This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json) Hash identifier: xXaeDbnXdrEs8Jz8/J/T8cvbZN6YyvZmlOqQ/ySeiA8= Subject key identifier: 77:D7:83:79:D3:C0:60:FF:13:FC:3C:F0:CB:5A:A6:7A:23:D2:F4:B6 Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a Certificate serial: 019AF12D80004B7572E84A03664F05353CFC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft Manifest number: 121F Signing time: Sat 06 Dec 2025 01:01:22 +0000 Manifest this update: Sat 06 Dec 2025 01:01:22 +0000 Manifest next update: Sun 07 Dec 2025 01:01:22 +0000 Files and hashes: 1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=) 2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: Ed3H5TNU+Nkaqq80T1XqPgmzQQcgvQoXAFbMoKrse0E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:80:00:4b:75:72:e8:4a:03:66:4f:05:35:3c:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a Validity Not Before: Dec 6 01:01:22 2025 GMT Not After : Dec 7 01:01:22 2025 GMT Subject: CN=77d78379d3c060ff13fc3cf0cb5aa67a23d2f4b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:d6:29:47:ff:ab:46:23:4f:1c:94:e0:2c:e3: a6:2d:1f:d2:59:9e:db:39:77:44:14:cd:ba:9a:89: f7:18:74:d8:c1:3d:d2:ba:69:8d:8d:46:cd:18:9f: cb:81:4b:bc:e4:23:4c:49:56:c7:0c:79:25:5f:56: cd:72:f7:9f:69:a4:8e:38:19:48:e1:3e:a5:8c:f3: ed:e4:83:91:f9:38:39:6e:7c:29:e9:9b:bd:2c:9d: 10:04:ee:96:64:bd:fd:a0:b4:d6:5a:0a:2a:9b:4d: 35:46:d1:c3:2a:69:ab:fa:e7:d9:ac:8a:05:7d:e5: a3:96:94:5d:ca:4b:dc:ee:32:16:eb:fe:ec:25:9f: c4:38:aa:9e:03:01:bc:b5:3f:04:3a:10:56:c7:b7: 5b:eb:46:25:82:e6:23:cd:3b:91:7f:c9:35:9e:ea: 8e:a9:3c:8b:c9:af:6d:df:02:d5:c0:5f:d1:8f:cd: 24:8b:95:d0:7a:f7:d6:aa:40:f8:93:a4:54:58:d1: 14:21:b1:4e:96:3e:e6:b9:c9:ab:2f:58:bd:8b:67: 39:b8:eb:a8:84:ee:97:be:4d:90:d8:04:ce:85:79: d2:28:02:c9:95:2b:73:0a:2c:bf:5b:7c:91:42:2b: b2:f4:17:70:43:1f:7b:19:97:5c:6b:4c:d3:c8:55: 5f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D7:83:79:D3:C0:60:FF:13:FC:3C:F0:CB:5A:A6:7A:23:D2:F4:B6 X509v3 Authority Key Identifier: keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:5b:8f:36:2f:84:5e:a6:f7:c5:56:29:4c:9f:a3:ef:da:c2: 47:fd:4b:5d:aa:26:dc:7d:59:f1:f1:0d:16:2d:aa:06:03:d8: d7:92:c8:6e:ce:ec:fb:4a:4b:0b:8a:23:76:1e:60:a0:c8:f7: c9:d1:5c:7a:eb:8a:02:13:43:f5:aa:b2:66:95:43:c0:0c:9a: 3d:f5:2f:50:9f:c3:3f:27:30:2d:dc:54:b2:52:dd:3e:18:cb: dc:4a:3c:c3:c7:5f:3a:06:ce:81:86:ca:24:a1:f6:96:0e:eb: 51:7a:81:b1:94:9d:33:e1:4a:bb:4c:09:7f:f6:16:02:18:5c: 4c:16:27:af:bc:a7:7b:7f:6d:38:e1:c2:ce:db:04:22:92:cb: 3a:e1:65:12:08:d3:95:99:e4:e3:43:9a:a4:0c:8c:66:e1:e1: a7:c7:91:a2:c8:a0:cd:3b:99:f1:6d:40:f0:eb:37:c3:26:76: 21:2c:a6:69:df:76:06:79:66:74:e3:a8:39:cb:89:26:97:83: d1:52:e9:d5:29:33:85:3c:20:b9:cc:e9:0d:1c:79:66:ef:82: 41:2b:80:2a:02:6a:4c:de:37:09:06:07:64:a1:12:ae:41:5c: 70:5f:2d:4b:91:b3:31:90:ca:54:10:51:d4:c3:34:16:7d:70: 54:0a:ad:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLYAAS3Vy6EoDZk8FNTz8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3YmQ4ZWFlMTY2OWRlYjNhM2ZhNDE4NjQ5MWUwNWNiMzJj ZTA5MmEwHhcNMjUxMjA2MDEwMTIyWhcNMjUxMjA3MDEwMTIyWjAzMTEwLwYDVQQD Eyg3N2Q3ODM3OWQzYzA2MGZmMTNmYzNjZjBjYjVhYTY3YTIzZDJmNGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAitYpR/+rRiNPHJTgLOOmLR/SWZ7b OXdEFM26mon3GHTYwT3SummNjUbNGJ/LgUu85CNMSVbHDHklX1bNcvefaaSOOBlI 4T6ljPPt5IOR+Tg5bnwp6Zu9LJ0QBO6WZL39oLTWWgoqm001RtHDKmmr+ufZrIoF feWjlpRdykvc7jIW6/7sJZ/EOKqeAwG8tT8EOhBWx7db60YlguYjzTuRf8k1nuqO qTyLya9t3wLVwF/Rj80ki5XQevfWqkD4k6RUWNEUIbFOlj7mucmrL1i9i2c5uOuo hO6Xvk2Q2ATOhXnSKALJlStzCiy/W3yRQiuy9BdwQx97GZdca0zTyFVf2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHfXg3nTwGD/E/w88Mtapnoj0vS2MB8GA1UdIwQY MBaAFLe9jq4Wad6zo/pBhkkeBcsyzgkqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUt YWUxNWQ1MDc1OTBlLzEvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUtYWUxNWQ1MDc1OTBl LzEvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdFuPNi+E Xqb3xVYpTJ+j79rCR/1LXaom3H1Z8fENFi2qBgPY15LIbs7s+0pLC4ojdh5goMj3 ydFceuuKAhND9aqyZpVDwAyaPfUvUJ/DPycwLdxUslLdPhjL3Eo8w8dfOgbOgYbK JKH2lg7rUXqBsZSdM+FKu0wJf/YWAhhcTBYnr7yne39tOOHCztsEIpLLOuFlEgjT lZnk40OapAyMZuHhp8eRosigzTuZ8W1A8Os3wyZ2ISymad92BnlmdOOoOcuJJpeD 0VLp1SkzhTwguczpDRx5Zu+CQSuAKgJqTN43CQYHZKESrkFccF8tS5GzMZDKVBBR 1MM0Fn1wVAqtyQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:08:15 2025 by rpki-client