This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: qA2KzXAzBsZQO9FRhSPFAO4gdeVyXQSYeYAnnRUu7jE= Subject key identifier: AB:61:48:F4:40:9A:ED:42:AE:70:71:E7:97:4A:7D:B9:80:C6:2C:DB Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019B3BD9CA031E0338152218C5DBDE07E2A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 164D Signing time: Sat 20 Dec 2025 13:01:27 +0000 Manifest this update: Sat 20 Dec 2025 13:01:27 +0000 Manifest next update: Sun 21 Dec 2025 13:01:27 +0000 Files and hashes: 1: 1-Eladd6sj8Y7vq1mtW5h6ASM_tM.roa (hash: auxhruGljCxtN9ijkL9KZ/K4C+RcNKrzhKvUSRg/9HQ=) 2: 1-dpIOgQrHNlMUsxt6C2Ztf5nfuM.roa (hash: pCUJMhojWf39aVt/QyofbsbuGjc8Gizw3ZJ2MSqOsTA=) 3: 1-gUTUj2JpuChCvozdxCQFTR22DM.roa (hash: f/2CCyCRw0ujuPO8AP04nbSH6GVLpL5l8bdrrfS8KoQ=) 4: 4JmdsvBatEpFanHBLwN8tE53B0o.roa (hash: rZ4Y8EU6soeJCyiHjLhVB0iARab8gRMfLlwRpZ6KFuk=) 5: 7ap_QJi20SaGnPgK1pV6_7cP-Uo.roa (hash: BOo8F2wEw4BgZClwTOfUjkt0HIqhHPtSsQJru4E0kFk=) 6: 7pYVLfxDyksCdUmiOhbgviOo3x8.roa (hash: QcPN759vJqixjDGU3gmMeZsCeSMWabiqP3hVma37vPU=) 7: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: U56fCO2eUCHZiKSQXbMTOHu3P6Nw+IkbTj2zhDNB7WU=) 8: Hfkubm6yrWEn7gBE9wSMaD_ExXE.roa (hash: FXP2ir2FJkx6oy+MltDsbhNB8kOwwEjeXoSk5fOxlUM=) 9: Kk7xKrzHzx6qmDJI5CVBM_Sl474.roa (hash: m5FUWhJ54zbQwUlYkehhIiOw3x1SXokhdxGSIsx1B6c=) 10: Si8V8khtv0yVUA78DGGzfalNcCk.roa (hash: TuKNETdYYEdxWIcOAjkF1OdADD7zXp4g+mS6E5V7pvo=) 11: XjirH4cwDvxlRkAGxm7FSwAK2sM.roa (hash: YF/U/qPEr6M3Q+MIXQrnfUUKIV5n5WTRe7Dd9hsZTtM=) 12: aaSIhAJHCTwygtdFuXnOQPW6bY4.roa (hash: wv3RWyn/0THt7bCTdq/aMs2HWBM2MxgNANY6nblHNaA=) 13: azpo2jbXZip4fzf6JfxzYCloMXU.roa (hash: lChd9oLNFRupauF5HA1DBK7UGcNDTVpyA1eioCbGUns=) 14: cozXNddBZMRS0D_fVDWk42XqVNI.roa (hash: nP2wP4zibtasbSbsg7EMlMPSKjFkuBzXXdP2DBCONIM=) 15: iwe0kg-crqIWyp2IScMa9LxREgQ.roa (hash: CaVzf6weXzwiNznLUpeTB+QaHcaNjVgYiVjygsUgHxg=) 16: lQoeI3fot2NEOazpcJqwENKoEUU.roa (hash: Elimcemes6spMNky/T+TAYcPtxVw5jFrGcayiuk5D80=) 17: vsEC-C0-IZ2XJzdCqJMyLFlVXyo.roa (hash: 6dyvsyNO+SBB5YmEGzfWoUfWH/YqXAoOIBD3aTROXnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:ca:03:1e:03:38:15:22:18:c5:db:de:07:e2:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Dec 20 13:01:27 2025 GMT Not After : Dec 21 13:01:27 2025 GMT Subject: CN=ab6148f4409aed42ae7071e7974a7db980c62cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:3f:e0:ba:69:5f:70:e2:93:f8:ce:66:32:23: 9f:68:82:53:73:43:09:5e:48:06:22:0a:b2:e3:31: 9a:1e:6d:3c:ab:d2:c5:28:6c:44:02:d8:5e:0b:7f: de:f2:be:2c:00:91:0a:06:b1:35:fa:28:65:44:c0: 91:d4:28:88:00:5d:06:6d:be:c8:a1:ad:ad:6d:45: bb:1c:6d:30:99:5d:e7:c2:26:ee:5c:87:6f:d5:36: 2c:89:03:9c:a7:2d:1e:48:80:46:f5:87:38:9d:c0: 31:b5:f2:1c:81:4e:62:59:89:b4:46:5e:fc:43:80: de:b5:af:48:f7:e6:b9:7b:c9:ab:82:39:c3:96:8a: 87:e3:28:c3:fb:39:42:3c:21:c6:e4:ef:05:7b:ba: 60:5c:cd:85:bb:01:c9:59:2b:d4:a5:00:6f:9b:29: 29:de:b1:30:5e:7a:7f:77:b5:4b:57:67:32:2e:e9: 44:20:e0:be:62:09:60:7a:c3:4f:9c:f3:13:de:d0: 31:29:f6:f1:29:e9:1e:58:95:63:01:8e:96:17:0b: 2f:03:ee:b6:a6:a4:56:50:1f:ba:af:c3:12:2b:5f: 9e:a0:2f:7f:fb:33:a4:02:07:6e:5c:b9:9e:96:47: df:1b:56:36:1e:7e:b1:a7:f8:12:b0:13:cf:71:fe: ba:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:61:48:F4:40:9A:ED:42:AE:70:71:E7:97:4A:7D:B9:80:C6:2C:DB X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:46:e1:88:e8:ed:05:6c:eb:1b:cf:80:57:a6:ef:19:6b:93: 0a:71:18:b8:8e:58:f6:5a:26:69:66:d6:b9:b2:77:68:0e:93: 16:bd:55:6d:cb:f2:ec:6c:6b:3b:4a:96:33:33:39:1c:78:57: b0:a3:14:fc:63:3f:0d:ca:b1:fa:79:0d:68:6c:47:de:bf:85: e1:f3:2a:01:9f:2f:75:cb:92:9d:12:e2:b9:3f:f0:54:0b:9a: d8:f2:52:7f:32:e9:13:9a:11:23:4a:8e:d8:a5:5e:0f:7f:e2: cf:74:fd:c1:4c:ba:fc:2b:03:4c:97:e5:76:9b:cf:b0:4f:18: 3c:16:b5:8b:9c:17:cb:88:85:f8:a5:73:76:52:71:d4:08:63: 19:99:99:53:e7:b4:8a:79:35:1c:ea:10:40:ad:c7:69:5a:5a: da:82:29:2f:b8:fd:04:a6:c8:66:79:96:bc:5a:41:59:32:26: 12:de:8a:ba:9b:6e:09:7b:b7:a7:4d:20:5c:ee:85:1d:2e:b7: 21:67:9b:bd:33:76:31:29:15:23:7e:19:f4:3f:25:bf:e3:04: 22:65:20:5b:bb:7c:17:f4:a9:2a:c8:9b:1f:96:51:1a:69:96: 96:c4:5b:f1:67:85:6f:15:75:e4:f6:a8:70:12:12:b6:b0:40: 53:ad:32:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72coDHgM4FSIYxdveB+KpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjUxMjIwMTMwMTI3WhcNMjUxMjIxMTMwMTI3WjAzMTEwLwYDVQQD EyhhYjYxNDhmNDQwOWFlZDQyYWU3MDcxZTc5NzRhN2RiOTgwYzYyY2RiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAij/gumlfcOKT+M5mMiOfaIJTc0MJ XkgGIgqy4zGaHm08q9LFKGxEAtheC3/e8r4sAJEKBrE1+ihlRMCR1CiIAF0Gbb7I oa2tbUW7HG0wmV3nwibuXIdv1TYsiQOcpy0eSIBG9Yc4ncAxtfIcgU5iWYm0Rl78 Q4Deta9I9+a5e8mrgjnDloqH4yjD+zlCPCHG5O8Fe7pgXM2FuwHJWSvUpQBvmykp 3rEwXnp/d7VLV2cyLulEIOC+YglgesNPnPMT3tAxKfbxKekeWJVjAY6WFwsvA+62 pqRWUB+6r8MSK1+eoC9/+zOkAgduXLmelkffG1Y2Hn6xp/gSsBPPcf662QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKthSPRAmu1CrnBx55dKfbmAxizbMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU0bhiOjt BWzrG8+AV6bvGWuTCnEYuI5Y9lomaWbWubJ3aA6TFr1Vbcvy7GxrO0qWMzM5HHhX sKMU/GM/Dcqx+nkNaGxH3r+F4fMqAZ8vdcuSnRLiuT/wVAua2PJSfzLpE5oRI0qO 2KVeD3/iz3T9wUy6/CsDTJfldpvPsE8YPBa1i5wXy4iF+KVzdlJx1AhjGZmZU+e0 ink1HOoQQK3HaVpa2oIpL7j9BKbIZnmWvFpBWTImEt6KuptuCXu3p00gXO6FHS63 IWebvTN2MSkVI34Z9D8lv+MEImUgW7t8F/SpKsibH5ZRGmmWlsRb8WeFbxV15Pao cBIStrBAU60y6g== -----END CERTIFICATE-----Generated at Sat Dec 20 18:37:39 2025 by rpki-client