This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json) Hash identifier: pCX+paKYzUBE0mQro5/ePT1Pjv4PYlwTRi1FwsPkJaA= Subject key identifier: 5A:6E:EE:66:29:B5:E7:9C:0C:30:CD:18:79:A6:10:B3:86:83:BA:B7 Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a Certificate serial: 019B112619606C1C83ADEA420DFFCC4661CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft Manifest number: 1086 Signing time: Fri 12 Dec 2025 06:01:08 +0000 Manifest this update: Fri 12 Dec 2025 06:01:08 +0000 Manifest next update: Sat 13 Dec 2025 06:01:08 +0000 Files and hashes: 1: 8QToh95n76MX0haqvJV4iXYdSiU.roa (hash: bccQP6DZQf854mroc1UFT6HPAcTOCvETn4EYHYUjQ3o=) 2: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: xCcHHnUhwO0GhZbOai7UcDptPDsEeKVX0t4ZOFs9LrA=) 3: WXokG7cKriDfqWoaHraaATikOZM.roa (hash: l03IsJpcA1hZ2SxrPxTFFWqboVv9JIckV/GXuLQrkcI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 06:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:26:19:60:6c:1c:83:ad:ea:42:0d:ff:cc:46:61:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a Validity Not Before: Dec 12 06:01:08 2025 GMT Not After : Dec 13 06:01:08 2025 GMT Subject: CN=5a6eee6629b5e79c0c30cd1879a610b38683bab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:f8:fc:30:13:9b:29:8e:0f:90:43:b0:35: 71:73:77:a6:53:a2:e2:0f:3f:e7:28:5b:97:c9:fc: 94:ec:e1:8c:80:3c:74:ef:f3:25:dd:3a:38:a8:b1: ef:c4:5c:db:d7:e7:c6:ed:ba:bf:e9:c0:77:85:b2: d1:cc:30:0a:bd:5d:6f:3a:c8:c5:2e:4f:28:fe:72: 89:f9:35:3d:ae:88:19:59:49:10:54:ea:3f:d9:e1: 14:84:ac:be:ad:44:52:6c:ec:32:63:13:ca:29:0d: 13:d5:b5:67:c1:7b:11:ed:50:ea:11:59:82:8d:ce: 0f:ca:a6:50:60:68:49:46:f5:61:26:8b:10:34:ad: dd:48:e0:b8:9e:44:db:73:d0:91:b2:15:06:12:83: 45:ed:39:92:47:ac:84:a1:a4:72:06:ac:35:d3:b1: 9e:ea:a1:c1:9d:29:8e:ec:7c:05:a4:46:6c:1d:3a: c4:9f:1f:67:77:7b:29:3a:ba:2a:8f:8d:ee:a1:33: 9f:06:25:78:76:cb:d2:24:c3:1c:b4:df:6f:d1:bc: 72:1c:53:e6:76:05:2a:f9:87:62:90:75:ae:6b:8e: f0:53:2a:b0:1f:12:5a:55:1f:41:b1:00:6f:e3:6b: 7c:c9:f9:11:30:29:16:c5:ed:74:9d:e2:60:13:47: ea:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:6E:EE:66:29:B5:E7:9C:0C:30:CD:18:79:A6:10:B3:86:83:BA:B7 X509v3 Authority Key Identifier: keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:a9:f7:d8:29:0f:1a:b6:66:35:f6:28:85:7a:d8:c2:13:b4: b3:41:76:b4:42:f1:e0:75:56:47:54:c9:8e:e7:d8:03:3c:23: f5:91:58:3b:a5:a2:6d:81:ba:01:b2:79:be:38:b1:05:d0:ca: 68:59:a8:0d:03:98:16:93:e8:01:2d:63:f1:32:b8:e1:47:69: 8d:b4:71:83:7f:70:49:37:23:87:fe:f9:69:7f:db:cc:d4:a5: 09:a5:c3:27:db:30:d0:5c:2c:e9:f6:7f:f9:59:74:f0:f8:36: cf:26:04:be:ca:cf:cc:f1:45:cf:a3:7c:a2:e0:01:56:0d:64: 78:c8:76:01:67:5e:e9:09:77:80:23:fe:ec:dd:ca:46:53:0e: 0f:80:09:d1:a8:1e:21:37:2a:fd:aa:5e:cd:cf:08:2c:5f:80: 13:d1:0e:dd:75:3f:b6:af:79:62:de:c4:4f:37:ad:0c:cc:36: 2f:89:71:29:78:74:98:91:fe:69:47:eb:99:37:5d:e9:f9:02: 33:2d:32:1a:27:c8:f0:6d:da:e2:61:60:3f:65:6f:a3:71:08: 39:cd:a1:e3:32:89:e7:64:31:e4:13:59:be:e4:18:c8:39:99: 3f:c7:3b:d1:dc:51:1f:2c:e4:10:9b:fc:cc:9f:f5:30:e9:ac: b6:b5:44:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRJhlgbByDrepCDf/MRmHOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4NDE4ZTk2OTBkMGZiNzExYWJmMzg3NGUxYzUwMGE2Mjc2 OTNjMGEwHhcNMjUxMjEyMDYwMTA4WhcNMjUxMjEzMDYwMTA4WjAzMTEwLwYDVQQD Eyg1YTZlZWU2NjI5YjVlNzljMGMzMGNkMTg3OWE2MTBiMzg2ODNiYWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw534/DATmymOD5BDsDVxc3emU6Li Dz/nKFuXyfyU7OGMgDx07/Ml3To4qLHvxFzb1+fG7bq/6cB3hbLRzDAKvV1vOsjF Lk8o/nKJ+TU9rogZWUkQVOo/2eEUhKy+rURSbOwyYxPKKQ0T1bVnwXsR7VDqEVmC jc4PyqZQYGhJRvVhJosQNK3dSOC4nkTbc9CRshUGEoNF7TmSR6yEoaRyBqw107Ge 6qHBnSmO7HwFpEZsHTrEnx9nd3spOroqj43uoTOfBiV4dsvSJMMctN9v0bxyHFPm dgUq+YdikHWua47wUyqwHxJaVR9BsQBv42t8yfkRMCkWxe10neJgE0fqJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFpu7mYpteecDDDNGHmmELOGg7q3MB8GA1UdIwQY MBaAFAhBjpaQ0PtxGr84dOHFAKYnaTwKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0VHT2xwRFEtM0VhdnpoMDRjVUFwaWRwUEFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9lOTc1NjMtYzdlNS00MDM2LWE3OTYt MjJjMGNhMjEzMzgwLzEvQ0VHT2xwRFEtM0VhdnpoMDRjVUFwaWRwUEFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9lOTc1NjMtYzdlNS00MDM2LWE3OTYtMjJjMGNhMjEzMzgw LzEvQ0VHT2xwRFEtM0VhdnpoMDRjVUFwaWRwUEFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD6n32CkP GrZmNfYohXrYwhO0s0F2tELx4HVWR1TJjufYAzwj9ZFYO6WibYG6AbJ5vjixBdDK aFmoDQOYFpPoAS1j8TK44UdpjbRxg39wSTcjh/75aX/bzNSlCaXDJ9sw0Fws6fZ/ +Vl08Pg2zyYEvsrPzPFFz6N8ouABVg1keMh2AWde6Ql3gCP+7N3KRlMOD4AJ0age ITcq/apezc8ILF+AE9EO3XU/tq95Yt7ETzetDMw2L4lxKXh0mJH+aUfrmTdd6fkC My0yGifI8G3a4mFgP2Vvo3EIOc2h4zKJ52Qx5BNZvuQYyDmZP8c70dxRHyzkEJv8 zJ/1MOmstrVETg== -----END CERTIFICATE-----Generated at Fri Dec 12 13:13:35 2025 by rpki-client