This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft File: Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft (raw, json) Hash identifier: fb/WTBO/EZq3oyVkwww7gPVKFgmJHXBvvt4ZX2Vu3tA= Subject key identifier: 78:32:04:37:11:80:73:AD:8B:52:47:26:50:8E:2C:54:A2:F5:99:46 Authority key identifier: 46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75 Certificate issuer: /CN=468ecba10e7599a030aa613088688a6c26d62d75 Certificate serial: 019B24AC66D57E80C874063BC7BC5D3A31E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft Manifest number: 140C Signing time: Tue 16 Dec 2025 01:00:36 +0000 Manifest this update: Tue 16 Dec 2025 01:00:36 +0000 Manifest next update: Wed 17 Dec 2025 01:00:36 +0000 Files and hashes: 1: Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl (hash: PpPGhK4zfg4Y4N4i12R9qNr1HVmKB+YrfZ7Wm1NSDk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:ac:66:d5:7e:80:c8:74:06:3b:c7:bc:5d:3a:31:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=468ecba10e7599a030aa613088688a6c26d62d75 Validity Not Before: Dec 16 01:00:36 2025 GMT Not After : Dec 17 01:00:36 2025 GMT Subject: CN=78320437118073ad8b524726508e2c54a2f59946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9c:82:a1:dc:18:bb:17:8a:39:48:62:8f:e6: 8c:83:e1:ea:38:9c:6f:10:e0:3d:36:98:dc:10:2f: 54:63:fe:f1:50:3a:06:03:31:26:9a:e5:41:53:c5: 85:20:33:d4:c6:6b:0d:2b:b0:44:90:2c:0d:8c:64: a1:18:70:56:47:b1:f4:f5:bd:38:d4:c7:c9:1d:f5: 60:c5:3f:e1:c1:a8:55:ec:9c:e3:60:51:ee:8b:d5: 91:7a:24:0b:9d:4c:12:e7:3c:d4:ad:11:0c:36:66: dd:e6:9d:b4:3f:fd:4f:5b:08:de:b4:bb:00:c0:b9: be:9b:6d:6a:cd:54:9c:ce:0f:c7:e9:ee:4f:73:f6: 1f:85:01:23:2d:14:dd:ef:5e:20:d3:34:74:8c:09: 08:0f:1e:01:14:81:ad:5c:b1:93:40:1c:4c:77:39: c0:9b:9b:32:21:e1:fa:bc:0f:1b:04:6f:c1:2c:50: b0:8f:d3:e0:3b:44:24:61:5a:21:fe:da:fd:c9:b6: 84:f7:4d:be:95:67:ee:ed:2f:30:93:4d:ff:92:73: c5:bf:68:7c:22:ea:e7:7b:53:83:03:f3:23:fd:a7: bb:af:db:f0:31:ba:a7:6f:84:e4:9f:2a:9b:f1:ef: 8e:78:5b:a8:09:92:4c:0c:d4:31:cd:69:94:e4:d7: 42:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:32:04:37:11:80:73:AD:8B:52:47:26:50:8E:2C:54:A2:F5:99:46 X509v3 Authority Key Identifier: keyid:46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:88:5c:90:dd:09:72:7f:57:bd:0e:1e:da:8d:b8:fa:59:dc: d3:5a:25:75:5c:2e:d8:a6:03:e6:55:a7:51:d4:b4:3d:3b:e7: 22:d7:b5:a4:cb:7b:4a:f0:98:54:8d:b9:e4:e8:37:bd:b5:db: be:14:08:40:d6:c3:61:be:c1:2a:d5:72:ee:0b:3f:91:12:04: c0:37:9e:44:28:8b:50:82:56:70:86:92:89:ac:2f:11:23:8d: 7d:f7:76:e1:b9:96:0d:5f:ba:2b:b8:85:32:f8:dc:da:44:25: 73:d5:bb:8b:d6:99:06:a4:ac:34:3a:1d:d8:14:4d:e7:8e:35: 2a:9f:57:32:1a:fa:79:01:76:86:83:1d:f9:f5:33:22:3e:ab: 77:20:dd:67:1b:c6:2a:08:79:74:fb:b8:63:c4:ee:02:48:71: 61:d2:da:4f:d5:2f:b9:80:56:16:5c:6e:92:d8:c1:13:fe:1b: 59:8f:a5:ed:3a:4d:a6:a1:e7:7a:57:fd:f5:f5:5c:14:0b:dd: 58:b4:26:de:9a:f2:72:26:3b:94:d7:74:1e:01:b6:fa:cc:01: 25:23:79:60:42:0d:17:45:40:e2:af:8c:49:ba:30:c3:7f:0f: 7d:4a:2f:8f:b3:22:31:61:70:bf:fb:21:c9:11:57:d0:4f:ca: e2:72:e1:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskrGbVfoDIdAY7x7xdOjHgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2OGVjYmExMGU3NTk5YTAzMGFhNjEzMDg4Njg4YTZjMjZk NjJkNzUwHhcNMjUxMjE2MDEwMDM2WhcNMjUxMjE3MDEwMDM2WjAzMTEwLwYDVQQD Eyg3ODMyMDQzNzExODA3M2FkOGI1MjQ3MjY1MDhlMmM1NGEyZjU5OTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15yCodwYuxeKOUhij+aMg+HqOJxv EOA9NpjcEC9UY/7xUDoGAzEmmuVBU8WFIDPUxmsNK7BEkCwNjGShGHBWR7H09b04 1MfJHfVgxT/hwahV7JzjYFHui9WReiQLnUwS5zzUrREMNmbd5p20P/1PWwjetLsA wLm+m21qzVSczg/H6e5Pc/YfhQEjLRTd714g0zR0jAkIDx4BFIGtXLGTQBxMdznA m5syIeH6vA8bBG/BLFCwj9PgO0QkYVoh/tr9ybaE902+lWfu7S8wk03/knPFv2h8 Iurne1ODA/Mj/ae7r9vwMbqnb4Tknyqb8e+OeFuoCZJMDNQxzWmU5NdCWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHgyBDcRgHOti1JHJlCOLFSi9ZlGMB8GA1UdIwQY MBaAFEaOy6EOdZmgMKphMIhoimwm1i11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9mMWVhNTAtNGUwNS00YWJkLTg5Mjct ZGY3ZTBiZDZmODE2LzEvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9mMWVhNTAtNGUwNS00YWJkLTg5MjctZGY3ZTBiZDZmODE2 LzEvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiIhckN0J cn9XvQ4e2o24+lnc01oldVwu2KYD5lWnUdS0PTvnIte1pMt7SvCYVI255Og3vbXb vhQIQNbDYb7BKtVy7gs/kRIEwDeeRCiLUIJWcIaSiawvESONffd24bmWDV+6K7iF Mvjc2kQlc9W7i9aZBqSsNDod2BRN5441Kp9XMhr6eQF2hoMd+fUzIj6rdyDdZxvG Kgh5dPu4Y8TuAkhxYdLaT9UvuYBWFlxuktjBE/4bWY+l7TpNpqHnelf99fVcFAvd WLQm3pryciY7lNd0HgG2+swBJSN5YEINF0VA4q+MSboww38PfUovj7MiMWFwv/sh yRFX0E/K4nLhDw== -----END CERTIFICATE-----Generated at Tue Dec 16 07:08:53 2025 by rpki-client