This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft File: eknuryQ0LDssYyyeSEYxON4twAs.mft (raw, json) Hash identifier: d35jHSJZ8VpjO5bFG0HzP7uRQ7c4NwEpwOtUPhnE6gk= Subject key identifier: D8:5D:1A:E7:A0:F0:56:F8:16:FE:9A:24:F2:7C:3F:73:20:BD:0D:AA Authority key identifier: 7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B Certificate issuer: /CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b Certificate serial: 019B3D5988F3A8A554A360BE0FCAA7387255 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft Manifest number: 178A Signing time: Sat 20 Dec 2025 20:00:36 +0000 Manifest this update: Sat 20 Dec 2025 20:00:36 +0000 Manifest next update: Sun 21 Dec 2025 20:00:36 +0000 Files and hashes: 1: eknuryQ0LDssYyyeSEYxON4twAs.crl (hash: cl3D1QZvb2XUmdhU+Zo+dKhMHgTQsMqi59p6UYg6vHg=) 2: kO8QB2zrXRxl2N43GaWd_Repq5M.roa (hash: IUmtRjKzI10q9uvO/9zEmrcKLU0qcJf4Uhid1F3g4yw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:59:88:f3:a8:a5:54:a3:60:be:0f:ca:a7:38:72:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b Validity Not Before: Dec 20 20:00:36 2025 GMT Not After : Dec 21 20:00:36 2025 GMT Subject: CN=d85d1ae7a0f056f816fe9a24f27c3f7320bd0daa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:c5:aa:e2:03:23:75:93:95:76:a3:de:e4: b9:65:8b:b6:49:ce:99:f7:0b:be:8d:c4:63:44:68: d7:85:34:eb:d6:73:db:9e:6e:24:dd:08:86:b8:0e: e1:1e:ff:95:2f:af:99:d3:bc:b5:51:3c:66:d6:35: b9:29:fd:74:44:8a:4d:fb:1d:52:79:8e:88:44:c0: a5:41:6e:c5:9f:16:ac:f1:bf:81:49:ab:5c:96:48: 3e:f0:64:16:a0:39:42:62:36:16:54:6e:b4:38:01: 07:59:96:a9:89:21:38:45:a5:6e:4a:ed:ec:cb:e4: fe:1f:ca:70:6e:bc:6a:8f:5f:3e:e4:09:e2:79:ef: 67:85:bf:c6:cf:bd:ba:a8:42:87:9d:ea:80:e4:19: e0:ff:cf:18:b1:a2:b3:e2:2e:c5:19:64:40:55:25: 73:f1:cb:ec:7b:d6:3b:4b:32:d8:c9:8e:37:f6:15: f2:25:b6:b2:af:7f:6f:21:65:eb:ca:e2:3a:76:58: c8:04:1a:d0:68:d2:8f:08:c7:4c:f8:f1:d0:73:90: 67:d3:a7:e4:df:94:07:b0:34:9b:33:82:b9:af:82: 71:7c:aa:cb:18:9f:79:5a:31:2c:cc:82:a4:17:05: b3:57:4e:98:ff:53:ff:37:25:09:9b:0e:ad:01:0e: 0b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5D:1A:E7:A0:F0:56:F8:16:FE:9A:24:F2:7C:3F:73:20:BD:0D:AA X509v3 Authority Key Identifier: keyid:7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:e9:76:9a:24:c1:51:ea:15:3f:dc:3a:98:73:47:61:a1:6d: 4f:04:0e:bd:69:61:38:c8:c8:1f:42:5b:bd:2f:e7:d4:c4:43: 1d:cf:a3:ec:b5:e8:0b:1c:91:fa:91:f2:ad:d4:0f:ef:74:8c: af:c0:d1:95:dc:b3:d7:93:39:51:4d:36:3c:d9:d7:46:10:9a: 16:b9:01:5d:3a:57:52:fb:42:42:71:15:07:fb:37:ad:58:22: f1:1a:57:33:8b:87:38:9f:80:84:7a:1e:a2:f1:fe:9d:f8:64: 3f:73:d8:cf:ff:7b:74:ce:f1:8e:d1:5a:62:31:79:31:d5:b2: 91:fe:f2:a8:96:75:7e:a6:0e:01:29:70:0c:a1:23:20:e3:7a: 23:a7:76:f8:d0:0d:2d:7d:c2:aa:91:61:6b:88:b6:23:6a:f0: 7e:68:30:2a:b4:a5:22:b0:09:ef:37:c3:80:ad:fe:08:2c:15: ed:31:67:4a:d9:2e:82:12:90:e3:df:c0:f6:5e:e9:20:73:9c: 2c:7f:8a:62:ed:ab:8a:56:40:67:05:ee:72:f6:4b:23:c9:e4: 52:fa:05:24:d1:e3:20:7d:2c:ba:1b:3d:bd:16:fe:31:87:9c: 8f:5a:cb:61:f7:d4:47:a4:06:79:f0:25:63:7d:6d:d0:25:5f: ca:d0:2d:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9WYjzqKVUo2C+D8qnOHJVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhNDllZWFmMjQzNDJjM2IyYzYzMmM5ZTQ4NDYzMTM4ZGUy ZGMwMGIwHhcNMjUxMjIwMjAwMDM2WhcNMjUxMjIxMjAwMDM2WjAzMTEwLwYDVQQD EyhkODVkMWFlN2EwZjA1NmY4MTZmZTlhMjRmMjdjM2Y3MzIwYmQwZGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRDFquIDI3WTlXaj3uS5ZYu2Sc6Z 9wu+jcRjRGjXhTTr1nPbnm4k3QiGuA7hHv+VL6+Z07y1UTxm1jW5Kf10RIpN+x1S eY6IRMClQW7Fnxas8b+BSatclkg+8GQWoDlCYjYWVG60OAEHWZapiSE4RaVuSu3s y+T+H8pwbrxqj18+5Aniee9nhb/Gz726qEKHneqA5Bng/88YsaKz4i7FGWRAVSVz 8cvse9Y7SzLYyY439hXyJbayr39vIWXryuI6dljIBBrQaNKPCMdM+PHQc5Bn06fk 35QHsDSbM4K5r4JxfKrLGJ95WjEszIKkFwWzV06Y/1P/NyUJmw6tAQ4LiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNhdGueg8Fb4Fv6aJPJ8P3MgvQ2qMB8GA1UdIwQY MBaAFHpJ7q8kNCw7LGMsnkhGMTjeLcALMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWtudXJ5UTBMRHNzWXl5ZVNFWXhPTjR0d0FzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy82M2I4YWEtNzIyZi00MDA5LWFkYTct ZjliNjA3MTE0NTNjLzEvZWtudXJ5UTBMRHNzWXl5ZVNFWXhPTjR0d0FzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy82M2I4YWEtNzIyZi00MDA5LWFkYTctZjliNjA3MTE0NTNj LzEvZWtudXJ5UTBMRHNzWXl5ZVNFWXhPTjR0d0FzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAROl2miTB UeoVP9w6mHNHYaFtTwQOvWlhOMjIH0JbvS/n1MRDHc+j7LXoCxyR+pHyrdQP73SM r8DRldyz15M5UU02PNnXRhCaFrkBXTpXUvtCQnEVB/s3rVgi8RpXM4uHOJ+AhHoe ovH+nfhkP3PYz/97dM7xjtFaYjF5MdWykf7yqJZ1fqYOASlwDKEjION6I6d2+NAN LX3CqpFha4i2I2rwfmgwKrSlIrAJ7zfDgK3+CCwV7TFnStkughKQ49/A9l7pIHOc LH+KYu2rilZAZwXucvZLI8nkUvoFJNHjIH0suhs9vRb+MYecj1rLYffUR6QGefAl Y31t0CVfytAt3Q== -----END CERTIFICATE-----Generated at Sun Dec 21 00:01:02 2025 by rpki-client