This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft File: E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft (raw, json) Hash identifier: brqbufWdDss74XSXDZ5VrofpL/ODIj5tgOouQdIFd24= Subject key identifier: 74:43:75:38:26:E0:0F:90:D0:77:AB:7A:03:B4:E6:2D:C3:9D:82:7F Authority key identifier: 13:B4:21:B8:2A:B7:BB:A6:E2:F5:5E:90:2A:9F:B8:1F:A3:AF:29:8F Certificate issuer: /CN=13b421b82ab7bba6e2f55e902a9fb81fa3af298f Certificate serial: 019AF208EF5FC5B6D2AF79BE772A0E511C03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E7QhuCq3u6bi9V6QKp-4H6OvKY8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft Manifest number: 03AD Signing time: Sat 06 Dec 2025 05:01:03 +0000 Manifest this update: Sat 06 Dec 2025 05:01:03 +0000 Manifest next update: Sun 07 Dec 2025 05:01:03 +0000 Files and hashes: 1: E7QhuCq3u6bi9V6QKp-4H6OvKY8.crl (hash: ZVVmOKyz1yIdWesBRRbWRqvCG2RyTNMY3o30TtZfGIU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.crl rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft rsync://rpki.ripe.net/repository/DEFAULT/E7QhuCq3u6bi9V6QKp-4H6OvKY8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:ef:5f:c5:b6:d2:af:79:be:77:2a:0e:51:1c:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13b421b82ab7bba6e2f55e902a9fb81fa3af298f Validity Not Before: Dec 6 05:01:03 2025 GMT Not After : Dec 7 05:01:03 2025 GMT Subject: CN=7443753826e00f90d077ab7a03b4e62dc39d827f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:c3:fc:78:41:a5:f3:58:39:19:f1:10:e5:b3: 18:c6:1b:e3:97:e2:a2:70:0d:40:9c:24:eb:a5:33: a8:28:f7:fe:a2:9b:ba:88:75:4b:41:24:35:e6:96: 78:7a:02:65:64:09:e0:bf:73:cf:a0:9a:e7:50:6f: eb:bb:3e:68:b7:46:98:ad:3a:a5:fb:c5:15:f8:f4: 23:91:2b:1d:c8:7c:02:2f:8f:e8:d9:b9:aa:7d:86: eb:74:04:c1:6d:1c:6f:53:c8:02:85:e0:66:fb:3a: 48:49:f8:9a:7a:75:6a:cb:61:56:a9:56:e4:d0:69: 35:07:f1:32:18:05:0e:75:f6:0b:79:da:b1:0a:92: 0b:de:0f:43:d3:65:29:61:6e:53:35:fb:d9:53:45: 44:f8:c4:e8:21:89:ff:13:22:6e:63:d5:01:39:e8: 92:81:78:57:e6:63:5d:55:bc:98:9e:e3:63:30:76: 1e:75:b1:e7:94:d5:6d:73:7e:e4:47:f4:bd:83:e2: 68:44:ec:0f:90:02:a3:ec:a8:16:9b:97:06:61:11: 34:02:2c:eb:2c:ee:74:99:e6:0b:16:a5:b7:71:32: 38:f3:7c:c3:da:49:01:a3:f4:2a:c0:5a:13:9b:8c: aa:0e:6f:e0:1a:17:8a:47:ac:6a:13:e3:34:2e:2a: 76:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:43:75:38:26:E0:0F:90:D0:77:AB:7A:03:B4:E6:2D:C3:9D:82:7F X509v3 Authority Key Identifier: keyid:13:B4:21:B8:2A:B7:BB:A6:E2:F5:5E:90:2A:9F:B8:1F:A3:AF:29:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E7QhuCq3u6bi9V6QKp-4H6OvKY8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:3f:15:cc:e8:65:3a:31:27:e4:d1:8f:8a:2d:69:12:10:a2: 96:03:b0:3f:91:90:8a:60:4c:5b:15:b2:74:54:df:96:8f:53: 24:39:71:09:0c:d5:3c:70:eb:46:8f:43:1d:ce:6a:ee:4f:2e: de:97:5a:6c:28:a9:17:9f:24:19:33:92:b9:45:84:4e:12:a3: 48:39:e3:4a:40:72:db:b4:8f:ce:2c:15:23:46:f5:6b:53:74: b1:94:66:20:1f:62:71:79:1e:c6:43:23:5c:66:97:5a:fc:e5: ac:f8:9b:54:7d:69:59:bf:34:46:d9:bc:21:b1:c0:97:81:c9: 31:fe:66:48:b9:8b:b2:ca:b0:06:1f:90:a9:b1:fa:52:59:b4: 98:2c:4a:59:fa:92:f9:11:02:b0:61:9f:ce:ab:7c:aa:02:fb: 5a:7b:15:a6:ad:21:6c:30:08:77:8c:86:7e:33:e2:e5:46:80: 9c:09:9f:11:58:b2:6c:55:63:52:3d:56:5e:47:c6:8b:f1:03: 2d:39:e7:b0:02:49:53:bc:3f:9a:9a:6f:fc:8d:04:a2:e4:ad: f9:dd:ac:da:04:25:67:8c:cb:47:7c:a2:70:79:5c:45:5b:a7: aa:82:df:cb:3b:8f:89:4a:53:df:1f:6c:c5:d7:d5:8f:59:23: fc:9c:d5:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCO9fxbbSr3m+dyoOURwDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzYjQyMWI4MmFiN2JiYTZlMmY1NWU5MDJhOWZiODFmYTNh ZjI5OGYwHhcNMjUxMjA2MDUwMTAzWhcNMjUxMjA3MDUwMTAzWjAzMTEwLwYDVQQD Eyg3NDQzNzUzODI2ZTAwZjkwZDA3N2FiN2EwM2I0ZTYyZGMzOWQ4MjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiMP8eEGl81g5GfEQ5bMYxhvjl+Ki cA1AnCTrpTOoKPf+opu6iHVLQSQ15pZ4egJlZAngv3PPoJrnUG/ruz5ot0aYrTql +8UV+PQjkSsdyHwCL4/o2bmqfYbrdATBbRxvU8gCheBm+zpISfiaenVqy2FWqVbk 0Gk1B/EyGAUOdfYLedqxCpIL3g9D02UpYW5TNfvZU0VE+MToIYn/EyJuY9UBOeiS gXhX5mNdVbyYnuNjMHYedbHnlNVtc37kR/S9g+JoROwPkAKj7KgWm5cGYRE0Aizr LO50meYLFqW3cTI483zD2kkBo/QqwFoTm4yqDm/gGheKR6xqE+M0Lip2swIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHRDdTgm4A+Q0HeregO05i3DnYJ/MB8GA1UdIwQY MBaAFBO0Ibgqt7um4vVekCqfuB+jrymPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRTdRaHVDcTN1NmJpOVY2UUtwLTRINk92S1k4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNTMzMTAtMDNhZi00NDM0LTgzMDct ZGZhNzA3OTQwNTM3LzEvRTdRaHVDcTN1NmJpOVY2UUtwLTRINk92S1k4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8wNTMzMTAtMDNhZi00NDM0LTgzMDctZGZhNzA3OTQwNTM3 LzEvRTdRaHVDcTN1NmJpOVY2UUtwLTRINk92S1k4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIz8VzOhl OjEn5NGPii1pEhCilgOwP5GQimBMWxWydFTflo9TJDlxCQzVPHDrRo9DHc5q7k8u 3pdabCipF58kGTOSuUWEThKjSDnjSkBy27SPziwVI0b1a1N0sZRmIB9icXkexkMj XGaXWvzlrPibVH1pWb80Rtm8IbHAl4HJMf5mSLmLssqwBh+QqbH6Ulm0mCxKWfqS +RECsGGfzqt8qgL7WnsVpq0hbDAId4yGfjPi5UaAnAmfEViybFVjUj1WXkfGi/ED LTnnsAJJU7w/mppv/I0EouSt+d2s2gQlZ4zLR3yicHlcRVunqoLfyzuPiUpT3x9s xdfVj1kj/JzVnw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:10:22 2025 by rpki-client