This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft File: n7bU2YfQBKAPopfmnCaOt189mkA.mft (raw, json) Hash identifier: SYIq9mxyoX9AMRN17nn5GMIXxW6O/152Lk+3tDiZG9w= Subject key identifier: 2F:6A:B8:0A:AA:0E:32:87:C7:67:C3:FD:4A:D8:0F:00:0D:CE:C3:D1 Authority key identifier: 9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40 Certificate issuer: /CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40 Certificate serial: 019AF2767D3C1E0ACC9A8F6AFD455A277C29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft Manifest number: 0F40 Signing time: Sat 06 Dec 2025 07:00:42 +0000 Manifest this update: Sat 06 Dec 2025 07:00:42 +0000 Manifest next update: Sun 07 Dec 2025 07:00:42 +0000 Files and hashes: 1: 5ZNOGBQ9w8dTp0XQhpuUk8zzApg.roa (hash: 1/+Fm1r/KA+hNLAy+y/H8/1fP0WyouANNJuTvhP3iNk=) 2: n7bU2YfQBKAPopfmnCaOt189mkA.crl (hash: 3oaaOUrnNhtM93d5eOTX9JUxmWFjFYZ7SpzkWZBsfEs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:7d:3c:1e:0a:cc:9a:8f:6a:fd:45:5a:27:7c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40 Validity Not Before: Dec 6 07:00:42 2025 GMT Not After : Dec 7 07:00:42 2025 GMT Subject: CN=2f6ab80aaa0e3287c767c3fd4ad80f000dcec3d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fe:66:3d:91:73:9a:de:49:22:12:af:59:cb: 61:48:f2:24:dd:13:6a:35:38:27:be:7d:09:85:b3: 4d:f6:47:b9:8a:25:da:09:79:97:13:a6:a0:40:4f: 47:af:b7:9e:1d:be:3f:7d:0c:e0:78:f6:b8:7c:b7: af:65:b0:e1:d7:23:56:3a:99:98:f4:7f:b9:3a:f1: 01:25:a5:79:16:b3:2c:07:55:62:df:b0:4c:8a:da: 8a:ec:93:80:a0:85:91:f6:24:3e:aa:f5:5a:94:37: 34:12:9e:1c:35:18:7d:dc:f2:19:36:f4:56:ec:fe: 1b:60:20:60:b2:7c:aa:76:f6:80:90:fe:e3:be:42: 22:96:3e:6f:2e:d2:26:05:e9:1b:ab:63:9d:dd:08: c3:fc:da:88:f1:41:fc:b1:e4:46:f0:05:20:1c:10: 57:45:01:38:c4:2f:bc:a4:33:62:98:83:8c:4a:2f: f5:89:7e:b1:95:b2:92:86:09:29:31:36:fb:79:e7: 44:8c:0e:8f:8d:8a:61:87:61:02:56:63:75:27:e1: c2:0f:af:c5:13:3c:99:b9:85:00:82:66:6e:fa:e7: 11:bc:5f:0a:f8:27:9a:ba:ea:e6:73:d7:9b:6a:84: 2a:54:90:c7:1a:29:9c:fc:f0:90:f4:9a:89:f3:9a: c8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:6A:B8:0A:AA:0E:32:87:C7:67:C3:FD:4A:D8:0F:00:0D:CE:C3:D1 X509v3 Authority Key Identifier: keyid:9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:90:ca:12:1d:06:db:23:b3:ea:d6:72:af:4a:5c:b5:e2:a8: 94:14:08:45:ca:35:65:46:ae:a6:a8:b3:bb:ef:0b:d1:00:a1: e4:d2:5c:c2:14:b1:dc:97:a5:07:2d:0f:c9:0d:92:6d:67:39: f4:cc:02:6b:fb:1c:51:f6:91:cf:29:c9:0c:cf:ce:e7:d1:69: aa:cb:51:de:47:16:d2:98:6a:a8:7b:35:a1:b7:97:5c:d9:f6: 66:a7:a3:a5:22:7d:8a:44:f2:7d:9b:64:1c:24:5c:79:79:80: 41:07:57:77:12:93:11:e0:ad:c4:a3:54:0c:8f:1e:3f:86:8b: 7b:34:4c:34:b7:4a:74:28:48:8e:22:47:56:62:00:9d:79:79: 03:96:d9:b5:bf:39:84:1d:85:b8:63:c1:45:ab:de:62:a7:3a: 9e:f6:7e:f7:14:b8:53:bd:bc:5d:a2:67:18:8f:c8:f0:57:8b: 91:bf:fb:d7:37:5d:4d:7b:80:41:28:49:43:7c:a3:5f:f9:97: e1:f4:c7:de:0a:b0:47:92:5c:d7:f6:e0:eb:4d:0f:95:19:c2: 0a:0c:5c:3e:ef:2e:f0:1f:6e:0b:de:23:4e:68:98:1d:46:bf: 0c:d5:5a:ca:f8:1e:cb:a0:77:7b:ad:8a:c5:21:52:cb:eb:bd: d4:40:8a:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydn08HgrMmo9q/UVaJ3wpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmYjZkNGQ5ODdkMDA0YTAwZmEyOTdlNjljMjY4ZWI3NWYz ZDlhNDAwHhcNMjUxMjA2MDcwMDQyWhcNMjUxMjA3MDcwMDQyWjAzMTEwLwYDVQQD EygyZjZhYjgwYWFhMGUzMjg3Yzc2N2MzZmQ0YWQ4MGYwMDBkY2VjM2QxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuv5mPZFzmt5JIhKvWcthSPIk3RNq NTgnvn0JhbNN9ke5iiXaCXmXE6agQE9Hr7eeHb4/fQzgePa4fLevZbDh1yNWOpmY 9H+5OvEBJaV5FrMsB1Vi37BMitqK7JOAoIWR9iQ+qvValDc0Ep4cNRh93PIZNvRW 7P4bYCBgsnyqdvaAkP7jvkIilj5vLtImBekbq2Od3QjD/NqI8UH8seRG8AUgHBBX RQE4xC+8pDNimIOMSi/1iX6xlbKShgkpMTb7eedEjA6PjYphh2ECVmN1J+HCD6/F EzyZuYUAgmZu+ucRvF8K+Ceauurmc9ebaoQqVJDHGimc/PCQ9JqJ85rIBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC9quAqqDjKHx2fD/UrYDwANzsPRMB8GA1UdIwQY MBaAFJ+21NmH0ASgD6KX5pwmjrdfPZpAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjdiVTJZZlFCS0FQb3BmbW5DYU90MTg5bWtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8wMjQwMGYtNzgwMi00NGU3LTg1Mjct OGIyOTFlMjZkMWQ5LzEvbjdiVTJZZlFCS0FQb3BmbW5DYU90MTg5bWtBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC8wMjQwMGYtNzgwMi00NGU3LTg1MjctOGIyOTFlMjZkMWQ5 LzEvbjdiVTJZZlFCS0FQb3BmbW5DYU90MTg5bWtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJJDKEh0G 2yOz6tZyr0pcteKolBQIRco1ZUaupqizu+8L0QCh5NJcwhSx3JelBy0PyQ2SbWc5 9MwCa/scUfaRzynJDM/O59FpqstR3kcW0phqqHs1obeXXNn2ZqejpSJ9ikTyfZtk HCRceXmAQQdXdxKTEeCtxKNUDI8eP4aLezRMNLdKdChIjiJHVmIAnXl5A5bZtb85 hB2FuGPBRaveYqc6nvZ+9xS4U728XaJnGI/I8FeLkb/71zddTXuAQShJQ3yjX/mX 4fTH3gqwR5Jc1/bg600PlRnCCgxcPu8u8B9uC94jTmiYHUa/DNVayvgey6B3e62K xSFSy+u91ECKug== -----END CERTIFICATE-----Generated at Sat Dec 6 10:20:33 2025 by rpki-client