This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json) Hash identifier: ecYn4L0IL06pZFK036Onnrwzt12m1oXdhJaN/P4TLCg= Subject key identifier: 2A:1C:A6:8C:9C:CA:04:13:90:C0:A6:01:EE:B0:B5:E0:8C:63:5E:C5 Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2 Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2 Certificate serial: 019B1682E9319468BD3216604A6AC6EF62BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft Manifest number: 03E5 Signing time: Sat 13 Dec 2025 07:00:36 +0000 Manifest this update: Sat 13 Dec 2025 07:00:36 +0000 Manifest next update: Sun 14 Dec 2025 07:00:36 +0000 Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: bdp0N2mwCwYV4aT3zy+BA7Nk+HNipLadznvqyyuGQwY=) 2: hwJf6VumQco-ZneET3L8ACOfvX8.roa (hash: EcoD8v/r1aMC/ov7E8diQalSosE5t0EwMU8AArCBREA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:16:82:e9:31:94:68:bd:32:16:60:4a:6a:c6:ef:62:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2 Validity Not Before: Dec 13 07:00:36 2025 GMT Not After : Dec 14 07:00:36 2025 GMT Subject: CN=2a1ca68c9cca041390c0a601eeb0b5e08c635ec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f4:59:83:bb:9a:01:0e:fc:6b:69:99:df:99: f1:93:03:76:b4:b0:7d:40:5e:6b:f6:8c:55:7d:8b: 4c:0f:99:79:39:ed:cb:42:4f:d5:5d:86:55:ae:3a: 7b:fb:f0:bf:69:78:a3:20:dd:7e:9c:bd:ff:fc:b2: cc:0c:3e:0e:57:6b:da:ed:00:5e:ff:74:f1:5e:7e: ca:76:bb:65:8b:26:9b:51:e7:dd:b9:76:8a:05:32: 7e:af:a1:c0:24:0d:97:99:8e:87:d8:af:d6:e0:ea: cb:05:c8:13:6f:be:12:aa:50:ed:c9:f6:02:77:93: a9:53:19:43:5e:96:0e:63:0c:1b:23:04:c3:35:54: 00:81:54:e7:43:a5:b7:97:cc:d5:1f:ee:03:7c:a6: d2:9a:a8:48:11:1e:bc:ba:c7:20:4d:2d:47:a7:1f: 76:1f:09:11:18:13:74:86:1e:1e:f7:4b:27:84:3e: 09:0e:2f:fd:9f:52:00:34:37:de:c9:ef:06:22:99: c1:34:72:e2:cc:c3:0a:f2:59:dc:f3:89:5e:85:68: bf:e1:ae:8b:c5:fb:dc:e2:74:d2:93:b2:87:a7:85: 36:f1:c1:79:5f:0d:58:d2:f4:b4:1a:32:75:29:07: 8f:63:8e:d2:24:e3:a8:46:e1:4a:f0:33:f3:ac:17: 2a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:1C:A6:8C:9C:CA:04:13:90:C0:A6:01:EE:B0:B5:E0:8C:63:5E:C5 X509v3 Authority Key Identifier: keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:33:47:0f:52:a0:b1:a7:4d:72:f2:03:09:20:c9:4b:db:68: 88:71:11:a9:3d:75:44:b8:ef:4a:b8:d9:20:2f:5c:a7:62:12: 80:c4:84:1e:49:8f:3a:ad:56:67:88:5a:53:df:dd:d7:e1:5d: fa:72:59:f5:37:ed:e4:77:7d:19:75:e9:f0:c8:26:cd:e6:ca: d7:eb:8f:49:52:87:4d:7e:6b:7b:f5:66:10:04:9f:ea:08:be: d1:e7:ce:3c:65:a1:0d:3e:d5:c9:d6:0b:6a:4f:2e:9d:cd:1a: 05:bc:8f:60:31:61:93:03:8a:9b:21:3f:2e:52:17:fa:dc:94: a3:a3:23:62:2a:3f:3a:bb:bc:a5:28:e7:ee:da:e7:47:41:3b: c5:af:cb:3d:aa:c9:6a:76:d4:71:a0:42:52:85:f0:28:91:7e: 28:4f:74:e6:92:80:5e:15:b6:35:a5:54:f7:a6:0f:76:3c:ac: 67:87:ac:ee:97:e0:8a:de:e2:57:90:e9:cf:ed:e5:b6:d1:3b: 92:25:a4:ad:51:bd:6c:0a:9f:13:0e:0e:07:56:f8:1c:5a:2c: 91:d0:c4:96:1f:b2:6a:a3:2f:1a:f2:b7:df:03:28:58:33:3b: 6d:51:a6:7f:f3:a8:f1:2d:ec:98:19:73:af:d3:5d:a2:31:f0: de:fb:a2:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsWgukxlGi9MhZgSmrG72K+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4NDI3NTlhMDRmY2ZkOWRkMzg2NDg2ZjA0ODIwZTRhMDYw Mzk3ZjIwHhcNMjUxMjEzMDcwMDM2WhcNMjUxMjE0MDcwMDM2WjAzMTEwLwYDVQQD EygyYTFjYTY4YzljY2EwNDEzOTBjMGE2MDFlZWIwYjVlMDhjNjM1ZWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPRZg7uaAQ78a2mZ35nxkwN2tLB9 QF5r9oxVfYtMD5l5Oe3LQk/VXYZVrjp7+/C/aXijIN1+nL3//LLMDD4OV2va7QBe /3TxXn7KdrtliyabUefduXaKBTJ+r6HAJA2XmY6H2K/W4OrLBcgTb74SqlDtyfYC d5OpUxlDXpYOYwwbIwTDNVQAgVTnQ6W3l8zVH+4DfKbSmqhIER68uscgTS1Hpx92 HwkRGBN0hh4e90snhD4JDi/9n1IANDfeye8GIpnBNHLizMMK8lnc84lehWi/4a6L xfvc4nTSk7KHp4U28cF5Xw1Y0vS0GjJ1KQePY47SJOOoRuFK8DPzrBcqWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCocpoycygQTkMCmAe6wteCMY17FMB8GA1UdIwQY MBaAFAhCdZoE/P2d04ZIbwSCDkoGA5fyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEt NzAyNWUxODgwNjhjLzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEtNzAyNWUxODgwNjhj LzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWTNHD1Kg sadNcvIDCSDJS9toiHERqT11RLjvSrjZIC9cp2ISgMSEHkmPOq1WZ4haU9/d1+Fd +nJZ9Tft5Hd9GXXp8MgmzebK1+uPSVKHTX5re/VmEASf6gi+0efOPGWhDT7VydYL ak8unc0aBbyPYDFhkwOKmyE/LlIX+tyUo6MjYio/Oru8pSjn7trnR0E7xa/LParJ anbUcaBCUoXwKJF+KE905pKAXhW2NaVU96YPdjysZ4es7pfgit7iV5Dpz+3lttE7 kiWkrVG9bAqfEw4OB1b4HFoskdDElh+yaqMvGvK33wMoWDM7bVGmf/Oo8S3smBlz r9NdojHw3vuiWQ== -----END CERTIFICATE-----Generated at Sat Dec 13 12:02:03 2025 by rpki-client