This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json) Hash identifier: +oJrou7snYtCrL1GlJRKH8/kXL2TJd13xcc5e7AbdKk= Subject key identifier: FE:88:93:D6:E7:B8:4B:C3:9A:36:2E:C3:1C:22:B8:37:CA:2E:28:C8 Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58 Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358 Certificate serial: 019B4392BF8E4DF36A6E09C5EFA875707F7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft Manifest number: 0755 Signing time: Mon 22 Dec 2025 01:00:49 +0000 Manifest this update: Mon 22 Dec 2025 01:00:49 +0000 Manifest next update: Tue 23 Dec 2025 01:00:49 +0000 Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: waYTZ6Rv+jfplXsWW8Ya5hJXbap7GQRHZceDHEPwJN8=) 2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:92:bf:8e:4d:f3:6a:6e:09:c5:ef:a8:75:70:7f:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358 Validity Not Before: Dec 22 01:00:49 2025 GMT Not After : Dec 23 01:00:49 2025 GMT Subject: CN=fe8893d6e7b84bc39a362ec31c22b837ca2e28c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b3:c9:e4:51:6f:88:83:8f:fc:40:5d:ce:e5: 38:f8:87:63:28:67:05:91:fb:02:ad:4d:78:7e:e2: c5:b3:b1:19:69:9c:1a:4c:ec:fa:01:a7:e4:2e:12: dd:7d:9f:c4:42:77:ec:c8:9b:eb:f3:fe:f7:ad:b4: 5b:9d:e4:dc:67:af:b4:f0:12:4b:81:c0:3b:3f:0f: e8:9d:b5:0a:36:fb:70:0d:22:6e:d7:4f:a6:1d:01: 6d:92:11:b0:0f:7a:55:0f:38:12:b6:19:6d:18:a6: 8e:4a:fd:72:c4:26:30:01:90:e2:c6:ee:bc:aa:d5: 21:cf:45:5a:45:f7:ac:38:81:b0:5f:9f:3a:ad:94: ad:ee:71:8e:cb:7c:a1:66:e7:54:18:5b:78:84:82: ea:10:6e:5d:72:dd:39:39:9c:57:bd:44:0e:34:46: 30:0a:50:94:23:09:33:fa:13:80:cd:1d:d5:f0:99: 47:1e:cf:19:d1:10:86:ff:3a:1c:64:d3:cb:ec:00: 60:13:48:55:c1:3a:a9:6a:d8:19:1b:a9:11:d6:aa: 24:d7:b8:97:a6:e6:50:58:53:1e:16:dc:96:b1:1c: 54:d4:c4:ae:87:b3:d1:f2:5f:b5:90:c5:9d:1f:e3: f2:f6:e6:10:84:1e:1b:ed:14:6c:fe:68:c7:19:f3: c1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:88:93:D6:E7:B8:4B:C3:9A:36:2E:C3:1C:22:B8:37:CA:2E:28:C8 X509v3 Authority Key Identifier: keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d4:5f:97:72:f6:4f:68:8f:b5:b0:2a:94:8d:07:75:22:f9:d5: 7b:12:11:be:18:b4:65:f7:b8:5f:b4:06:75:d4:f6:67:95:51: 03:e3:d8:ed:ab:c5:2b:e0:6b:8d:3d:8f:82:62:9a:45:51:0b: a8:57:06:36:20:e0:66:64:02:7a:42:3f:70:3e:18:b4:e8:91: 21:29:53:c1:2e:71:7f:79:cb:d0:90:12:69:2d:34:37:bc:15: 1d:0d:f3:6c:ac:3d:55:1f:f5:86:80:e8:0a:27:cb:d3:73:78: b1:fd:e3:94:fc:46:fd:79:80:94:d8:81:de:a8:a6:32:8a:53: ae:6d:81:6b:d0:ed:ac:70:27:eb:a5:95:9e:6f:15:be:6a:79: b8:7e:e6:11:ba:77:5b:9a:7f:05:a9:87:bc:df:fe:42:a9:cc: 3b:c8:50:5c:aa:05:ed:3b:05:1c:e3:db:a7:ee:ab:6d:ee:7f: 23:b2:de:5b:eb:22:9f:e5:27:ec:f3:e8:ce:d7:31:3d:cc:fa: df:10:d1:8b:6f:87:5f:2d:65:d1:ea:b4:a4:fa:fd:27:30:85: 1b:18:32:02:9e:d4:50:19:bd:36:84:ab:9d:3d:cc:90:f7:bd: 64:da:c1:ee:02:19:16:61:4b:26:f8:a2:d6:30:9e:31:94:b8: 55:5c:c4:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDkr+OTfNqbgnF76h1cH9+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxYWI4NmY4MGM0YmIyYWM1NmU0MWVjN2EyNDZhZTI5Njlk OGQzNTgwHhcNMjUxMjIyMDEwMDQ5WhcNMjUxMjIzMDEwMDQ5WjAzMTEwLwYDVQQD EyhmZTg4OTNkNmU3Yjg0YmMzOWEzNjJlYzMxYzIyYjgzN2NhMmUyOGM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7PJ5FFviIOP/EBdzuU4+IdjKGcF kfsCrU14fuLFs7EZaZwaTOz6AafkLhLdfZ/EQnfsyJvr8/73rbRbneTcZ6+08BJL gcA7Pw/onbUKNvtwDSJu10+mHQFtkhGwD3pVDzgSthltGKaOSv1yxCYwAZDixu68 qtUhz0VaRfesOIGwX586rZSt7nGOy3yhZudUGFt4hILqEG5dct05OZxXvUQONEYw ClCUIwkz+hOAzR3V8JlHHs8Z0RCG/zocZNPL7ABgE0hVwTqpatgZG6kR1qok17iX puZQWFMeFtyWsRxU1MSuh7PR8l+1kMWdH+Py9uYQhB4b7RRs/mjHGfPBRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP6Ik9bnuEvDmjYuwxwiuDfKLijIMB8GA1UdIwQY MBaAFOGrhvgMS7KsVuQex6JGrilp2NNYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGF1Ry1BeExzcXhXNUI3SG9rYXVLV25ZMDFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8xMjQwZWItYmFiNC00NWFkLTkzODct NTE2ZjExYWNiM2FlLzEvNGF1Ry1BeExzcXhXNUI3SG9rYXVLV25ZMDFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS8xMjQwZWItYmFiNC00NWFkLTkzODctNTE2ZjExYWNiM2Fl LzEvNGF1Ry1BeExzcXhXNUI3SG9rYXVLV25ZMDFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1F+XcvZP aI+1sCqUjQd1IvnVexIRvhi0Zfe4X7QGddT2Z5VRA+PY7avFK+BrjT2PgmKaRVEL qFcGNiDgZmQCekI/cD4YtOiRISlTwS5xf3nL0JASaS00N7wVHQ3zbKw9VR/1hoDo CifL03N4sf3jlPxG/XmAlNiB3qimMopTrm2Ba9DtrHAn66WVnm8Vvmp5uH7mEbp3 W5p/BamHvN/+QqnMO8hQXKoF7TsFHOPbp+6rbe5/I7LeW+sin+Un7PPoztcxPcz6 3xDRi2+HXy1l0eq0pPr9JzCFGxgyAp7UUBm9NoSrnT3MkPe9ZNrB7gIZFmFLJvii 1jCeMZS4VVzE5Q== -----END CERTIFICATE-----Generated at Mon Dec 22 04:23:08 2025 by rpki-client