This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft File: ejhiE08UE2XviHkC5gV8KLKCnJ0.mft (raw, json) Hash identifier: UToulARUm10XKqDVren/SWJ9E8mDq9kaEN7RbmBX47w= Subject key identifier: A4:08:F3:83:E3:74:9F:94:CF:12:54:94:15:53:3E:DE:A9:75:08:73 Authority key identifier: 7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D Certificate issuer: /CN=7a3862134f141365ef887902e6057c28b2829c9d Certificate serial: 019B0E5C4292753413E3B5DEA6464DEC9FB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft Manifest number: 0E51 Signing time: Thu 11 Dec 2025 17:01:25 +0000 Manifest this update: Thu 11 Dec 2025 17:01:25 +0000 Manifest next update: Fri 12 Dec 2025 17:01:25 +0000 Files and hashes: 1: DUeztC_9OSU5_baS7RpA8PIrChA.roa (hash: nC0NIfkO+km6NTJ5hH8jMs/CXJYU2lhmZlogyR2BxZI=) 2: ejhiE08UE2XviHkC5gV8KLKCnJ0.crl (hash: SOsTiTf92Sg2lMENZTl+/Qow25zyIiz5eVxR8JL/7kA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5c:42:92:75:34:13:e3:b5:de:a6:46:4d:ec:9f:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a3862134f141365ef887902e6057c28b2829c9d Validity Not Before: Dec 11 17:01:25 2025 GMT Not After : Dec 12 17:01:25 2025 GMT Subject: CN=a408f383e3749f94cf12549415533edea9750873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ab:b6:f2:94:ba:84:a0:0f:97:06:a9:37:6e: e4:5f:81:e4:ef:0e:2a:0e:7a:58:cf:93:08:f6:68: bb:89:7e:e9:8b:13:18:d7:f1:3c:ca:8d:39:30:cf: 22:2d:a0:0c:62:19:44:63:2c:aa:35:25:3a:24:c3: ef:1f:a3:4e:ba:4d:28:6b:1f:a9:12:b4:b2:2b:c5: 4d:13:1b:d0:5e:76:f0:2c:a7:9d:fa:cd:f3:8d:32: cd:46:9d:56:0e:b9:ae:a2:2c:f4:68:86:61:3f:e3: b4:18:92:7d:d4:8f:23:05:0e:98:65:41:db:8a:8e: a1:a4:46:ac:85:08:ad:83:de:1a:0e:f1:f6:55:11: d1:61:9c:85:b2:f1:52:6d:65:ce:7d:85:e7:67:d9: 6d:96:68:d1:21:94:06:9c:98:91:77:bd:f0:da:61: c3:7b:b2:b3:c4:77:8c:1f:44:32:5c:89:15:64:08: 65:0f:04:e5:1f:fd:7a:28:3d:11:7f:15:ee:53:7c: de:00:95:da:2e:1a:9f:af:cb:09:3f:ff:a8:5e:41: 0a:fd:b0:d0:b7:34:68:fb:e7:4f:ec:dd:8a:74:9e: ec:57:a7:cb:56:90:56:b7:14:a6:3b:64:03:e1:0b: 13:d9:2a:4e:0d:0a:6e:b4:c7:70:28:d6:95:6b:63: 27:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:08:F3:83:E3:74:9F:94:CF:12:54:94:15:53:3E:DE:A9:75:08:73 X509v3 Authority Key Identifier: keyid:7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:47:7d:1d:ac:33:87:d2:bd:a8:c0:e1:61:e9:f9:14:bf:57: a4:8b:d7:11:e7:4c:e8:e8:f3:5f:45:c8:c9:8a:bf:fa:0d:c8: cd:ee:fc:9e:d4:3c:59:85:0c:58:eb:0c:9f:4e:13:da:ba:3f: 15:8c:26:3c:22:50:e1:5f:6b:58:1e:d6:8b:12:c5:ae:0e:24: 73:0e:9e:59:a8:34:9b:c7:49:57:81:d9:6b:f7:8e:f8:06:70: 3f:ba:35:bf:43:ac:a9:f2:b0:e7:6d:89:e7:49:37:19:2f:fa: 6b:f7:cf:14:c0:52:fe:2b:30:03:0e:24:5e:6d:57:d3:99:ac: 4b:50:f7:a7:4b:c0:0f:63:22:56:4f:7e:a3:63:8e:2b:cf:2a: 06:2e:b1:05:b0:6d:fa:b1:0f:6d:c7:04:d1:2c:b6:ba:36:31: b7:9d:28:cf:66:b2:d8:72:30:67:53:e8:53:96:46:3c:ff:55: cd:74:50:e7:c1:d9:c9:3e:c0:04:d1:c3:57:e7:a0:83:12:10: a3:e1:39:7d:b7:78:21:4e:a0:70:86:be:d7:61:f2:b5:12:2a: bb:ca:a3:c3:14:b0:1d:5c:6a:b8:6d:67:78:dc:0e:fc:1e:ee: 06:63:f0:8c:89:b2:7f:98:f4:de:ca:92:25:33:f7:c5:87:3f: c5:3b:43:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOXEKSdTQT47XepkZN7J+0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMzg2MjEzNGYxNDEzNjVlZjg4NzkwMmU2MDU3YzI4YjI4 MjljOWQwHhcNMjUxMjExMTcwMTI1WhcNMjUxMjEyMTcwMTI1WjAzMTEwLwYDVQQD EyhhNDA4ZjM4M2UzNzQ5Zjk0Y2YxMjU0OTQxNTUzM2VkZWE5NzUwODczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6u28pS6hKAPlwapN27kX4Hk7w4q DnpYz5MI9mi7iX7pixMY1/E8yo05MM8iLaAMYhlEYyyqNSU6JMPvH6NOuk0oax+p ErSyK8VNExvQXnbwLKed+s3zjTLNRp1WDrmuoiz0aIZhP+O0GJJ91I8jBQ6YZUHb io6hpEashQitg94aDvH2VRHRYZyFsvFSbWXOfYXnZ9ltlmjRIZQGnJiRd73w2mHD e7KzxHeMH0QyXIkVZAhlDwTlH/16KD0RfxXuU3zeAJXaLhqfr8sJP/+oXkEK/bDQ tzRo++dP7N2KdJ7sV6fLVpBWtxSmO2QD4QsT2SpODQputMdwKNaVa2Mn9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKQI84PjdJ+UzxJUlBVTPt6pdQhzMB8GA1UdIwQY MBaAFHo4YhNPFBNl74h5AuYFfCiygpydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWpoaUUwOFVFMlh2aUhrQzVnVjhLTEtDbkowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS80MzQxOTktZDI2ZS00MTJlLWEyYmIt ZGEwYTQwNjVlODI0LzEvZWpoaUUwOFVFMlh2aUhrQzVnVjhLTEtDbkowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS80MzQxOTktZDI2ZS00MTJlLWEyYmItZGEwYTQwNjVlODI0 LzEvZWpoaUUwOFVFMlh2aUhrQzVnVjhLTEtDbkowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWEd9Hawz h9K9qMDhYen5FL9XpIvXEedM6OjzX0XIyYq/+g3Ize78ntQ8WYUMWOsMn04T2ro/ FYwmPCJQ4V9rWB7WixLFrg4kcw6eWag0m8dJV4HZa/eO+AZwP7o1v0OsqfKw522J 50k3GS/6a/fPFMBS/iswAw4kXm1X05msS1D3p0vAD2MiVk9+o2OOK88qBi6xBbBt +rEPbccE0Sy2ujYxt50oz2ay2HIwZ1PoU5ZGPP9VzXRQ58HZyT7ABNHDV+eggxIQ o+E5fbd4IU6gcIa+12HytRIqu8qjwxSwHVxquG1neNwO/B7uBmPwjImyf5j03sqS JTP3xYc/xTtDYA== -----END CERTIFICATE-----Generated at Fri Dec 12 00:28:14 2025 by rpki-client