This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json) Hash identifier: l/HSzNSFurwr3n456ao2uCUKQZptqb/jUFggXtGje4g= Subject key identifier: E4:F8:2B:F2:D6:D6:B2:1D:6C:03:7B:E0:58:C7:6C:EC:09:6D:0C:80 Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea Certificate serial: 019B24ACE2373EADD25E99B0D7DD23CFF7C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft Manifest number: 0D7C Signing time: Tue 16 Dec 2025 01:01:08 +0000 Manifest this update: Tue 16 Dec 2025 01:01:08 +0000 Manifest next update: Wed 17 Dec 2025 01:01:08 +0000 Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: mxDuhBmMYM9W1HB8OZaLdEndgsyqq1MmSQsVvVUZnhY=) 2: DQo4EErqs46yA4QIpyLHGlOprVU.roa (hash: jpEUtUNk7NIqvU0XQCmCZgYXNkApAZ2zVdQgWdhDGWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 01:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:ac:e2:37:3e:ad:d2:5e:99:b0:d7:dd:23:cf:f7:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea Validity Not Before: Dec 16 01:01:08 2025 GMT Not After : Dec 17 01:01:08 2025 GMT Subject: CN=e4f82bf2d6d6b21d6c037be058c76cec096d0c80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:de:fb:52:71:28:03:8c:e6:8e:e3:f7:38:5c: 9f:ed:31:1b:ae:28:20:ee:e4:cf:0c:73:20:ab:01: 01:2d:82:62:88:91:1d:20:05:34:be:36:1e:e2:13: 8b:d9:66:dc:63:a1:6f:b1:da:06:27:f2:df:f2:ae: 1b:2b:fc:9c:40:2e:e4:eb:35:5b:ef:80:50:4d:d7: 8a:1c:5a:a9:cd:f7:7a:cd:17:14:70:f1:9d:69:84: d0:c1:69:64:91:01:ff:04:96:29:88:63:59:93:95: 00:96:9c:d2:54:b7:8b:53:e6:5c:40:6b:d0:4d:8c: d5:d1:f9:79:9f:71:48:cb:d7:03:8d:35:ab:a2:a0: f2:c2:ab:78:ea:4d:3c:0a:14:e9:12:ac:c4:ad:54: d5:cc:b7:d7:e8:89:1e:f1:c9:e8:30:fe:df:93:ea: c0:87:56:8d:28:39:b9:4e:19:22:f3:4e:1e:f1:28: 49:7d:bc:e6:3f:d5:34:67:1b:88:f6:f3:70:e5:ba: 73:7c:24:29:59:de:f5:9c:6e:14:bd:cd:b5:f2:31: fc:20:90:30:1c:ff:6d:ea:52:aa:fd:56:31:b9:3b: 9d:98:cc:4c:c8:66:d6:8f:db:79:38:f2:34:ac:b6: 21:13:03:69:a6:fb:31:8b:c5:16:5f:62:f7:9a:aa: 23:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F8:2B:F2:D6:D6:B2:1D:6C:03:7B:E0:58:C7:6C:EC:09:6D:0C:80 X509v3 Authority Key Identifier: keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:54:1b:7e:30:b4:e8:1a:9a:c5:22:ff:ec:50:4d:81:a2:1c: 7a:cb:88:9e:c5:4c:83:8e:11:f8:39:e3:85:55:70:63:e1:7e: 8f:63:87:e8:be:94:1c:bd:e4:f1:a1:34:79:c1:09:50:1c:6e: 87:7e:19:9c:dd:db:27:10:27:41:10:29:82:81:a5:42:6c:bf: ee:ea:93:2d:0d:0d:41:92:51:bd:a8:6f:2a:67:a0:84:26:c6: 4d:6f:2c:a1:b4:f9:66:2f:9d:ab:16:e6:28:28:94:a3:ff:e1: 8c:52:2d:68:6a:66:7f:84:bf:1f:c7:8b:86:2f:11:43:ef:ee: 90:ff:32:ea:d0:18:0e:02:0b:1b:ac:ad:a9:82:af:28:5c:1b: 31:ba:99:c9:46:ea:4b:63:ef:05:05:21:e0:f3:4f:53:e6:43: 80:02:9a:75:d5:a3:ed:46:de:af:66:99:50:76:6d:4a:8b:f1: f9:89:38:94:19:e5:1f:f0:78:20:c3:ba:17:b8:a3:6c:1c:94: d8:e9:e8:84:38:b4:f0:9b:fe:79:8e:5c:82:fe:62:b9:25:58: 8f:53:57:a3:c6:98:5e:ca:68:17:97:a0:d6:8b:df:e6:0d:3e: c2:4b:45:e0:10:64:03:09:af:ee:f9:cb:14:54:e1:ba:80:90: 97:1e:3f:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskrOI3Pq3SXpmw190jz/fJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwNjdhN2I5ZGU3NjdlYjk3ZGI2NGU1MTY0Nzg0OTQ2MzNi ZDU0ZWEwHhcNMjUxMjE2MDEwMTA4WhcNMjUxMjE3MDEwMTA4WjAzMTEwLwYDVQQD EyhlNGY4MmJmMmQ2ZDZiMjFkNmMwMzdiZTA1OGM3NmNlYzA5NmQwYzgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkd77UnEoA4zmjuP3OFyf7TEbrigg 7uTPDHMgqwEBLYJiiJEdIAU0vjYe4hOL2WbcY6FvsdoGJ/Lf8q4bK/ycQC7k6zVb 74BQTdeKHFqpzfd6zRcUcPGdaYTQwWlkkQH/BJYpiGNZk5UAlpzSVLeLU+ZcQGvQ TYzV0fl5n3FIy9cDjTWroqDywqt46k08ChTpEqzErVTVzLfX6Ike8cnoMP7fk+rA h1aNKDm5Thki804e8ShJfbzmP9U0ZxuI9vNw5bpzfCQpWd71nG4Uvc218jH8IJAw HP9t6lKq/VYxuTudmMxMyGbWj9t5OPI0rLYhEwNppvsxi8UWX2L3mqojcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOT4K/LW1rIdbAN74FjHbOwJbQyAMB8GA1UdIwQY MBaAFOBnp7nedn65fbZOUWR4SUYzvVTqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYt NzY4ZjNkNmVlMTllLzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYtNzY4ZjNkNmVlMTll LzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOlQbfjC0 6BqaxSL/7FBNgaIcesuInsVMg44R+DnjhVVwY+F+j2OH6L6UHL3k8aE0ecEJUBxu h34ZnN3bJxAnQRApgoGlQmy/7uqTLQ0NQZJRvahvKmeghCbGTW8sobT5Zi+dqxbm KCiUo//hjFItaGpmf4S/H8eLhi8RQ+/ukP8y6tAYDgILG6ytqYKvKFwbMbqZyUbq S2PvBQUh4PNPU+ZDgAKaddWj7Uber2aZUHZtSovx+Yk4lBnlH/B4IMO6F7ijbByU 2OnohDi08Jv+eY5cgv5iuSVYj1NXo8aYXspoF5eg1ovf5g0+wktF4BBkAwmv7vnL FFThuoCQlx4/AA== -----END CERTIFICATE-----Generated at Tue Dec 16 10:39:57 2025 by rpki-client