This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft File: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft (raw, json) Hash identifier: mX58vXp9MJHKzp+BUx5BDHuNC+HSnxVqx8rS6WRw9Dw= Subject key identifier: 79:59:9F:C6:71:9D:1B:BE:F9:A9:22:42:BC:04:07:72:70:54:95:CC Authority key identifier: 0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4 Certificate issuer: /CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4 Certificate serial: 019AF208F97323384C26379758F20BA5ABC2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft Manifest number: 06D4 Signing time: Sat 06 Dec 2025 05:01:05 +0000 Manifest this update: Sat 06 Dec 2025 05:01:05 +0000 Manifest next update: Sun 07 Dec 2025 05:01:05 +0000 Files and hashes: 1: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl (hash: br2DMX5fFr9ZWZflBaZ8aKKlxlOJ04/cdBSkrTFxXNQ=) 2: qj9pJEL6aLQRmJQwwNdSHRT6Q7o.roa (hash: YXXU3MHXgJerIl9CeLyHeV8Hu3RdrFxQkf90wVwUCHQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:f9:73:23:38:4c:26:37:97:58:f2:0b:a5:ab:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4 Validity Not Before: Dec 6 05:01:05 2025 GMT Not After : Dec 7 05:01:05 2025 GMT Subject: CN=79599fc6719d1bbef9a92242bc040772705495cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:64:c0:6b:39:cb:13:e9:13:cb:6e:27:f0:90: dc:cc:fd:de:3c:2b:1d:5e:79:19:d3:9d:02:4c:ac: 29:00:61:a7:5c:73:53:c5:98:b9:27:2a:dc:6d:b9: 83:dc:23:f6:c4:ad:a3:6a:24:bd:c0:ba:fa:e3:07: 9a:06:24:d9:22:d2:71:be:73:8b:30:b8:b1:14:5a: 2e:a3:8b:7a:c8:75:40:f4:7d:14:ea:3b:1a:14:1e: 50:70:63:56:9f:1d:96:cd:55:5a:7f:65:54:64:56: 54:5a:4a:a9:9b:67:c0:60:34:fc:aa:81:77:21:24: 48:96:ec:13:dc:04:35:f6:bb:e9:0b:85:a1:c3:db: eb:87:a0:74:7c:dd:46:54:84:cd:41:c3:67:63:8e: 78:e1:e7:3d:6e:61:bb:41:a0:21:7f:f4:eb:05:7c: 8f:14:39:25:0b:93:46:c6:cc:7a:78:bf:9c:27:e7: 9f:ed:10:31:59:0c:ff:9c:95:01:b4:60:45:d2:68: 02:29:49:d7:61:45:77:82:b9:54:86:9e:b3:f0:b5: 64:7e:f3:0e:43:0b:e5:f6:cf:3e:99:22:c1:b2:ce: 62:c8:12:32:ca:cb:ff:26:a1:e3:7f:49:a7:40:e9: 14:8c:a7:3c:eb:7e:49:94:46:cf:45:08:5f:b1:5a: 81:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:59:9F:C6:71:9D:1B:BE:F9:A9:22:42:BC:04:07:72:70:54:95:CC X509v3 Authority Key Identifier: keyid:0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:6b:8a:16:7c:95:e9:6c:f5:a5:67:75:18:d8:1f:1d:1b:7d: 3b:a3:08:57:1f:e7:cd:59:b7:04:f3:73:81:c9:e2:8c:87:5d: 3e:71:2d:a2:fd:be:11:a8:e2:ac:53:07:bb:2f:fc:07:41:0b: 4d:19:9c:7c:43:54:e4:6b:fb:f9:94:18:80:1d:06:2f:a5:f4: a0:34:1e:78:f1:2c:84:ea:de:c1:cf:27:c1:44:56:20:c9:ca: 40:5c:de:69:1f:52:bb:41:e5:ba:c8:5d:31:e0:a9:6e:f6:6b: 5b:f3:1a:b8:9a:75:5b:32:df:b8:37:9b:bf:fb:cf:9f:6d:a7: f6:16:de:b0:9e:b2:0a:81:32:48:7c:18:e7:79:61:92:3b:07: 11:9d:17:79:56:0d:4e:39:38:0b:f0:e6:41:06:b5:c0:92:5c: 60:7c:93:52:99:d9:8a:54:65:91:17:2d:b6:af:f6:0f:f3:da: 3b:f2:4c:c8:0a:b6:0f:4f:17:30:a9:0a:bd:89:a8:5b:32:d1: fa:c2:da:c9:c7:c7:e9:c9:73:25:84:1f:90:95:00:68:ad:0e: 2f:a4:06:ce:5f:3b:0a:99:d7:34:c3:6e:66:56:ec:c8:9b:20: 34:c7:50:af:5d:44:fb:0a:ac:e4:d9:8c:75:a8:16:ed:95:06: 5e:29:92:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCPlzIzhMJjeXWPILpavCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmYmZlOTM4NWU2YTc1OWY4MzNlNGYwOWEwOWYwZGNmZWQ1 M2IzZTQwHhcNMjUxMjA2MDUwMTA1WhcNMjUxMjA3MDUwMTA1WjAzMTEwLwYDVQQD Eyg3OTU5OWZjNjcxOWQxYmJlZjlhOTIyNDJiYzA0MDc3MjcwNTQ5NWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2TAaznLE+kTy24n8JDczP3ePCsd XnkZ050CTKwpAGGnXHNTxZi5JyrcbbmD3CP2xK2jaiS9wLr64weaBiTZItJxvnOL MLixFFouo4t6yHVA9H0U6jsaFB5QcGNWnx2WzVVaf2VUZFZUWkqpm2fAYDT8qoF3 ISRIluwT3AQ19rvpC4Whw9vrh6B0fN1GVITNQcNnY4544ec9bmG7QaAhf/TrBXyP FDklC5NGxsx6eL+cJ+ef7RAxWQz/nJUBtGBF0mgCKUnXYUV3grlUhp6z8LVkfvMO Qwvl9s8+mSLBss5iyBIyysv/JqHjf0mnQOkUjKc8635JlEbPRQhfsVqBvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHlZn8ZxnRu++akiQrwEB3JwVJXMMB8GA1UdIwQY MBaAFA+/6TheanWfgz5PCaCfDc/tU7PkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8yYmI5NDgtNDc4Yy00YTAyLWExOGUt ZDY0N2RjOGE1NmI2LzEvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8yYmI5NDgtNDc4Yy00YTAyLWExOGUtZDY0N2RjOGE1NmI2 LzEvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL2uKFnyV 6Wz1pWd1GNgfHRt9O6MIVx/nzVm3BPNzgcnijIddPnEtov2+EajirFMHuy/8B0EL TRmcfENU5Gv7+ZQYgB0GL6X0oDQeePEshOrewc8nwURWIMnKQFzeaR9Su0Hlushd MeCpbvZrW/MauJp1WzLfuDebv/vPn22n9hbesJ6yCoEySHwY53lhkjsHEZ0XeVYN Tjk4C/DmQQa1wJJcYHyTUpnZilRlkRcttq/2D/PaO/JMyAq2D08XMKkKvYmoWzLR +sLaycfH6clzJYQfkJUAaK0OL6QGzl87CpnXNMNuZlbsyJsgNMdQr11E+wqs5NmM dagW7ZUGXimS6w== -----END CERTIFICATE-----Generated at Sat Dec 6 08:26:58 2025 by rpki-client