This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft File: cnegKqVG3RoKaoLQXZCwkX4VRe0.mft (raw, json) Hash identifier: OjX/gNT/I6P41BkNaXWq0ydoo0WsDcTMtdKHauvs93A= Subject key identifier: E5:4C:FD:19:B9:D0:59:11:0D:F6:6B:AC:3D:68:66:A2:B7:7F:21:24 Authority key identifier: 72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED Certificate issuer: /CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed Certificate serial: 019B41A43AECB2EDB787EBFEF21C2304FDE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft Manifest number: 1396 Signing time: Sun 21 Dec 2025 16:00:40 +0000 Manifest this update: Sun 21 Dec 2025 16:00:40 +0000 Manifest next update: Mon 22 Dec 2025 16:00:40 +0000 Files and hashes: 1: 30-4U9nQ-D0aJwZBJ1-bMuclPkc.roa (hash: B7rpxNi8g0T+2AMmv+mqO6f85+SxNjEeES2xtaw9X3k=) 2: cnegKqVG3RoKaoLQXZCwkX4VRe0.crl (hash: lWJdv3Iho0yPuEdCTF5wJB4lZxBCwVXZ+/mrcu4B3Ec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:a4:3a:ec:b2:ed:b7:87:eb:fe:f2:1c:23:04:fd:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed Validity Not Before: Dec 21 16:00:40 2025 GMT Not After : Dec 22 16:00:40 2025 GMT Subject: CN=e54cfd19b9d059110df66bac3d6866a2b77f2124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:77:d4:08:16:a9:f6:c0:77:2d:40:54:6e:31: ad:45:c8:51:ac:36:6a:6d:8b:f8:9d:ed:eb:68:07: b3:0b:7e:a1:f8:36:b7:ab:dc:ac:6c:19:23:cd:b6: f6:94:9c:0f:7e:1c:ee:25:e5:df:90:4d:08:47:7f: c6:25:1b:d0:cf:6b:6a:50:fe:94:f2:df:6d:43:44: 10:4d:34:68:54:4c:46:bf:14:d4:8c:b2:e3:c6:46: b8:da:92:91:12:6d:2f:e4:6a:1b:1e:65:b6:0e:87: a2:cb:28:b1:f4:8e:e6:1f:13:89:56:6a:67:5e:52: b5:77:af:c1:af:84:1a:9d:58:b1:76:1f:f0:61:65: a3:94:cb:0b:03:bc:79:68:5a:cf:24:71:5e:a0:00: 2f:b7:35:a6:aa:1d:13:40:c8:63:71:97:a7:79:3b: ab:27:38:41:37:b3:55:a3:56:b0:6a:b8:fe:4c:b0: 39:57:5e:3d:3b:50:e3:ae:b0:10:f2:9d:97:12:e2: 87:0f:1f:ae:5d:ab:0b:92:b9:ee:3f:1d:35:37:27: 79:dc:68:bf:2a:0b:9e:32:04:ba:bc:c3:9f:97:75: d2:4e:a9:4d:6f:54:4c:22:8d:c1:2e:b7:57:88:c0: ef:1b:bf:ee:d3:7f:b9:56:25:30:ef:c0:c4:84:a3: a1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:4C:FD:19:B9:D0:59:11:0D:F6:6B:AC:3D:68:66:A2:B7:7F:21:24 X509v3 Authority Key Identifier: keyid:72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:85:57:fe:fd:8b:e3:a7:95:fa:e7:b1:9c:f4:e6:72:cd:8a: 05:64:95:c8:0c:d4:c9:74:bc:98:71:14:46:07:1c:d7:82:7b: 43:fd:66:54:04:90:1d:d5:48:bd:b3:e5:aa:e1:2c:9c:c1:2c: 89:1c:ba:a2:21:c0:84:f7:c8:fa:95:6b:98:ea:17:c1:1e:d9: 5b:16:fa:eb:3a:ef:79:6e:49:24:37:76:88:4d:b8:82:81:65: cd:7a:f6:10:b6:4a:96:1c:6c:f2:4b:10:36:17:70:9b:ce:4c: aa:b5:84:00:4e:49:28:03:58:69:44:93:19:1c:80:8f:7d:c5: 53:59:06:53:cd:f1:74:04:b6:48:65:d2:b4:94:05:49:c3:3d: 91:ae:e1:83:fa:4c:9c:71:9d:2e:b3:c7:40:ac:82:ea:3f:be: c6:82:73:9d:55:73:22:52:5f:d9:f2:37:c6:c2:32:12:87:60: 55:cc:f3:69:cd:91:c5:8a:ea:f9:10:3c:cb:12:55:ec:86:08: a9:06:f1:5c:07:1b:a0:26:ad:62:a2:b6:5d:35:e9:9e:8d:e7: 51:f4:e3:98:28:5e:d0:cb:0d:ab:45:99:b3:73:4d:3a:d7:65: 9b:4b:22:d3:06:46:c9:6b:a7:3c:ac:06:f0:45:ad:36:ef:da: de:8c:51:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBpDrssu23h+v+8hwjBP3jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNzdhMDJhYTU0NmRkMWEwYTZhODJkMDVkOTBiMDkxN2Ux NTQ1ZWQwHhcNMjUxMjIxMTYwMDQwWhcNMjUxMjIyMTYwMDQwWjAzMTEwLwYDVQQD EyhlNTRjZmQxOWI5ZDA1OTExMGRmNjZiYWMzZDY4NjZhMmI3N2YyMTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3fUCBap9sB3LUBUbjGtRchRrDZq bYv4ne3raAezC36h+Da3q9ysbBkjzbb2lJwPfhzuJeXfkE0IR3/GJRvQz2tqUP6U 8t9tQ0QQTTRoVExGvxTUjLLjxka42pKREm0v5GobHmW2Doeiyyix9I7mHxOJVmpn XlK1d6/Br4QanVixdh/wYWWjlMsLA7x5aFrPJHFeoAAvtzWmqh0TQMhjcZeneTur JzhBN7NVo1awarj+TLA5V149O1DjrrAQ8p2XEuKHDx+uXasLkrnuPx01Nyd53Gi/ KgueMgS6vMOfl3XSTqlNb1RMIo3BLrdXiMDvG7/u03+5ViUw78DEhKOhwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOVM/Rm50FkRDfZrrD1oZqK3fyEkMB8GA1UdIwQY MBaAFHJ3oCqlRt0aCmqC0F2QsJF+FUXtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY25lZ0txVkczUm9LYW9MUVhaQ3drWDRWUmUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi85N2FkN2UtZmNiZS00ZmNjLTljM2Yt ZjQ4OTMwZTQyNjQxLzEvY25lZ0txVkczUm9LYW9MUVhaQ3drWDRWUmUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi85N2FkN2UtZmNiZS00ZmNjLTljM2YtZjQ4OTMwZTQyNjQx LzEvY25lZ0txVkczUm9LYW9MUVhaQ3drWDRWUmUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYoVX/v2L 46eV+uexnPTmcs2KBWSVyAzUyXS8mHEURgcc14J7Q/1mVASQHdVIvbPlquEsnMEs iRy6oiHAhPfI+pVrmOoXwR7ZWxb66zrveW5JJDd2iE24goFlzXr2ELZKlhxs8ksQ Nhdwm85MqrWEAE5JKANYaUSTGRyAj33FU1kGU83xdAS2SGXStJQFScM9ka7hg/pM nHGdLrPHQKyC6j++xoJznVVzIlJf2fI3xsIyEodgVczzac2RxYrq+RA8yxJV7IYI qQbxXAcboCatYqK2XTXpno3nUfTjmChe0MsNq0WZs3NNOtdlm0si0wZGyWunPKwG 8EWtNu/a3oxRjg== -----END CERTIFICATE-----Generated at Sun Dec 21 19:28:00 2025 by rpki-client