This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft File: 4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json) Hash identifier: t5KTLT1yQ3K5uqTTniZJ2Wy37fLZdPmzcQqVQdOHfPY= Subject key identifier: 3A:63:92:97:2D:05:A0:AB:3C:D9:4D:E0:E4:70:33:E3:65:AC:F5:1A Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C Certificate issuer: /CN=e041c85b474e8b6c00891d954124ff0c81200d8c Certificate serial: 019B345696C957A22DE2ED0A5A37F167306F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft Manifest number: 0ADD Signing time: Fri 19 Dec 2025 02:00:48 +0000 Manifest this update: Fri 19 Dec 2025 02:00:48 +0000 Manifest next update: Sat 20 Dec 2025 02:00:48 +0000 Files and hashes: 1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: n3L1E1XKG+vS/1/VwFLIKoB3H8/xudr4WhLxGdby3Gc=) 2: N3RhFZbfRfFlakkE1oKkv4idahs.roa (hash: S19WQvJ0cwuBe3l5agvGw5hBi9jlwv6QitA6NIAiWl4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:56:96:c9:57:a2:2d:e2:ed:0a:5a:37:f1:67:30:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c Validity Not Before: Dec 19 02:00:48 2025 GMT Not After : Dec 20 02:00:48 2025 GMT Subject: CN=3a6392972d05a0ab3cd94de0e47033e365acf51a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:38:b8:0e:5c:fe:74:2e:da:8e:63:8c:c4:b0: 5d:6d:58:54:77:8a:2e:85:e2:39:4d:e2:e7:7f:c1: 67:cb:0a:2d:51:85:90:eb:53:c9:22:1b:02:76:00: 33:31:be:43:e5:73:63:28:49:74:6b:64:c8:a8:0d: 33:8d:79:75:a7:3f:fe:a5:fb:bd:3f:aa:b4:c0:f8: 16:ac:8c:e7:ae:0d:3b:72:da:6b:d6:de:2f:df:5f: 65:d9:8d:e8:f9:d6:8e:06:d1:de:57:72:33:31:eb: e8:83:31:9e:89:0c:a3:19:1f:15:50:7c:e0:d5:81: fe:a9:63:e1:40:bd:11:22:02:74:4c:7b:f4:e7:19: 98:55:25:e9:ca:fe:7b:f3:8b:a8:0d:b8:24:35:66: e7:14:54:90:d0:e6:59:5f:a9:56:b2:47:4d:33:27: ba:51:9b:d6:65:d6:15:68:c1:de:ad:91:c2:9e:4e: b4:47:4f:d6:34:f8:d4:2d:8f:ca:3c:a7:79:f5:79: 72:2f:42:d4:94:0f:2c:0c:a0:2b:f3:9b:d1:33:ec: 5a:e0:79:d8:10:14:69:32:4c:08:e3:fd:c4:51:ac: 73:48:81:c3:8c:50:77:88:5a:7d:dd:15:91:01:83: 83:92:70:26:20:dd:d5:92:d4:9d:6c:d1:d9:a8:7a: b2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:63:92:97:2D:05:A0:AB:3C:D9:4D:E0:E4:70:33:E3:65:AC:F5:1A X509v3 Authority Key Identifier: keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:93:64:14:95:4d:da:ae:5b:41:5d:80:51:83:47:f4:01:db: 77:49:4f:a2:04:fd:82:ed:d7:f1:3c:ec:2c:19:01:a5:6b:23: fb:b9:85:94:9f:e0:cb:e2:d0:1c:99:b8:ff:69:fd:7d:a0:2a: 9b:42:40:a0:30:b7:6a:93:e6:5f:ae:36:03:a5:9f:79:a4:f5: 84:f6:c8:0c:f0:08:c3:f2:84:15:91:74:9a:c6:14:e8:c0:3f: 66:01:f1:b6:cd:c9:da:80:94:e6:3e:ba:e4:b1:9f:b4:91:5d: 62:f6:35:39:a4:12:d8:3a:a4:aa:9c:d8:29:bc:e2:d3:4a:ee: 00:cb:4d:09:8c:78:6f:09:68:c9:16:48:ff:de:30:04:6f:52: 52:d5:b3:d5:5d:fd:85:3d:69:f5:f0:af:08:d8:40:41:ca:ab: 68:38:4c:11:5f:0e:7b:c8:dc:b2:07:40:92:1b:6a:5a:92:2f: 85:2c:e7:2c:20:55:7f:aa:e3:53:3c:8a:2b:7e:24:d3:87:9a: e0:1e:17:97:48:aa:5e:ef:76:4f:d3:21:52:0a:79:96:8c:bc: 93:1c:1e:e2:74:f0:f0:fb:98:ab:06:2c:4e:72:42:25:e4:9d: b7:4d:af:2c:66:c4:25:86:20:df:8c:75:e3:f9:fd:18:0b:34: 5e:f0:3f:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0VpbJV6It4u0KWjfxZzBvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwNDFjODViNDc0ZThiNmMwMDg5MWQ5NTQxMjRmZjBjODEy MDBkOGMwHhcNMjUxMjE5MDIwMDQ4WhcNMjUxMjIwMDIwMDQ4WjAzMTEwLwYDVQQD EygzYTYzOTI5NzJkMDVhMGFiM2NkOTRkZTBlNDcwMzNlMzY1YWNmNTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzi4Dlz+dC7ajmOMxLBdbVhUd4ou heI5TeLnf8FnywotUYWQ61PJIhsCdgAzMb5D5XNjKEl0a2TIqA0zjXl1pz/+pfu9 P6q0wPgWrIznrg07ctpr1t4v319l2Y3o+daOBtHeV3IzMevogzGeiQyjGR8VUHzg 1YH+qWPhQL0RIgJ0THv05xmYVSXpyv5784uoDbgkNWbnFFSQ0OZZX6lWskdNMye6 UZvWZdYVaMHerZHCnk60R0/WNPjULY/KPKd59XlyL0LUlA8sDKAr85vRM+xa4HnY EBRpMkwI4/3EUaxzSIHDjFB3iFp93RWRAYODknAmIN3VktSdbNHZqHqyUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDpjkpctBaCrPNlN4ORwM+NlrPUaMB8GA1UdIwQY MBaAFOBByFtHTotsAIkdlUEk/wyBIA2MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC81NDllNGQtOGRlZS00NTliLTkyODMt NDZiYjNmYTI4YjAwLzEvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC81NDllNGQtOGRlZS00NTliLTkyODMtNDZiYjNmYTI4YjAw LzEvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASZNkFJVN 2q5bQV2AUYNH9AHbd0lPogT9gu3X8TzsLBkBpWsj+7mFlJ/gy+LQHJm4/2n9faAq m0JAoDC3apPmX642A6WfeaT1hPbIDPAIw/KEFZF0msYU6MA/ZgHxts3J2oCU5j66 5LGftJFdYvY1OaQS2DqkqpzYKbzi00ruAMtNCYx4bwloyRZI/94wBG9SUtWz1V39 hT1p9fCvCNhAQcqraDhMEV8Oe8jcsgdAkhtqWpIvhSznLCBVf6rjUzyKK34k04ea 4B4Xl0iqXu92T9MhUgp5loy8kxwe4nTw8PuYqwYsTnJCJeSdt02vLGbEJYYg34x1 4/n9GAs0XvA/pw== -----END CERTIFICATE-----Generated at Fri Dec 19 07:56:24 2025 by rpki-client