This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json) Hash identifier: ZnoDYviZ19sU/k7PNmbDRKHLhZuRn7dOG1646x81/IE= Subject key identifier: 4E:DE:13:9A:3F:83:41:D9:E6:A1:D3:CF:E6:6E:02:72:F8:10:80:71 Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a Certificate serial: 019B405ADAB56279C3E41A8B548BB4E10C70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft Manifest number: 14D2 Signing time: Sun 21 Dec 2025 10:00:54 +0000 Manifest this update: Sun 21 Dec 2025 10:00:54 +0000 Manifest next update: Mon 22 Dec 2025 10:00:54 +0000 Files and hashes: 1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: c3C1PpfH+v8bvqeLlV0QD9DYvcwfyFZZgtoTC9+EOiU=) 2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 10:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5a:da:b5:62:79:c3:e4:1a:8b:54:8b:b4:e1:0c:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a Validity Not Before: Dec 21 10:00:54 2025 GMT Not After : Dec 22 10:00:54 2025 GMT Subject: CN=4ede139a3f8341d9e6a1d3cfe66e0272f8108071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3b:fa:36:98:78:40:4d:a1:10:29:4a:e0:c0: c5:51:0a:69:32:59:23:26:c3:74:60:58:0c:0a:8a: 27:62:57:68:ef:cc:f9:c2:ff:fc:7f:e5:2a:75:95: a1:ac:e8:db:af:71:02:9d:ca:76:fb:3f:ea:af:5e: 05:05:cf:21:c3:d6:f2:82:00:62:98:88:2e:8c:81: e1:37:45:f0:a7:53:87:21:45:d2:34:47:ab:ec:67: 1d:f7:a8:65:dd:26:aa:2e:03:3c:92:20:97:03:a3: 44:0f:1e:8f:e0:ad:33:50:c9:7b:4e:39:e5:67:b4: 25:40:99:05:75:47:b6:fd:94:59:43:be:6b:44:6a: 6e:f0:30:d5:29:68:aa:d0:8e:9b:89:bb:01:01:45: 91:3d:1b:24:0f:1d:2d:17:5e:e0:42:5d:59:da:9f: 96:2f:61:ea:e1:d0:7c:f7:3a:7c:3d:02:1f:f2:16: 06:09:97:db:09:25:45:0b:25:27:ed:cc:bb:3c:1b: aa:05:85:ed:b7:18:62:e4:db:34:87:60:aa:05:6b: f8:96:29:33:54:62:a5:de:56:bb:2a:a9:0a:06:af: bd:ad:fa:80:b3:39:63:1d:f9:ab:c8:22:fb:87:a6: de:32:ca:4a:84:64:89:16:88:70:a8:a8:1b:2b:3f: 5a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DE:13:9A:3F:83:41:D9:E6:A1:D3:CF:E6:6E:02:72:F8:10:80:71 X509v3 Authority Key Identifier: keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:78:7b:65:7a:01:ce:1d:0c:9b:1e:8f:f1:aa:ec:4f:c3:c3: 51:86:43:93:a8:1c:51:20:17:7b:5d:48:c7:8f:11:a5:47:93: f0:90:ee:4a:20:3e:8b:d8:ed:3b:e3:2b:7e:05:67:5d:e1:b0: 64:b5:4e:d5:ea:55:13:e9:3e:09:49:21:ab:49:bc:d4:6d:6f: c8:c1:35:b5:93:cb:ac:4a:6c:7e:52:1e:40:7a:20:d7:9e:8e: 42:55:f1:96:bf:01:70:03:9c:69:6c:c3:46:28:70:aa:6c:08: ab:0e:ce:b1:58:e9:34:36:c1:e0:a0:dc:b8:4c:b6:4a:8f:cb: 60:53:55:9b:77:a5:0d:e9:2e:b0:1a:b9:c5:d7:5d:c8:a2:63: ca:a0:80:bb:59:01:e3:39:0e:73:71:08:fe:7f:66:9c:30:c1: 10:1f:83:e8:25:7b:cc:ff:ec:74:8e:3c:4a:4c:fb:4c:4e:cf: b3:2b:b9:0c:c3:ff:df:d3:f0:0b:b9:db:c3:d7:fc:c6:7e:44: 56:da:04:57:7b:1c:bc:6f:d7:c1:0d:e7:4a:73:e5:16:85:54: 3b:47:1a:a3:3a:83:4f:79:b1:99:80:49:e1:2f:1e:93:9d:87: a3:da:81:22:22:50:49:d6:12:50:c7:c7:ae:41:f1:5b:8e:d0: ab:42:ae:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAWtq1YnnD5BqLVIu04QxwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyYTEwZGU2ZmZhZTU5MDQyNzI0NGEwMzM0M2RiNjZhYzU2 NDI3NWEwHhcNMjUxMjIxMTAwMDU0WhcNMjUxMjIyMTAwMDU0WjAzMTEwLwYDVQQD Eyg0ZWRlMTM5YTNmODM0MWQ5ZTZhMWQzY2ZlNjZlMDI3MmY4MTA4MDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTv6Nph4QE2hEClK4MDFUQppMlkj JsN0YFgMCoonYldo78z5wv/8f+UqdZWhrOjbr3ECncp2+z/qr14FBc8hw9byggBi mIgujIHhN0Xwp1OHIUXSNEer7Gcd96hl3SaqLgM8kiCXA6NEDx6P4K0zUMl7Tjnl Z7QlQJkFdUe2/ZRZQ75rRGpu8DDVKWiq0I6bibsBAUWRPRskDx0tF17gQl1Z2p+W L2Hq4dB89zp8PQIf8hYGCZfbCSVFCyUn7cy7PBuqBYXttxhi5Ns0h2CqBWv4likz VGKl3la7KqkKBq+9rfqAszljHfmryCL7h6beMspKhGSJFohwqKgbKz9auQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE7eE5o/g0HZ5qHTz+ZuAnL4EIBxMB8GA1UdIwQY MBaAFOKhDeb/rlkEJyRKAzQ9tmrFZCdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTct NTc1NTQwNTg2MjBiLzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTctNTc1NTQwNTg2MjBi LzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfnh7ZXoB zh0Mmx6P8arsT8PDUYZDk6gcUSAXe11Ix48RpUeT8JDuSiA+i9jtO+MrfgVnXeGw ZLVO1epVE+k+CUkhq0m81G1vyME1tZPLrEpsflIeQHog156OQlXxlr8BcAOcaWzD RihwqmwIqw7OsVjpNDbB4KDcuEy2So/LYFNVm3elDekusBq5xdddyKJjyqCAu1kB 4zkOc3EI/n9mnDDBEB+D6CV7zP/sdI48Skz7TE7Psyu5DMP/39PwC7nbw9f8xn5E VtoEV3scvG/XwQ3nSnPlFoVUO0caozqDT3mxmYBJ4S8ek52Ho9qBIiJQSdYSUMfH rkHxW47Qq0KuJw== -----END CERTIFICATE-----Generated at Sun Dec 21 19:29:43 2025 by rpki-client