This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft File: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft (raw, json) Hash identifier: nnyqSFTI8uHUwKp8o5LYWW8KKq5SPBU7DaJ65/vErY0= Subject key identifier: 85:4B:46:5C:4D:0A:FD:56:EB:B3:66:6A:DF:6B:40:A6:D7:3A:9A:AB Authority key identifier: 7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6 Certificate issuer: /CN=7a17259a863c3d637d457e119b750df95e003fd6 Certificate serial: 019B1049D5E23CEA21351AB6375307AB32B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft Manifest number: 1770 Signing time: Fri 12 Dec 2025 02:00:32 +0000 Manifest this update: Fri 12 Dec 2025 02:00:32 +0000 Manifest next update: Sat 13 Dec 2025 02:00:32 +0000 Files and hashes: 1: dUBDyI3Y08c8mTiyeoJMlAL0nl0.roa (hash: J6i7zBjAUQN6Z3eRo+/Gx26n+pN6OCH/O5XrMxGVkXk=) 2: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl (hash: DHtVdggsVfrbNOVrNXI5O+HOhvSbfhjDVskxz0e1vuE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:49:d5:e2:3c:ea:21:35:1a:b6:37:53:07:ab:32:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a17259a863c3d637d457e119b750df95e003fd6 Validity Not Before: Dec 12 02:00:32 2025 GMT Not After : Dec 13 02:00:32 2025 GMT Subject: CN=854b465c4d0afd56ebb3666adf6b40a6d73a9aab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:aa:26:87:d7:c1:d8:f9:c0:7e:bc:c2:96:ae: d6:52:15:bf:f6:45:f1:81:01:7c:c6:f7:ac:f3:a5: cb:45:9c:d1:af:ee:0e:ab:ab:3d:7a:8e:3d:b9:6d: a2:24:31:23:2c:87:f2:9f:48:0b:bb:77:dd:c5:88: 25:de:fc:09:c9:71:d9:17:e3:05:23:84:5c:8f:70: d3:4a:9c:95:56:a3:7b:6c:95:e1:c6:4e:52:ea:31: 6e:af:3f:7a:11:95:38:50:a8:93:9d:34:ae:34:f0: ec:99:93:eb:51:02:72:15:c5:14:d7:9c:2f:58:f4: 1a:44:81:25:a7:5e:f3:f0:8f:e6:5b:b1:e1:ff:16: 32:e7:e9:06:91:4d:37:64:55:96:2a:f8:1b:46:2e: e6:d2:00:73:1f:dc:3d:24:72:78:ce:be:4c:e6:4e: 06:16:23:29:50:ad:e3:0c:8c:5f:a2:4a:51:d3:28: ab:75:2b:49:79:c5:be:de:41:8f:fc:8c:aa:c6:90: 58:0a:cd:de:f0:65:4d:e2:05:0c:84:61:ca:61:2a: 3a:4d:ec:13:0f:d6:a8:17:73:18:99:8e:00:70:ca: 63:4e:3f:d1:d4:96:ca:04:91:0e:09:fb:81:d3:1f: 87:ff:df:bc:1c:62:97:44:07:f9:be:06:4b:79:5f: a6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4B:46:5C:4D:0A:FD:56:EB:B3:66:6A:DF:6B:40:A6:D7:3A:9A:AB X509v3 Authority Key Identifier: keyid:7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:4d:26:08:0b:6c:e1:49:fa:e1:bc:9e:8d:12:eb:bd:4a:17: 48:15:93:23:e6:d5:f3:3a:23:60:48:e6:3c:53:d8:5b:96:aa: c6:45:ef:c2:89:3b:8b:0a:81:41:4c:e7:3e:db:77:da:84:ef: 1c:51:82:ac:0f:3d:ee:34:ac:84:86:12:08:2c:5c:43:7c:84: 5f:79:ea:9c:90:9c:b3:40:41:c2:f8:07:9f:93:a0:e1:8a:81: 05:b2:cb:6e:4e:31:e3:a2:2b:16:24:6c:d4:57:17:ec:2d:b7: e7:10:33:e1:48:50:b1:2d:8e:45:68:e4:17:1c:fe:40:6b:9d: fb:ca:33:b7:79:f5:ff:2d:f6:e4:02:98:92:18:32:4c:cf:ae: 8c:c5:8e:37:b1:40:ce:a7:91:a2:9e:d0:18:8b:40:51:34:09: 26:92:c6:7c:a5:85:51:b8:e4:c5:5f:c3:24:55:21:87:64:e0: 4a:ae:1a:41:0e:ed:c2:8c:34:42:02:4c:bf:82:06:d8:b2:9c: 19:e7:db:5b:c8:57:0b:44:75:0d:c9:0a:1d:c0:da:35:ee:f6: f1:40:49:95:f2:4e:43:e3:83:ec:c5:3b:47:5f:01:32:44:39: 6b:80:40:12:1b:3d:3f:38:a1:08:00:1b:73:e6:6f:2b:c0:4d: a0:19:20:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQSdXiPOohNRq2N1MHqzK1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMTcyNTlhODYzYzNkNjM3ZDQ1N2UxMTliNzUwZGY5NWUw MDNmZDYwHhcNMjUxMjEyMDIwMDMyWhcNMjUxMjEzMDIwMDMyWjAzMTEwLwYDVQQD Eyg4NTRiNDY1YzRkMGFmZDU2ZWJiMzY2NmFkZjZiNDBhNmQ3M2E5YWFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaomh9fB2PnAfrzClq7WUhW/9kXx gQF8xves86XLRZzRr+4Oq6s9eo49uW2iJDEjLIfyn0gLu3fdxYgl3vwJyXHZF+MF I4Rcj3DTSpyVVqN7bJXhxk5S6jFurz96EZU4UKiTnTSuNPDsmZPrUQJyFcUU15wv WPQaRIElp17z8I/mW7Hh/xYy5+kGkU03ZFWWKvgbRi7m0gBzH9w9JHJ4zr5M5k4G FiMpUK3jDIxfokpR0yirdStJecW+3kGP/IyqxpBYCs3e8GVN4gUMhGHKYSo6TewT D9aoF3MYmY4AcMpjTj/R1JbKBJEOCfuB0x+H/9+8HGKXRAf5vgZLeV+mFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIVLRlxNCv1W67Nmat9rQKbXOpqrMB8GA1UdIwQY MBaAFHoXJZqGPD1jfUV+EZt1DfleAD/WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWhjbG1vWThQV045Ulg0Um0zVU4tVjRBUDlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8wMDg0OWUtZDhlNi00YmIxLWFkMzAt YWQ4YmM4YmM3OTY3LzEvZWhjbG1vWThQV045Ulg0Um0zVU4tVjRBUDlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8wMDg0OWUtZDhlNi00YmIxLWFkMzAtYWQ4YmM4YmM3OTY3 LzEvZWhjbG1vWThQV045Ulg0Um0zVU4tVjRBUDlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaU0mCAts 4Un64byejRLrvUoXSBWTI+bV8zojYEjmPFPYW5aqxkXvwok7iwqBQUznPtt32oTv HFGCrA897jSshIYSCCxcQ3yEX3nqnJCcs0BBwvgHn5Og4YqBBbLLbk4x46IrFiRs 1FcX7C235xAz4UhQsS2ORWjkFxz+QGud+8ozt3n1/y325AKYkhgyTM+ujMWON7FA zqeRop7QGItAUTQJJpLGfKWFUbjkxV/DJFUhh2TgSq4aQQ7twow0QgJMv4IG2LKc GefbW8hXC0R1DckKHcDaNe728UBJlfJOQ+OD7MU7R18BMkQ5a4BAEhs9PzihCAAb c+ZvK8BNoBkgfQ== -----END CERTIFICATE-----Generated at Fri Dec 12 04:00:25 2025 by rpki-client