This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft File: mEL3HQwjZ4gu9HCLIGtLbimjezM.mft (raw, json) Hash identifier: m/1cQkGUXancMZuzZorIHlBg1PVHp8lfWjuExW4Wmtg= Subject key identifier: 7F:A3:79:CD:6D:22:FE:F7:44:F8:1B:AA:DE:D2:6B:3F:DF:D7:92:1F Authority key identifier: 98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33 Certificate issuer: /CN=9842f71d0c2367882ef4708b206b4b6e29a37b33 Certificate serial: 019B597588E120B0027FD886D242DA9835CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft Manifest number: 142C Signing time: Fri 26 Dec 2025 07:00:33 +0000 Manifest this update: Fri 26 Dec 2025 07:00:33 +0000 Manifest next update: Sat 27 Dec 2025 07:00:33 +0000 Files and hashes: 1: mEL3HQwjZ4gu9HCLIGtLbimjezM.crl (hash: gWh8X7wGLol8BX5SSRWZf8zg24xwFoIyI5/+7lZQZzA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:88:e1:20:b0:02:7f:d8:86:d2:42:da:98:35:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9842f71d0c2367882ef4708b206b4b6e29a37b33 Validity Not Before: Dec 26 07:00:33 2025 GMT Not After : Dec 27 07:00:33 2025 GMT Subject: CN=7fa379cd6d22fef744f81baaded26b3fdfd7921f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:21:39:6f:ff:0a:d4:9c:c4:cd:dd:48:ed:02: bf:ed:0e:19:be:cf:a5:59:88:9f:77:c2:2c:ca:5e: 04:1b:c8:48:9b:4d:99:37:c6:28:42:4f:f0:33:44: 80:66:1b:89:ff:d3:44:20:3b:c2:42:b2:8d:d8:cf: e5:78:c4:88:f4:76:ac:84:2a:1d:9e:3b:e9:53:f2: 74:4e:63:4c:85:dd:fa:16:7e:42:97:de:f7:6e:b9: 29:6c:62:13:22:03:3c:db:35:af:37:44:c0:ff:5f: 4a:24:d6:4b:b5:10:7b:53:55:94:0e:10:b4:a9:8a: 5b:03:7e:5f:48:d9:94:d4:08:5c:a8:70:4d:df:85: 0b:d2:9a:dc:9a:7d:76:c4:97:3b:80:64:75:8e:29: 9c:9c:67:43:3d:e4:bd:c3:af:ff:68:b5:02:a7:bc: f5:44:ee:98:fa:e7:cc:b3:d8:04:d9:4e:26:20:a7: 28:2f:f9:b4:63:49:25:e8:98:5a:fa:df:f4:00:81: f7:bc:d7:3c:5e:fa:ea:f4:c2:de:8c:b9:ff:2e:8b: 5a:97:07:bd:b6:8c:9b:9d:a3:47:3e:f8:af:f1:c6: 78:36:37:0b:23:a3:6e:7d:65:d5:cf:0f:aa:38:ad: 78:33:7c:f7:7b:21:c7:91:93:65:61:c3:99:0b:2e: 3d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A3:79:CD:6D:22:FE:F7:44:F8:1B:AA:DE:D2:6B:3F:DF:D7:92:1F X509v3 Authority Key Identifier: keyid:98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:c7:02:07:c4:7a:8f:3d:ff:2a:0f:68:13:82:6d:f4:9e:22: 40:14:61:c1:e9:f3:ab:c0:38:6b:89:e9:67:80:e4:e3:35:ea: dd:e9:5e:f3:99:19:6a:9d:9c:9d:7c:f4:52:e1:d5:66:e3:ae: a0:08:f6:5f:b2:ca:e1:b0:e6:ff:a5:d3:d4:a3:a6:fa:fa:66: f3:93:a1:10:a6:11:96:fb:17:17:11:21:d2:54:86:c0:d1:7b: ba:9e:9a:f3:11:39:ff:d6:b0:5f:e6:c3:04:bb:91:2b:6a:19: 86:65:a6:e3:d6:74:13:bb:6d:c7:47:c7:3f:e9:77:ee:df:e9: 60:06:33:a4:ae:c0:35:ac:aa:57:41:f3:fa:31:58:26:dc:19: 27:81:d9:28:ba:cf:c0:42:67:a7:bd:6a:cc:48:4e:5a:66:bc: 31:18:c4:9a:9b:f5:98:44:0f:01:cf:eb:d4:ea:a1:23:2e:39: 0a:95:5a:49:a1:95:b7:3a:78:56:71:e9:66:7b:eb:54:82:eb: 8c:67:4b:90:ae:eb:a0:ca:9d:b6:16:5f:3b:e4:7c:b8:18:3d: 84:2b:86:c3:dd:4a:6f:f8:0a:79:fa:73:80:f4:a2:92:f1:28: e6:09:6b:3b:c0:8f:23:9d:99:fe:9b:a1:86:a5:be:68:19:1d: 9a:79:99:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdYjhILACf9iG0kLamDXPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NDJmNzFkMGMyMzY3ODgyZWY0NzA4YjIwNmI0YjZlMjlh MzdiMzMwHhcNMjUxMjI2MDcwMDMzWhcNMjUxMjI3MDcwMDMzWjAzMTEwLwYDVQQD Eyg3ZmEzNzljZDZkMjJmZWY3NDRmODFiYWFkZWQyNmIzZmRmZDc5MjFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CE5b/8K1JzEzd1I7QK/7Q4Zvs+l WYifd8Isyl4EG8hIm02ZN8YoQk/wM0SAZhuJ/9NEIDvCQrKN2M/leMSI9HashCod njvpU/J0TmNMhd36Fn5Cl973brkpbGITIgM82zWvN0TA/19KJNZLtRB7U1WUDhC0 qYpbA35fSNmU1AhcqHBN34UL0prcmn12xJc7gGR1jimcnGdDPeS9w6//aLUCp7z1 RO6Y+ufMs9gE2U4mIKcoL/m0Y0kl6Jha+t/0AIH3vNc8Xvrq9MLejLn/Lotalwe9 toybnaNHPviv8cZ4NjcLI6NufWXVzw+qOK14M3z3eyHHkZNlYcOZCy49MwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+jec1tIv73RPgbqt7Saz/f15IfMB8GA1UdIwQY MBaAFJhC9x0MI2eILvRwiyBrS24po3szMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUVMM0hRd2paNGd1OUhDTElHdExiaW1qZXpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yNWM5NDctODUzNC00MzQxLWFkNmUt N2RhOGRiYWVhOTRhLzEvbUVMM0hRd2paNGd1OUhDTElHdExiaW1qZXpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8yNWM5NDctODUzNC00MzQxLWFkNmUtN2RhOGRiYWVhOTRh LzEvbUVMM0hRd2paNGd1OUhDTElHdExiaW1qZXpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApscCB8R6 jz3/Kg9oE4Jt9J4iQBRhwenzq8A4a4npZ4Dk4zXq3ele85kZap2cnXz0UuHVZuOu oAj2X7LK4bDm/6XT1KOm+vpm85OhEKYRlvsXFxEh0lSGwNF7up6a8xE5/9awX+bD BLuRK2oZhmWm49Z0E7ttx0fHP+l37t/pYAYzpK7ANayqV0Hz+jFYJtwZJ4HZKLrP wEJnp71qzEhOWma8MRjEmpv1mEQPAc/r1OqhIy45CpVaSaGVtzp4VnHpZnvrVILr jGdLkK7roMqdthZfO+R8uBg9hCuGw91Kb/gKefpzgPSikvEo5glrO8CPI52Z/puh hqW+aBkdmnmZHw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:22 2025 by rpki-client