This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json) Hash identifier: 9iZpruUkO58XMeFFk9TagdFere0die3KvQFQP6yHt6o= Subject key identifier: 55:EA:A1:70:6B:CA:69:8F:50:8F:CF:24:09:9A:4D:AE:B7:B2:08:23 Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44 Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144 Certificate serial: 019B0859F94AB0E1941B64E335AF8567E44D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft Manifest number: 0E54 Signing time: Wed 10 Dec 2025 13:01:12 +0000 Manifest this update: Wed 10 Dec 2025 13:01:12 +0000 Manifest next update: Thu 11 Dec 2025 13:01:12 +0000 Files and hashes: 1: HyPwmwNvj6CdMpZdefHGIg4yDzE.roa (hash: OXYxYv21hsNNqtBtEPFKc2/1/qoxMz48zojYmP3J5L8=) 2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: 1rjoGjL8i9kqQnf1SBH/pwL4LkQwYPiKT2z0xrELyAY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:59:f9:4a:b0:e1:94:1b:64:e3:35:af:85:67:e4:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144 Validity Not Before: Dec 10 13:01:12 2025 GMT Not After : Dec 11 13:01:12 2025 GMT Subject: CN=55eaa1706bca698f508fcf24099a4daeb7b20823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:17:13:8d:67:21:98:c0:c8:82:7c:b4:5c:fe: 8a:c6:35:ad:e2:ec:ce:ff:e2:b1:36:9f:3d:19:23: 43:33:db:72:5a:a8:77:16:3f:51:df:61:40:d7:11: ee:be:93:a0:47:90:b8:3f:a8:a5:32:c4:c0:28:91: b1:10:f6:03:2d:8a:d6:de:7c:9e:e6:67:cd:fd:d1: 6b:0c:37:c4:0e:7b:f8:c8:d6:ac:84:71:6d:05:38: 3b:60:3c:7d:4b:64:e5:c1:0f:c6:2e:21:a5:fa:d5: 52:5d:5b:86:7a:7a:d0:8d:7a:97:d3:40:49:b4:ff: 63:94:09:0a:ee:fa:f5:65:ad:77:80:1c:94:f9:59: e6:89:40:46:f1:ca:46:c9:b7:a5:aa:ce:d2:a2:74: 66:34:ba:ef:c1:9b:3e:f6:3f:0d:3d:dc:75:40:ca: e5:22:bc:ee:01:8f:2c:ab:31:f5:3e:44:43:d7:15: a8:7c:00:bd:ff:bf:dc:8c:ef:55:b3:80:66:ea:de: 0b:78:e3:5f:9a:7a:b0:0a:d2:c2:74:6f:13:44:e3: 13:dd:b4:ee:18:48:14:b5:05:55:eb:63:4f:0c:29: 7c:37:80:18:e3:30:25:95:e8:1b:a6:32:61:cf:cd: 7c:03:60:c6:3a:41:08:26:43:59:7e:ff:9a:74:47: c2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:EA:A1:70:6B:CA:69:8F:50:8F:CF:24:09:9A:4D:AE:B7:B2:08:23 X509v3 Authority Key Identifier: keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:c9:47:85:6e:2a:e2:12:6d:bd:a7:90:af:41:b6:6b:b9:c2: 64:de:14:c0:02:63:c6:17:10:f5:04:e0:e1:6a:b7:6d:43:39: cf:e0:1c:cf:65:57:64:ef:95:88:91:54:ab:5a:cd:1c:be:e0: 07:e2:ca:3b:c4:d0:4f:b9:99:4f:a0:8c:82:de:cc:ec:1c:7d: 30:77:e2:ed:0a:d8:b0:2f:0f:cc:5f:90:7f:f6:4e:bd:61:0b: 2b:ba:85:86:4c:07:83:d9:9b:57:8d:f4:27:d2:02:5b:8a:30: 64:88:15:dc:8d:19:b2:b5:78:f9:b9:d8:0d:ea:eb:a5:f7:20: f4:94:c9:51:16:51:85:fe:97:fa:58:e8:e9:9b:8d:68:c1:b6: f0:5c:18:2e:17:50:dd:de:6a:33:82:9b:a6:d0:81:24:0a:44: c2:f3:43:92:24:53:6c:bc:08:3b:ae:32:bc:94:e1:47:9d:06: 1e:d1:e0:fb:eb:4f:65:2f:2f:46:19:94:07:b1:d6:12:d8:7e: c6:2d:da:ac:55:d5:c7:e9:aa:4d:ce:92:39:eb:74:0b:c8:87: 4c:11:ac:69:97:78:9d:3a:b1:89:62:77:40:84:e4:ac:32:36: 46:a5:1a:34:70:a8:9a:73:7d:f7:67:64:0a:76:1d:b4:b8:ac: 83:50:23:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsIWflKsOGUG2TjNa+FZ+RNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNDNlNjIxZmUxMDA5NzAxZjYzNjY4NDNjMGFiYzQxZTE4 MGMxNDQwHhcNMjUxMjEwMTMwMTEyWhcNMjUxMjExMTMwMTEyWjAzMTEwLwYDVQQD Eyg1NWVhYTE3MDZiY2E2OThmNTA4ZmNmMjQwOTlhNGRhZWI3YjIwODIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBcTjWchmMDIgny0XP6KxjWt4uzO /+KxNp89GSNDM9tyWqh3Fj9R32FA1xHuvpOgR5C4P6ilMsTAKJGxEPYDLYrW3nye 5mfN/dFrDDfEDnv4yNashHFtBTg7YDx9S2TlwQ/GLiGl+tVSXVuGenrQjXqX00BJ tP9jlAkK7vr1Za13gByU+VnmiUBG8cpGybelqs7SonRmNLrvwZs+9j8NPdx1QMrl IrzuAY8sqzH1PkRD1xWofAC9/7/cjO9Vs4Bm6t4LeONfmnqwCtLCdG8TROMT3bTu GEgUtQVV62NPDCl8N4AY4zAllegbpjJhz818A2DGOkEIJkNZfv+adEfCVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFXqoXBrymmPUI/PJAmaTa63sggjMB8GA1UdIwQY MBaAFLBD5iH+EAlwH2NmhDwKvEHhgMFEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0VQbUlmNFFDWEFmWTJhRVBBcThRZUdBd1VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8zOTU2ODQtYzg3Mi00MjE3LWIyN2Mt OGI1ZWE2NjQ4MTc2LzEvc0VQbUlmNFFDWEFmWTJhRVBBcThRZUdBd1VRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC8zOTU2ODQtYzg3Mi00MjE3LWIyN2MtOGI1ZWE2NjQ4MTc2 LzEvc0VQbUlmNFFDWEFmWTJhRVBBcThRZUdBd1VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIMlHhW4q 4hJtvaeQr0G2a7nCZN4UwAJjxhcQ9QTg4Wq3bUM5z+Acz2VXZO+ViJFUq1rNHL7g B+LKO8TQT7mZT6CMgt7M7Bx9MHfi7QrYsC8PzF+Qf/ZOvWELK7qFhkwHg9mbV430 J9ICW4owZIgV3I0ZsrV4+bnYDerrpfcg9JTJURZRhf6X+ljo6ZuNaMG28FwYLhdQ 3d5qM4KbptCBJApEwvNDkiRTbLwIO64yvJThR50GHtHg++tPZS8vRhmUB7HWEth+ xi3arFXVx+mqTc6SOet0C8iHTBGsaZd4nTqxiWJ3QITkrDI2RqUaNHComnN992dk CnYdtLisg1AjQQ== -----END CERTIFICATE-----Generated at Wed Dec 10 19:55:43 2025 by rpki-client