This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft File: eY97H9gCs9xqvXpc2nhqYxHh1j0.mft (raw, json) Hash identifier: +SuNNvThLbhsyS8JYxQeJBGndGauviunTWNubNqWilI= Subject key identifier: 7A:48:B9:2C:8B:BF:01:66:86:2C:E4:D2:C4:19:79:1D:2E:0B:F5:DE Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d Certificate serial: 019AF20949BCEEF350047D91D448A9F5B6F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft Manifest number: 0FA7 Signing time: Sat 06 Dec 2025 05:01:26 +0000 Manifest this update: Sat 06 Dec 2025 05:01:26 +0000 Manifest next update: Sun 07 Dec 2025 05:01:26 +0000 Files and hashes: 1: eY97H9gCs9xqvXpc2nhqYxHh1j0.crl (hash: RvIhP4pDph0Et1nbUz+fhy0v6fB7lz1NJXW1mWVC+Qo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:49:bc:ee:f3:50:04:7d:91:d4:48:a9:f5:b6:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d Validity Not Before: Dec 6 05:01:26 2025 GMT Not After : Dec 7 05:01:26 2025 GMT Subject: CN=7a48b92c8bbf0166862ce4d2c419791d2e0bf5de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d5:1e:f8:5c:cf:e0:a2:74:2b:28:d0:14:b5: 14:6f:e8:1a:de:6a:8f:3e:e1:74:6a:02:b2:70:8e: f3:93:62:b4:77:2d:ff:4a:07:94:8b:d4:85:a2:de: 70:8e:fe:f7:08:9e:d5:b4:17:b7:71:e9:1c:d5:ab: 45:f4:bb:8d:15:72:29:40:68:05:a5:92:fa:85:0a: fa:cc:00:99:b8:a9:9d:f5:73:b3:eb:61:26:a2:bd: ce:94:d1:9f:15:0b:0c:b1:17:dc:a5:97:6c:4e:a8: ee:61:a4:8b:e4:93:be:1d:8c:11:f6:22:7e:1d:f1: 51:2a:00:04:f4:9c:d6:2b:46:0d:c3:f0:7d:82:34: 84:a4:b7:9a:87:d0:c1:53:7d:98:28:d3:04:45:80: 28:b6:8a:7a:97:04:b5:24:59:7a:82:91:73:0e:92: 5d:88:d4:e5:64:4e:b4:f1:79:c0:f5:6b:b2:6c:3f: b1:ab:1e:02:b9:8e:6f:1b:77:33:a4:a3:43:2d:29: 07:98:64:cc:f3:65:cf:e0:f1:b0:62:47:48:7e:85: a1:41:cc:7f:6b:72:79:0e:8a:a4:e2:3e:8b:37:b6: 68:6f:01:a8:52:a5:e6:0e:05:78:16:a4:75:db:a7: 82:3e:bf:fe:e5:61:bc:de:58:14:36:fa:57:e4:ea: d7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:48:B9:2C:8B:BF:01:66:86:2C:E4:D2:C4:19:79:1D:2E:0B:F5:DE X509v3 Authority Key Identifier: keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:4d:8b:85:78:e4:26:cf:54:b5:89:5b:9a:ea:ee:89:95:1c: ef:2a:9f:38:c8:72:ec:14:6f:de:ad:d2:41:f3:8e:a3:26:44: 5f:7e:e6:f3:6c:e4:de:be:24:20:2b:97:f4:dd:78:a5:01:2b: 48:09:26:9a:38:b7:24:11:1a:2b:ec:ad:ca:ea:a8:95:26:d8: d5:c7:ae:94:19:b0:df:e5:84:5f:b8:cb:26:ba:48:c0:e6:1e: a1:81:3c:12:cd:6d:54:1c:f1:a0:ed:59:3c:48:bc:f9:a6:14: 8c:d9:1b:9d:d2:c0:ab:af:5f:cb:cc:6f:00:8a:ef:72:15:c0: 4f:cb:65:3a:ed:cb:92:c1:de:c2:41:25:32:4a:b1:ca:5c:75: 4d:7b:79:b8:be:bb:9c:27:de:d7:69:65:e8:31:f5:e6:98:93: 6a:1f:48:62:0c:51:71:89:bd:58:97:cb:ed:b8:8a:d0:aa:57: aa:77:6f:79:34:8f:ed:c2:95:24:ce:36:cd:e0:78:6b:5c:3d: 14:8d:75:98:2d:98:5d:19:2a:79:69:d4:a9:db:37:dc:3c:52: c6:23:e2:10:a0:8b:d6:5d:95:2c:17:02:9d:5a:0d:a2:29:0b: 9f:7f:19:0a:c1:88:3e:06:21:10:af:56:70:a7:b9:67:33:0a: 49:70:36:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCUm87vNQBH2R1Eip9bb0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5OGY3YjFmZDgwMmIzZGM2YWJkN2E1Y2RhNzg2YTYzMTFl MWQ2M2QwHhcNMjUxMjA2MDUwMTI2WhcNMjUxMjA3MDUwMTI2WjAzMTEwLwYDVQQD Eyg3YTQ4YjkyYzhiYmYwMTY2ODYyY2U0ZDJjNDE5NzkxZDJlMGJmNWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tUe+FzP4KJ0KyjQFLUUb+ga3mqP PuF0agKycI7zk2K0dy3/SgeUi9SFot5wjv73CJ7VtBe3cekc1atF9LuNFXIpQGgF pZL6hQr6zACZuKmd9XOz62Emor3OlNGfFQsMsRfcpZdsTqjuYaSL5JO+HYwR9iJ+ HfFRKgAE9JzWK0YNw/B9gjSEpLeah9DBU32YKNMERYAotop6lwS1JFl6gpFzDpJd iNTlZE608XnA9WuybD+xqx4CuY5vG3czpKNDLSkHmGTM82XP4PGwYkdIfoWhQcx/ a3J5Doqk4j6LN7ZobwGoUqXmDgV4FqR126eCPr/+5WG83lgUNvpX5OrXlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHpIuSyLvwFmhizk0sQZeR0uC/XeMB8GA1UdIwQY MBaAFHmPex/YArPcar16XNp4amMR4dY9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVk5N0g5Z0NzOXhxdlhwYzJuaHFZeEhoMWowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8zMDg4M2EtMTZkNy00MjEyLTkxOTkt MDlkMGFhMjhlNTUxLzEvZVk5N0g5Z0NzOXhxdlhwYzJuaHFZeEhoMWowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My8zMDg4M2EtMTZkNy00MjEyLTkxOTktMDlkMGFhMjhlNTUx LzEvZVk5N0g5Z0NzOXhxdlhwYzJuaHFZeEhoMWowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuE2LhXjk Js9UtYlbmuruiZUc7yqfOMhy7BRv3q3SQfOOoyZEX37m82zk3r4kICuX9N14pQEr SAkmmji3JBEaK+ytyuqolSbY1ceulBmw3+WEX7jLJrpIwOYeoYE8Es1tVBzxoO1Z PEi8+aYUjNkbndLAq69fy8xvAIrvchXAT8tlOu3LksHewkElMkqxylx1TXt5uL67 nCfe12ll6DH15piTah9IYgxRcYm9WJfL7biK0KpXqndveTSP7cKVJM42zeB4a1w9 FI11mC2YXRkqeWnUqds33DxSxiPiEKCL1l2VLBcCnVoNoikLn38ZCsGIPgYhEK9W cKe5ZzMKSXA2nA== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:50 2025 by rpki-client