This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.mft File: d7tRRrULW8gaNXR6K75lKqC3Fnw.mft (raw, json) Hash identifier: Qzu09CqJ7uoDL9shQZw9JWfhtK0rQZFofWQolnrSInw= Subject key identifier: 41:BD:EC:A0:01:BD:D9:6B:58:77:AA:C9:92:E2:86:5A:1A:4A:88:2A Authority key identifier: 77:BB:51:46:B5:0B:5B:C8:1A:35:74:7A:2B:BE:65:2A:A0:B7:16:7C Certificate issuer: /CN=77bb5146b50b5bc81a35747a2bbe652aa0b7167c Certificate serial: 019AF208FFD3104F0B7613CCD0AE67BCD5D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7tRRrULW8gaNXR6K75lKqC3Fnw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.mft Manifest number: 1406 Signing time: Sat 06 Dec 2025 05:01:07 +0000 Manifest this update: Sat 06 Dec 2025 05:01:07 +0000 Manifest next update: Sun 07 Dec 2025 05:01:07 +0000 Files and hashes: 1: d7tRRrULW8gaNXR6K75lKqC3Fnw.crl (hash: XAvfW2YBB2AbHdItUymJySAT1uxpiZKP/3nohO3XRIE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.crl rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.mft rsync://rpki.ripe.net/repository/DEFAULT/d7tRRrULW8gaNXR6K75lKqC3Fnw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:ff:d3:10:4f:0b:76:13:cc:d0:ae:67:bc:d5:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77bb5146b50b5bc81a35747a2bbe652aa0b7167c Validity Not Before: Dec 6 05:01:07 2025 GMT Not After : Dec 7 05:01:07 2025 GMT Subject: CN=41bdeca001bdd96b5877aac992e2865a1a4a882a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dc:98:1f:c0:dd:15:1a:10:7b:a7:43:e3:71: c9:e1:b1:e3:b9:c9:c7:9c:7c:a8:73:8c:e5:54:20: f3:1b:f0:90:b9:92:d6:ed:2e:bf:8f:ad:b0:4a:14: a7:77:33:ca:32:60:59:2d:63:93:8d:86:6f:d7:fb: 86:bd:be:23:3c:cf:4b:cc:13:74:d7:de:fa:06:3d: 3a:b9:59:2a:62:87:60:1c:27:c1:4b:ea:76:22:3d: d5:2f:77:33:f3:25:6c:a8:cd:9f:06:53:2b:da:7b: 2e:de:28:91:6d:3d:83:69:6e:3c:86:7c:66:02:19: da:8c:77:88:b4:bd:de:44:d9:32:fc:9d:4e:3d:00: 24:10:fe:4f:bc:9b:aa:c7:bd:0d:80:c7:19:37:1a: 95:4a:bf:f8:70:fe:7f:38:74:b8:39:01:53:06:3f: 43:4c:a0:65:2b:e7:77:7c:6a:e6:f2:cb:03:e6:49: be:ae:99:72:10:5b:41:1e:f1:3f:0d:6a:c5:96:bf: e9:c7:56:7c:74:4b:60:10:6c:1a:ff:f1:f9:5a:75: 67:54:d2:3d:74:87:5d:92:64:45:0e:7d:3e:82:30: c7:bd:25:5e:e2:e2:e9:8e:90:44:9d:8d:06:d0:32: 12:d2:e2:7c:bb:2d:af:b0:3e:30:9e:fb:a0:57:85: fd:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:BD:EC:A0:01:BD:D9:6B:58:77:AA:C9:92:E2:86:5A:1A:4A:88:2A X509v3 Authority Key Identifier: keyid:77:BB:51:46:B5:0B:5B:C8:1A:35:74:7A:2B:BE:65:2A:A0:B7:16:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7tRRrULW8gaNXR6K75lKqC3Fnw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:c2:03:ea:88:50:38:5d:ed:b3:ce:7b:5a:c7:5c:be:7e:ee: a8:03:d2:b0:87:d4:97:14:92:42:b2:cf:16:33:c7:a3:87:e3: e7:e5:e5:3a:3c:fd:cc:10:08:e9:ed:53:de:56:08:40:62:1d: 5e:ac:69:d1:e9:de:b4:29:28:da:e6:a8:30:13:ce:ad:52:77: 2b:e7:c3:0d:fe:40:cf:02:a4:07:6d:7d:80:35:1d:b4:26:3e: 1c:f0:c9:7b:b2:58:29:de:0e:2b:81:ab:77:2b:64:5e:5c:b4: c9:07:9f:c5:d4:1a:f7:90:b3:6b:26:2e:e3:15:47:82:ea:90: e6:a8:5a:cc:29:66:88:b6:06:48:cb:d8:b3:e8:0b:c7:df:2e: f7:e6:09:e0:92:84:a7:b9:96:7f:b9:d0:a2:1a:ae:1b:df:05: 7f:78:9e:1e:26:4f:64:39:7f:4b:20:5b:fa:5c:c3:17:59:ad: d0:c7:ee:24:c4:26:f5:08:0c:d2:e1:7b:6d:09:80:a2:a2:8d: 1e:18:34:70:90:0c:0c:30:5d:45:de:85:7e:0c:3d:55:06:59: 76:2b:8e:52:ef:f4:80:05:58:2e:a5:54:d2:6f:72:6d:40:f0: a4:84:49:62:ef:3b:e3:db:ec:68:19:5e:35:7a:79:51:52:9f: 28:7f:45:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCP/TEE8LdhPM0K5nvNXXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3YmI1MTQ2YjUwYjViYzgxYTM1NzQ3YTJiYmU2NTJhYTBi NzE2N2MwHhcNMjUxMjA2MDUwMTA3WhcNMjUxMjA3MDUwMTA3WjAzMTEwLwYDVQQD Eyg0MWJkZWNhMDAxYmRkOTZiNTg3N2FhYzk5MmUyODY1YTFhNGE4ODJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9yYH8DdFRoQe6dD43HJ4bHjucnH nHyoc4zlVCDzG/CQuZLW7S6/j62wShSndzPKMmBZLWOTjYZv1/uGvb4jPM9LzBN0 1976Bj06uVkqYodgHCfBS+p2Ij3VL3cz8yVsqM2fBlMr2nsu3iiRbT2DaW48hnxm AhnajHeItL3eRNky/J1OPQAkEP5PvJuqx70NgMcZNxqVSr/4cP5/OHS4OQFTBj9D TKBlK+d3fGrm8ssD5km+rplyEFtBHvE/DWrFlr/px1Z8dEtgEGwa//H5WnVnVNI9 dIddkmRFDn0+gjDHvSVe4uLpjpBEnY0G0DIS0uJ8uy2vsD4wnvugV4X9bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEG97KABvdlrWHeqyZLihloaSogqMB8GA1UdIwQY MBaAFHe7UUa1C1vIGjV0eiu+ZSqgtxZ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDd0UlJyVUxXOGdhTlhSNks3NWxLcUMzRm53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi82MTk5ZDQtMzI2MS00ZTBhLWFiNDYt ZjA4N2U0Zjg1ZTUwLzEvZDd0UlJyVUxXOGdhTlhSNks3NWxLcUMzRm53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi82MTk5ZDQtMzI2MS00ZTBhLWFiNDYtZjA4N2U0Zjg1ZTUw LzEvZDd0UlJyVUxXOGdhTlhSNks3NWxLcUMzRm53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY8ID6ohQ OF3ts857Wsdcvn7uqAPSsIfUlxSSQrLPFjPHo4fj5+XlOjz9zBAI6e1T3lYIQGId Xqxp0enetCko2uaoMBPOrVJ3K+fDDf5AzwKkB219gDUdtCY+HPDJe7JYKd4OK4Gr dytkXly0yQefxdQa95CzayYu4xVHguqQ5qhazClmiLYGSMvYs+gLx98u9+YJ4JKE p7mWf7nQohquG98Ff3ieHiZPZDl/SyBb+lzDF1mt0MfuJMQm9QgM0uF7bQmAoqKN Hhg0cJAMDDBdRd6Ffgw9VQZZdiuOUu/0gAVYLqVU0m9ybUDwpIRJYu8749vsaBle NXp5UVKfKH9FUg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:23:31 2025 by rpki-client