:2c:24:2c:7a:0d:53:95:c5:03: c5:be:dd:50:7d:3d:1c:b8:04:2f:15:91:57:c4:39: 7e:c3:b1:5c:5a:78:9b:6f:c1:8e:95:cd:07:0c:a6: 1e:5a:cb:06:24:d4:7b:e9:7d:6e:81:cc:69:0a:4b: 87:65:b7:bc:92:99:20:33:07:f3:48:d0:b1:0a:c4: 36:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9B:87:C4:04:F3:5D:C3:8C:19:95:DF:91:E3:78:82:AF:71:0D:12 X509v3 Authority Key Identifier: keyid:E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:a9:e0:40:f3:39:ed:17:35:2d:8f:06:c2:f4:09:1c:0c:59: 30:7b:96:18:a9:d2:bc:a7:07:9b:be:94:19:18:fa:53:6c:59: 7e:a1:a1:5c:e9:22:23:c9:14:90:77:57:7b:b2:75:0b:76:95: 2f:ba:bd:7c:de:a1:7a:e6:ca:5b:c7:d3:5b:b2:2e:f7:ea:b4: 36:e6:09:c0:58:2d:9e:0e:be:ce:22:41:ae:d1:3f:e4:e2:48: fb:19:aa:bf:8b:fa:19:59:dd:84:fb:8d:c7:4f:bd:69:c1:ad: 1a:45:62:30:7c:77:77:a3:68:64:7a:37:9a:84:91:a9:33:da: 18:99:df:25:68:b5:6e:f1:ab:04:f8:e3:f8:54:8b:b8:63:25: c2:83:0e:8d:ed:f7:ca:9d:e3:07:a3:29:f6:75:9d:6b:78:f2: 71:e0:91:b6:96:f5:f8:ae:0d:cd:f0:e6:fa:a4:c0:db:9a:c9: f0:d3:3a:95:76:a1:46:c0:2a:e6:6a:26:fa:26:97:49:0d:c1: ec:e5:a9:97:69:d7:3f:4c:7c:8d:98:9b:05:e9:f8:55:81:bb: 97:5b:bd:3f:ec:bb:b1:e3:59:cf:42:61:e5:96:5a:24:c0:93: e5:48:e6:14:b0:67:0d:e0:6c:c3:23:26:f5:d0:d9:93:38:97: d3:2b:69:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+2pf3k4DQj89MiN9j8jlvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzNDYzYzI3OGI4NGUyZGYwMGE0N2JjMmQ4MGM4ZDgwZmZh OWJhODkwHhcNMjUxMjIxMDMwMTExWhcNMjUxMjIyMDMwMTExWjAzMTEwLwYDVQQD EyhlMjliODdjNDA0ZjM1ZGMzOGMxOTk1ZGY5MWUzNzg4MmFmNzEwZDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3ULmaL2HWu5UiKD1vV6KyT0efOd k5D1cH5OhuG7Zr83nICGx+0kk3VLc0Gn9OnR6nnwkpkRzEMYNPWMWdZhrYMKBAPG QYBrQaAM/QMkyfQlhd0ymR1BFcmH5xtKpZxije0FCKzk1TOsE5P5bF0lvcytXmSa mkB+npJOi79JwFjcxUWZqmaWizpzNSA40bR9V8dVzg2pnXFbgmnv6Zrug0th83tu pUiGp7CXiqUy0mziBN8aNAb527osJCx6DVOVxQPFvt1QfT0cuAQvFZFXxDl+w7Fc Wnibb8GOlc0HDKYeWssGJNR76X1ugcxpCkuHZbe8kpkgMwfzSNCxCsQ20wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOKbh8QE813DjBmV35HjeIKvcQ0SMB8GA1UdIwQY MBaAFONGPCeLhOLfAKR7wtgMjYD/qbqJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDBZOEo0dUU0dDhBcEh2QzJBeU5nUC1wdW9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC85N2JhY2UtYjJkNS00MDUyLThmNjEt NWYyZGZlZDVkMWE0LzEvNDBZOEo0dUU0dDhBcEh2QzJBeU5nUC1wdW9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC85N2JhY2UtYjJkNS00MDUyLThmNjEtNWYyZGZlZDVkMWE0 LzEvNDBZOEo0dUU0dDhBcEh2QzJBeU5nUC1wdW9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKangQPM5 7Rc1LY8GwvQJHAxZMHuWGKnSvKcHm76UGRj6U2xZfqGhXOkiI8kUkHdXe7J1C3aV L7q9fN6heubKW8fTW7Iu9+q0NuYJwFgtng6+ziJBrtE/5OJI+xmqv4v6GVndhPuN x0+9acGtGkViMHx3d6NoZHo3moSRqTPaGJnfJWi1bvGrBPjj+FSLuGMlwoMOje33 yp3jB6Mp9nWda3jyceCRtpb1+K4NzfDm+qTA25rJ8NM6lXahRsAq5mom+iaXSQ3B 7OWpl2nXP0x8jZibBen4VYG7l1u9P+y7seNZz0Jh5ZZaJMCT5UjmFLBnDeBswyMm 9dDZkziX0ytp6w== -----END CERTIFICATE-----Generated at Sun Dec 21 06:04:53 2025 by rpki-client