This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft File: ejUNAkrwH46vElcXyqA6r60YTh0.mft (raw, json) Hash identifier: fWHpI/3W4Xfb1pV1vq603xjZsmppNttZdJ6wjlGyW74= Subject key identifier: B9:3B:6F:40:C5:B0:E3:B8:2A:96:97:99:56:AB:B5:B5:F6:49:B3:6E Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D Certificate issuer: /CN=7a350d024af01f8eaf125717caa03aafad184e1d Certificate serial: 019B4437BCD4BA6F7D0047B8C84AF8192E5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft Manifest number: 178D Signing time: Mon 22 Dec 2025 04:01:02 +0000 Manifest this update: Mon 22 Dec 2025 04:01:02 +0000 Manifest next update: Tue 23 Dec 2025 04:01:02 +0000 Files and hashes: 1: 2JjyX_-1ihqsSblonAIGQ2WI8zE.roa (hash: zFek1n9vUOT2IuGKFpGhKS8yEEOPqAUeFGqimhy7H3I=) 2: 2zv-bqUF4ie6dLoJOvbHg-Khzrk.roa (hash: SuQwzPeSaf/HqGV5aFne0AqsUIDLEGL4BEqdCUksZzA=) 3: 90IBFTm1n0EdouWYts1bm2C2AV0.roa (hash: ERgPNr6bXt5OGFwKPUno3LLiwFJjlAJ5vniWmV4rL9o=) 4: IPDWq2JXklmZilVzAW_qJFHve_M.roa (hash: 8qLID3yci9mCWiyOl1eMby2l1Aaax7OKoB39T8J6xu0=) 5: Qhk5DeOzxRoTsaRY5UPu50xo2Q4.roa (hash: SAnzykFF7+yaqNzuYwleeCNNDy8d940iOSnUgG5s+iM=) 6: Zu3SmHOhZpwuSSti9wdImp6Ga-Q.roa (hash: 5ZnrCuNHa1wjQpFfQY/Zj6DgGr5ywhEPGA9N3saHG2U=) 7: ejUNAkrwH46vElcXyqA6r60YTh0.crl (hash: EkOdNue4/UuOTsU0iwgVzIf38cRNhjCexl2ZUVSMCWI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:37:bc:d4:ba:6f:7d:00:47:b8:c8:4a:f8:19:2e:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d Validity Not Before: Dec 22 04:01:02 2025 GMT Not After : Dec 23 04:01:02 2025 GMT Subject: CN=b93b6f40c5b0e3b82a96979956abb5b5f649b36e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:72:4b:b1:1d:5b:c6:02:a1:b8:21:b1:85:4c: b9:08:a6:e0:9f:db:c2:73:3e:3e:a4:1f:69:b9:5d: 6a:c6:3b:7c:8c:07:b3:6b:e8:0f:99:6e:2d:28:9e: c1:20:7c:e5:29:d1:de:c4:bf:ce:26:16:8a:cd:13: 4f:17:6e:b5:ad:f4:d2:fd:ad:b2:4e:b3:af:d4:25: 43:93:c2:e2:a7:39:b2:00:56:ca:ea:7e:56:21:0f: c0:41:29:3c:95:dc:f4:1d:6a:8c:42:be:b3:f8:86: 77:ba:a9:59:70:4c:5f:51:84:91:d6:3e:97:7b:a7: 04:fd:80:58:07:fe:3c:1e:90:82:9f:a4:97:28:b0: 2f:cf:43:2c:72:f9:bf:3a:e3:21:2e:ff:cf:ce:39: ca:96:f4:91:22:f3:4e:d7:85:1f:71:0b:88:12:3b: 06:bd:1b:85:00:c6:7b:da:ab:69:0b:8b:4a:6b:34: cd:6f:6b:fb:bc:80:a4:33:87:b4:27:c6:47:1c:67: cd:60:3c:0a:23:fa:1c:0a:fb:70:c1:b7:33:f1:fd: 4b:c0:a9:3b:fc:d7:39:f0:b8:25:1d:de:b2:4c:30: 07:39:87:2b:a2:45:fa:0b:5e:04:c6:7b:10:3b:69: de:42:ef:20:6d:6d:30:2e:ad:e8:f5:79:e5:42:d8: 39:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3B:6F:40:C5:B0:E3:B8:2A:96:97:99:56:AB:B5:B5:F6:49:B3:6E X509v3 Authority Key Identifier: keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:00:f8:37:f9:d5:0a:88:08:81:3f:0f:d3:90:08:26:77:a7: 63:fd:e4:f0:fb:c9:50:97:8a:a8:fe:17:59:1d:3e:79:51:5e: f7:92:bd:ee:ff:02:93:05:7d:2d:85:b8:99:7e:9a:c4:75:ee: c1:71:72:5b:eb:3a:d2:8b:eb:03:e2:aa:cf:70:95:c6:24:4e: a1:92:62:66:b0:aa:8c:60:be:c8:ca:65:66:a3:f3:40:ee:08: 41:ae:6d:1d:3b:54:3f:4f:fd:7b:62:7a:b5:d7:31:b8:ba:99: 03:7a:38:45:f4:80:8c:61:95:4c:c6:28:1e:0c:89:01:6f:60: 61:0f:5f:ed:77:65:a0:5e:ab:c2:7d:10:c0:01:e9:28:31:e4: de:a1:94:52:d2:39:f9:19:b4:84:67:fd:53:8e:14:45:41:0f: 8a:14:67:39:28:b3:59:29:e8:07:e6:fc:6e:84:0b:39:fc:8b: 63:27:86:c5:66:bc:3d:99:67:8f:ce:6b:96:77:4f:38:b8:8d: 5b:4f:f5:3f:03:98:d8:80:08:f5:5a:62:85:c5:30:fe:38:3b: 51:49:af:68:c3:35:4a:45:06:88:40:51:98:d3:bd:af:34:d3: 4a:c7:59:ce:15:51:dd:e5:a4:50:48:c5:b6:8a:ff:27:b1:28: 2f:45:1f:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEN7zUum99AEe4yEr4GS5fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMzUwZDAyNGFmMDFmOGVhZjEyNTcxN2NhYTAzYWFmYWQx ODRlMWQwHhcNMjUxMjIyMDQwMTAyWhcNMjUxMjIzMDQwMTAyWjAzMTEwLwYDVQQD EyhiOTNiNmY0MGM1YjBlM2I4MmE5Njk3OTk1NmFiYjViNWY2NDliMzZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7XJLsR1bxgKhuCGxhUy5CKbgn9vC cz4+pB9puV1qxjt8jAeza+gPmW4tKJ7BIHzlKdHexL/OJhaKzRNPF261rfTS/a2y TrOv1CVDk8LipzmyAFbK6n5WIQ/AQSk8ldz0HWqMQr6z+IZ3uqlZcExfUYSR1j6X e6cE/YBYB/48HpCCn6SXKLAvz0Mscvm/OuMhLv/PzjnKlvSRIvNO14UfcQuIEjsG vRuFAMZ72qtpC4tKazTNb2v7vICkM4e0J8ZHHGfNYDwKI/ocCvtwwbcz8f1LwKk7 /Nc58LglHd6yTDAHOYcrokX6C14ExnsQO2neQu8gbW0wLq3o9XnlQtg5GQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLk7b0DFsOO4KpaXmVartbX2SbNuMB8GA1UdIwQY MBaAFHo1DQJK8B+OrxJXF8qgOq+tGE4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi83OTY2YWUtOWM4OC00M2U5LWI4OTkt ZDAwM2U1NmZlNzUzLzEvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi83OTY2YWUtOWM4OC00M2U5LWI4OTktZDAwM2U1NmZlNzUz LzEvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlgD4N/nV CogIgT8P05AIJnenY/3k8PvJUJeKqP4XWR0+eVFe95K97v8CkwV9LYW4mX6axHXu wXFyW+s60ovrA+Kqz3CVxiROoZJiZrCqjGC+yMplZqPzQO4IQa5tHTtUP0/9e2J6 tdcxuLqZA3o4RfSAjGGVTMYoHgyJAW9gYQ9f7XdloF6rwn0QwAHpKDHk3qGUUtI5 +Rm0hGf9U44URUEPihRnOSizWSnoB+b8boQLOfyLYyeGxWa8PZlnj85rlndPOLiN W0/1PwOY2IAI9VpihcUw/jg7UUmvaMM1SkUGiEBRmNO9rzTTSsdZzhVR3eWkUEjF tor/J7EoL0UfTA== -----END CERTIFICATE-----Generated at Mon Dec 22 06:50:31 2025 by rpki-client