This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft File: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft (raw, json) Hash identifier: mXMKRjjfO2BWQkkngWEuDtVJqWo22jCZADq6KvaZ/bA= Subject key identifier: F9:44:33:BA:18:CE:38:DD:2A:58:61:DB:EC:9C:5A:A4:79:A4:04:A9 Authority key identifier: 7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6 Certificate issuer: /CN=7a17259a863c3d637d457e119b750df95e003fd6 Certificate serial: 019B19F22082A677AE854B2551B9B01593B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft Manifest number: 1775 Signing time: Sat 13 Dec 2025 23:00:56 +0000 Manifest this update: Sat 13 Dec 2025 23:00:56 +0000 Manifest next update: Sun 14 Dec 2025 23:00:56 +0000 Files and hashes: 1: dUBDyI3Y08c8mTiyeoJMlAL0nl0.roa (hash: J6i7zBjAUQN6Z3eRo+/Gx26n+pN6OCH/O5XrMxGVkXk=) 2: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl (hash: SVRPuviyQMj+0fxSmfqhDCs6sbdE+hnwa6RQzlb2bpg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:f2:20:82:a6:77:ae:85:4b:25:51:b9:b0:15:93:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a17259a863c3d637d457e119b750df95e003fd6 Validity Not Before: Dec 13 23:00:56 2025 GMT Not After : Dec 14 23:00:56 2025 GMT Subject: CN=f94433ba18ce38dd2a5861dbec9c5aa479a404a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:02:ec:f9:ab:d3:46:01:de:32:73:c4:a8:36: 3e:a8:68:ca:ec:3a:74:aa:ef:78:be:c5:b4:40:a8: 78:58:27:79:3b:b3:88:44:4a:d7:9e:80:7c:7e:61: 25:0c:d7:91:40:0f:9f:04:77:eb:2d:a5:83:52:ed: 03:e5:3c:ab:2f:f6:1b:87:35:08:3a:24:6d:77:01: f4:cb:ca:e9:10:27:9d:dc:d9:a8:67:ef:04:d4:43: 67:53:29:6f:be:04:84:4e:93:69:08:94:18:80:29: 13:ca:7c:33:d1:7f:9c:83:1e:de:6b:68:59:99:36: 99:b7:d3:fd:8f:7f:26:b8:06:99:37:4d:96:25:aa: 3b:26:22:4a:f3:67:75:53:41:6a:61:e5:f7:28:29: 14:98:6c:40:da:e1:90:d4:dc:bf:af:79:d8:1e:ab: 2b:17:42:7e:a2:68:8e:6e:ef:5b:3d:8e:1a:da:9d: 0b:c2:29:98:4a:79:77:a7:9d:2c:58:e5:fe:e7:fd: 09:b4:36:14:69:8e:99:46:88:4c:f7:ce:ff:a3:78: 7e:eb:4f:0c:4b:39:3e:17:fa:43:37:ae:3e:19:4c: 3f:c6:60:f1:83:44:54:9c:95:9a:e8:be:7b:5d:e0: 99:7c:0e:ad:41:f4:8a:0d:92:38:18:9e:69:0d:6a: 20:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:44:33:BA:18:CE:38:DD:2A:58:61:DB:EC:9C:5A:A4:79:A4:04:A9 X509v3 Authority Key Identifier: keyid:7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:52:e4:3f:98:cf:58:c7:b3:4e:c8:88:49:74:75:4a:c1:8c: 74:bd:03:30:8d:f1:fd:a4:8e:15:af:27:d6:7c:16:7e:b9:c9: 71:b4:59:32:3e:c9:a3:47:9d:74:61:7f:6e:56:c2:6f:d5:27: 80:11:66:83:df:82:63:74:67:3d:26:ad:86:07:f3:65:ba:ad: 43:e5:26:e7:2f:f1:00:31:df:ab:a4:f3:c5:b0:9f:b5:67:77: bb:2d:51:d8:a9:b8:31:aa:07:c5:08:2e:8a:94:40:39:91:05: 1f:19:ff:5e:eb:bf:80:31:57:94:8b:82:fe:a7:c7:c2:be:9f: 0e:85:dd:03:41:81:7e:74:d8:f7:31:8d:da:c6:a5:b8:e8:e4: 6d:0d:62:bf:b6:da:77:b8:87:52:33:3f:d6:99:04:73:fc:ea: f9:80:59:f4:31:62:3c:16:a2:0b:84:74:f8:92:5d:b8:05:27: 07:60:db:6e:2a:d1:1c:25:1c:17:b0:b7:78:40:ed:e4:56:a3: a3:f8:e8:50:70:c2:39:2c:cc:62:1c:c3:ea:79:2a:d4:f4:22: 23:5f:71:62:f9:f7:9e:0a:95:0f:b1:09:c6:67:73:43:9f:cc: f1:5c:78:b8:5c:cc:44:da:3e:f6:de:bf:c2:cb:cb:d5:74:d4: 67:10:5c:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZ8iCCpneuhUslUbmwFZO0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMTcyNTlhODYzYzNkNjM3ZDQ1N2UxMTliNzUwZGY5NWUw MDNmZDYwHhcNMjUxMjEzMjMwMDU2WhcNMjUxMjE0MjMwMDU2WjAzMTEwLwYDVQQD EyhmOTQ0MzNiYTE4Y2UzOGRkMmE1ODYxZGJlYzljNWFhNDc5YTQwNGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyALs+avTRgHeMnPEqDY+qGjK7Dp0 qu94vsW0QKh4WCd5O7OIRErXnoB8fmElDNeRQA+fBHfrLaWDUu0D5TyrL/YbhzUI OiRtdwH0y8rpECed3NmoZ+8E1ENnUylvvgSETpNpCJQYgCkTynwz0X+cgx7ea2hZ mTaZt9P9j38muAaZN02WJao7JiJK82d1U0FqYeX3KCkUmGxA2uGQ1Ny/r3nYHqsr F0J+omiObu9bPY4a2p0LwimYSnl3p50sWOX+5/0JtDYUaY6ZRohM987/o3h+608M Szk+F/pDN64+GUw/xmDxg0RUnJWa6L57XeCZfA6tQfSKDZI4GJ5pDWogCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPlEM7oYzjjdKlhh2+ycWqR5pASpMB8GA1UdIwQY MBaAFHoXJZqGPD1jfUV+EZt1DfleAD/WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWhjbG1vWThQV045Ulg0Um0zVU4tVjRBUDlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8wMDg0OWUtZDhlNi00YmIxLWFkMzAt YWQ4YmM4YmM3OTY3LzEvZWhjbG1vWThQV045Ulg0Um0zVU4tVjRBUDlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8wMDg0OWUtZDhlNi00YmIxLWFkMzAtYWQ4YmM4YmM3OTY3 LzEvZWhjbG1vWThQV045Ulg0Um0zVU4tVjRBUDlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFlLkP5jP WMezTsiISXR1SsGMdL0DMI3x/aSOFa8n1nwWfrnJcbRZMj7Jo0eddGF/blbCb9Un gBFmg9+CY3RnPSathgfzZbqtQ+Um5y/xADHfq6TzxbCftWd3uy1R2Km4MaoHxQgu ipRAOZEFHxn/Xuu/gDFXlIuC/qfHwr6fDoXdA0GBfnTY9zGN2saluOjkbQ1iv7ba d7iHUjM/1pkEc/zq+YBZ9DFiPBaiC4R0+JJduAUnB2DbbirRHCUcF7C3eEDt5Faj o/joUHDCOSzMYhzD6nkq1PQiI19xYvn3ngqVD7EJxmdzQ5/M8Vx4uFzMRNo+9t6/ wsvL1XTUZxBcqQ== -----END CERTIFICATE-----Generated at Sun Dec 14 07:49:37 2025 by rpki-client