This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json) Hash identifier: VJu2q+9w4lnYwG9utx4hYigrpTL+N1Mv6+p+T43MFtM= Subject key identifier: 7E:28:34:E8:8D:5E:31:C9:67:91:23:23:53:80:BC:0B:D8:05:0E:69 Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78 Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578 Certificate serial: 019B085B410E5A392BFBEE25246447DB11FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft Manifest number: 04A8 Signing time: Wed 10 Dec 2025 13:02:36 +0000 Manifest this update: Wed 10 Dec 2025 13:02:36 +0000 Manifest next update: Thu 11 Dec 2025 13:02:36 +0000 Files and hashes: 1: HeJAD4YHm_sJaYZYcU9XbBvO2ZQ.roa (hash: X87UHvfB+nlPvI0ZCTJdcn/R8oWH+T+ddbzxZs7Ye8A=) 2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: svOCh4WKMj2fSWLsp3iCo7MlLXgJ7kvX41nqdISJ5oA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:5b:41:0e:5a:39:2b:fb:ee:25:24:64:47:db:11:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578 Validity Not Before: Dec 10 13:02:36 2025 GMT Not After : Dec 11 13:02:36 2025 GMT Subject: CN=7e2834e88d5e31c9679123235380bc0bd8050e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:1a:55:f8:c4:62:97:82:ad:24:85:34:02: 68:9e:9d:4d:e3:0b:78:87:47:bb:af:6b:21:49:85: 4e:46:05:57:04:c5:b6:15:ce:50:04:08:80:24:1f: 17:a4:0c:57:52:5c:f0:d2:70:09:1e:14:29:ac:cd: 5e:9f:04:d2:15:2b:25:0c:18:63:c3:a4:70:ab:a4: 2e:f7:9e:be:41:ca:23:78:44:1e:00:f0:8f:67:9f: bb:bc:f2:4c:07:ab:35:a9:13:35:82:3a:52:da:56: eb:1f:8e:45:92:cd:58:1e:b9:5f:ac:4f:ab:95:47: 8f:63:5c:16:1a:61:18:68:6c:f0:6d:75:ea:a7:df: 8f:5d:22:e7:22:0a:d1:7c:b1:53:8f:0c:07:f6:b0: 4b:da:f2:d7:db:8f:71:38:98:68:c0:dd:3f:35:b0: 0d:6b:e1:4f:25:be:77:3b:2f:ab:11:8b:11:9f:8e: 91:f9:f6:a1:7f:cb:17:d3:85:8b:1f:7c:33:5b:be: 05:a5:72:b2:67:dd:ec:30:8f:84:85:82:ca:28:9b: d7:22:62:04:47:e2:d2:fd:21:d2:df:bc:d5:31:6b: b4:91:c8:f7:08:cb:2c:79:7d:ca:76:40:62:bb:2a: 86:95:b4:a9:42:f9:81:e7:fb:d9:95:a5:81:91:1d: 90:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:28:34:E8:8D:5E:31:C9:67:91:23:23:53:80:BC:0B:D8:05:0E:69 X509v3 Authority Key Identifier: keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:53:1e:af:08:fe:b1:3a:c9:2c:76:65:ce:37:1e:2c:99:4a: 96:a9:2b:67:69:7f:60:04:0c:bf:a8:1b:8f:eb:97:56:a9:07: 35:3b:ab:2a:5f:af:f1:ba:62:35:b8:21:b6:6e:0a:a2:68:21: 33:dd:c0:01:c7:44:ce:99:f5:17:00:c1:67:b8:68:9e:33:d5: 0d:07:6d:aa:bf:cb:f8:ae:f7:8c:b3:52:1c:ee:00:c4:44:73: 83:30:46:2e:cc:52:b7:52:7e:37:7b:46:8e:2e:0d:23:36:23: e0:a9:41:a4:39:93:1e:cb:dc:dc:f0:ec:c1:74:fe:e5:1b:61: 2f:15:7e:c6:b7:ad:f4:5e:3e:06:d9:19:f3:d8:d5:92:54:da: 9b:b9:78:6e:4f:e0:20:5d:e8:b9:c8:46:00:7e:bd:75:63:fd: 5c:ac:bf:60:f9:ee:cd:d5:fa:7a:4b:b7:c6:ac:57:a3:03:47: 31:57:66:82:6a:9e:54:87:04:c6:6a:86:70:bc:f7:8d:6f:6e: e9:ae:05:24:4d:fe:0a:10:4e:9d:35:2e:a6:38:82:d5:58:38: 47:f6:94:17:96:3f:06:a8:b3:30:93:68:56:a5:e8:22:59:bf: 15:c1:d0:95:2c:24:94:ca:91:04:41:71:d5:d6:04:06:64:b5: f1:af:10:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsIW0EOWjkr++4lJGRH2xH8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhZjFhN2JmNzQyODVkYjJlODIwOTFmYmY0NjNhMmVlZjZl M2E1NzgwHhcNMjUxMjEwMTMwMjM2WhcNMjUxMjExMTMwMjM2WjAzMTEwLwYDVQQD Eyg3ZTI4MzRlODhkNWUzMWM5Njc5MTIzMjM1MzgwYmMwYmQ4MDUwZTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8kaVfjEYpeCrSSFNAJonp1N4wt4 h0e7r2shSYVORgVXBMW2Fc5QBAiAJB8XpAxXUlzw0nAJHhQprM1enwTSFSslDBhj w6Rwq6Qu956+QcojeEQeAPCPZ5+7vPJMB6s1qRM1gjpS2lbrH45Fks1YHrlfrE+r lUePY1wWGmEYaGzwbXXqp9+PXSLnIgrRfLFTjwwH9rBL2vLX249xOJhowN0/NbAN a+FPJb53Oy+rEYsRn46R+fahf8sX04WLH3wzW74FpXKyZ93sMI+EhYLKKJvXImIE R+LS/SHS37zVMWu0kcj3CMsseX3KdkBiuyqGlbSpQvmB5/vZlaWBkR2QRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH4oNOiNXjHJZ5EjI1OAvAvYBQ5pMB8GA1UdIwQY MBaAFHrxp790KF2y6CCR+/Rjou7246V4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZXZHbnYzUW9YYkxvSUpINzlHT2k3dmJqcFhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8wNTg0MzUtYTFjNi00NDM2LTk1YTIt YjcxMTRiNjlmODRjLzEvZXZHbnYzUW9YYkxvSUpINzlHT2k3dmJqcFhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8wNTg0MzUtYTFjNi00NDM2LTk1YTItYjcxMTRiNjlmODRj LzEvZXZHbnYzUW9YYkxvSUpINzlHT2k3dmJqcFhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR1Merwj+ sTrJLHZlzjceLJlKlqkrZ2l/YAQMv6gbj+uXVqkHNTurKl+v8bpiNbghtm4Komgh M93AAcdEzpn1FwDBZ7honjPVDQdtqr/L+K73jLNSHO4AxERzgzBGLsxSt1J+N3tG ji4NIzYj4KlBpDmTHsvc3PDswXT+5RthLxV+xret9F4+BtkZ89jVklTam7l4bk/g IF3ouchGAH69dWP9XKy/YPnuzdX6eku3xqxXowNHMVdmgmqeVIcExmqGcLz3jW9u 6a4FJE3+ChBOnTUupjiC1Vg4R/aUF5Y/BqizMJNoVqXoIlm/FcHQlSwklMqRBEFx 1dYEBmS18a8Qig== -----END CERTIFICATE-----Generated at Wed Dec 10 18:27:17 2025 by rpki-client