This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.mft File: 10itqKdHT1rZkMmB_2snzj3hRxM.mft (raw, json) Hash identifier: XyXstS06x2WSJaLKRKhAUIRRMhl93SgshMShQC9lhGA= Subject key identifier: D9:F0:DD:C6:71:02:8F:CC:65:A3:3B:CE:AF:17:E9:82:A1:E2:3E:9C Authority key identifier: D7:48:AD:A8:A7:47:4F:5A:D9:90:C9:81:FF:6B:27:CE:3D:E1:47:13 Certificate issuer: /CN=d748ada8a7474f5ad990c981ff6b27ce3de14713 Certificate serial: 019AF23F8E847733811328982E755C6E01D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10itqKdHT1rZkMmB_2snzj3hRxM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.mft Manifest number: 7D Signing time: Sat 06 Dec 2025 06:00:42 +0000 Manifest this update: Sat 06 Dec 2025 06:00:42 +0000 Manifest next update: Sun 07 Dec 2025 06:00:42 +0000 Files and hashes: 1: 10itqKdHT1rZkMmB_2snzj3hRxM.crl (hash: ZcA3XVvi0+c+thZDlBykLmfzytigZs5udEfpdReRV5I=) 2: PkscByip9HCjcCDlJO2uYujjYDg.roa (hash: edTZgmleKt6WCIy8Cw2+p9r62NxbuqSZiXd6FCg4ClY=) 3: y3ziAMAG8XxgkWIdVv0WfxIMrGQ.roa (hash: Bk60cLKzbGKlYVw0cTFXtgYaf3rDfp8I2gvBkNj7UQ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.crl rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.mft rsync://rpki.ripe.net/repository/DEFAULT/10itqKdHT1rZkMmB_2snzj3hRxM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:8e:84:77:33:81:13:28:98:2e:75:5c:6e:01:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d748ada8a7474f5ad990c981ff6b27ce3de14713 Validity Not Before: Dec 6 06:00:42 2025 GMT Not After : Dec 7 06:00:42 2025 GMT Subject: CN=d9f0ddc671028fcc65a33bceaf17e982a1e23e9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8e:be:76:1f:1d:72:b4:56:e7:9d:d9:b9:7a: 4b:d0:9b:be:ef:62:59:05:79:a6:f3:1d:69:cf:bd: 20:99:44:6a:e8:17:fd:1e:b7:37:be:6c:01:f5:6c: c0:09:b7:3e:bb:d6:07:68:60:5d:0e:f1:ce:c8:2a: 11:50:be:15:ba:9b:1c:24:6c:03:02:50:8f:2f:f5: 7e:b6:99:5c:43:55:37:00:2b:e5:54:73:a7:8c:a3: 75:b6:77:54:ff:1e:ac:8c:92:1d:0a:82:f0:65:98: 06:ea:f5:99:ae:0a:2d:2c:21:a4:11:c9:9b:41:d0: 5a:18:f1:7f:22:c4:e0:10:46:ad:41:6e:82:a5:ff: d1:b7:14:bd:4d:8e:a9:0c:79:63:1a:50:82:59:57: 75:cc:44:36:d9:ed:6a:eb:46:c8:38:56:94:6f:5e: 75:4b:74:30:0d:10:61:d5:6c:c9:a5:f9:82:1f:da: f5:33:f7:ae:c2:9e:1a:45:13:e4:da:da:84:ac:77: 65:3c:8b:45:81:96:a5:ea:69:56:b7:82:88:e8:36: d3:48:02:d4:10:86:ba:17:1f:a5:83:e8:39:a8:09: e6:6a:ff:73:f8:55:03:71:74:c8:22:3b:08:66:a6: 92:d4:e2:00:85:1b:88:2a:5a:40:a0:52:a1:a8:fa: 62:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F0:DD:C6:71:02:8F:CC:65:A3:3B:CE:AF:17:E9:82:A1:E2:3E:9C X509v3 Authority Key Identifier: keyid:D7:48:AD:A8:A7:47:4F:5A:D9:90:C9:81:FF:6B:27:CE:3D:E1:47:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10itqKdHT1rZkMmB_2snzj3hRxM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:80:ec:c2:cd:f7:7b:be:e7:e0:96:cc:58:58:aa:6b:b1:f4: af:cf:f5:1e:ff:83:56:db:7b:bd:86:4e:07:dc:60:7e:e3:04: b8:ef:ae:e3:02:a5:6a:96:5e:f0:64:0b:0f:a3:c9:5b:89:8d: 46:bf:26:c3:9a:ac:5a:fa:a8:6f:15:cf:8a:46:49:6a:d5:eb: 30:a8:ee:89:2e:3c:cc:73:f2:56:4d:99:92:0d:14:06:10:0f: 99:fd:42:be:40:fb:36:31:a4:6d:47:e2:23:99:42:6d:95:6c: fd:c9:3d:19:24:3b:3f:51:bf:c7:b2:dd:a9:80:e3:80:b8:26: d9:b8:eb:fe:be:d5:ba:3f:64:37:6e:c4:73:7a:62:aa:64:6b: 1b:f4:c1:fa:0f:f6:7e:1d:97:75:5d:6e:dd:4d:ab:89:3c:1c: 04:80:df:5f:b2:00:3f:4a:49:9f:6a:a8:1a:56:b5:50:41:f7: 51:b1:92:69:26:5b:f2:bc:b5:f4:ca:20:06:86:10:9e:1f:70: 32:11:ed:3b:09:03:34:30:91:af:26:af:c4:0a:31:58:75:5f: a8:87:a3:72:e9:48:8f:b0:67:83:37:0b:99:97:74:73:08:15: ca:e9:46:06:ac:04:b5:d4:53:29:b6:94:d9:64:4e:9e:6b:a0: 1e:38:09:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP46EdzOBEyiYLnVcbgHWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NDhhZGE4YTc0NzRmNWFkOTkwYzk4MWZmNmIyN2NlM2Rl MTQ3MTMwHhcNMjUxMjA2MDYwMDQyWhcNMjUxMjA3MDYwMDQyWjAzMTEwLwYDVQQD EyhkOWYwZGRjNjcxMDI4ZmNjNjVhMzNiY2VhZjE3ZTk4MmExZTIzZTljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAro6+dh8dcrRW553ZuXpL0Ju+72JZ BXmm8x1pz70gmURq6Bf9Hrc3vmwB9WzACbc+u9YHaGBdDvHOyCoRUL4VupscJGwD AlCPL/V+tplcQ1U3ACvlVHOnjKN1tndU/x6sjJIdCoLwZZgG6vWZrgotLCGkEcmb QdBaGPF/IsTgEEatQW6Cpf/RtxS9TY6pDHljGlCCWVd1zEQ22e1q60bIOFaUb151 S3QwDRBh1WzJpfmCH9r1M/euwp4aRRPk2tqErHdlPItFgZal6mlWt4KI6DbTSALU EIa6Fx+lg+g5qAnmav9z+FUDcXTIIjsIZqaS1OIAhRuIKlpAoFKhqPpi3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNnw3cZxAo/MZaM7zq8X6YKh4j6cMB8GA1UdIwQY MBaAFNdIrainR09a2ZDJgf9rJ8494UcTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTBpdHFLZEhUMXJaa01tQl8yc256ajNoUnhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi84ZmMyNjEtYmZmOC00NDkwLThiNjkt MDA5NzM5ZjdlNTVjLzEvMTBpdHFLZEhUMXJaa01tQl8yc256ajNoUnhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi84ZmMyNjEtYmZmOC00NDkwLThiNjktMDA5NzM5ZjdlNTVj LzEvMTBpdHFLZEhUMXJaa01tQl8yc256ajNoUnhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZoDsws33 e77n4JbMWFiqa7H0r8/1Hv+DVtt7vYZOB9xgfuMEuO+u4wKlapZe8GQLD6PJW4mN Rr8mw5qsWvqobxXPikZJatXrMKjuiS48zHPyVk2Zkg0UBhAPmf1CvkD7NjGkbUfi I5lCbZVs/ck9GSQ7P1G/x7LdqYDjgLgm2bjr/r7Vuj9kN27Ec3piqmRrG/TB+g/2 fh2XdV1u3U2riTwcBIDfX7IAP0pJn2qoGla1UEH3UbGSaSZb8ry19MogBoYQnh9w MhHtOwkDNDCRryavxAoxWHVfqIejculIj7BngzcLmZd0cwgVyulGBqwEtdRTKbaU 2WROnmugHjgJNg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:02:30 2025 by rpki-client