This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft File: cegLwpz58rQKwwJOD3I126LVelQ.mft (raw, json) Hash identifier: jLs/HulaEt77HnaLsN9F1+jstPcrTjEWPMCOUKDMUfo= Subject key identifier: 5D:98:1A:4C:48:FD:B3:A2:77:B1:60:5B:31:55:06:31:54:81:9C:B0 Authority key identifier: 71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54 Certificate issuer: /CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54 Certificate serial: 019B40FFEE91A767D031678C9E6710952E4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft Manifest number: 06D9 Signing time: Sun 21 Dec 2025 13:01:13 +0000 Manifest this update: Sun 21 Dec 2025 13:01:13 +0000 Manifest next update: Mon 22 Dec 2025 13:01:13 +0000 Files and hashes: 1: cegLwpz58rQKwwJOD3I126LVelQ.crl (hash: zOvNezOTH4n/z9myV50GcqJRij0w0WQGKcMKTiUCTvc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:ff:ee:91:a7:67:d0:31:67:8c:9e:67:10:95:2e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54 Validity Not Before: Dec 21 13:01:13 2025 GMT Not After : Dec 22 13:01:13 2025 GMT Subject: CN=5d981a4c48fdb3a277b1605b3155063154819cb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bc:88:6c:e1:ca:b6:37:cb:8a:a4:58:b7:e5: 43:9c:40:c4:6a:cc:e8:16:ea:da:78:6c:96:ff:d3: 29:4a:51:40:47:6c:42:47:e1:e8:56:c2:a3:a8:ea: fd:8e:32:58:2b:a7:bc:21:b0:d1:bd:da:f5:d2:84: 6c:b2:99:5e:35:bf:27:2c:03:2b:68:87:c7:db:0e: 78:39:79:c2:6e:aa:38:2e:87:e0:0b:c7:7b:d1:61: fc:b3:97:86:f1:7b:99:f1:6b:b9:79:ba:e6:fe:42: 3d:b6:92:4e:74:fb:f5:b8:2e:b2:ec:5b:02:d3:60: a7:43:27:44:a5:33:6d:4e:94:c9:b2:67:7c:78:3c: ed:5e:44:31:8a:90:53:a5:4b:86:61:1d:02:b0:f9: 7c:91:f5:dd:ba:66:98:38:13:54:b7:4d:39:0b:30: 08:e2:f0:9b:03:a8:dd:63:56:b6:41:0b:6a:2d:b7: b0:35:a9:e4:f8:fb:b0:5e:34:dd:77:f9:73:be:4e: 6c:2d:64:70:1e:7b:42:02:e1:d4:bb:4c:d3:54:f0: 0a:c7:9e:84:83:71:b0:a9:33:73:d8:0a:da:77:8b: 4f:a3:bd:e1:f6:88:f3:a8:d8:15:52:a5:25:ad:ff: 6e:03:06:b4:20:e6:c9:d7:c9:0e:ef:63:60:e7:74: b9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:98:1A:4C:48:FD:B3:A2:77:B1:60:5B:31:55:06:31:54:81:9C:B0 X509v3 Authority Key Identifier: keyid:71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:72:5e:bd:d7:38:29:4d:96:e8:70:5e:6d:cd:4e:9e:61:e7: 4a:63:3d:3e:4f:a7:17:a2:e5:bb:23:e0:b0:f9:1a:e2:8a:69: 24:d2:ff:d9:d9:cb:81:08:93:f8:77:9d:7a:64:7b:a6:f7:02: a0:cb:7f:18:bb:54:e5:bf:c3:e2:c4:a2:a9:6b:9e:61:9a:09: 87:51:ae:39:66:74:77:76:62:e9:aa:14:9f:22:c2:58:65:1b: 04:4a:4e:32:57:f2:74:e0:2f:f7:81:82:12:fa:9a:74:d6:6d: 8d:42:de:0b:37:41:4b:19:d3:db:bc:da:50:f2:1f:fe:9a:c1: 6e:5b:59:8d:38:78:da:40:43:8a:ef:20:d9:89:46:c2:77:aa: 69:84:21:36:94:d0:85:fa:e8:a0:d6:ad:9d:e1:7c:d2:0d:73: 6e:0f:04:57:dc:92:59:6f:d1:39:b6:21:dd:cc:3e:06:2e:18: 9e:88:62:a8:5e:b0:d3:37:11:8d:b8:95:dd:b4:4a:70:21:09: e8:3d:3c:2e:b3:29:3e:5a:f4:ac:c4:ee:25:d6:e7:af:75:9c: f6:c9:7f:eb:e2:b1:e6:8c:55:20:1a:32:b2:ae:47:f4:56:cb: 55:8a:36:11:af:dd:46:35:30:57:0b:b2:e1:4f:c3:40:8e:d5: 72:21:e7:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtA/+6Rp2fQMWeMnmcQlS5KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZTgwYmMyOWNmOWYyYjQwYWMzMDI0ZTBmNzIzNWRiYTJk NTdhNTQwHhcNMjUxMjIxMTMwMTEzWhcNMjUxMjIyMTMwMTEzWjAzMTEwLwYDVQQD Eyg1ZDk4MWE0YzQ4ZmRiM2EyNzdiMTYwNWIzMTU1MDYzMTU0ODE5Y2IwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLyIbOHKtjfLiqRYt+VDnEDEaszo FuraeGyW/9MpSlFAR2xCR+HoVsKjqOr9jjJYK6e8IbDRvdr10oRsspleNb8nLAMr aIfH2w54OXnCbqo4LofgC8d70WH8s5eG8XuZ8Wu5ebrm/kI9tpJOdPv1uC6y7FsC 02CnQydEpTNtTpTJsmd8eDztXkQxipBTpUuGYR0CsPl8kfXdumaYOBNUt005CzAI 4vCbA6jdY1a2QQtqLbewNank+PuwXjTdd/lzvk5sLWRwHntCAuHUu0zTVPAKx56E g3GwqTNz2Arad4tPo73h9ojzqNgVUqUlrf9uAwa0IObJ18kO72Ng53S50QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF2YGkxI/bOid7FgWzFVBjFUgZywMB8GA1UdIwQY MBaAFHHoC8Kc+fK0CsMCTg9yNdui1XpUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mNTAzNTMtZjRlOC00ZjYwLWFlMTYt NzI0NzMwNGZiMTVmLzEvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mNTAzNTMtZjRlOC00ZjYwLWFlMTYtNzI0NzMwNGZiMTVm LzEvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjnJevdc4 KU2W6HBebc1OnmHnSmM9Pk+nF6LluyPgsPka4oppJNL/2dnLgQiT+HedemR7pvcC oMt/GLtU5b/D4sSiqWueYZoJh1GuOWZ0d3Zi6aoUnyLCWGUbBEpOMlfydOAv94GC EvqadNZtjULeCzdBSxnT27zaUPIf/prBbltZjTh42kBDiu8g2YlGwneqaYQhNpTQ hfrooNatneF80g1zbg8EV9ySWW/RObYh3cw+Bi4YnohiqF6w0zcRjbiV3bRKcCEJ 6D08LrMpPlr0rMTuJdbnr3Wc9sl/6+Kx5oxVIBoysq5H9FbLVYo2Ea/dRjUwVwuy 4U/DQI7VciHnyA== -----END CERTIFICATE-----Generated at Sun Dec 21 19:29:44 2025 by rpki-client