This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft File: 70QOE80mESzLWVF2D8-y1JFtcSc.mft (raw, json) Hash identifier: KWiAzWm3qN0cFJPR+hNFiLo7fERN5MPHC7//i6XmZ0E= Subject key identifier: FA:8E:BA:19:6F:EB:27:2D:CE:76:F4:7A:E3:70:02:DD:51:21:D2:4C Authority key identifier: EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27 Certificate issuer: /CN=ef440e13cd26112ccb5951760fcfb2d4916d7127 Certificate serial: 019B5ABFF7D507318DEE1CCB8C31836C3CCA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft Manifest number: 1798 Signing time: Fri 26 Dec 2025 13:01:28 +0000 Manifest this update: Fri 26 Dec 2025 13:01:28 +0000 Manifest next update: Sat 27 Dec 2025 13:01:28 +0000 Files and hashes: 1: 70QOE80mESzLWVF2D8-y1JFtcSc.crl (hash: ooJ9tJXZzRbxTZIsvKM9L+AxDVG9rg0yzFXh4aXZt7I=) 2: W0KEQ42eAsjOaTiDlKrXfXSH1aw.roa (hash: MjWN2D0Y+IB6RDhAWue+MqeEjuWUWzQKaH29Oe4TfRk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:f7:d5:07:31:8d:ee:1c:cb:8c:31:83:6c:3c:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef440e13cd26112ccb5951760fcfb2d4916d7127 Validity Not Before: Dec 26 13:01:28 2025 GMT Not After : Dec 27 13:01:28 2025 GMT Subject: CN=fa8eba196feb272dce76f47ae37002dd5121d24c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:73:bb:f9:6d:e4:37:86:ee:fe:1f:5b:49:9b: eb:4a:8d:b4:52:bc:e4:95:7d:37:dd:91:62:74:25: db:17:bb:75:a9:31:6f:6e:66:e3:65:52:a3:de:71: d8:8a:85:68:7d:cf:af:19:bd:ee:7a:ae:7b:ee:b6: fc:8b:d9:7f:db:a1:2f:72:5b:78:38:2a:35:e9:87: ba:14:22:bc:cb:55:b3:ae:e0:8e:46:c6:41:96:b6: 87:bb:ed:73:72:d0:36:be:89:36:b2:98:df:0a:b9: b6:e8:de:ca:47:1e:83:c4:23:5c:b0:c9:3a:78:c8: f9:61:ef:0b:e6:ac:f2:74:87:d3:1d:aa:9f:1c:0f: c1:19:bd:c4:79:36:f3:25:80:25:9d:30:4a:d3:e1: 18:13:c2:c9:ff:0a:56:ad:a6:25:d4:c3:8e:9a:7e: e1:52:e6:40:c0:26:9e:02:34:33:33:10:0a:d7:e2: 0c:a8:6a:9d:c6:b5:22:75:d6:7e:51:19:57:1d:00: 2c:ad:c0:13:76:af:55:7d:d9:68:8c:be:f1:35:a6: a2:25:79:7a:3f:fe:82:2f:29:fd:71:af:fd:fb:34: 26:25:cc:4d:d9:57:1f:b2:2c:14:ca:82:14:5a:59: 38:8a:7a:35:0e:bd:b0:08:07:9e:2e:0a:c9:f8:fa: 43:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:8E:BA:19:6F:EB:27:2D:CE:76:F4:7A:E3:70:02:DD:51:21:D2:4C X509v3 Authority Key Identifier: keyid:EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:d4:a4:04:c6:20:d1:c1:75:f8:d8:e7:db:4b:8f:6c:0b:c4: 5b:44:35:a0:48:f2:23:55:cb:43:ab:17:1b:76:77:7c:5c:8d: b0:b1:84:78:b9:06:33:70:02:31:fe:a5:c5:6f:4a:28:ba:11: 28:d2:7c:7d:60:cc:b3:7e:5f:be:1b:04:13:c1:a6:05:58:8c: 42:d4:47:cf:bf:08:a0:34:3f:e8:cd:55:5e:d7:5f:84:fc:4e: 35:a1:68:08:e8:c0:73:49:2a:97:b4:56:8a:45:1c:18:7c:93: 1c:3e:57:8c:21:a3:d1:87:f2:ad:40:96:03:59:21:7c:e2:38: 1e:d8:a1:46:d5:ee:34:76:7c:d9:b3:44:f7:f8:ff:c8:41:6c: e9:9c:26:09:72:5e:5d:13:95:a2:62:98:24:fa:86:32:78:4e: cb:93:7e:d7:74:6a:30:36:ed:e6:26:17:3f:d1:c2:d2:c6:e0: 26:a3:13:48:09:8d:a5:d0:ba:d5:16:c1:a9:c9:86:83:33:ae: cb:b0:60:79:9f:8e:0a:bc:d9:71:80:8c:83:e9:01:90:29:ff: 70:e8:6e:f3:7e:ce:f4:97:66:cf:52:f1:79:22:79:ab:c1:68: 1c:81:85:3d:68:39:94:ac:da:8a:0d:fb:8a:c3:24:1d:ec:21: c4:13:e4:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav/fVBzGN7hzLjDGDbDzKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNDQwZTEzY2QyNjExMmNjYjU5NTE3NjBmY2ZiMmQ0OTE2 ZDcxMjcwHhcNMjUxMjI2MTMwMTI4WhcNMjUxMjI3MTMwMTI4WjAzMTEwLwYDVQQD EyhmYThlYmExOTZmZWIyNzJkY2U3NmY0N2FlMzcwMDJkZDUxMjFkMjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXO7+W3kN4bu/h9bSZvrSo20Urzk lX033ZFidCXbF7t1qTFvbmbjZVKj3nHYioVofc+vGb3ueq577rb8i9l/26Evclt4 OCo16Ye6FCK8y1WzruCORsZBlraHu+1zctA2vok2spjfCrm26N7KRx6DxCNcsMk6 eMj5Ye8L5qzydIfTHaqfHA/BGb3EeTbzJYAlnTBK0+EYE8LJ/wpWraYl1MOOmn7h UuZAwCaeAjQzMxAK1+IMqGqdxrUiddZ+URlXHQAsrcATdq9VfdlojL7xNaaiJXl6 P/6CLyn9ca/9+zQmJcxN2VcfsiwUyoIUWlk4ino1Dr2wCAeeLgrJ+PpDEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPqOuhlv6yctznb0euNwAt1RIdJMMB8GA1UdIwQY MBaAFO9EDhPNJhEsy1lRdg/PstSRbXEnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzBRT0U4MG1FU3pMV1ZGMkQ4LXkxSkZ0Y1NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS81OTgzMWItZGU4YS00MGFjLWE5NDkt N2E4MzY4MDBlOWY3LzEvNzBRT0U4MG1FU3pMV1ZGMkQ4LXkxSkZ0Y1NjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS81OTgzMWItZGU4YS00MGFjLWE5NDktN2E4MzY4MDBlOWY3 LzEvNzBRT0U4MG1FU3pMV1ZGMkQ4LXkxSkZ0Y1NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW9SkBMYg 0cF1+Njn20uPbAvEW0Q1oEjyI1XLQ6sXG3Z3fFyNsLGEeLkGM3ACMf6lxW9KKLoR KNJ8fWDMs35fvhsEE8GmBViMQtRHz78IoDQ/6M1VXtdfhPxONaFoCOjAc0kql7RW ikUcGHyTHD5XjCGj0YfyrUCWA1khfOI4HtihRtXuNHZ82bNE9/j/yEFs6ZwmCXJe XROVomKYJPqGMnhOy5N+13RqMDbt5iYXP9HC0sbgJqMTSAmNpdC61RbBqcmGgzOu y7BgeZ+OCrzZcYCMg+kBkCn/cOhu837O9Jdmz1LxeSJ5q8FoHIGFPWg5lKzaig37 isMkHewhxBPk2w== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:18 2025 by rpki-client