This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft File: EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft (raw, json) Hash identifier: /6nn0cHh0ODlekpgooO0m2ZfHDOI5cMg5WWV8fNMy1w= Subject key identifier: 63:D1:4F:08:31:D4:82:D4:CF:39:B3:98:16:41:AE:41:F5:BD:95:9B Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd Certificate serial: 019B2852C13B0B21F9276048BE98949D5206 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft Manifest number: 177E Signing time: Tue 16 Dec 2025 18:01:10 +0000 Manifest this update: Tue 16 Dec 2025 18:01:10 +0000 Manifest next update: Wed 17 Dec 2025 18:01:10 +0000 Files and hashes: 1: EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl (hash: Rgw5n4L2oG2kr0b6Zt8AgAZK19K26ORm9QIsPFy0WYg=) 2: NmHfVOAq428sUSSIRO7nZKCwlXg.roa (hash: 7cV2xNe1q0M48rtVit0uJemlcGCJGSiYbHDZVWgEp6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:28:52:c1:3b:0b:21:f9:27:60:48:be:98:94:9d:52:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd Validity Not Before: Dec 16 18:01:10 2025 GMT Not After : Dec 17 18:01:10 2025 GMT Subject: CN=63d14f0831d482d4cf39b3981641ae41f5bd959b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:52:e7:3f:a8:68:0c:39:d9:5a:91:39:99:a8: fa:de:a1:90:09:54:a6:ac:88:f0:a9:80:59:df:ad: 45:36:f6:4e:19:37:bd:4d:35:a1:8e:59:20:0b:d9: 32:e8:6f:75:49:00:84:0e:00:21:ef:05:f5:46:2b: 11:27:7a:68:17:f4:bc:ac:2e:7c:41:bc:25:54:7f: 9b:53:5d:1d:b6:51:13:89:ee:0b:6c:a4:f7:13:0a: 37:31:63:99:57:41:96:4c:ae:3f:9c:30:06:be:fd: 3a:54:ff:ec:8b:75:0f:9e:d5:45:73:0a:68:3a:6b: a0:7e:cb:db:ee:62:ac:d6:2d:01:fc:55:0b:88:31: c5:c6:27:4a:47:b9:f6:de:b5:81:4a:c8:c5:63:88: 3d:9a:a2:c9:73:04:bb:e1:89:71:2e:57:ad:63:1e: e2:0f:30:cf:0d:94:e9:ac:03:6c:d0:29:c5:7e:8b: eb:2f:54:6b:d5:64:93:69:44:8f:6f:74:cb:d1:ca: f9:ec:82:93:8e:dd:0d:c5:f7:fc:c7:2f:74:cc:ad: bd:b8:24:4f:82:49:60:a3:c6:ec:bc:2d:c8:51:ee: 51:45:e0:10:f8:57:2f:ab:05:6d:83:ea:90:d8:c9: 16:15:68:5a:a5:03:e9:5b:56:47:50:19:1b:13:f1: dd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D1:4F:08:31:D4:82:D4:CF:39:B3:98:16:41:AE:41:F5:BD:95:9B X509v3 Authority Key Identifier: keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:6c:18:25:e1:51:86:2a:56:09:28:a9:73:32:a7:22:38:03: 33:3a:c9:c3:4b:f9:7f:1e:b2:f8:82:31:e4:12:a7:a5:c7:f7: 93:97:fa:e2:ce:4a:38:9a:35:06:b0:b5:da:55:f5:31:a0:78: 46:2c:01:43:1f:12:0e:3d:3c:f8:e4:6a:c8:17:6a:01:6d:e5: 38:27:98:f9:c7:67:50:61:f1:e4:6d:cd:53:6c:f8:cb:d2:43: 58:09:28:9e:09:ee:1e:58:60:53:b5:50:05:0e:2c:9e:46:f4: 7d:e5:77:a0:7a:12:5f:86:de:e2:5f:d5:8d:04:50:fd:b3:1a: 7a:5c:51:67:6d:28:e1:e1:73:88:bb:9d:e1:30:6b:01:a6:a9: 5e:94:0b:95:9c:6a:a6:5c:a2:16:98:74:1d:4d:71:86:f9:ef: 71:67:52:b8:f6:dd:96:d0:60:06:7e:7e:a5:43:c2:52:08:0e: 53:5f:4c:06:07:d9:68:13:8a:e4:ab:48:69:43:fb:bc:05:9f: 18:06:30:2b:90:83:9d:d3:94:4a:5d:c1:a7:46:d4:a5:fa:5e: 8b:8d:64:75:5b:51:91:4a:9b:8a:3b:b5:09:8d:6d:01:58:90: a8:e1:fc:81:f4:ac:69:1b:6e:f3:ca:38:ba:a5:2e:10:b6:9c: 06:e3:e5:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsoUsE7CyH5J2BIvpiUnVIGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwN2E1YWYxOTZiOGEwZWE5NjBjMjhmNmIzZTc1MjkxYzdl ODYxY2QwHhcNMjUxMjE2MTgwMTEwWhcNMjUxMjE3MTgwMTEwWjAzMTEwLwYDVQQD Eyg2M2QxNGYwODMxZDQ4MmQ0Y2YzOWIzOTgxNjQxYWU0MWY1YmQ5NTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlLnP6hoDDnZWpE5maj63qGQCVSm rIjwqYBZ361FNvZOGTe9TTWhjlkgC9ky6G91SQCEDgAh7wX1RisRJ3poF/S8rC58 QbwlVH+bU10dtlETie4LbKT3Ewo3MWOZV0GWTK4/nDAGvv06VP/si3UPntVFcwpo Omugfsvb7mKs1i0B/FULiDHFxidKR7n23rWBSsjFY4g9mqLJcwS74YlxLletYx7i DzDPDZTprANs0CnFfovrL1Rr1WSTaUSPb3TL0cr57IKTjt0Nxff8xy90zK29uCRP gklgo8bsvC3IUe5RReAQ+FcvqwVtg+qQ2MkWFWhapQPpW1ZHUBkbE/HdvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGPRTwgx1ILUzzmzmBZBrkH1vZWbMB8GA1UdIwQY MBaAFBB6WvGWuKDqlgwo9rPnUpHH6GHNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjIt ZjkyOWUyNTUxNjI3LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjItZjkyOWUyNTUxNjI3 LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB2wYJeFR hipWCSipczKnIjgDMzrJw0v5fx6y+IIx5BKnpcf3k5f64s5KOJo1BrC12lX1MaB4 RiwBQx8SDj08+ORqyBdqAW3lOCeY+cdnUGHx5G3NU2z4y9JDWAkongnuHlhgU7VQ BQ4snkb0feV3oHoSX4be4l/VjQRQ/bMaelxRZ20o4eFziLud4TBrAaapXpQLlZxq plyiFph0HU1xhvnvcWdSuPbdltBgBn5+pUPCUggOU19MBgfZaBOK5KtIaUP7vAWf GAYwK5CDndOUSl3Bp0bUpfpei41kdVtRkUqbiju1CY1tAViQqOH8gfSsaRtu88o4 uqUuELacBuPlkg== -----END CERTIFICATE-----Generated at Tue Dec 16 21:34:50 2025 by rpki-client