This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft File: EDfew086MutlAvFmKoKiD4teohw.mft (raw, json) Hash identifier: 4Yi4ZFfeJao2mYm2L5OFB+nEXnFpoUBROJZPOr6rTGA= Subject key identifier: 41:39:7E:0E:EF:06:3F:10:FC:8B:48:F5:BA:D6:68:F0:0B:7E:8C:20 Authority key identifier: 10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C Certificate issuer: /CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c Certificate serial: 019B1A28AADCC4CDBF815F9DA56F9E58D01A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft Manifest number: 1774 Signing time: Sun 14 Dec 2025 00:00:31 +0000 Manifest this update: Sun 14 Dec 2025 00:00:31 +0000 Manifest next update: Mon 15 Dec 2025 00:00:31 +0000 Files and hashes: 1: EDfew086MutlAvFmKoKiD4teohw.crl (hash: 1v15WGEf5Cf9+WnU5CUa5VnhRwnvLnkFAGtmT0xLVa8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 00:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:28:aa:dc:c4:cd:bf:81:5f:9d:a5:6f:9e:58:d0:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c Validity Not Before: Dec 14 00:00:31 2025 GMT Not After : Dec 15 00:00:31 2025 GMT Subject: CN=41397e0eef063f10fc8b48f5bad668f00b7e8c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:34:15:ec:28:86:04:f4:2e:7e:0a:f9:1c:1c: 45:59:98:a6:24:03:31:91:72:83:85:79:42:74:77: ef:ef:ac:b4:49:3b:34:06:84:93:d0:cf:92:ad:67: 0a:35:25:7a:87:74:7a:4a:23:49:46:e8:33:a1:36: 86:f0:9e:ef:70:f5:51:50:3a:d2:71:34:61:76:6c: 47:2c:52:29:7e:1b:47:ca:85:09:1b:ad:05:aa:14: 24:37:0c:0e:59:27:b8:81:b8:42:49:8b:31:0a:c8: 71:21:49:8b:14:3f:90:b1:32:35:30:51:d8:35:4b: ad:8f:b9:cb:e6:21:58:d3:61:14:f5:ee:b0:ed:6e: f7:2d:0b:a8:3e:89:a4:06:35:ca:bc:1d:1b:c4:cf: 5a:72:0d:b4:80:4b:f0:b8:1f:b9:85:8b:39:dd:28: 9a:42:52:75:56:43:ab:41:75:ae:5f:ee:52:6d:bf: 07:e2:1a:98:ff:60:82:1e:7b:cf:dd:4e:3e:34:87: f0:d5:9a:84:ac:aa:42:68:8f:83:2e:a0:ea:d3:68: 4a:8b:58:f4:8d:94:ef:12:19:e7:08:ce:18:eb:f2: 46:37:17:d4:a9:02:63:86:47:fb:08:f3:61:e5:d9: de:12:c8:e5:6d:ab:3b:15:50:4f:8c:50:97:57:3f: 6d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:39:7E:0E:EF:06:3F:10:FC:8B:48:F5:BA:D6:68:F0:0B:7E:8C:20 X509v3 Authority Key Identifier: keyid:10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:42:57:73:5e:33:de:9c:88:df:8d:6a:78:c8:70:e4:40:7f: 38:5d:a7:98:25:65:8f:60:e7:38:cb:6a:2d:93:61:b5:e7:99: 14:82:5c:20:14:49:8d:3b:a8:4e:3f:f7:5e:ce:1d:1d:db:44: af:e6:4f:aa:fc:20:c7:84:93:62:65:e2:a9:73:22:70:ef:12: c5:76:20:42:8b:ce:26:c0:dd:a0:9d:1a:42:7c:1a:cd:04:cb: 0b:0e:0e:15:2b:2f:b4:9d:1d:1e:5c:7e:06:fd:3f:cc:47:bf: 1f:81:0b:b6:23:a0:d1:cb:0a:dd:4f:0c:b8:d0:44:94:5e:2a: e5:4a:36:e9:14:07:76:72:d9:32:b8:fb:9d:42:3f:fa:53:6f: 16:d8:e8:f2:eb:f1:9e:22:58:35:93:dc:72:6e:b8:7d:fb:30: 95:ce:6e:a5:fc:1e:85:52:3e:31:43:d4:f0:96:45:72:b8:35: 40:83:8a:86:d9:c9:06:4b:ff:62:66:72:ce:24:69:89:97:5a: d0:78:fe:70:e0:01:40:70:42:a4:e1:72:e2:66:4a:ef:91:ff: f5:9d:90:bc:04:03:aa:64:81:f5:d7:67:c9:6e:ed:30:c1:11: df:2e:b3:3f:cf:6b:15:e1:c1:7d:5e:e5:d2:f6:86:48:d1:80: 0b:60:a5:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaKKrcxM2/gV+dpW+eWNAaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwMzdkZWMzNGYzYTMyZWI2NTAyZjE2NjJhODJhMjBmOGI1 ZWEyMWMwHhcNMjUxMjE0MDAwMDMxWhcNMjUxMjE1MDAwMDMxWjAzMTEwLwYDVQQD Eyg0MTM5N2UwZWVmMDYzZjEwZmM4YjQ4ZjViYWQ2NjhmMDBiN2U4YzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzQV7CiGBPQufgr5HBxFWZimJAMx kXKDhXlCdHfv76y0STs0BoST0M+SrWcKNSV6h3R6SiNJRugzoTaG8J7vcPVRUDrS cTRhdmxHLFIpfhtHyoUJG60FqhQkNwwOWSe4gbhCSYsxCshxIUmLFD+QsTI1MFHY NUutj7nL5iFY02EU9e6w7W73LQuoPomkBjXKvB0bxM9acg20gEvwuB+5hYs53Sia QlJ1VkOrQXWuX+5Sbb8H4hqY/2CCHnvP3U4+NIfw1ZqErKpCaI+DLqDq02hKi1j0 jZTvEhnnCM4Y6/JGNxfUqQJjhkf7CPNh5dneEsjlbas7FVBPjFCXVz9t9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEE5fg7vBj8Q/ItI9brWaPALfowgMB8GA1UdIwQY MBaAFBA33sNPOjLrZQLxZiqCog+LXqIcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRURmZXcwODZNdXRsQXZGbUtvS2lENHRlb2h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9iNjgwYWYtZDVhYi00YjJmLWE4Mzct MGQ0MWE2NGU5MGVjLzEvRURmZXcwODZNdXRsQXZGbUtvS2lENHRlb2h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9iNjgwYWYtZDVhYi00YjJmLWE4MzctMGQ0MWE2NGU5MGVj LzEvRURmZXcwODZNdXRsQXZGbUtvS2lENHRlb2h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsEJXc14z 3pyI341qeMhw5EB/OF2nmCVlj2DnOMtqLZNhteeZFIJcIBRJjTuoTj/3Xs4dHdtE r+ZPqvwgx4STYmXiqXMicO8SxXYgQovOJsDdoJ0aQnwazQTLCw4OFSsvtJ0dHlx+ Bv0/zEe/H4ELtiOg0csK3U8MuNBElF4q5Uo26RQHdnLZMrj7nUI/+lNvFtjo8uvx niJYNZPccm64ffswlc5upfwehVI+MUPU8JZFcrg1QIOKhtnJBkv/YmZyziRpiZda 0Hj+cOABQHBCpOFy4mZK75H/9Z2QvAQDqmSB9ddnyW7tMMER3y6zP89rFeHBfV7l 0vaGSNGAC2CloA== -----END CERTIFICATE-----Generated at Sun Dec 14 09:14:58 2025 by rpki-client