This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft File: ePDYlQwP20Hf1XxZSCglIGEcFsM.mft (raw, json) Hash identifier: RsxYGii9rvkTHWiUHFS9n1ERvL6KlGzGfm5QiCzDOrk= Subject key identifier: DB:03:F4:4D:E4:62:90:99:01:3D:5A:6C:13:91:9E:C4:44:2C:FB:F7 Authority key identifier: 78:F0:D8:95:0C:0F:DB:41:DF:D5:7C:59:48:28:25:20:61:1C:16:C3 Certificate issuer: /CN=78f0d8950c0fdb41dfd57c5948282520611c16c3 Certificate serial: 019B206291A3C93B8D27E93B27033E75AFDC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePDYlQwP20Hf1XxZSCglIGEcFsM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft Manifest number: 0589 Signing time: Mon 15 Dec 2025 05:01:29 +0000 Manifest this update: Mon 15 Dec 2025 05:01:29 +0000 Manifest next update: Tue 16 Dec 2025 05:01:29 +0000 Files and hashes: 1: ePDYlQwP20Hf1XxZSCglIGEcFsM.crl (hash: lehHlH96HjC3oIdeN2UNo9XJT9BSCKQ/BH+FwGZc3GY=) 2: uI19goGgOdv56r27gyNLoOu7fK8.roa (hash: aRMcCZp6MU/f16sSAZBSSpBFMChXSvZTJUWHCtQ3+qI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.crl rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft rsync://rpki.ripe.net/repository/DEFAULT/ePDYlQwP20Hf1XxZSCglIGEcFsM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:62:91:a3:c9:3b:8d:27:e9:3b:27:03:3e:75:af:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78f0d8950c0fdb41dfd57c5948282520611c16c3 Validity Not Before: Dec 15 05:01:29 2025 GMT Not After : Dec 16 05:01:29 2025 GMT Subject: CN=db03f44de4629099013d5a6c13919ec4442cfbf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:29:a4:e3:75:c6:52:88:ad:7a:25:31:23:5b: e0:53:74:6a:f8:16:3b:43:1d:d5:df:10:cd:64:d2: 4b:76:cb:c0:5a:2d:20:bd:f8:51:1e:c2:9f:5f:74: d1:5b:3d:5d:25:b4:f2:5e:b7:84:3a:c9:ec:3a:d5: fb:89:8a:e8:c4:a4:ae:2c:7e:83:3c:9c:34:2d:6e: 4b:f9:2b:ed:28:e7:1c:3a:6c:ef:b1:81:06:d9:30: e0:f6:a1:9e:8a:4b:31:e8:c8:8b:cb:ed:17:10:9c: 73:e0:9b:71:66:c8:e0:f5:b2:8d:d9:34:9e:f7:bf: 0d:5b:17:e8:ea:6f:d5:9c:e5:a7:4f:3f:d6:7e:83: 6b:3b:59:d3:83:eb:14:0a:5d:39:e5:93:7c:85:72: cd:3b:bb:60:91:b9:50:fe:b3:05:cd:00:2b:4c:8e: 8e:4a:c4:1f:3e:49:62:37:1c:87:3c:c8:99:29:b8: f9:07:fc:a5:d5:3c:9a:7a:9f:94:8d:e2:9c:79:c4: 6d:ea:31:3c:66:b4:9d:cb:7d:1a:a8:79:86:43:e8: 13:87:23:23:ae:80:dc:47:3a:48:6c:04:6e:95:a9: 0b:5b:bf:18:d4:cd:33:ca:2d:3e:5e:77:a9:51:8f: 98:87:f0:fa:a0:bd:eb:ad:c1:ab:2d:cc:55:96:bb: d7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:03:F4:4D:E4:62:90:99:01:3D:5A:6C:13:91:9E:C4:44:2C:FB:F7 X509v3 Authority Key Identifier: keyid:78:F0:D8:95:0C:0F:DB:41:DF:D5:7C:59:48:28:25:20:61:1C:16:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePDYlQwP20Hf1XxZSCglIGEcFsM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c8:61:e9:97:ab:a0:50:83:78:29:5e:63:e0:76:30:aa:1d:b0: e7:39:44:93:91:a7:a5:0d:b8:0d:cd:9f:cf:a9:34:b7:08:29: b1:fa:d4:fd:6e:a0:15:4d:9c:d8:ce:4c:8c:db:91:c5:53:9a: 03:94:b8:ab:52:4b:1c:0d:4b:f3:26:31:52:c6:d6:15:61:a8: 41:96:83:e4:1c:1e:53:40:7a:0c:18:26:b9:a7:72:8e:e9:f1: d0:ec:0c:15:c8:9e:13:d4:ba:97:39:8d:91:1f:dc:cb:9b:5b: 23:53:a2:ec:01:5a:da:a6:8b:1e:5b:e7:d9:93:a3:ff:9b:e9: 2f:ae:21:b3:d6:16:fa:25:65:69:7b:5d:16:33:0c:20:c1:8c: 1d:3d:58:19:e9:80:8f:ac:49:a5:82:63:c6:87:7e:48:d9:66: 86:d1:fc:f3:54:db:ed:32:b9:38:88:78:e3:4e:aa:74:1b:12: 23:77:54:52:68:7f:6a:f3:e2:ae:d1:f6:ed:c9:a3:25:73:fa: c1:c4:91:3a:e7:45:a4:b8:22:80:6e:98:85:93:da:54:ee:16: 91:56:65:0e:bc:bd:48:5a:fe:d5:e6:22:44:63:80:83:db:4f: 58:d2:43:e2:43:31:f4:31:81:26:2c:ad:5d:bb:44:38:98:56: c7:be:75:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsgYpGjyTuNJ+k7JwM+da/cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc4ZjBkODk1MGMwZmRiNDFkZmQ1N2M1OTQ4MjgyNTIwNjEx YzE2YzMwHhcNMjUxMjE1MDUwMTI5WhcNMjUxMjE2MDUwMTI5WjAzMTEwLwYDVQQD EyhkYjAzZjQ0ZGU0NjI5MDk5MDEzZDVhNmMxMzkxOWVjNDQ0MmNmYmY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnimk43XGUoiteiUxI1vgU3Rq+BY7 Qx3V3xDNZNJLdsvAWi0gvfhRHsKfX3TRWz1dJbTyXreEOsnsOtX7iYroxKSuLH6D PJw0LW5L+SvtKOccOmzvsYEG2TDg9qGeiksx6MiLy+0XEJxz4JtxZsjg9bKN2TSe 978NWxfo6m/VnOWnTz/WfoNrO1nTg+sUCl055ZN8hXLNO7tgkblQ/rMFzQArTI6O SsQfPkliNxyHPMiZKbj5B/yl1Tyaep+UjeKcecRt6jE8ZrSdy30aqHmGQ+gThyMj roDcRzpIbARulakLW78Y1M0zyi0+XnepUY+Yh/D6oL3rrcGrLcxVlrvXdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNsD9E3kYpCZAT1abBORnsRELPv3MB8GA1UdIwQY MBaAFHjw2JUMD9tB39V8WUgoJSBhHBbDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVBEWWxRd1AyMEhmMVh4WlNDZ2xJR0VjRnNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9hMjY3ZjAtOWVmYi00NGFmLWEwNmEt NjFkZGJmMWMzNDliLzEvZVBEWWxRd1AyMEhmMVh4WlNDZ2xJR0VjRnNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9hMjY3ZjAtOWVmYi00NGFmLWEwNmEtNjFkZGJmMWMzNDli LzEvZVBEWWxRd1AyMEhmMVh4WlNDZ2xJR0VjRnNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyGHpl6ug UIN4KV5j4HYwqh2w5zlEk5GnpQ24Dc2fz6k0twgpsfrU/W6gFU2c2M5MjNuRxVOa A5S4q1JLHA1L8yYxUsbWFWGoQZaD5BweU0B6DBgmuadyjunx0OwMFcieE9S6lzmN kR/cy5tbI1Oi7AFa2qaLHlvn2ZOj/5vpL64hs9YW+iVlaXtdFjMMIMGMHT1YGemA j6xJpYJjxod+SNlmhtH881Tb7TK5OIh4406qdBsSI3dUUmh/avPirtH27cmjJXP6 wcSROudFpLgigG6YhZPaVO4WkVZlDry9SFr+1eYiRGOAg9tPWNJD4kMx9DGBJiyt XbtEOJhWx751Lg== -----END CERTIFICATE-----Generated at Mon Dec 15 14:41:24 2025 by rpki-client