This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft File: 7bKno-y66qV0GCMdsLYkq797pkU.mft (raw, json) Hash identifier: b0rBe+OYyMZ+npdui79PT/XQs9Cf/DLBkwuGgVbg4v4= Subject key identifier: 69:1D:8F:05:93:6B:39:F8:73:46:AA:FC:C5:3C:2F:CC:2C:98:E4:C3 Authority key identifier: ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45 Certificate issuer: /CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645 Certificate serial: 019AF19AA4C7E16B84330FC12B60DDD37388 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 03:00:35 +0000 Manifest this update: Sat 06 Dec 2025 03:00:35 +0000 Manifest next update: Sun 07 Dec 2025 03:00:35 +0000 Files and hashes: 1: 7bKno-y66qV0GCMdsLYkq797pkU.crl (hash: nHHMksI8P486CwztVaPYX2SmmbCdjEGu5qKua7uyZnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:a4:c7:e1:6b:84:33:0f:c1:2b:60:dd:d3:73:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645 Validity Not Before: Dec 6 03:00:35 2025 GMT Not After : Dec 7 03:00:35 2025 GMT Subject: CN=691d8f05936b39f87346aafcc53c2fcc2c98e4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:80:02:73:d0:30:12:78:7e:d4:fb:39:7d:e6: 90:a5:9b:5c:47:6b:1d:5f:fa:2d:4e:d7:ee:b6:b2: cf:ae:b9:ab:b9:64:9b:68:c3:94:c2:bc:56:b7:91: 58:8b:28:ea:76:8f:a3:46:a1:fa:eb:7a:1b:d3:78: 7e:f2:bc:f8:d5:d1:4b:04:3f:cb:01:e9:05:0b:87: 5b:1b:01:0f:7c:c7:e2:4e:83:bf:bc:f4:10:93:fd: 49:73:b8:9f:54:d8:32:9b:3f:b6:61:19:98:bd:d9: 21:06:f1:8e:b2:2d:40:c1:93:12:96:28:50:29:99: ea:ed:84:cd:6b:2e:78:2e:32:6d:3e:8d:5a:5c:28: 38:5e:71:66:25:60:9d:2b:52:79:43:52:06:9e:6a: 9c:00:b8:ab:1b:fd:49:f4:3e:f4:a8:75:70:b2:65: ed:ce:9f:7c:0f:9b:de:d5:ef:da:68:15:3a:c4:7f: a2:34:6d:bc:92:2e:8c:1d:77:c8:67:d0:8e:de:9a: a9:31:ea:1d:d8:75:1f:e5:8b:11:30:6b:d7:87:79: c9:9d:4d:97:1f:fb:69:82:dc:80:06:2e:cc:2f:3e: aa:37:16:81:32:e6:1a:a4:46:52:c8:fa:44:b7:1a: e7:c1:4b:c4:a9:61:0c:45:d6:f0:ed:b2:2a:5d:c0: 84:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:1D:8F:05:93:6B:39:F8:73:46:AA:FC:C5:3C:2F:CC:2C:98:E4:C3 X509v3 Authority Key Identifier: keyid:ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:90:58:1f:07:f5:84:42:8a:62:c0:99:86:16:45:15:20:9a: 7a:97:fa:e6:ac:0b:dc:f5:ce:89:5e:30:02:82:dc:4a:c5:71: 97:ee:84:f7:be:f3:08:9a:29:f1:86:2f:87:05:06:30:20:19: 30:b0:80:83:cb:57:c7:32:1d:18:22:b3:ba:b5:39:d6:26:13: 93:f7:a9:66:f4:77:81:ba:6e:38:b3:30:70:9d:db:bf:69:4d: 0d:45:e6:7a:27:cc:0c:68:f1:b6:7a:2e:58:b8:04:29:2d:fc: a3:0f:f1:ae:39:6e:46:ff:b7:af:c3:e2:90:0c:4c:5f:33:30: 59:de:b8:3b:70:3f:62:08:99:5b:fa:68:14:9c:ff:34:9a:80: df:63:65:e6:17:2e:7c:ce:d0:1d:80:90:f4:ca:9f:81:c3:95: 5b:b4:60:1f:99:64:c0:37:fd:db:5f:9b:00:d3:4b:47:09:20: 3b:8f:fc:4a:d7:14:2d:99:8e:15:7c:6c:1b:61:7a:88:ef:7c: 6d:84:5d:b5:9e:2b:84:c7:9f:cf:4c:29:e3:8f:87:02:1a:8d: 77:a7:5e:93:8e:c3:fc:36:3e:76:58:75:cd:98:6d:cc:b3:74: 87:d3:2d:72:d5:d0:a8:7e:ba:1e:fb:e4:22:ad:56:e9:3d:64: 97:69:84:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmqTH4WuEMw/BK2Dd03OIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkYjJhN2EzZWNiYWVhYTU3NDE4MjMxZGIwYjYyNGFiYmY3 YmE2NDUwHhcNMjUxMjA2MDMwMDM1WhcNMjUxMjA3MDMwMDM1WjAzMTEwLwYDVQQD Eyg2OTFkOGYwNTkzNmIzOWY4NzM0NmFhZmNjNTNjMmZjYzJjOThlNGMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2YACc9AwEnh+1Ps5feaQpZtcR2sd X/otTtfutrLPrrmruWSbaMOUwrxWt5FYiyjqdo+jRqH663ob03h+8rz41dFLBD/L AekFC4dbGwEPfMfiToO/vPQQk/1Jc7ifVNgymz+2YRmYvdkhBvGOsi1AwZMSlihQ KZnq7YTNay54LjJtPo1aXCg4XnFmJWCdK1J5Q1IGnmqcALirG/1J9D70qHVwsmXt zp98D5ve1e/aaBU6xH+iNG28ki6MHXfIZ9CO3pqpMeod2HUf5YsRMGvXh3nJnU2X H/tpgtyABi7MLz6qNxaBMuYapEZSyPpEtxrnwUvEqWEMRdbw7bIqXcCE5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGkdjwWTazn4c0aq/MU8L8wsmOTDMB8GA1UdIwQY MBaAFO2yp6PsuuqldBgjHbC2JKu/e6ZFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS80M2VkMWMtZmY1MC00MmUwLWI3ZDQt YWYyNTRjZTNmZTY5LzEvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS80M2VkMWMtZmY1MC00MmUwLWI3ZDQtYWYyNTRjZTNmZTY5 LzEvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAipBYHwf1 hEKKYsCZhhZFFSCaepf65qwL3PXOiV4wAoLcSsVxl+6E977zCJop8YYvhwUGMCAZ MLCAg8tXxzIdGCKzurU51iYTk/epZvR3gbpuOLMwcJ3bv2lNDUXmeifMDGjxtnou WLgEKS38ow/xrjluRv+3r8PikAxMXzMwWd64O3A/YgiZW/poFJz/NJqA32Nl5hcu fM7QHYCQ9MqfgcOVW7RgH5lkwDf921+bANNLRwkgO4/8StcULZmOFXxsG2F6iO98 bYRdtZ4rhMefz0wp44+HAhqNd6dek47D/DY+dlh1zZhtzLN0h9MtctXQqH66Hvvk Iq1W6T1kl2mEvg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:04:42 2025 by rpki-client