This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft File: ceWC839BZJjBi2YkjevM8iQavHY.mft (raw, json) Hash identifier: K1LzsvNgopfRFRHKuVn5FlpWxfy3jdIOEoaotVKDh9k= Subject key identifier: 55:45:78:83:E4:0E:36:1B:67:EA:EC:CD:80:DB:0E:6A:18:C1:89:F2 Authority key identifier: 71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76 Certificate issuer: /CN=71e582f37f416498c18b66248debccf2241abc76 Certificate serial: 019B435C3A64998B740F1C3B07F9389C9409 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft Manifest number: 0727 Signing time: Mon 22 Dec 2025 00:01:16 +0000 Manifest this update: Mon 22 Dec 2025 00:01:16 +0000 Manifest next update: Tue 23 Dec 2025 00:01:16 +0000 Files and hashes: 1: 3JlcQxD2NXWLaEj6J42YSdi1quE.roa (hash: ZFdShZLQiri1BeTMte27QBSxcmd4A78sb6jnkkO6l9s=) 2: ceWC839BZJjBi2YkjevM8iQavHY.crl (hash: svdxI5qa2dBoMlDjJhFY8peFs+nLTq6jmJYZwyXfrEI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:5c:3a:64:99:8b:74:0f:1c:3b:07:f9:38:9c:94:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71e582f37f416498c18b66248debccf2241abc76 Validity Not Before: Dec 22 00:01:16 2025 GMT Not After : Dec 23 00:01:16 2025 GMT Subject: CN=55457883e40e361b67eaeccd80db0e6a18c189f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:43:3b:db:55:58:1a:d5:ca:71:b0:f7:62:ff: 38:6a:67:82:d2:88:66:83:be:87:11:ca:76:a6:18: 49:7c:bf:f4:2f:5a:e1:2b:be:5d:e5:df:33:6a:9c: 5d:c2:9f:e0:7b:d0:f5:20:d5:55:b2:7d:96:21:0e: 45:42:00:aa:8c:a4:df:d2:9b:be:c7:b3:6c:0c:e1: 2f:5a:62:df:c8:0b:0f:21:b6:d6:19:22:0f:fb:18: ca:88:de:72:ca:48:e5:ea:b7:1e:ec:21:61:42:e7: fd:4d:f6:0f:75:06:b9:43:7d:50:66:68:fb:1c:7f: 35:35:70:1d:1b:77:ba:05:ee:f4:73:9c:0d:b1:6d: a3:0e:18:24:dc:af:57:d1:ac:f4:4f:6f:73:e2:cb: b3:b9:27:f4:62:f4:bb:b3:d6:1d:e5:bb:f9:77:a8: 57:18:ae:08:68:79:e2:cf:65:60:41:46:dd:80:a3: a8:f7:e4:1a:c3:82:af:b3:bf:74:1d:36:ba:51:92: f4:ee:b6:62:b7:79:10:b1:fc:a9:c7:41:cb:08:48: c4:38:a7:af:09:40:77:c9:79:bc:86:7b:e1:c9:3c: 9f:a9:16:4e:fd:14:89:20:03:47:ff:ad:53:a2:fc: 25:31:a8:78:e6:3e:4e:3a:28:f7:fa:d2:8e:9c:68: 53:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:45:78:83:E4:0E:36:1B:67:EA:EC:CD:80:DB:0E:6A:18:C1:89:F2 X509v3 Authority Key Identifier: keyid:71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:0d:ed:96:ef:81:55:96:67:fe:cf:ab:4f:24:ce:bc:36:4e: c2:31:dc:ef:21:16:ea:c4:8d:df:83:45:b0:bf:55:e5:4a:7a: 9c:be:fe:ec:11:f2:fa:19:21:7a:da:f6:5e:e7:4a:82:54:96: 91:2a:60:5d:d3:6a:a0:f7:17:2a:ca:b4:99:96:6b:49:33:60: 4c:d1:71:b6:0f:87:0f:13:df:60:4a:14:6b:af:15:e2:95:29: 47:86:eb:86:c3:8f:cd:c8:52:f6:58:95:15:e7:b7:d1:96:cc: 71:2d:0f:da:f5:3f:a1:4c:eb:67:e8:b4:59:cf:d7:b8:ca:b9: f6:bc:ce:69:45:a5:b1:5d:de:7b:09:01:94:5d:15:b0:5c:f2: c5:f5:53:5c:16:74:59:67:33:1d:f9:46:3a:d4:ba:0f:a9:b0: c3:42:9e:13:3b:14:bf:39:87:3a:04:2e:d5:99:4a:bf:92:8c: a6:fd:aa:7a:07:34:16:93:87:d4:cb:3a:c6:d8:22:f6:c8:54: cf:ff:7e:9c:94:22:7e:f4:4a:52:56:b2:3a:bb:50:4a:3a:9e: 87:e6:5a:80:d5:fe:71:e3:51:d0:00:90:88:22:90:35:3c:1a: c3:54:3e:97:00:44:ff:2e:74:3f:4c:21:ce:c2:ac:18:6d:3f: d0:e1:39:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDXDpkmYt0Dxw7B/k4nJQJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZTU4MmYzN2Y0MTY0OThjMThiNjYyNDhkZWJjY2YyMjQx YWJjNzYwHhcNMjUxMjIyMDAwMTE2WhcNMjUxMjIzMDAwMTE2WjAzMTEwLwYDVQQD Eyg1NTQ1Nzg4M2U0MGUzNjFiNjdlYWVjY2Q4MGRiMGU2YTE4YzE4OWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5UM721VYGtXKcbD3Yv84ameC0ohm g76HEcp2phhJfL/0L1rhK75d5d8zapxdwp/ge9D1INVVsn2WIQ5FQgCqjKTf0pu+ x7NsDOEvWmLfyAsPIbbWGSIP+xjKiN5yykjl6rce7CFhQuf9TfYPdQa5Q31QZmj7 HH81NXAdG3e6Be70c5wNsW2jDhgk3K9X0az0T29z4suzuSf0YvS7s9Yd5bv5d6hX GK4IaHniz2VgQUbdgKOo9+Qaw4Kvs790HTa6UZL07rZit3kQsfypx0HLCEjEOKev CUB3yXm8hnvhyTyfqRZO/RSJIANH/61TovwlMah45j5OOij3+tKOnGhTRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFVFeIPkDjYbZ+rszYDbDmoYwYnyMB8GA1UdIwQY MBaAFHHlgvN/QWSYwYtmJI3rzPIkGrx2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2VXQzgzOUJaSmpCaTJZa2pldk04aVFhdkhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9mZDllYTAtODM1Ny00NThiLWI1OTYt OWYzNGY2NzE2MjU5LzEvY2VXQzgzOUJaSmpCaTJZa2pldk04aVFhdkhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS9mZDllYTAtODM1Ny00NThiLWI1OTYtOWYzNGY2NzE2MjU5 LzEvY2VXQzgzOUJaSmpCaTJZa2pldk04aVFhdkhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnw3tlu+B VZZn/s+rTyTOvDZOwjHc7yEW6sSN34NFsL9V5Up6nL7+7BHy+hkhetr2XudKglSW kSpgXdNqoPcXKsq0mZZrSTNgTNFxtg+HDxPfYEoUa68V4pUpR4brhsOPzchS9liV Fee30ZbMcS0P2vU/oUzrZ+i0Wc/XuMq59rzOaUWlsV3eewkBlF0VsFzyxfVTXBZ0 WWczHflGOtS6D6mww0KeEzsUvzmHOgQu1ZlKv5KMpv2qegc0FpOH1Ms6xtgi9shU z/9+nJQifvRKUlayOrtQSjqeh+ZagNX+ceNR0ACQiCKQNTwaw1Q+lwBE/y50P0wh zsKsGG0/0OE5LQ== -----END CERTIFICATE-----Generated at Mon Dec 22 04:19:07 2025 by rpki-client