This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft File: Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft (raw, json) Hash identifier: mzpRqPYu8k9LsEO/wIyw0DRbEoSmRZ5rrT/LYx1iEq0= Subject key identifier: D2:73:D0:62:C4:37:FA:40:64:3A:D7:58:F3:26:98:19:24:DB:81:2E Authority key identifier: 46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75 Certificate issuer: /CN=468ecba10e7599a030aa613088688a6c26d62d75 Certificate serial: 019AF2768316BE24AD0260A715B22D46CEE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft Manifest number: 13F2 Signing time: Sat 06 Dec 2025 07:00:44 +0000 Manifest this update: Sat 06 Dec 2025 07:00:44 +0000 Manifest next update: Sun 07 Dec 2025 07:00:44 +0000 Files and hashes: 1: Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl (hash: jbLNRnoMPoMKrYwR/xL8hKg7TGCReVBtx3RKIhnvr0c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:83:16:be:24:ad:02:60:a7:15:b2:2d:46:ce:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=468ecba10e7599a030aa613088688a6c26d62d75 Validity Not Before: Dec 6 07:00:44 2025 GMT Not After : Dec 7 07:00:44 2025 GMT Subject: CN=d273d062c437fa40643ad758f326981924db812e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:77:27:ad:d2:c2:e1:bd:6a:8c:4c:a7:7d:b8: 53:28:b9:73:3e:6c:8f:d3:60:e4:91:7d:0a:80:a2: f0:06:5f:55:4e:eb:b4:41:e6:fa:88:8e:da:9c:99: 47:ac:42:54:50:c3:7f:36:63:1a:d9:f0:9c:78:f9: 87:91:2d:0f:e1:b1:8c:e9:6b:99:ca:7d:b4:c9:00: 20:b3:04:51:6b:81:c5:97:3f:62:e2:27:7c:6f:48: 26:39:0c:f3:11:d3:c0:6d:c0:0d:11:a4:ee:2b:e6: 23:f4:5e:99:c3:63:e6:22:de:8a:55:4b:cb:b6:ab: 4d:05:e3:d6:76:b4:5d:7d:35:7b:03:c5:e2:3f:72: c5:4c:f0:28:30:bf:7c:5f:4d:07:3a:6f:eb:a8:23: 74:45:da:77:35:9f:d8:be:62:c8:70:4d:8d:3b:f9: a4:49:90:bb:35:cd:27:09:2f:c4:5d:b7:12:cb:f1: c9:67:f2:f2:88:9d:0a:87:3e:17:aa:8a:40:0c:9a: 75:19:c6:93:ba:87:db:93:f5:26:af:0f:65:e9:98: 5a:bf:69:fe:d1:cb:87:b5:2d:60:69:2f:66:b6:98: 70:bb:fb:d7:0e:99:d9:29:6f:49:77:ef:5d:a8:0d: ec:9a:52:44:dc:9e:59:44:04:82:20:b0:f7:8b:3b: 9e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:73:D0:62:C4:37:FA:40:64:3A:D7:58:F3:26:98:19:24:DB:81:2E X509v3 Authority Key Identifier: keyid:46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cb:64:a3:b1:88:e0:d6:f6:f1:05:4c:22:a6:3c:f9:e7:5a:11: 5d:c5:42:23:d8:9a:92:5e:23:3b:84:77:17:16:dd:12:47:9f: cf:fd:c1:82:74:64:90:1a:09:53:eb:16:32:80:9a:0e:99:c8: a6:e8:fe:9b:c2:8c:7a:36:c3:39:51:4d:40:fd:95:67:b4:01: 4d:25:28:34:ca:de:91:53:47:88:b5:0b:39:ec:90:62:e9:05: d3:14:64:6a:3f:43:5c:5f:c3:b6:58:47:4d:27:cd:01:2c:27: a0:a7:55:f6:9e:fe:83:1f:4a:d8:5d:68:cf:7f:6d:05:94:ef: 65:d3:ff:17:eb:a4:4d:08:04:41:b4:70:fd:61:38:67:2c:a0: 51:f0:3e:e4:d3:3d:bb:98:aa:7f:da:48:65:cf:c4:d3:ff:19: 09:bd:b8:02:9c:35:b4:57:33:4e:86:0b:bd:f0:9b:a6:93:c4: 07:69:7a:c7:1f:98:f4:a6:db:68:3b:f3:50:7f:6e:48:49:e0: 64:e6:8a:42:8c:4e:e9:4d:5c:74:93:14:c1:c3:0d:53:f9:25: 07:ea:02:5b:af:ef:20:3c:19:78:95:b8:4e:8b:a5:2f:33:37: 8d:df:19:76:a0:eb:b4:b4:ca:08:d5:72:7a:17:b7:73:82:6b: e9:e2:60:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydoMWviStAmCnFbItRs7mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2OGVjYmExMGU3NTk5YTAzMGFhNjEzMDg4Njg4YTZjMjZk NjJkNzUwHhcNMjUxMjA2MDcwMDQ0WhcNMjUxMjA3MDcwMDQ0WjAzMTEwLwYDVQQD EyhkMjczZDA2MmM0MzdmYTQwNjQzYWQ3NThmMzI2OTgxOTI0ZGI4MTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHcnrdLC4b1qjEynfbhTKLlzPmyP 02DkkX0KgKLwBl9VTuu0Qeb6iI7anJlHrEJUUMN/NmMa2fCcePmHkS0P4bGM6WuZ yn20yQAgswRRa4HFlz9i4id8b0gmOQzzEdPAbcANEaTuK+Yj9F6Zw2PmIt6KVUvL tqtNBePWdrRdfTV7A8XiP3LFTPAoML98X00HOm/rqCN0Rdp3NZ/YvmLIcE2NO/mk SZC7Nc0nCS/EXbcSy/HJZ/LyiJ0Khz4XqopADJp1GcaTuofbk/Umrw9l6Zhav2n+ 0cuHtS1gaS9mtphwu/vXDpnZKW9Jd+9dqA3smlJE3J5ZRASCILD3izueaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNJz0GLEN/pAZDrXWPMmmBkk24EuMB8GA1UdIwQY MBaAFEaOy6EOdZmgMKphMIhoimwm1i11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9mMWVhNTAtNGUwNS00YWJkLTg5Mjct ZGY3ZTBiZDZmODE2LzEvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9mMWVhNTAtNGUwNS00YWJkLTg5MjctZGY3ZTBiZDZmODE2 LzEvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAy2SjsYjg 1vbxBUwipjz551oRXcVCI9iakl4jO4R3FxbdEkefz/3BgnRkkBoJU+sWMoCaDpnI puj+m8KMejbDOVFNQP2VZ7QBTSUoNMrekVNHiLULOeyQYukF0xRkaj9DXF/DtlhH TSfNASwnoKdV9p7+gx9K2F1oz39tBZTvZdP/F+ukTQgEQbRw/WE4ZyygUfA+5NM9 u5iqf9pIZc/E0/8ZCb24Apw1tFczToYLvfCbppPEB2l6xx+Y9KbbaDvzUH9uSEng ZOaKQoxO6U1cdJMUwcMNU/klB+oCW6/vIDwZeJW4ToulLzM3jd8ZdqDrtLTKCNVy ehe3c4Jr6eJgmw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:47:46 2025 by rpki-client