This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft File: 7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft (raw, json) Hash identifier: 4KyARqBvLmD4OAP17RHS6xZHQY6PJ1pUx0a4x31in10= Subject key identifier: 55:1C:E9:8C:57:5E:DB:FE:AC:22:BE:82:83:9C:87:0A:CC:A5:63:AC Authority key identifier: EE:68:B6:64:CC:D5:0C:A7:67:D4:6F:FB:34:F5:3A:06:D1:20:B5:23 Certificate issuer: /CN=ee68b664ccd50ca767d46ffb34f53a06d120b523 Certificate serial: 019AF5E63DB21551C3FC959F40AFEAFB2594 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft Manifest number: 0B8A Signing time: Sat 06 Dec 2025 23:01:38 +0000 Manifest this update: Sat 06 Dec 2025 23:01:38 +0000 Manifest next update: Sun 07 Dec 2025 23:01:38 +0000 Files and hashes: 1: 7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl (hash: gF/cQJinoYd155dSDqG0dkVpsZC6z0F9aMd2wVvQ+9M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e6:3d:b2:15:51:c3:fc:95:9f:40:af:ea:fb:25:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee68b664ccd50ca767d46ffb34f53a06d120b523 Validity Not Before: Dec 6 23:01:38 2025 GMT Not After : Dec 7 23:01:38 2025 GMT Subject: CN=551ce98c575edbfeac22be82839c870acca563ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:66:f9:98:9d:c6:6d:6c:c5:c5:a0:23:90:f3: 59:26:2d:95:bc:76:ec:21:53:d9:d8:a1:f6:c7:a1: a2:8e:dd:00:05:21:6f:d0:9b:4f:8c:ae:f1:68:4e: b6:a4:2b:2f:29:62:5d:31:e3:59:3e:d8:e4:73:a9: 42:25:7c:4f:aa:f4:ff:28:db:c7:76:a6:63:81:d0: 22:a3:10:18:71:b3:02:76:59:7b:5a:df:f4:40:2a: de:3d:b1:e4:65:f6:af:61:ab:02:d0:59:e3:e4:37: 28:a8:e0:5f:58:b0:57:d0:d9:83:8a:a2:f8:ee:ae: 20:4b:c1:2c:ee:28:e9:d6:58:f4:0d:d8:8a:b4:86: e6:e0:14:34:29:ca:b3:9a:d6:d3:8e:d8:50:fb:df: fe:e6:c3:ec:a8:33:49:b0:33:eb:35:b1:b0:60:c9: c7:20:12:d3:6b:09:35:58:bd:89:af:ee:ba:6a:ee: 26:e0:bd:a0:32:2e:c0:23:51:9a:52:ab:d9:88:9a: e6:bb:f6:f8:74:77:7d:74:14:c2:36:f2:a0:85:1a: fa:a2:1a:25:36:c7:48:8b:0e:10:7f:91:92:f0:ab: 23:79:b5:c6:81:ab:7f:f7:49:7a:99:27:95:33:47: ef:d1:c7:d5:52:7e:36:ef:72:7d:d8:bc:41:be:79: b6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1C:E9:8C:57:5E:DB:FE:AC:22:BE:82:83:9C:87:0A:CC:A5:63:AC X509v3 Authority Key Identifier: keyid:EE:68:B6:64:CC:D5:0C:A7:67:D4:6F:FB:34:F5:3A:06:D1:20:B5:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:e4:bc:d9:ce:dd:8b:3e:48:7a:53:ab:03:87:7f:4f:fe:53: 10:df:d9:f2:1d:b2:28:15:00:5f:b7:8b:7f:b3:36:3a:05:9d: ed:0c:90:75:db:8b:76:7c:f3:e3:06:fb:ed:f5:81:a2:9e:c1: 59:93:9e:44:eb:73:4e:0b:d9:44:c8:f2:b3:29:2c:3a:c6:b5: cf:f6:d6:b0:3e:35:1c:bf:38:53:01:ae:99:90:1b:22:01:f1: 4b:a0:66:19:49:a5:93:6f:ee:9f:27:24:78:d8:c6:95:d5:f4: 4b:f3:10:d9:38:3d:f7:ce:3d:cc:70:63:1e:29:4a:fe:af:dd: aa:f4:2e:60:a9:71:bd:32:e0:64:e5:96:17:e7:d7:00:30:de: 29:9b:3a:f1:01:f9:05:d4:fd:83:a7:b4:4e:da:d2:0b:03:28: 6a:58:f4:d3:20:aa:27:a7:0d:a6:5c:24:b0:12:a9:8d:47:cb: 21:7e:b8:cd:98:95:60:61:60:06:a3:a3:96:ec:f8:e1:7f:30: a6:bc:3d:c3:80:db:13:61:f1:38:8a:7d:60:2e:0a:86:19:02: ba:b1:fd:c6:4e:3c:16:3e:3f:4f:af:8e:bc:f8:be:2c:10:79: 61:d2:15:64:b1:20:bf:31:39:2d:4f:17:e7:f5:d2:7d:f7:2a: 6e:66:fb:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15j2yFVHD/JWfQK/q+yWUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlNjhiNjY0Y2NkNTBjYTc2N2Q0NmZmYjM0ZjUzYTA2ZDEy MGI1MjMwHhcNMjUxMjA2MjMwMTM4WhcNMjUxMjA3MjMwMTM4WjAzMTEwLwYDVQQD Eyg1NTFjZTk4YzU3NWVkYmZlYWMyMmJlODI4MzljODcwYWNjYTU2M2FjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2b5mJ3GbWzFxaAjkPNZJi2VvHbs IVPZ2KH2x6Gijt0ABSFv0JtPjK7xaE62pCsvKWJdMeNZPtjkc6lCJXxPqvT/KNvH dqZjgdAioxAYcbMCdll7Wt/0QCrePbHkZfavYasC0Fnj5DcoqOBfWLBX0NmDiqL4 7q4gS8Es7ijp1lj0DdiKtIbm4BQ0KcqzmtbTjthQ+9/+5sPsqDNJsDPrNbGwYMnH IBLTawk1WL2Jr+66au4m4L2gMi7AI1GaUqvZiJrmu/b4dHd9dBTCNvKghRr6ohol NsdIiw4Qf5GS8KsjebXGgat/90l6mSeVM0fv0cfVUn4273J92LxBvnm2ewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFUc6YxXXtv+rCK+goOchwrMpWOsMB8GA1UdIwQY MBaAFO5otmTM1QynZ9Rv+zT1OgbRILUjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN21pMlpNelZES2RuMUdfN05QVTZCdEVndFNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9iYTc2ZWMtNWQxYS00Mzc1LTg0OWUt ZGVkN2FjMjUyNTQ0LzEvN21pMlpNelZES2RuMUdfN05QVTZCdEVndFNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9iYTc2ZWMtNWQxYS00Mzc1LTg0OWUtZGVkN2FjMjUyNTQ0 LzEvN21pMlpNelZES2RuMUdfN05QVTZCdEVndFNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAleS82c7d iz5IelOrA4d/T/5TEN/Z8h2yKBUAX7eLf7M2OgWd7QyQdduLdnzz4wb77fWBop7B WZOeROtzTgvZRMjysyksOsa1z/bWsD41HL84UwGumZAbIgHxS6BmGUmlk2/unyck eNjGldX0S/MQ2Tg99849zHBjHilK/q/dqvQuYKlxvTLgZOWWF+fXADDeKZs68QH5 BdT9g6e0TtrSCwMoalj00yCqJ6cNplwksBKpjUfLIX64zZiVYGFgBqOjluz44X8w prw9w4DbE2HxOIp9YC4KhhkCurH9xk48Fj4/T6+OvPi+LBB5YdIVZLEgvzE5LU8X 5/XSffcqbmb7Rw== -----END CERTIFICATE-----Generated at Sun Dec 7 01:53:14 2025 by rpki-client