This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.mft File: CeKvCM9uEuIwT7O97GTPvO2qhSI.mft (raw, json) Hash identifier: K7IWxMd740ZJDSLE7IuZTpAqHmyPJi0h4amiUzj9yO8= Subject key identifier: 2E:FA:9D:15:1B:10:C9:84:B8:E8:A9:5C:C6:EC:D9:40:2C:84:87:F5 Authority key identifier: 09:E2:AF:08:CF:6E:12:E2:30:4F:B3:BD:EC:64:CF:BC:ED:AA:85:22 Certificate issuer: /CN=09e2af08cf6e12e2304fb3bdec64cfbcedaa8522 Certificate serial: 019B2BF84315E86AD7AEAEC49E1D28B79941 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.mft Manifest number: 11F5 Signing time: Wed 17 Dec 2025 11:00:48 +0000 Manifest this update: Wed 17 Dec 2025 11:00:48 +0000 Manifest next update: Thu 18 Dec 2025 11:00:48 +0000 Files and hashes: 1: 9BZlV5u49Gak3QK5oEuLPOBSnn0.roa (hash: FmzCgS4aXNRr8JerLZUsfQlHdIEA6EKm/rMgvtNymy8=) 2: B6wSZJvSGeybR7CPqtyVhXyylu0.roa (hash: JHvST/m8T4zGrW1YqRbxakpRITmsR241Cez8p9x2uaE=) 3: CeKvCM9uEuIwT7O97GTPvO2qhSI.crl (hash: k0zKmf719b7ucuuAJV6emohUupQ7x55r98y49rgrAWE=) 4: HoNzXhT8lx7vw7JlMXDLD2qJC4o.roa (hash: cNxTbsYhGJbBaA5KX6zTYu/tMB/8NFnmb2pRJ5AhFSg=) 5: ao-pH_2txkXRm36Fqqb0zfVnxeQ.roa (hash: PbN0VPyFR+E4wVcHf4vZ5OY6UiGEFVo+Jh+vf+hGjQM=) 6: mEa7ci9GxscmRsk-oNcnX_tH1Ws.roa (hash: ooLE+dfj0M2cSMZSDMJWC5DsnnWyEmz/3Hgg0yiBDWk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.crl rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.mft rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:f8:43:15:e8:6a:d7:ae:ae:c4:9e:1d:28:b7:99:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09e2af08cf6e12e2304fb3bdec64cfbcedaa8522 Validity Not Before: Dec 17 11:00:48 2025 GMT Not After : Dec 18 11:00:48 2025 GMT Subject: CN=2efa9d151b10c984b8e8a95cc6ecd9402c8487f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ff:c6:47:72:8c:35:8d:52:7a:56:c4:77:06: d1:b8:bc:89:1d:92:82:4f:a0:bb:d5:17:e0:70:0a: b7:98:12:c2:30:f8:28:64:e7:52:19:7f:8c:83:1d: c5:05:07:98:bd:b4:62:64:63:b1:9a:08:2e:b4:6a: 77:4e:2f:c0:37:35:62:cc:5b:fc:fc:8f:94:36:6d: c7:77:97:58:9c:95:f7:b7:ff:c4:37:c2:7f:be:da: 1c:29:83:4a:96:dc:77:ab:cd:d8:c0:16:87:25:ca: 49:a1:d2:b0:84:3a:db:c0:44:b3:cf:43:04:49:0d: d3:a8:bb:0c:60:5f:f8:5b:a7:6c:da:e5:35:19:cf: c7:32:dd:b7:de:bf:48:4f:9e:d2:e5:12:d3:e2:93: 56:fc:b8:b5:7c:7f:a5:17:13:1e:37:1c:09:8a:4a: b4:44:c5:4a:69:f0:95:1d:3c:27:22:0c:05:ae:b0: e6:38:b5:7b:98:3d:b9:35:a7:f7:d1:de:43:3f:8d: 75:80:cc:d3:db:28:af:79:d1:eb:91:97:7f:b9:ef: 68:63:92:82:1f:92:c2:38:be:8f:f6:3f:fb:31:39: be:d7:02:1b:4d:92:1a:93:ff:27:e4:ed:c3:08:17: f7:17:81:8c:d7:58:53:e4:66:3d:52:89:c8:19:0f: 77:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:FA:9D:15:1B:10:C9:84:B8:E8:A9:5C:C6:EC:D9:40:2C:84:87:F5 X509v3 Authority Key Identifier: keyid:09:E2:AF:08:CF:6E:12:E2:30:4F:B3:BD:EC:64:CF:BC:ED:AA:85:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:d7:82:48:cf:69:58:90:2b:0c:e9:52:68:16:78:94:92:0c: 02:69:d6:b8:bf:58:3c:f7:33:17:48:30:0d:69:36:93:4f:c3: 3b:79:25:5f:35:00:f5:65:5c:58:9f:af:51:e6:40:bd:05:10: a6:f0:ef:3f:13:e4:43:e1:90:b4:5c:db:96:04:f3:e2:ca:9a: 2c:94:92:12:cb:9b:a9:a9:57:c6:1a:93:0b:2a:d8:e2:5a:3c: e9:10:30:77:9c:17:76:9b:ff:d8:86:eb:bd:70:10:a5:8b:bf: 8b:92:a9:bd:46:84:68:7f:a6:8b:3a:44:8b:79:4a:d1:be:8b: e6:bf:4c:d4:bd:3d:2e:5f:fc:9e:64:02:39:5f:fd:aa:79:55: a2:06:b8:4a:8b:db:ab:a6:87:13:f9:1c:72:3a:0a:eb:e9:dd: 16:c2:eb:97:29:10:6e:d1:f5:16:09:38:50:32:6a:80:af:e3: 03:72:6c:32:35:1a:b7:00:67:5c:77:29:fb:05:52:1b:3e:69: a6:63:95:62:74:08:9a:9a:82:2a:2e:b9:31:4d:e9:78:93:33: b2:b5:c0:cb:f4:66:fe:2a:40:c4:07:73:bb:e2:96:92:13:b4: 4e:9d:9c:85:6e:30:7e:36:ed:e0:32:85:5e:75:a8:ba:d7:44: f0:36:7a:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsr+EMV6GrXrq7Enh0ot5lBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ZTJhZjA4Y2Y2ZTEyZTIzMDRmYjNiZGVjNjRjZmJjZWRh YTg1MjIwHhcNMjUxMjE3MTEwMDQ4WhcNMjUxMjE4MTEwMDQ4WjAzMTEwLwYDVQQD EygyZWZhOWQxNTFiMTBjOTg0YjhlOGE5NWNjNmVjZDk0MDJjODQ4N2Y1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu//GR3KMNY1SelbEdwbRuLyJHZKC T6C71RfgcAq3mBLCMPgoZOdSGX+Mgx3FBQeYvbRiZGOxmggutGp3Ti/ANzVizFv8 /I+UNm3Hd5dYnJX3t//EN8J/vtocKYNKltx3q83YwBaHJcpJodKwhDrbwESzz0ME SQ3TqLsMYF/4W6ds2uU1Gc/HMt233r9IT57S5RLT4pNW/Li1fH+lFxMeNxwJikq0 RMVKafCVHTwnIgwFrrDmOLV7mD25Naf30d5DP411gMzT2yivedHrkZd/ue9oY5KC H5LCOL6P9j/7MTm+1wIbTZIak/8n5O3DCBf3F4GM11hT5GY9UonIGQ93mQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC76nRUbEMmEuOipXMbs2UAshIf1MB8GA1UdIwQY MBaAFAnirwjPbhLiME+zvexkz7ztqoUiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2VLdkNNOXVFdUl3VDdPOTdHVFB2TzJxaFNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8xOWQzY2QtNjYxMC00M2YwLTgzZWIt NzBhMWFmNTFkZmJlLzEvQ2VLdkNNOXVFdUl3VDdPOTdHVFB2TzJxaFNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8xOWQzY2QtNjYxMC00M2YwLTgzZWItNzBhMWFmNTFkZmJl LzEvQ2VLdkNNOXVFdUl3VDdPOTdHVFB2TzJxaFNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPteCSM9p WJArDOlSaBZ4lJIMAmnWuL9YPPczF0gwDWk2k0/DO3klXzUA9WVcWJ+vUeZAvQUQ pvDvPxPkQ+GQtFzblgTz4sqaLJSSEsubqalXxhqTCyrY4lo86RAwd5wXdpv/2Ibr vXAQpYu/i5KpvUaEaH+mizpEi3lK0b6L5r9M1L09Ll/8nmQCOV/9qnlVoga4Sovb q6aHE/kccjoK6+ndFsLrlykQbtH1Fgk4UDJqgK/jA3JsMjUatwBnXHcp+wVSGz5p pmOVYnQImpqCKi65MU3peJMzsrXAy/Rm/ipAxAdzu+KWkhO0Tp2chW4wfjbt4DKF XnWoutdE8DZ63w== -----END CERTIFICATE-----Generated at Wed Dec 17 19:10:43 2025 by rpki-client