This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json) Hash identifier: Bsdx3Jg1D+/KuP8IPp06UjQjUfLguVfOL2LZ+GVOkxc= Subject key identifier: 46:B5:05:E0:6E:A9:4F:38:2E:A3:9C:88:40:3E:29:C6:4B:48:6C:9B Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a Certificate serial: 019AF0BF285E20D744992DBD033BE4B3A0E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft Manifest number: 03C7 Signing time: Fri 05 Dec 2025 23:00:50 +0000 Manifest this update: Fri 05 Dec 2025 23:00:50 +0000 Manifest next update: Sat 06 Dec 2025 23:00:50 +0000 Files and hashes: 1: 1-PJ8uFT3vIGcdh8Ryvstj5V11gs.roa (hash: flh68N5wBml9poaLXGZmGeNQ/HSV3CHvsWwwddNW1dc=) 2: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: HYCU6JB1aAre31AdhmyUerhg+2YhOr2l10nkCJWV3f8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:28:5e:20:d7:44:99:2d:bd:03:3b:e4:b3:a0:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a Validity Not Before: Dec 5 23:00:50 2025 GMT Not After : Dec 6 23:00:50 2025 GMT Subject: CN=46b505e06ea94f382ea39c88403e29c64b486c9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:51:9a:9c:bc:54:79:b1:d3:95:0b:23:98:2f: fb:95:d0:98:a4:fe:7d:fb:a9:61:07:10:95:18:30: 6d:bb:e3:37:d6:a0:7a:ea:c7:8f:1f:b8:b0:5f:7e: 48:91:e4:fc:46:4b:39:ae:56:fa:d3:a2:ba:f9:cb: 92:b7:fb:be:0b:26:92:54:25:46:fb:31:69:d0:4b: 53:df:c0:54:7c:96:07:24:b4:8d:41:66:d6:de:0f: 36:05:bf:dd:6b:4d:ad:21:2f:1f:98:b7:9f:63:4d: 39:ca:c2:cd:20:f4:97:08:ad:86:b5:03:c4:a2:ac: 22:de:d7:d9:a6:c0:05:38:8e:33:f1:02:c4:74:8b: c8:15:86:23:f5:86:b2:ae:cc:d9:fb:9c:eb:94:2a: 78:ef:df:03:96:8b:6c:d4:8a:8f:bf:ac:72:0a:be: b7:dd:af:c9:27:94:06:a4:e0:f9:93:2c:8a:1a:5c: 80:64:54:3e:f9:70:56:6b:19:f0:f2:ac:1c:e8:2e: a0:a7:50:c5:a8:28:7c:47:a6:f2:c7:0e:8f:8e:9f: 31:99:48:92:5f:a9:be:21:5c:e0:78:11:26:5e:85: e0:0c:fe:e9:d0:1c:d1:34:5b:3f:c3:97:25:fa:4f: dd:a5:21:7e:e7:a2:81:b3:d3:fb:cd:74:30:43:5e: 88:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B5:05:E0:6E:A9:4F:38:2E:A3:9C:88:40:3E:29:C6:4B:48:6C:9B X509v3 Authority Key Identifier: keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:0b:0e:34:f5:f4:16:e4:0c:ad:a4:a1:a0:f6:f4:54:2f:3c: a2:f5:2a:7a:e8:ae:f4:5c:a8:80:c9:08:fd:c4:79:68:e2:d5: 5e:f3:19:c0:a5:53:18:cc:fd:61:02:d0:ba:d8:33:70:ff:d0: 52:70:ee:70:b1:55:dd:82:65:4f:e6:69:f1:2c:e3:7b:ff:ca: d5:66:01:70:e1:37:80:b7:c3:ac:08:57:0c:60:9f:f9:eb:b3: 5e:e5:5f:7a:8e:1c:c5:2c:9a:8d:2b:ad:7b:68:32:3a:95:4b: 46:51:d0:00:93:cc:12:17:07:7f:6e:21:4b:3d:9e:25:10:e8: 3c:89:6c:dc:db:d2:55:87:08:74:d9:d8:64:a9:b9:c8:bb:92: c5:67:09:75:5a:c7:54:30:1a:f7:8a:6c:98:72:06:fd:7f:c6: 50:89:a8:03:db:18:26:39:f2:32:8f:80:bb:2c:c2:d0:47:6d: ca:8a:02:ff:18:e7:29:df:c6:9b:aa:3b:f5:bc:db:32:f1:6c: 10:c8:00:ae:3b:d3:9a:a3:cc:9f:66:f4:9e:59:f3:ee:2c:d8: dc:b5:e2:92:db:bd:ac:62:31:ad:99:96:51:ad:4f:fb:5a:93: ee:8c:7a:bd:4b:13:b9:e6:40:55:78:76:b8:f2:fc:07:12:fc: 17:ac:0c:bb -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZrwvyheINdEmS29Azvks6DnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5ODY2OWQzMWExNGRiZGM1MDc3MTU5Y2YwYTY1MzUzYmZi ZmEyMGEwHhcNMjUxMjA1MjMwMDUwWhcNMjUxMjA2MjMwMDUwWjAzMTEwLwYDVQQD Eyg0NmI1MDVlMDZlYTk0ZjM4MmVhMzljODg0MDNlMjljNjRiNDg2YzliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVGanLxUebHTlQsjmC/7ldCYpP59 +6lhBxCVGDBtu+M31qB66sePH7iwX35IkeT8Rks5rlb606K6+cuSt/u+CyaSVCVG +zFp0EtT38BUfJYHJLSNQWbW3g82Bb/da02tIS8fmLefY005ysLNIPSXCK2GtQPE oqwi3tfZpsAFOI4z8QLEdIvIFYYj9YayrszZ+5zrlCp4798Dlots1IqPv6xyCr63 3a/JJ5QGpOD5kyyKGlyAZFQ++XBWaxnw8qwc6C6gp1DFqCh8R6byxw6Pjp8xmUiS X6m+IVzgeBEmXoXgDP7p0BzRNFs/w5cl+k/dpSF+56KBs9P7zXQwQ16IMQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFEa1BeBuqU84LqOciEA+KcZLSGybMB8GA1UdIwQY MBaAFPmGadMaFNvcUHcVnPCmU1O/v6IKMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1ZWnAweG9VMjl4UWR4V2M4S1pUVTctX29nby5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvMmI0MTdkLTI4NjktNDExZi1hZWRh LTRhMDViYWM1MjY1Zi8xLzEtWVpwMHhvVTI5eFFkeFdjOEtaVFU3LV9vZ28ubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxULzA3LzJiNDE3ZC0yODY5LTQxMWYtYWVkYS00YTA1YmFjNTI2 NWYvMS8xLVlacDB4b1UyOXhRZHhXYzhLWlRVNy1fb2dvLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQwsO NPX0FuQMraShoPb0VC88ovUqeuiu9FyogMkI/cR5aOLVXvMZwKVTGMz9YQLQutgz cP/QUnDucLFV3YJlT+Zp8Szje//K1WYBcOE3gLfDrAhXDGCf+euzXuVfeo4cxSya jSute2gyOpVLRlHQAJPMEhcHf24hSz2eJRDoPIls3NvSVYcIdNnYZKm5yLuSxWcJ dVrHVDAa94psmHIG/X/GUImoA9sYJjnyMo+AuyzC0EdtyooC/xjnKd/Gm6o79bzb MvFsEMgArjvTmqPMn2b0nlnz7izY3LXiktu9rGIxrZmWUa1P+1qT7ox6vUsTueZA VXh2uPL8BxL8F6wMuw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:04:04 2025 by rpki-client