This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft File: EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft (raw, json) Hash identifier: Mi7+1CTokt1NUVH14xLy+7WvZiES/IYIyLsSxTK2d3M= Subject key identifier: 00:87:F5:E9:BF:D2:8E:A0:3C:C9:31:A7:01:0F:EC:D1:5F:DC:2B:41 Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd Certificate serial: 019B33E938F2BA8C78271C02E321575634BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft Manifest number: 1784 Signing time: Fri 19 Dec 2025 00:01:21 +0000 Manifest this update: Fri 19 Dec 2025 00:01:21 +0000 Manifest next update: Sat 20 Dec 2025 00:01:21 +0000 Files and hashes: 1: EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl (hash: ok1nFrtT2bezMgOd8KjNsdUIAXMDWRPti9kJUJ5+HtE=) 2: NmHfVOAq428sUSSIRO7nZKCwlXg.roa (hash: 7cV2xNe1q0M48rtVit0uJemlcGCJGSiYbHDZVWgEp6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e9:38:f2:ba:8c:78:27:1c:02:e3:21:57:56:34:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd Validity Not Before: Dec 19 00:01:21 2025 GMT Not After : Dec 20 00:01:21 2025 GMT Subject: CN=0087f5e9bfd28ea03cc931a7010fecd15fdc2b41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7d:a3:2c:56:ad:e4:25:d1:9e:c6:4d:09:1c: 8d:90:d7:3a:29:cb:fa:65:07:be:6e:10:a0:99:b2: a4:51:3c:10:6b:eb:11:11:69:4a:a6:86:14:bb:c8: 79:a0:ea:d1:a0:04:40:8d:b2:86:cc:f5:0a:c9:85: 30:94:c2:a6:96:1b:6f:ed:51:75:44:c9:7b:12:82: 16:37:79:25:21:46:91:97:79:2c:d5:ef:ae:ff:6a: be:c9:1b:2d:2f:bf:50:3f:53:dc:1d:54:dc:b1:8c: 14:24:c9:f7:b6:43:87:39:16:36:7a:7d:75:13:90: df:de:e1:40:88:9c:a7:97:9a:b5:f9:23:3a:fb:d3: 20:42:78:66:59:97:c6:9d:52:3a:8b:f6:ab:e2:20: 6a:75:c7:b5:b6:c0:0e:bb:0b:a3:21:12:4c:de:96: 28:73:02:16:ae:27:31:d1:03:4e:43:59:9e:0f:17: 9f:b4:a0:a6:00:24:01:2e:49:8b:a9:69:fb:2e:d7: b6:bc:cd:37:90:e3:4e:6b:87:91:1f:a5:85:34:35: 3c:58:cc:a0:8d:07:d7:c5:cc:d1:15:3c:1a:cc:df: f1:44:65:f4:46:ba:ca:95:0e:9e:78:f6:1f:6d:80: c6:6f:9e:38:23:4d:2e:b8:ec:cd:1a:05:4d:5c:f5: bb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:87:F5:E9:BF:D2:8E:A0:3C:C9:31:A7:01:0F:EC:D1:5F:DC:2B:41 X509v3 Authority Key Identifier: keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:13:bd:f8:8f:e0:20:00:28:66:e3:a2:98:8c:a7:e6:8e:96: 86:d1:f9:72:e9:5d:4f:cf:11:32:83:5b:9b:2e:01:f8:7c:c9: db:1a:fb:85:16:9b:39:53:5a:84:dc:78:dd:fc:b7:7d:0e:c1: 4c:45:20:11:88:c7:b2:f1:b7:d7:24:f2:7e:f7:f2:aa:0d:7b: 53:b2:4b:ea:02:b6:54:62:e3:b0:ab:f3:ce:80:6c:1b:90:1b: 8c:00:d6:b8:bb:1b:5e:b1:c1:6b:9c:4a:8b:b2:a9:b6:85:23: 4e:8a:44:0d:01:6c:e3:b0:7f:ae:31:90:4e:a5:b4:2b:fe:51: 0e:da:79:e8:27:dd:47:a6:eb:62:e7:bd:28:fa:37:bf:59:cb: 8f:e7:db:34:9c:c1:10:93:49:df:b4:0e:07:9b:39:c3:0b:34: 32:64:f0:c7:62:a1:da:78:2b:63:fa:c8:db:a9:7d:b5:7c:64: 8c:86:c8:0c:35:bb:c3:d5:91:79:14:24:75:c8:a7:8a:d5:26: 04:8d:10:42:f3:8f:3b:7b:5c:d1:44:02:21:a9:ac:aa:cb:42: cd:21:61:e7:fc:76:05:76:51:da:a7:c6:1e:ef:44:0e:5d:2a: 53:29:9d:0e:7d:06:1a:cf:62:cd:4a:9d:84:a9:40:b9:8d:95: 38:2f:a7:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6Tjyuox4JxwC4yFXVjS8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwN2E1YWYxOTZiOGEwZWE5NjBjMjhmNmIzZTc1MjkxYzdl ODYxY2QwHhcNMjUxMjE5MDAwMTIxWhcNMjUxMjIwMDAwMTIxWjAzMTEwLwYDVQQD EygwMDg3ZjVlOWJmZDI4ZWEwM2NjOTMxYTcwMTBmZWNkMTVmZGMyYjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqX2jLFat5CXRnsZNCRyNkNc6Kcv6 ZQe+bhCgmbKkUTwQa+sREWlKpoYUu8h5oOrRoARAjbKGzPUKyYUwlMKmlhtv7VF1 RMl7EoIWN3klIUaRl3ks1e+u/2q+yRstL79QP1PcHVTcsYwUJMn3tkOHORY2en11 E5Df3uFAiJynl5q1+SM6+9MgQnhmWZfGnVI6i/ar4iBqdce1tsAOuwujIRJM3pYo cwIWricx0QNOQ1meDxeftKCmACQBLkmLqWn7Lte2vM03kONOa4eRH6WFNDU8WMyg jQfXxczRFTwazN/xRGX0RrrKlQ6eePYfbYDGb544I00uuOzNGgVNXPW7UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFACH9em/0o6gPMkxpwEP7NFf3CtBMB8GA1UdIwQY MBaAFBB6WvGWuKDqlgwo9rPnUpHH6GHNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjIt ZjkyOWUyNTUxNjI3LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjItZjkyOWUyNTUxNjI3 LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxBO9+I/g IAAoZuOimIyn5o6WhtH5culdT88RMoNbmy4B+HzJ2xr7hRabOVNahNx43fy3fQ7B TEUgEYjHsvG31yTyfvfyqg17U7JL6gK2VGLjsKvzzoBsG5AbjADWuLsbXrHBa5xK i7KptoUjTopEDQFs47B/rjGQTqW0K/5RDtp56CfdR6brYue9KPo3v1nLj+fbNJzB EJNJ37QOB5s5wws0MmTwx2Kh2ngrY/rI26l9tXxkjIbIDDW7w9WReRQkdcinitUm BI0QQvOPO3tc0UQCIamsqstCzSFh5/x2BXZR2qfGHu9EDl0qUymdDn0GGs9izUqd hKlAuY2VOC+n9w== -----END CERTIFICATE-----Generated at Fri Dec 19 02:02:29 2025 by rpki-client