This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft File: 7FNfTIaAzg26SgPZXmZck8yZzrk.mft (raw, json) Hash identifier: MAg2Gv3z66wgPBW/itionWD7uHVWi2XEvy78aq/3/Ds= Subject key identifier: B7:AE:9C:FA:9F:26:64:79:3E:65:33:08:9F:1F:22:AC:61:65:65:61 Authority key identifier: EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9 Certificate issuer: /CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9 Certificate serial: 019AF31C250F008C3065F478CE6C08F7C9A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft Manifest number: 02D5 Signing time: Sat 06 Dec 2025 10:01:39 +0000 Manifest this update: Sat 06 Dec 2025 10:01:39 +0000 Manifest next update: Sun 07 Dec 2025 10:01:39 +0000 Files and hashes: 1: 7FNfTIaAzg26SgPZXmZck8yZzrk.crl (hash: Z5yiu4vp5dR+L0BBVZcA+1N/Lsr3RllJVNy6OMvATm4=) 2: xmQ5skD8YtPqUxW5yzoA6bHhREg.roa (hash: JOTsRiuQWzCXcl+Wr2hE6xVJO7LXDTormwzqqmVX6eE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:25:0f:00:8c:30:65:f4:78:ce:6c:08:f7:c9:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9 Validity Not Before: Dec 6 10:01:39 2025 GMT Not After : Dec 7 10:01:39 2025 GMT Subject: CN=b7ae9cfa9f2664793e6533089f1f22ac61656561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c7:fc:c3:a3:49:64:85:8f:16:e0:4c:82:f1: a7:96:92:a3:17:b5:17:26:55:ce:b4:f4:b7:ef:f8: 70:f5:07:5f:45:db:40:ad:44:7d:0a:57:6f:ea:57: 24:39:04:c6:c9:39:7f:62:1c:ce:15:8c:b0:be:39: 40:1f:69:75:1f:03:5a:d7:c7:b8:8e:8f:06:b6:fa: bd:0c:17:89:5a:25:f6:b1:77:c3:26:8d:b8:65:bd: 64:b8:67:ae:72:e7:ea:0a:03:6e:fa:59:e9:ef:80: 6b:bd:ec:4c:30:a6:78:31:01:31:71:b9:fb:d7:5f: f7:00:fd:5d:59:0c:fe:87:a8:46:d6:0c:88:63:51: 8d:bb:1d:77:29:a3:cf:01:b5:44:49:c3:eb:5b:87: 93:e4:f5:a1:29:c5:d7:af:69:c1:5a:28:25:71:4f: d6:f5:56:2f:bd:88:0d:62:3c:a8:66:44:ee:8f:54: 53:a2:67:93:a9:29:c6:6b:32:68:a5:ea:61:57:31: 8a:7a:01:ad:17:10:cc:90:a8:8c:91:0f:e0:c1:69: 28:9c:e4:87:d6:a8:4f:d3:86:c4:20:a0:38:0f:7c: 00:f3:83:8b:fb:db:09:46:03:7a:8a:9b:36:25:e6: 09:6e:29:02:f6:6c:0f:d6:1d:80:c4:5d:51:ab:0d: ce:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:AE:9C:FA:9F:26:64:79:3E:65:33:08:9F:1F:22:AC:61:65:65:61 X509v3 Authority Key Identifier: keyid:EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:83:9e:f3:d8:34:3e:00:18:9e:58:24:27:0f:5c:7f:f2:29: 88:98:16:88:0b:37:0a:08:3a:47:8c:14:c8:19:77:4b:56:5a: 3a:a4:37:fb:2c:87:fe:ae:90:83:fe:61:67:bc:90:6f:c8:e8: 51:fd:20:cc:e7:58:4b:7d:fb:7b:91:44:10:2d:e7:9f:f9:4f: 78:bf:7b:81:e3:1a:07:0f:79:e5:28:be:50:01:89:9b:e2:60: 04:3d:52:30:ca:3a:d5:53:bf:1b:8c:af:10:fd:cc:14:27:64: 8e:83:e8:ba:aa:0d:0f:0e:bd:88:8e:b7:17:1d:a4:81:de:f2: 08:bc:78:25:b0:53:5e:40:b4:ab:6f:68:63:b5:26:53:98:91: d8:02:b6:33:55:09:1b:f1:64:f7:d8:15:7c:d5:89:b3:73:42: 51:c4:b2:23:82:5d:11:9d:17:b5:69:7b:ac:7c:9b:bc:2d:d2: d4:16:3a:ec:c8:91:30:5e:22:f7:45:3f:a4:4e:87:3b:16:c0: 74:20:46:4b:48:94:d9:4d:c0:b2:21:5f:75:c9:92:47:69:ec: 9e:09:f5:fe:d7:98:ca:12:ff:fc:55:23:1d:ad:03:1d:c0:62: ed:a9:18:16:2f:0a:b3:f2:b4:2c:2d:42:a8:be:47:d8:e7:e8: c2:a8:9f:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHCUPAIwwZfR4zmwI98mmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVjNTM1ZjRjODY4MGNlMGRiYTRhMDNkOTVlNjY1YzkzY2M5 OWNlYjkwHhcNMjUxMjA2MTAwMTM5WhcNMjUxMjA3MTAwMTM5WjAzMTEwLwYDVQQD EyhiN2FlOWNmYTlmMjY2NDc5M2U2NTMzMDg5ZjFmMjJhYzYxNjU2NTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMf8w6NJZIWPFuBMgvGnlpKjF7UX JlXOtPS37/hw9QdfRdtArUR9Cldv6lckOQTGyTl/YhzOFYywvjlAH2l1HwNa18e4 jo8Gtvq9DBeJWiX2sXfDJo24Zb1kuGeucufqCgNu+lnp74BrvexMMKZ4MQExcbn7 11/3AP1dWQz+h6hG1gyIY1GNux13KaPPAbVEScPrW4eT5PWhKcXXr2nBWiglcU/W 9VYvvYgNYjyoZkTuj1RTomeTqSnGazJopephVzGKegGtFxDMkKiMkQ/gwWkonOSH 1qhP04bEIKA4D3wA84OL+9sJRgN6ips2JeYJbikC9mwP1h2AxF1Rqw3OzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLeunPqfJmR5PmUzCJ8fIqxhZWVhMB8GA1UdIwQY MBaAFOxTX0yGgM4NukoD2V5mXJPMmc65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZDAwMjktZjMzMC00YTY2LWJlZGMt NDJmMmZmODU5MzczLzEvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS83ZDAwMjktZjMzMC00YTY2LWJlZGMtNDJmMmZmODU5Mzcz LzEvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIoOe89g0 PgAYnlgkJw9cf/IpiJgWiAs3Cgg6R4wUyBl3S1ZaOqQ3+yyH/q6Qg/5hZ7yQb8jo Uf0gzOdYS337e5FEEC3nn/lPeL97geMaBw955Si+UAGJm+JgBD1SMMo61VO/G4yv EP3MFCdkjoPouqoNDw69iI63Fx2kgd7yCLx4JbBTXkC0q29oY7UmU5iR2AK2M1UJ G/Fk99gVfNWJs3NCUcSyI4JdEZ0XtWl7rHybvC3S1BY67MiRMF4i90U/pE6HOxbA dCBGS0iU2U3AsiFfdcmSR2nsngn1/teYyhL//FUjHa0DHcBi7akYFi8Ks/K0LC1C qL5H2Ofowqifxw== -----END CERTIFICATE-----Generated at Sat Dec 6 16:54:24 2025 by rpki-client