This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: vf0rssNUuhkHKjlo2UGkPOSHX7BRfMggAql9DyAky4E= Subject key identifier: AA:42:AB:1A:29:20:9F:49:59:94:9A:07:F8:04:47:2A:83:45:01:DD Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019B0F6EA06693A73C64A264F57502CEB3A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 1636 Signing time: Thu 11 Dec 2025 22:01:06 +0000 Manifest this update: Thu 11 Dec 2025 22:01:06 +0000 Manifest next update: Fri 12 Dec 2025 22:01:06 +0000 Files and hashes: 1: 1-Eladd6sj8Y7vq1mtW5h6ASM_tM.roa (hash: auxhruGljCxtN9ijkL9KZ/K4C+RcNKrzhKvUSRg/9HQ=) 2: 1-dpIOgQrHNlMUsxt6C2Ztf5nfuM.roa (hash: pCUJMhojWf39aVt/QyofbsbuGjc8Gizw3ZJ2MSqOsTA=) 3: 1-gUTUj2JpuChCvozdxCQFTR22DM.roa (hash: f/2CCyCRw0ujuPO8AP04nbSH6GVLpL5l8bdrrfS8KoQ=) 4: 4JmdsvBatEpFanHBLwN8tE53B0o.roa (hash: rZ4Y8EU6soeJCyiHjLhVB0iARab8gRMfLlwRpZ6KFuk=) 5: 7ap_QJi20SaGnPgK1pV6_7cP-Uo.roa (hash: BOo8F2wEw4BgZClwTOfUjkt0HIqhHPtSsQJru4E0kFk=) 6: 7pYVLfxDyksCdUmiOhbgviOo3x8.roa (hash: QcPN759vJqixjDGU3gmMeZsCeSMWabiqP3hVma37vPU=) 7: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: S1oORe/rZKfkIohfJRx/Sq+CP1r1py9B0lbyOtf3wVQ=) 8: Hfkubm6yrWEn7gBE9wSMaD_ExXE.roa (hash: FXP2ir2FJkx6oy+MltDsbhNB8kOwwEjeXoSk5fOxlUM=) 9: Kk7xKrzHzx6qmDJI5CVBM_Sl474.roa (hash: m5FUWhJ54zbQwUlYkehhIiOw3x1SXokhdxGSIsx1B6c=) 10: Si8V8khtv0yVUA78DGGzfalNcCk.roa (hash: TuKNETdYYEdxWIcOAjkF1OdADD7zXp4g+mS6E5V7pvo=) 11: XjirH4cwDvxlRkAGxm7FSwAK2sM.roa (hash: YF/U/qPEr6M3Q+MIXQrnfUUKIV5n5WTRe7Dd9hsZTtM=) 12: aaSIhAJHCTwygtdFuXnOQPW6bY4.roa (hash: wv3RWyn/0THt7bCTdq/aMs2HWBM2MxgNANY6nblHNaA=) 13: azpo2jbXZip4fzf6JfxzYCloMXU.roa (hash: lChd9oLNFRupauF5HA1DBK7UGcNDTVpyA1eioCbGUns=) 14: cozXNddBZMRS0D_fVDWk42XqVNI.roa (hash: nP2wP4zibtasbSbsg7EMlMPSKjFkuBzXXdP2DBCONIM=) 15: iwe0kg-crqIWyp2IScMa9LxREgQ.roa (hash: CaVzf6weXzwiNznLUpeTB+QaHcaNjVgYiVjygsUgHxg=) 16: lQoeI3fot2NEOazpcJqwENKoEUU.roa (hash: Elimcemes6spMNky/T+TAYcPtxVw5jFrGcayiuk5D80=) 17: vsEC-C0-IZ2XJzdCqJMyLFlVXyo.roa (hash: 6dyvsyNO+SBB5YmEGzfWoUfWH/YqXAoOIBD3aTROXnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:6e:a0:66:93:a7:3c:64:a2:64:f5:75:02:ce:b3:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Dec 11 22:01:06 2025 GMT Not After : Dec 12 22:01:06 2025 GMT Subject: CN=aa42ab1a29209f4959949a07f804472a834501dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b6:a7:de:2f:19:0a:83:81:34:9e:7d:3b:b7: 3e:3f:aa:2a:02:3c:09:ae:dc:4c:bf:5a:e4:44:d6: 85:9d:19:23:53:eb:68:78:e0:82:81:ae:2e:85:fe: 4c:c9:84:76:83:8a:1c:11:68:ae:ee:8f:67:07:54: ec:31:db:fd:ea:cf:1e:e4:ad:48:99:5b:40:1a:85: 37:cb:db:fe:ad:b1:24:04:80:08:55:3a:b6:8f:12: 2a:00:b0:58:3f:88:e5:1d:04:83:10:79:ba:45:f3: 32:84:61:19:10:c6:9a:2b:a9:6b:01:dd:08:4f:f6: 0d:ea:88:04:aa:81:3c:ad:be:cd:69:e5:aa:58:8d: 0a:d4:71:65:38:d1:ef:2c:bf:96:7c:3a:f5:d7:81: d0:57:51:00:cc:73:a2:d8:8b:2c:56:0c:d4:8a:63: bd:37:49:7e:49:60:37:e4:f9:37:17:34:6b:b9:41: cd:07:1e:d4:bf:35:61:d1:ae:48:6a:04:3f:c3:f6: 66:f3:35:be:0a:78:a3:b5:bd:59:76:13:20:ba:69: 89:b0:02:5f:33:3f:cf:c6:f3:5b:ac:80:00:04:ba: bb:df:83:f4:d4:c5:fe:d2:04:69:9f:76:75:3c:cd: 83:ad:f8:23:d7:49:8a:29:a0:96:fa:94:56:2c:f0: 2e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:42:AB:1A:29:20:9F:49:59:94:9A:07:F8:04:47:2A:83:45:01:DD X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:b8:72:20:b4:36:8e:67:11:11:2f:9d:6e:75:47:b0:0c:88: ae:43:48:3d:94:a7:8f:24:d0:be:02:09:36:1c:e4:ec:cb:f4: 4a:bd:5a:cc:36:45:18:6e:29:3f:a6:ad:54:ae:9f:f4:2a:7d: ad:17:6d:49:d3:1c:d4:b5:ec:bd:43:40:69:38:2e:0a:fa:2e: d9:98:8e:3f:b3:ef:12:62:9f:00:eb:69:46:a2:67:c7:b3:14: 1d:ac:18:a6:1f:77:8f:1f:3c:16:73:29:e5:b6:66:f3:b8:3e: f6:99:d2:7f:1d:f1:97:5f:29:78:07:8f:28:c8:8e:d6:f7:bb: b7:86:d9:26:76:2e:93:a4:b7:a4:91:cc:33:0c:7c:85:40:cc: 08:7a:8c:9d:81:7e:9c:37:2c:24:34:4e:2a:df:e7:0f:05:bd: db:75:51:ae:ea:a7:f0:a8:ce:b1:dc:f1:10:34:5b:54:51:db: f8:1a:69:4f:c0:ed:a7:23:46:90:57:1c:1d:f9:7e:22:a7:d5: 0c:f5:3e:be:45:88:b1:56:39:a9:b3:c1:f3:24:ed:b5:12:18: 06:50:02:0d:39:95:50:7a:fd:1d:23:d3:3d:51:66:9f:6f:72: 46:d5:ef:c9:c8:6e:6c:36:5b:70:fb:f1:21:5f:1f:34:ee:26: 94:de:44:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPbqBmk6c8ZKJk9XUCzrOjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjUxMjExMjIwMTA2WhcNMjUxMjEyMjIwMTA2WjAzMTEwLwYDVQQD EyhhYTQyYWIxYTI5MjA5ZjQ5NTk5NDlhMDdmODA0NDcyYTgzNDUwMWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnran3i8ZCoOBNJ59O7c+P6oqAjwJ rtxMv1rkRNaFnRkjU+toeOCCga4uhf5MyYR2g4ocEWiu7o9nB1TsMdv96s8e5K1I mVtAGoU3y9v+rbEkBIAIVTq2jxIqALBYP4jlHQSDEHm6RfMyhGEZEMaaK6lrAd0I T/YN6ogEqoE8rb7NaeWqWI0K1HFlONHvLL+WfDr114HQV1EAzHOi2IssVgzUimO9 N0l+SWA35Pk3FzRruUHNBx7UvzVh0a5IagQ/w/Zm8zW+Cnijtb1ZdhMgummJsAJf Mz/PxvNbrIAABLq734P01MX+0gRpn3Z1PM2Drfgj10mKKaCW+pRWLPAuJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKpCqxopIJ9JWZSaB/gERyqDRQHdMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARrhyILQ2 jmcRES+dbnVHsAyIrkNIPZSnjyTQvgIJNhzk7Mv0Sr1azDZFGG4pP6atVK6f9Cp9 rRdtSdMc1LXsvUNAaTguCvou2ZiOP7PvEmKfAOtpRqJnx7MUHawYph93jx88FnMp 5bZm87g+9pnSfx3xl18peAePKMiO1ve7t4bZJnYuk6S3pJHMMwx8hUDMCHqMnYF+ nDcsJDROKt/nDwW923VRruqn8KjOsdzxEDRbVFHb+BppT8DtpyNGkFccHfl+IqfV DPU+vkWIsVY5qbPB8yTttRIYBlACDTmVUHr9HSPTPVFmn29yRtXvychubDZbcPvx IV8fNO4mlN5EEA== -----END CERTIFICATE-----Generated at Fri Dec 12 01:32:43 2025 by rpki-client