This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft File: ESmtAUBy3mYXQ4-xr75BotvcgRw.mft (raw, json) Hash identifier: xj1HApVVDNsUkxH2Tb8DSuaCpIE0Pol3Y6dGXvRAyiY= Subject key identifier: E1:DF:56:D7:50:4C:3C:78:72:09:7C:15:43:D9:64:5B:2E:6A:80:80 Authority key identifier: 11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C Certificate issuer: /CN=1129ad014072de6617438fb1afbe41a2dbdc811c Certificate serial: 019B3CEC907E9ED8AFACF27D3F909F3D1015 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft Manifest number: 0F35 Signing time: Sat 20 Dec 2025 18:01:34 +0000 Manifest this update: Sat 20 Dec 2025 18:01:34 +0000 Manifest next update: Sun 21 Dec 2025 18:01:34 +0000 Files and hashes: 1: ESmtAUBy3mYXQ4-xr75BotvcgRw.crl (hash: 4wsOlsOl0YaPDe6UVFYGJa+wJZOpyScE+i/K3z8oJTk=) 2: lTwE90XrCNGA5eJTFjnSjOK1bSM.roa (hash: /sO0aTlcuRH7YD2SVxbEfIzYX6MelmZ8Ycirgk+wG1o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 18:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:ec:90:7e:9e:d8:af:ac:f2:7d:3f:90:9f:3d:10:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1129ad014072de6617438fb1afbe41a2dbdc811c Validity Not Before: Dec 20 18:01:34 2025 GMT Not After : Dec 21 18:01:34 2025 GMT Subject: CN=e1df56d7504c3c7872097c1543d9645b2e6a8080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2f:38:48:aa:89:2f:43:5d:41:d3:e2:a4:5c: 92:ed:7c:bf:d7:fd:cc:33:cf:05:75:83:07:57:db: e9:03:d3:97:e4:fd:96:a2:9e:bd:11:1b:b3:d5:af: 43:69:0a:12:7c:48:49:bd:dc:07:05:fa:ed:e5:e5: d4:a0:d7:c6:9a:2a:28:fb:20:cb:b2:2e:24:c2:91: d0:4e:5a:14:a8:60:4e:31:7b:1d:10:eb:7e:7c:81: 80:46:16:c3:08:73:d8:2e:6e:cf:4b:2f:37:87:cf: 1a:c1:16:c9:ba:43:a5:00:41:b6:58:bf:14:e4:ea: 09:d7:28:d2:85:47:3b:a9:c3:e0:d1:a1:3a:02:6c: de:e6:94:89:e7:8e:24:9d:54:bd:f7:b2:ec:eb:0e: 71:6c:72:ef:56:a5:c8:d7:d5:8d:b7:f1:03:ca:d1: 03:fe:31:2a:a5:2f:a8:62:f5:e3:45:b3:95:23:40: 95:54:c8:06:55:27:7f:87:55:e1:81:a5:05:45:54: b9:c6:ac:76:2e:e0:b5:67:88:29:6f:7c:65:b6:3d: 22:52:45:e3:78:f9:18:1a:e9:bd:d7:4d:09:cb:f2: 80:6a:5c:dc:d0:55:6f:5d:51:1a:9c:12:72:a8:37: b6:39:fc:f8:3c:18:82:8c:c5:d7:f6:fe:4a:7c:de: 05:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DF:56:D7:50:4C:3C:78:72:09:7C:15:43:D9:64:5B:2E:6A:80:80 X509v3 Authority Key Identifier: keyid:11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:19:9b:fe:6a:ac:2a:b8:b3:51:06:07:be:b9:58:e7:bc:28: 8c:33:3b:fa:5f:12:89:34:7b:b1:ec:ad:88:f4:5e:e2:db:40: c5:d4:a5:91:31:30:32:c8:04:0c:22:5a:4a:0c:f6:d6:2c:bd: 53:7f:2c:f1:5d:9d:c6:a3:97:26:56:a3:fa:4c:6c:1f:43:73: 16:bb:ba:b8:8f:46:2b:f7:9f:2c:ec:26:8f:8b:7b:2e:5b:5a: 47:01:c0:c0:1a:8c:2a:b3:e7:26:34:6a:67:c9:bc:b0:d8:da: ea:89:4c:49:11:59:1d:73:8a:68:e3:9a:cb:2e:b3:b9:74:de: 4a:5c:d9:1a:f4:90:2d:b1:c9:16:b8:cc:1a:ab:8d:22:7c:d5: 0d:98:68:61:b1:7a:20:8a:b0:cb:4d:4c:3b:a4:23:7d:9f:ba: 10:a6:a2:71:6b:6c:43:97:47:72:61:b1:ed:57:f2:7f:a0:32: 00:48:dc:9d:24:01:f5:c9:3a:21:6a:1c:be:af:e7:08:e3:47: de:5e:bb:93:a0:39:e2:53:bb:07:25:2c:39:0f:8e:a4:60:a4: c7:c4:1b:e3:df:d6:5a:8e:ae:98:e5:f9:33:3f:42:38:d1:86: f4:93:b5:9a:91:1e:43:a6:54:91:94:57:f2:2c:4a:82:a2:ec: 8d:9c:8c:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs87JB+ntivrPJ9P5CfPRAVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMjlhZDAxNDA3MmRlNjYxNzQzOGZiMWFmYmU0MWEyZGJk YzgxMWMwHhcNMjUxMjIwMTgwMTM0WhcNMjUxMjIxMTgwMTM0WjAzMTEwLwYDVQQD EyhlMWRmNTZkNzUwNGMzYzc4NzIwOTdjMTU0M2Q5NjQ1YjJlNmE4MDgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnC84SKqJL0NdQdPipFyS7Xy/1/3M M88FdYMHV9vpA9OX5P2Wop69ERuz1a9DaQoSfEhJvdwHBfrt5eXUoNfGmioo+yDL si4kwpHQTloUqGBOMXsdEOt+fIGARhbDCHPYLm7PSy83h88awRbJukOlAEG2WL8U 5OoJ1yjShUc7qcPg0aE6Amze5pSJ544knVS997Ls6w5xbHLvVqXI19WNt/EDytED /jEqpS+oYvXjRbOVI0CVVMgGVSd/h1XhgaUFRVS5xqx2LuC1Z4gpb3xltj0iUkXj ePkYGum9100Jy/KAalzc0FVvXVEanBJyqDe2Ofz4PBiCjMXX9v5KfN4FtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOHfVtdQTDx4cgl8FUPZZFsuaoCAMB8GA1UdIwQY MBaAFBEprQFAct5mF0OPsa++QaLb3IEcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVNtdEFVQnkzbVlYUTQteHI3NUJvdHZjZ1J3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC83ZTE5ODktNGIxZS00ZjMzLWJkMzIt YWM4ODE0OTdlMGEyLzEvRVNtdEFVQnkzbVlYUTQteHI3NUJvdHZjZ1J3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC83ZTE5ODktNGIxZS00ZjMzLWJkMzItYWM4ODE0OTdlMGEy LzEvRVNtdEFVQnkzbVlYUTQteHI3NUJvdHZjZ1J3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsRmb/mqs KrizUQYHvrlY57wojDM7+l8SiTR7seytiPRe4ttAxdSlkTEwMsgEDCJaSgz21iy9 U38s8V2dxqOXJlaj+kxsH0NzFru6uI9GK/efLOwmj4t7LltaRwHAwBqMKrPnJjRq Z8m8sNja6olMSRFZHXOKaOOayy6zuXTeSlzZGvSQLbHJFrjMGquNInzVDZhoYbF6 IIqwy01MO6QjfZ+6EKaicWtsQ5dHcmGx7Vfyf6AyAEjcnSQB9ck6IWocvq/nCONH 3l67k6A54lO7ByUsOQ+OpGCkx8Qb49/WWo6umOX5Mz9CONGG9JO1mpEeQ6ZUkZRX 8ixKgqLsjZyM1w== -----END CERTIFICATE-----Generated at Sun Dec 21 03:52:04 2025 by rpki-client