This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft File: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft (raw, json) Hash identifier: OtWN1dNQSFFhNuoXAYlWkvSODLZ+lEJ5VfXkhhlcPRs= Subject key identifier: B7:C7:55:8A:94:60:F8:C0:1C:9D:0B:E7:67:55:F2:11:6F:FB:C7:A0 Authority key identifier: 4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC Certificate issuer: /CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec Certificate serial: 019AF1D2548D2FFAB9AB82020C89822D0576 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 04:01:24 +0000 Manifest this update: Sat 06 Dec 2025 04:01:24 +0000 Manifest next update: Sun 07 Dec 2025 04:01:24 +0000 Files and hashes: 1: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl (hash: 4bW+DMannvonr3dRd4GDUbbHZZh6Gt2rsG6AGeus4Cw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:54:8d:2f:fa:b9:ab:82:02:0c:89:82:2d:05:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec Validity Not Before: Dec 6 04:01:24 2025 GMT Not After : Dec 7 04:01:24 2025 GMT Subject: CN=b7c7558a9460f8c01c9d0be76755f2116ffbc7a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e2:11:8e:13:a8:ef:ef:7f:30:54:c9:8b:eb: 88:73:51:95:10:81:7b:93:de:df:2e:07:20:c7:67: cc:7b:37:56:74:3b:27:44:04:18:a6:1f:85:95:79: bc:c2:a0:70:07:ba:ce:cf:0b:a0:e6:a2:ff:4e:be: 7d:b2:e6:fb:e8:68:d7:6f:fc:16:3e:d2:6c:6c:e9: db:81:23:0b:da:bb:7c:67:6a:78:56:fb:31:cc:1a: 2f:c2:f2:4d:8d:3f:e1:1c:50:2e:5c:7f:39:85:33: ab:2e:cb:50:ff:01:9e:b0:4d:05:28:1e:de:a3:e4: e0:b0:ea:0f:23:1e:3b:68:15:e0:cf:48:e2:24:1e: c4:92:0b:7a:ef:da:54:d9:22:99:32:e6:84:ed:f8: bc:22:1c:de:3f:63:03:5d:94:64:65:0d:23:b6:52: fc:0c:73:94:63:6e:13:bf:1a:60:ca:40:a9:26:ac: 87:77:3f:06:8c:66:80:76:d2:af:c5:e7:6e:eb:95: 59:81:74:e1:41:bc:80:13:aa:dc:4f:15:e5:f5:34: f3:b9:27:c2:e7:01:3e:82:ae:5b:65:1c:eb:af:29: 02:78:43:c3:01:95:a2:97:33:61:3e:b5:5b:ba:96: a7:6b:ab:b8:b9:ee:a0:3d:05:db:52:1c:81:0d:e5: dd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C7:55:8A:94:60:F8:C0:1C:9D:0B:E7:67:55:F2:11:6F:FB:C7:A0 X509v3 Authority Key Identifier: keyid:4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e1:8d:8c:95:ef:af:e6:74:00:e8:a7:dd:0d:6e:c3:6d:74: 41:ce:86:02:ff:b7:9f:85:2a:d9:fd:23:97:60:47:1a:e2:0c: ab:7a:e0:14:4f:46:3c:40:5d:eb:21:4b:90:69:1d:4f:aa:b6: 60:c3:be:89:5c:94:9d:be:0a:f2:42:ce:99:db:fe:04:b6:ea: f4:13:cc:06:94:d7:27:ec:63:41:9e:9e:30:44:20:9b:5f:5d: 92:2c:49:6d:80:74:86:03:2f:27:ad:bc:94:c6:30:1d:ae:fb: 4c:e3:6e:6a:a8:ee:b5:93:e1:f4:11:a1:eb:99:c6:08:b8:5f: dd:ea:c4:fa:b8:ba:a9:32:79:7a:3e:fd:2d:24:60:f5:19:05: 32:7f:5a:35:59:d0:99:36:2b:2d:3d:06:aa:ea:c2:0c:6e:d7: 00:10:24:10:3e:b8:ca:80:7b:89:8a:48:c5:f0:5c:98:81:2e: 07:ad:3a:9f:b1:81:60:3f:c9:c7:d3:3e:95:90:ad:d9:c6:b4: 97:05:8e:89:9b:7d:a1:45:04:e2:54:34:f2:9d:1d:af:79:73: af:c3:35:cb:f2:ac:fc:2b:60:0f:b9:30:06:b9:6e:88:23:dc: 9f:55:72:a1:46:da:8c:5c:c0:01:1c:de:e0:02:f5:69:8f:72: 10:63:4b:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0lSNL/q5q4ICDImCLQV2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhMWVkNGJmNTAyYzBmMmQ4YmM4NzAyNmMxOGFjOTg1OWIw ZjFkZWMwHhcNMjUxMjA2MDQwMTI0WhcNMjUxMjA3MDQwMTI0WjAzMTEwLwYDVQQD EyhiN2M3NTU4YTk0NjBmOGMwMWM5ZDBiZTc2NzU1ZjIxMTZmZmJjN2EwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueIRjhOo7+9/MFTJi+uIc1GVEIF7 k97fLgcgx2fMezdWdDsnRAQYph+FlXm8wqBwB7rOzwug5qL/Tr59sub76GjXb/wW PtJsbOnbgSML2rt8Z2p4VvsxzBovwvJNjT/hHFAuXH85hTOrLstQ/wGesE0FKB7e o+TgsOoPIx47aBXgz0jiJB7Ekgt679pU2SKZMuaE7fi8IhzeP2MDXZRkZQ0jtlL8 DHOUY24TvxpgykCpJqyHdz8GjGaAdtKvxedu65VZgXThQbyAE6rcTxXl9TTzuSfC 5wE+gq5bZRzrrykCeEPDAZWilzNhPrVbupana6u4ue6gPQXbUhyBDeXdBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLfHVYqUYPjAHJ0L52dV8hFv+8egMB8GA1UdIwQY MBaAFEoe1L9QLA8ti8hwJsGKyYWbDx3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2g3VXYxQXNEeTJMeUhBbXdZckpoWnNQSGV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC85N2M5MTYtODFiMS00YjNhLTlmZWUt MzU2YTE5ZjU1NTA2LzEvU2g3VXYxQXNEeTJMeUhBbXdZckpoWnNQSGV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC85N2M5MTYtODFiMS00YjNhLTlmZWUtMzU2YTE5ZjU1NTA2 LzEvU2g3VXYxQXNEeTJMeUhBbXdZckpoWnNQSGV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKuGNjJXv r+Z0AOin3Q1uw210Qc6GAv+3n4Uq2f0jl2BHGuIMq3rgFE9GPEBd6yFLkGkdT6q2 YMO+iVyUnb4K8kLOmdv+BLbq9BPMBpTXJ+xjQZ6eMEQgm19dkixJbYB0hgMvJ628 lMYwHa77TONuaqjutZPh9BGh65nGCLhf3erE+ri6qTJ5ej79LSRg9RkFMn9aNVnQ mTYrLT0GqurCDG7XABAkED64yoB7iYpIxfBcmIEuB606n7GBYD/Jx9M+lZCt2ca0 lwWOiZt9oUUE4lQ08p0dr3lzr8M1y/Ks/CtgD7kwBrluiCPcn1VyoUbajFzAARze 4AL1aY9yEGNLfQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:10:04 2025 by rpki-client