This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft File: elmlzGH-vbkW1GJLvowQiXNTsME.mft (raw, json) Hash identifier: E+iZ01VwmK3DbWKOQ5KO455Zhk0djkb7B8funjOK4kU= Subject key identifier: A2:63:B3:63:A0:8E:59:82:C7:9A:97:B5:F7:01:3F:8D:91:43:6F:3F Authority key identifier: 7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1 Certificate issuer: /CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1 Certificate serial: 019B1BAAE26B03E0B2D0ADC97A33D0F4D238 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft Manifest number: 1775 Signing time: Sun 14 Dec 2025 07:02:22 +0000 Manifest this update: Sun 14 Dec 2025 07:02:22 +0000 Manifest next update: Mon 15 Dec 2025 07:02:22 +0000 Files and hashes: 1: DhgKv9EWttCPWimr0cMYdix-VFM.roa (hash: jt6Z6pHhL+jbqX5CBAxAInUF4d0Kgk2CfxAQbj8DhrM=) 2: elmlzGH-vbkW1GJLvowQiXNTsME.crl (hash: u5nhzY+VtuuCb5gC6SfLklrHR/dpcsbQrP243zlXVrI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:aa:e2:6b:03:e0:b2:d0:ad:c9:7a:33:d0:f4:d2:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1 Validity Not Before: Dec 14 07:02:22 2025 GMT Not After : Dec 15 07:02:22 2025 GMT Subject: CN=a263b363a08e5982c79a97b5f7013f8d91436f3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ec:06:38:83:8f:a4:02:eb:6e:e3:5b:8f:4e: 7b:36:2d:de:71:4e:9a:c6:5c:62:fc:dc:8d:d7:4c: 20:94:48:36:76:b4:df:56:2f:25:ae:ec:8f:3b:d4: 37:d6:ac:84:95:8e:3b:15:c7:ef:3e:13:cd:7e:c5: db:7e:ff:93:ea:a6:72:6f:f8:d7:ac:55:10:f8:d8: 07:50:b1:41:c6:c8:27:77:9c:25:3c:c6:2d:f9:59: ca:7f:66:26:ea:93:f8:17:aa:7f:35:ba:46:66:37: e2:6a:60:ea:ab:a3:17:ac:e0:d8:32:74:0a:9c:37: 51:cb:1c:cd:99:3f:aa:a1:2b:47:01:79:0e:97:88: 81:22:08:30:7d:a7:26:0a:c3:5d:d0:5a:43:5e:12: cb:77:2c:36:82:b8:11:82:a9:b8:a5:88:3b:05:9f: ba:80:a2:79:d2:eb:65:6e:41:fe:b8:70:16:5c:13: 39:b2:99:10:bf:3b:e8:da:95:2c:06:dc:03:a4:92: 54:0c:94:26:81:29:c6:52:36:d1:ed:18:5a:9d:02: a0:2e:45:1b:0d:d7:94:87:51:e0:03:76:80:2f:42: 26:df:64:6a:48:12:af:41:6d:96:21:57:74:6d:29: 38:16:71:ff:55:11:05:0b:86:41:ff:f7:49:7b:6b: 72:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:63:B3:63:A0:8E:59:82:C7:9A:97:B5:F7:01:3F:8D:91:43:6F:3F X509v3 Authority Key Identifier: keyid:7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:9e:16:7f:3a:c5:bd:4c:5e:c7:94:5d:05:5f:11:fc:70:9c: 75:2f:25:16:76:5e:d0:cc:00:19:40:5a:35:f7:10:37:68:eb: 52:d2:b6:55:3e:66:3b:8e:0f:63:03:d7:1b:a9:62:30:7f:91: 3d:2e:20:19:46:89:c5:67:0d:73:10:db:d0:80:a6:70:5b:5f: 88:3e:c7:33:c7:3c:80:9f:9e:65:26:52:32:c7:ab:06:79:b4: ac:94:4f:74:10:c5:23:3a:e2:df:49:d1:0b:e5:ef:ea:3c:f2: 07:93:5e:e1:36:5a:17:05:b4:87:49:a4:1b:9d:9c:b6:cf:4c: 62:22:42:05:16:ce:b0:ba:e3:5f:3d:c8:2f:e6:3e:fb:31:bc: 5e:f2:ea:3f:28:a8:88:32:37:15:e0:86:eb:af:a6:d0:a7:e7: c3:d3:4f:1c:b7:9b:e7:f8:f0:50:db:da:bc:e2:d0:d1:40:6b: c0:3a:0b:22:b1:8f:c3:d7:ad:d6:5b:b5:6d:b9:5e:e0:6c:19: 76:b4:1d:ae:69:66:8a:69:b8:61:cf:0f:c5:7a:ec:14:e0:5a: a5:63:01:5e:2f:bd:a4:5e:ee:fc:4a:cf:67:99:4a:e7:12:40: de:d8:fc:8b:6e:df:d4:ea:42:2c:73:0f:92:c2:3a:3e:b0:f7: 60:1e:5c:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbquJrA+Cy0K3JejPQ9NI4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhNTlhNWNjNjFmZWJkYjkxNmQ0NjI0YmJlOGMxMDg5NzM1 M2IwYzEwHhcNMjUxMjE0MDcwMjIyWhcNMjUxMjE1MDcwMjIyWjAzMTEwLwYDVQQD EyhhMjYzYjM2M2EwOGU1OTgyYzc5YTk3YjVmNzAxM2Y4ZDkxNDM2ZjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+wGOIOPpALrbuNbj057Ni3ecU6a xlxi/NyN10wglEg2drTfVi8lruyPO9Q31qyElY47FcfvPhPNfsXbfv+T6qZyb/jX rFUQ+NgHULFBxsgnd5wlPMYt+VnKf2Ym6pP4F6p/NbpGZjfiamDqq6MXrODYMnQK nDdRyxzNmT+qoStHAXkOl4iBIggwfacmCsNd0FpDXhLLdyw2grgRgqm4pYg7BZ+6 gKJ50utlbkH+uHAWXBM5spkQvzvo2pUsBtwDpJJUDJQmgSnGUjbR7RhanQKgLkUb DdeUh1HgA3aAL0Im32RqSBKvQW2WIVd0bSk4FnH/VREFC4ZB//dJe2tybwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKJjs2OgjlmCx5qXtfcBP42RQ28/MB8GA1UdIwQY MBaAFHpZpcxh/r25FtRiS76MEIlzU7DBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWxtbHpHSC12YmtXMUdKTHZvd1FpWE5Uc01FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9iMWFiMWItMGU5NS00YzNjLTg3Njgt OTAzZDA4MzQ5NmU1LzEvZWxtbHpHSC12YmtXMUdKTHZvd1FpWE5Uc01FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi9iMWFiMWItMGU5NS00YzNjLTg3NjgtOTAzZDA4MzQ5NmU1 LzEvZWxtbHpHSC12YmtXMUdKTHZvd1FpWE5Uc01FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwZ4WfzrF vUxex5RdBV8R/HCcdS8lFnZe0MwAGUBaNfcQN2jrUtK2VT5mO44PYwPXG6liMH+R PS4gGUaJxWcNcxDb0ICmcFtfiD7HM8c8gJ+eZSZSMserBnm0rJRPdBDFIzri30nR C+Xv6jzyB5Ne4TZaFwW0h0mkG52cts9MYiJCBRbOsLrjXz3IL+Y++zG8XvLqPyio iDI3FeCG66+m0Kfnw9NPHLeb5/jwUNvavOLQ0UBrwDoLIrGPw9et1lu1bble4GwZ drQdrmlmimm4Yc8PxXrsFOBapWMBXi+9pF7u/ErPZ5lK5xJA3tj8i27f1OpCLHMP ksI6PrD3YB5cyw== -----END CERTIFICATE-----Generated at Sun Dec 14 09:32:51 2025 by rpki-client