This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json) Hash identifier: m33UrhquVt1Gjo1nRzy0YcWuP31j0X1hF+B518Eciqg= Subject key identifier: 1E:F6:26:75:C8:A3:D2:C3:0E:07:C1:B9:6E:F6:67:D7:9C:1A:9E:AE Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03 Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903 Certificate serial: 019B360E33CC866E93159D8754650B0F953F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft Manifest number: 103F Signing time: Fri 19 Dec 2025 10:00:58 +0000 Manifest this update: Fri 19 Dec 2025 10:00:58 +0000 Manifest next update: Sat 20 Dec 2025 10:00:58 +0000 Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: eLLQ1/jh0M9PSZhl+OQ5odZmr75zuA7zV9y4XvdTiAE=) 2: ZTmydTpXIXh_aFM6lIMP1nPGi4M.roa (hash: R6dO91YPQTwtwZipE8GfozYF7WvWuk+GMp9DghrSYmY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 10:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:0e:33:cc:86:6e:93:15:9d:87:54:65:0b:0f:95:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2834429775e6555e5742492286254b1da9f1903 Validity Not Before: Dec 19 10:00:58 2025 GMT Not After : Dec 20 10:00:58 2025 GMT Subject: CN=1ef62675c8a3d2c30e07c1b96ef667d79c1a9eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:21:7f:27:d6:57:8d:57:e2:85:39:04:b7:15: c0:05:93:6c:c8:d1:5a:68:03:fb:d9:85:de:63:51: a0:1a:4b:ee:75:a8:1f:e6:fc:d9:10:6c:5c:16:d2: 11:24:97:35:39:2a:17:77:d1:d0:07:e0:07:de:ec: 09:56:f2:9f:7d:19:2e:60:94:42:e5:3e:30:8a:f3: 9b:94:ec:ef:00:b9:a1:01:bf:f5:3f:7a:f5:78:f9: a7:e9:34:ca:99:ab:26:53:64:68:c6:05:cc:ec:9a: e3:a6:bd:ec:3e:1f:ac:15:cf:76:01:2d:bc:2a:b3: de:c7:8c:8d:36:03:45:4b:99:5f:67:fa:50:c6:ca: cb:57:f6:61:27:d1:80:5a:cb:b6:60:96:9c:39:27: 00:b6:6a:e3:b8:f9:5f:78:02:33:de:dc:6b:70:18: 09:8a:3b:3f:b3:01:bb:4a:a4:85:13:01:1c:97:71: 23:39:34:3c:50:09:4d:d5:33:5b:05:b0:27:e1:5d: 2f:57:bf:c9:9d:5a:d6:39:2b:4c:77:e6:6a:27:e4: e2:57:74:e4:48:f8:4a:a9:ed:eb:97:f3:9b:ba:8e: c8:79:da:12:1d:1b:5d:34:9f:7a:08:d9:2b:bc:b3: 07:e9:d8:59:31:72:d2:0d:3c:f7:b8:78:23:1c:c2: ff:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F6:26:75:C8:A3:D2:C3:0E:07:C1:B9:6E:F6:67:D7:9C:1A:9E:AE X509v3 Authority Key Identifier: keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:00:d4:71:f1:a8:92:ed:a6:08:24:7f:b2:e8:f9:ea:ca:c5: 33:a8:a1:79:42:46:94:32:52:44:4c:f6:10:ec:f6:e3:30:60: 9f:03:8d:54:15:8d:8b:ef:2b:84:0e:bc:a8:44:8c:2d:d8:34: 76:1f:dc:b5:56:8c:26:73:6d:27:29:69:09:18:10:41:c6:99: 59:2d:b2:01:39:99:6c:ef:50:59:b3:a9:98:d4:73:8c:e1:31: 1d:fc:9d:e0:e4:cc:e0:48:d6:1e:d8:4c:a3:3a:3e:6b:e9:ba: 6c:18:cd:61:4f:48:86:d9:15:cb:0a:04:a7:5e:34:d3:cc:d1: e8:7b:2d:0d:f3:bb:c4:36:f5:a4:c6:e0:84:e3:d3:45:03:66: 4e:c7:05:ad:a6:be:e3:ea:bf:15:6a:c2:3a:8b:02:5f:f6:2b: 38:c8:57:82:38:65:d5:c3:dc:06:2f:c7:72:af:d8:ad:f6:c1: c9:3e:18:34:eb:e7:38:68:7f:9c:37:2b:80:a3:4c:a3:25:e1: e7:0d:0e:68:7f:6b:d3:f1:a6:12:80:00:93:92:63:ba:48:c2: d3:e2:01:98:9f:b5:d9:11:5a:40:45:5a:7a:7c:41:ad:f4:15: 27:2a:2f:0f:4c:4a:75:09:3a:ba:dd:f4:dd:44:ac:70:7f:07: 27:24:fc:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2DjPMhm6TFZ2HVGULD5U/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyODM0NDI5Nzc1ZTY1NTVlNTc0MjQ5MjI4NjI1NGIxZGE5 ZjE5MDMwHhcNMjUxMjE5MTAwMDU4WhcNMjUxMjIwMTAwMDU4WjAzMTEwLwYDVQQD EygxZWY2MjY3NWM4YTNkMmMzMGUwN2MxYjk2ZWY2NjdkNzljMWE5ZWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyF/J9ZXjVfihTkEtxXABZNsyNFa aAP72YXeY1GgGkvudagf5vzZEGxcFtIRJJc1OSoXd9HQB+AH3uwJVvKffRkuYJRC 5T4wivOblOzvALmhAb/1P3r1ePmn6TTKmasmU2RoxgXM7Jrjpr3sPh+sFc92AS28 KrPex4yNNgNFS5lfZ/pQxsrLV/ZhJ9GAWsu2YJacOScAtmrjuPlfeAIz3txrcBgJ ijs/swG7SqSFEwEcl3EjOTQ8UAlN1TNbBbAn4V0vV7/JnVrWOStMd+ZqJ+TiV3Tk SPhKqe3rl/Obuo7IedoSHRtdNJ96CNkrvLMH6dhZMXLSDTz3uHgjHML/BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB72JnXIo9LDDgfBuW72Z9ecGp6uMB8GA1UdIwQY MBaAFOKDRCl3XmVV5XQkkihiVLHanxkDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iNjQ2OGQtMTBlZC00ZDQ4LTgwM2Mt ZWE5NzY2NWMxM2RmLzEvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9iNjQ2OGQtMTBlZC00ZDQ4LTgwM2MtZWE5NzY2NWMxM2Rm LzEvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuQDUcfGo ku2mCCR/suj56srFM6iheUJGlDJSREz2EOz24zBgnwONVBWNi+8rhA68qESMLdg0 dh/ctVaMJnNtJylpCRgQQcaZWS2yATmZbO9QWbOpmNRzjOExHfyd4OTM4EjWHthM ozo+a+m6bBjNYU9IhtkVywoEp14008zR6HstDfO7xDb1pMbghOPTRQNmTscFraa+ 4+q/FWrCOosCX/YrOMhXgjhl1cPcBi/Hcq/YrfbByT4YNOvnOGh/nDcrgKNMoyXh 5w0OaH9r0/GmEoAAk5JjukjC0+IBmJ+12RFaQEVaenxBrfQVJyovD0xKdQk6ut30 3USscH8HJyT88g== -----END CERTIFICATE-----Generated at Fri Dec 19 17:42:20 2025 by rpki-client