This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft File: ESCgzgE-LVKm_zVKJwiUu5mORUc.mft (raw, json) Hash identifier: ouC+ELvxKYdsuf/CdFBz4T3tWXPcfVWat6KoCeBQKgo= Subject key identifier: E3:16:B3:81:2F:31:5F:D9:70:91:5F:12:0C:A2:C5:D0:2B:64:3C:62 Authority key identifier: 11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47 Certificate issuer: /CN=1120a0ce013e2d52a6ff354a270894bb998e4547 Certificate serial: 019B378EC023AB2DA80513D59D3D4E0E445E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft Manifest number: 178A Signing time: Fri 19 Dec 2025 17:01:00 +0000 Manifest this update: Fri 19 Dec 2025 17:01:00 +0000 Manifest next update: Sat 20 Dec 2025 17:01:00 +0000 Files and hashes: 1: 4kEhevkpP_AXSHtDbQt_y5XXD_U.roa (hash: Utfr4kFbDvk1+qjjuuuYnoLkGoHhJpPo3BK4RGIg74g=) 2: ESCgzgE-LVKm_zVKJwiUu5mORUc.crl (hash: X64uYtoBdxcViv+jHEIpzd9EtW/ID0qI5YhHDtaKbM8=) 3: VFGtTmctOrCjqkuRTfIPjlhNsbU.roa (hash: Kx2OzOjQfSX7IzHAKC1pKf9P1rkGaVbawrDwIeTytCo=) 4: hPKrgzhYrZ1-hIZdPIo3sHpuSd4.roa (hash: E3NJlfBqIWJ89UYs9nMw+LOY3dmFw01LCnketh8FRY0=) 5: jx1FgPOkBbayLbn8i9fFX-3vhJI.roa (hash: du1QA1Pa5BxqPJI19sJCDEas0RaG543HI6Un8BqtN7g=) 6: lauLTK6HRr7436pAd14mrAaE3vU.roa (hash: ahn5yKzybexoFBgNe3W5HKkjK7F19TopqaCzFWkZQgs=) 7: xVwjRhSfq67xc9Qi_wrSVn11vY0.roa (hash: iJyeTnFvoMMSPwtJkLmVhK7+FVvlX6Jx0lnFlM/s3fE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.crl rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:8e:c0:23:ab:2d:a8:05:13:d5:9d:3d:4e:0e:44:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1120a0ce013e2d52a6ff354a270894bb998e4547 Validity Not Before: Dec 19 17:01:00 2025 GMT Not After : Dec 20 17:01:00 2025 GMT Subject: CN=e316b3812f315fd970915f120ca2c5d02b643c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0f:0c:a5:07:70:8a:37:6b:f8:e2:d0:33:59: 49:e7:55:95:11:56:d7:55:2f:cd:d1:d4:4b:d9:4d: 42:57:2b:b1:d6:f7:ea:9f:2c:2d:d8:8e:e7:0d:3b: 5a:36:5c:6f:e9:ca:4c:91:cd:6a:5a:ec:b5:c8:47: d1:e8:48:8f:91:2a:28:fc:29:b0:d8:78:15:a6:a5: 2a:05:02:9a:7d:2d:b3:24:1b:98:01:da:e6:da:d9: 97:9e:aa:84:54:ea:54:08:2b:ec:e3:21:e3:31:6c: b7:a6:e6:eb:7f:6a:7f:ac:d6:84:17:6b:6f:61:73: 1b:1a:5c:a5:20:d6:eb:0c:e9:48:82:66:52:01:86: 97:21:6c:a3:2f:73:f8:4d:d6:e5:2c:4d:ee:e9:34: 78:aa:6a:91:08:3c:45:ac:6f:80:0c:b3:d1:8d:d2: d7:5c:f5:69:d5:c9:18:c3:0a:51:e0:67:d5:ac:fb: 39:b4:ac:72:dc:c1:c3:97:b0:e8:59:c9:81:a8:db: 4b:22:ea:cf:e8:8e:6c:98:8f:e5:3b:ff:24:f2:af: 31:e5:0e:a5:c8:86:f1:bf:57:74:c2:86:4b:f7:c1: 1d:cc:16:4b:a2:c7:05:77:44:04:f1:54:64:84:4b: f6:ba:b8:1f:d1:8e:75:a1:ae:11:a9:f0:ae:56:42: 44:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:16:B3:81:2F:31:5F:D9:70:91:5F:12:0C:A2:C5:D0:2B:64:3C:62 X509v3 Authority Key Identifier: keyid:11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:19:5b:67:60:c5:7e:9e:8e:40:1e:cc:3e:e4:17:22:c9:40: 2f:6b:46:99:8b:61:ae:dd:4c:e6:43:b2:bd:a6:e8:83:6a:54: 4c:11:c9:85:51:d3:87:86:7f:62:82:52:ad:01:9a:10:00:56: f3:73:68:44:67:eb:6e:12:af:4a:35:11:e9:cb:ad:dc:88:16: f3:c6:25:02:aa:aa:ea:31:43:68:fa:67:9f:02:d7:28:23:ce: 44:1b:29:55:9e:4d:5a:25:61:d5:dd:44:f6:71:c0:b8:9e:44: fe:aa:47:4d:1f:50:99:2f:4b:59:35:b3:51:30:9e:e4:3a:d9: b1:ef:18:21:7e:ba:d9:1e:b9:ad:bd:d6:22:96:73:12:da:69: 07:f7:90:89:1f:90:9c:d0:5b:4b:40:61:a8:ec:17:99:55:73: 24:e1:00:f1:74:2f:d1:da:08:7e:9e:a9:70:58:0d:5a:36:f4: 9d:bf:b9:b6:97:ce:3f:f0:af:86:de:f5:bd:95:bc:89:ad:26: f1:e9:bb:0e:bf:ba:e2:f0:57:40:45:5a:f1:c3:0b:0d:16:4a: 3f:ca:82:da:f7:9a:36:96:4f:9f:23:9d:3b:f8:db:66:48:ec: 93:75:65:74:c3:dd:4a:53:ed:76:b3:8c:e7:b9:d6:23:6f:ba: 8f:61:86:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3jsAjqy2oBRPVnT1ODkReMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMjBhMGNlMDEzZTJkNTJhNmZmMzU0YTI3MDg5NGJiOTk4 ZTQ1NDcwHhcNMjUxMjE5MTcwMTAwWhcNMjUxMjIwMTcwMTAwWjAzMTEwLwYDVQQD EyhlMzE2YjM4MTJmMzE1ZmQ5NzA5MTVmMTIwY2EyYzVkMDJiNjQzYzYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0w8MpQdwijdr+OLQM1lJ51WVEVbX VS/N0dRL2U1CVyux1vfqnywt2I7nDTtaNlxv6cpMkc1qWuy1yEfR6EiPkSoo/Cmw 2HgVpqUqBQKafS2zJBuYAdrm2tmXnqqEVOpUCCvs4yHjMWy3pubrf2p/rNaEF2tv YXMbGlylINbrDOlIgmZSAYaXIWyjL3P4TdblLE3u6TR4qmqRCDxFrG+ADLPRjdLX XPVp1ckYwwpR4GfVrPs5tKxy3MHDl7DoWcmBqNtLIurP6I5smI/lO/8k8q8x5Q6l yIbxv1d0woZL98EdzBZLoscFd0QE8VRkhEv2urgf0Y51oa4RqfCuVkJEPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOMWs4EvMV/ZcJFfEgyixdArZDxiMB8GA1UdIwQY MBaAFBEgoM4BPi1Spv81SicIlLuZjkVHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVNDZ3pnRS1MVkttX3pWS0p3aVV1NW1PUlVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC80MjE0OTgtMjhkMy00Mzc2LWI2MjUt MzFhZjNlMjk0NjcxLzEvRVNDZ3pnRS1MVkttX3pWS0p3aVV1NW1PUlVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC80MjE0OTgtMjhkMy00Mzc2LWI2MjUtMzFhZjNlMjk0Njcx LzEvRVNDZ3pnRS1MVkttX3pWS0p3aVV1NW1PUlVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATRlbZ2DF fp6OQB7MPuQXIslAL2tGmYthrt1M5kOyvabog2pUTBHJhVHTh4Z/YoJSrQGaEABW 83NoRGfrbhKvSjUR6cut3IgW88YlAqqq6jFDaPpnnwLXKCPORBspVZ5NWiVh1d1E 9nHAuJ5E/qpHTR9QmS9LWTWzUTCe5DrZse8YIX662R65rb3WIpZzEtppB/eQiR+Q nNBbS0BhqOwXmVVzJOEA8XQv0doIfp6pcFgNWjb0nb+5tpfOP/Cvht71vZW8ia0m 8em7Dr+64vBXQEVa8cMLDRZKP8qC2veaNpZPnyOdO/jbZkjsk3VldMPdSlPtdrOM 57nWI2+6j2GGnQ== -----END CERTIFICATE-----Generated at Fri Dec 19 22:56:44 2025 by rpki-client