This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft File: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft (raw, json) Hash identifier: ND/D/H9EX8JfHTxYH8AbWA8U7JXwV3ETjYe7GK84xGA= Subject key identifier: 37:32:27:6D:01:08:72:99:1B:A0:20:04:3C:51:3D:E5:EF:76:EF:4C Authority key identifier: FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6 Certificate issuer: /CN=fde72d43f4c82b1146737b116197231830bf65d6 Certificate serial: 019B5976E43E5861A2EC040A8F5ECE82135A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft Manifest number: 1796 Signing time: Fri 26 Dec 2025 07:02:02 +0000 Manifest this update: Fri 26 Dec 2025 07:02:02 +0000 Manifest next update: Sat 27 Dec 2025 07:02:02 +0000 Files and hashes: 1: NEbsKu77gYfpibY3_TC8dQH80XA.roa (hash: aeVQJbng3C7RHWncwne+AehQ3FDANQdssqp/Bjc9vag=) 2: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl (hash: ZVhPCjPDN+4cG/7e5O+E3aLmzu9lHH6cM3PGI+eejog=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:e4:3e:58:61:a2:ec:04:0a:8f:5e:ce:82:13:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fde72d43f4c82b1146737b116197231830bf65d6 Validity Not Before: Dec 26 07:02:02 2025 GMT Not After : Dec 27 07:02:02 2025 GMT Subject: CN=3732276d010872991ba020043c513de5ef76ef4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c3:fb:89:94:9b:8a:75:05:cf:c1:aa:4c:4e: 30:00:65:dc:1d:4c:e2:31:46:a8:ee:aa:b6:d5:97: 54:c5:89:63:96:6b:13:c8:0b:b0:e4:be:86:7b:da: 8b:11:36:bc:50:2d:07:d3:49:b0:c6:2d:f3:f1:c7: b1:d8:e0:66:6f:45:fa:2b:59:bf:99:c2:cf:37:0b: c4:7b:09:5b:ce:46:fd:67:f6:24:84:4a:64:f0:e1: eb:5d:f4:1d:65:70:fb:55:83:81:46:f3:6f:78:25: 89:e9:31:3e:90:4b:01:ea:36:f6:70:7b:ae:25:d9: ff:2a:5d:7a:e4:a2:99:24:50:a4:b3:2c:ac:a5:34: cb:df:09:d1:e5:b0:98:0e:8b:af:ac:d6:62:75:60: 90:5e:c3:5d:9e:03:45:11:60:13:f4:4d:56:05:67: 74:68:d7:f7:72:ec:36:ef:dd:e0:fb:34:04:fa:b4: d7:fd:8a:50:94:fd:ce:96:e0:01:25:1f:6f:8e:24: 91:8f:d9:79:66:52:fd:75:7e:d0:35:79:23:9f:c4: 2c:4d:9c:3a:71:89:54:b0:c3:5e:62:d5:3a:6e:d8: ea:bb:fd:04:a5:23:d5:d4:23:4b:9f:6e:a6:f6:67: 14:35:2d:59:cc:f0:3d:ef:f2:46:fd:1d:bf:68:e8: 7a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:32:27:6D:01:08:72:99:1B:A0:20:04:3C:51:3D:E5:EF:76:EF:4C X509v3 Authority Key Identifier: keyid:FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:09:ea:ab:28:81:4d:29:8f:92:1e:98:d2:a9:a0:29:42:93: c4:5c:4f:1f:ac:66:60:36:d6:5a:87:d0:2f:e6:4c:8e:1a:85: 6d:f9:3c:4a:d4:b2:b8:4e:35:d3:d8:e6:7f:d6:a6:82:b3:98: e8:6a:8c:13:bf:20:3f:e2:05:fd:d6:ef:57:3b:f0:c3:15:a4: 5e:46:84:fd:3e:15:1e:e0:b8:88:4b:ab:dc:9a:f8:09:25:1d: 8c:76:be:8a:10:71:2f:7e:6e:46:fb:0e:93:e9:fd:00:90:51: 64:5f:7b:65:f4:c2:58:b5:79:35:b5:70:4d:19:92:b5:6c:c2: 51:0f:7b:ce:9c:3c:4a:20:1f:21:6e:3d:7e:2f:a6:5e:51:5b: 10:63:e2:bf:b4:69:67:88:88:d2:04:6b:c8:38:c8:b6:e1:37: cf:25:36:b1:a0:7f:3a:a3:a6:c4:0e:b8:14:8f:75:be:a0:32: ba:f9:e5:6d:95:28:c5:22:7f:67:1a:a0:b5:fd:19:d0:b7:16: 2b:f4:09:06:b0:52:58:c1:42:7f:36:67:e0:43:4b:95:1c:3c: ae:c2:5d:34:fb:e5:e2:63:e0:2f:3e:f8:f8:40:a9:59:b4:04: 1e:8c:6b:36:f5:79:6b:ff:7f:2e:3b:bc:6d:3d:69:0b:93:98: 0d:48:93:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZduQ+WGGi7AQKj17OghNaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkZTcyZDQzZjRjODJiMTE0NjczN2IxMTYxOTcyMzE4MzBi ZjY1ZDYwHhcNMjUxMjI2MDcwMjAyWhcNMjUxMjI3MDcwMjAyWjAzMTEwLwYDVQQD EygzNzMyMjc2ZDAxMDg3Mjk5MWJhMDIwMDQzYzUxM2RlNWVmNzZlZjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsP7iZSbinUFz8GqTE4wAGXcHUzi MUao7qq21ZdUxYljlmsTyAuw5L6Ge9qLETa8UC0H00mwxi3z8cex2OBmb0X6K1m/ mcLPNwvEewlbzkb9Z/YkhEpk8OHrXfQdZXD7VYOBRvNveCWJ6TE+kEsB6jb2cHuu Jdn/Kl165KKZJFCksyyspTTL3wnR5bCYDouvrNZidWCQXsNdngNFEWAT9E1WBWd0 aNf3cuw2793g+zQE+rTX/YpQlP3OluABJR9vjiSRj9l5ZlL9dX7QNXkjn8QsTZw6 cYlUsMNeYtU6btjqu/0EpSPV1CNLn26m9mcUNS1ZzPA97/JG/R2/aOh6RwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDcyJ20BCHKZG6AgBDxRPeXvdu9MMB8GA1UdIwQY MBaAFP3nLUP0yCsRRnN7EWGXIxgwv2XWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2VjdFFfVElLeEZHYzNzUllaY2pHRENfWmRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9kZWJjMjktNWIyYi00YmFiLWI0Zjct ZTFjOTE5OGNkZDg4LzEvX2VjdFFfVElLeEZHYzNzUllaY2pHRENfWmRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9kZWJjMjktNWIyYi00YmFiLWI0ZjctZTFjOTE5OGNkZDg4 LzEvX2VjdFFfVElLeEZHYzNzUllaY2pHRENfWmRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIwnqqyiB TSmPkh6Y0qmgKUKTxFxPH6xmYDbWWofQL+ZMjhqFbfk8StSyuE4109jmf9amgrOY 6GqME78gP+IF/dbvVzvwwxWkXkaE/T4VHuC4iEur3Jr4CSUdjHa+ihBxL35uRvsO k+n9AJBRZF97ZfTCWLV5NbVwTRmStWzCUQ97zpw8SiAfIW49fi+mXlFbEGPiv7Rp Z4iI0gRryDjItuE3zyU2saB/OqOmxA64FI91vqAyuvnlbZUoxSJ/Zxqgtf0Z0LcW K/QJBrBSWMFCfzZn4ENLlRw8rsJdNPvl4mPgLz74+ECpWbQEHoxrNvV5a/9/Lju8 bT1pC5OYDUiT/Q== -----END CERTIFICATE-----Generated at Fri Dec 26 15:44:06 2025 by rpki-client