This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json) Hash identifier: e6KkzAFKfIJjMpGCyPRz7A99inGSw7meq6Oin2Dr7cU= Subject key identifier: CA:CC:48:5D:75:86:08:3F:35:4F:E3:76:8A:2D:2A:7C:4B:33:F2:C6 Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00 Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900 Certificate serial: 019AEED14433190591D6541C2678BD2F0996 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft Manifest number: 1763 Signing time: Fri 05 Dec 2025 14:01:23 +0000 Manifest this update: Fri 05 Dec 2025 14:01:23 +0000 Manifest next update: Sat 06 Dec 2025 14:01:23 +0000 Files and hashes: 1: 1-rU3n-MmX0x7vSSIglpKrM6p7wc.roa (hash: c73xh5XkAcPFRSo/oWqlfjE2NzFubQ+3BLO5+whFr6o=) 2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: EzRhHo31CrY0gIuv4yYFYPP22zw2qqny5UFtNgOECRg=) 3: lAPGewAMTsg2zoYnnReshsfQhuc.roa (hash: cQriD0k+t33lYmHxMgkTAtEHjw/RaZJ3vs4rH148M98=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 14:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ee:d1:44:33:19:05:91:d6:54:1c:26:78:bd:2f:09:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900 Validity Not Before: Dec 5 14:01:23 2025 GMT Not After : Dec 6 14:01:23 2025 GMT Subject: CN=cacc485d7586083f354fe3768a2d2a7c4b33f2c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1a:af:80:ca:6e:fc:0f:70:41:d9:e6:05:bd: dc:d1:d2:7c:6a:1b:67:bf:d0:5c:4a:01:c2:14:7d: 67:78:91:f7:9e:62:75:b9:54:11:0d:ca:28:f6:3a: 80:f7:e4:8c:01:ac:ed:64:ff:6e:96:d8:84:60:66: 8b:c1:d6:65:45:82:4e:3e:83:2d:7c:55:9c:1e:72: fd:07:01:6a:b3:24:38:54:33:6d:73:0e:e6:96:10: da:e5:9c:32:64:9e:da:88:af:33:a5:10:aa:17:b3: e5:cd:cd:f4:bf:36:b0:e2:c1:32:cc:c0:92:9a:2e: 17:36:90:10:ff:4e:6e:49:5c:f8:a3:6f:38:09:09: 6b:bf:0c:77:56:bc:a9:fc:66:01:4d:de:7e:fc:dc: 3b:9f:cb:5c:f9:3f:18:5a:30:d1:80:6a:b6:77:1f: c2:40:05:5a:d7:db:08:66:8c:93:93:6c:94:41:f1: 12:1c:11:8f:99:4b:6e:2c:06:2c:f3:66:31:86:c6: 65:76:a2:8d:d2:2f:13:38:db:c5:63:ca:8a:36:5d: 95:00:77:c0:2b:ce:18:61:0e:19:c1:dc:e2:92:7c: aa:01:08:15:2c:d3:9b:e4:9b:04:3b:38:4d:9d:cc: 43:16:db:50:58:08:67:47:1e:41:f3:8b:94:92:8d: 43:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:CC:48:5D:75:86:08:3F:35:4F:E3:76:8A:2D:2A:7C:4B:33:F2:C6 X509v3 Authority Key Identifier: keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:99:ed:a3:fb:6f:56:00:e0:4f:e1:b4:48:07:15:5c:de:82: fd:a3:69:32:f8:95:b3:d4:b1:b3:00:6f:99:9c:66:69:24:c4: 6f:17:2d:0f:f9:5d:35:6e:9f:eb:ef:89:66:d7:00:4a:8f:7f: 13:67:26:e1:64:a0:66:85:6d:02:4e:7c:b2:e5:16:e5:ca:6a: ec:4e:5a:9b:f9:25:a6:58:7c:d6:17:d1:be:71:d8:01:3f:8b: 2e:a7:55:61:65:f2:0b:04:09:b7:e6:65:e1:cb:f9:72:10:6f: e0:a9:df:09:cc:fb:aa:0e:14:29:01:b8:87:cb:9d:a5:29:1d: ae:59:7d:c0:14:13:0f:41:64:5b:37:1f:0b:2b:35:2b:6f:b9: 6b:47:b5:65:f7:b3:da:e7:2a:2c:3a:89:3d:3d:f2:d3:f9:cd: 23:57:f8:01:c2:a0:ce:66:46:14:9b:60:8a:36:d7:3f:85:95: 07:e7:e7:78:b4:28:21:fc:39:17:d7:8c:67:e4:6f:e0:ab:59: 3f:df:93:44:5d:f7:53:b6:df:2d:af:e7:a6:74:62:db:8b:df: cc:bf:02:41:d7:41:f8:f2:b1:d4:60:d4:da:d5:cd:b1:03:7b: a6:20:50:b8:1f:90:92:06:dd:ed:14:d9:c5:ee:b6:c2:ce:97: cb:79:e2:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZru0UQzGQWR1lQcJni9LwmWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyZGEyM2QzYjkzMGQ0YzFmM2FjNzMwNjVkNzFhNjA3YzM1 ZDI5MDAwHhcNMjUxMjA1MTQwMTIzWhcNMjUxMjA2MTQwMTIzWjAzMTEwLwYDVQQD EyhjYWNjNDg1ZDc1ODYwODNmMzU0ZmUzNzY4YTJkMmE3YzRiMzNmMmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRqvgMpu/A9wQdnmBb3c0dJ8ahtn v9BcSgHCFH1neJH3nmJ1uVQRDcoo9jqA9+SMAaztZP9ultiEYGaLwdZlRYJOPoMt fFWcHnL9BwFqsyQ4VDNtcw7mlhDa5ZwyZJ7aiK8zpRCqF7Plzc30vzaw4sEyzMCS mi4XNpAQ/05uSVz4o284CQlrvwx3Vryp/GYBTd5+/Nw7n8tc+T8YWjDRgGq2dx/C QAVa19sIZoyTk2yUQfESHBGPmUtuLAYs82YxhsZldqKN0i8TONvFY8qKNl2VAHfA K84YYQ4ZwdziknyqAQgVLNOb5JsEOzhNncxDFttQWAhnRx5B84uUko1DywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMrMSF11hgg/NU/jdootKnxLM/LGMB8GA1UdIwQY MBaAFOLaI9O5MNTB86xzBl1xpgfDXSkAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzIt ODI3YTBhYzA0YTlkLzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzItODI3YTBhYzA0YTlk LzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEZnto/tv VgDgT+G0SAcVXN6C/aNpMviVs9SxswBvmZxmaSTEbxctD/ldNW6f6++JZtcASo9/ E2cm4WSgZoVtAk58suUW5cpq7E5am/klplh81hfRvnHYAT+LLqdVYWXyCwQJt+Zl 4cv5chBv4KnfCcz7qg4UKQG4h8udpSkdrll9wBQTD0FkWzcfCys1K2+5a0e1Zfez 2ucqLDqJPT3y0/nNI1f4AcKgzmZGFJtgijbXP4WVB+fneLQoIfw5F9eMZ+Rv4KtZ P9+TRF33U7bfLa/npnRi24vfzL8CQddB+PKx1GDU2tXNsQN7piBQuB+Qkgbd7RTZ xe62ws6Xy3niLQ== -----END CERTIFICATE-----Generated at Fri Dec 5 23:05:03 2025 by rpki-client