This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft File: cRc4aXP7-IqGfIKohnsFD8pgsBE.mft (raw, json) Hash identifier: 7hFK+qRLx1acVAYHe6tjQybwsLaGfW8sw7JzoiAxWKo= Subject key identifier: DA:AF:8F:9E:0C:78:6A:C4:53:3E:55:68:F7:8A:B6:F4:59:5D:2E:BE Authority key identifier: 71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11 Certificate issuer: /CN=7117386973fbf88a867c82a8867b050fca60b011 Certificate serial: 019AF31B655A56CB7DC49B1A1EBF33E4B245 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 10:00:50 +0000 Manifest this update: Sat 06 Dec 2025 10:00:50 +0000 Manifest next update: Sun 07 Dec 2025 10:00:50 +0000 Files and hashes: 1: __J8knmzK0D7LeHPBcfH9mDXmDA.roa (hash: KGCws32qTez6CiaSk45QNDqYkcqePM9SEByg+MzKHwo=) 2: cRc4aXP7-IqGfIKohnsFD8pgsBE.crl (hash: ec19DaK6lJzfQHeA1ssrcepQMLAOF0puNA57FD840nQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:65:5a:56:cb:7d:c4:9b:1a:1e:bf:33:e4:b2:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7117386973fbf88a867c82a8867b050fca60b011 Validity Not Before: Dec 6 10:00:50 2025 GMT Not After : Dec 7 10:00:50 2025 GMT Subject: CN=daaf8f9e0c786ac4533e5568f78ab6f4595d2ebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:64:54:b0:3f:dd:57:4d:92:98:c2:df:89:ce: c3:6f:bd:fd:4f:82:e7:d6:73:4f:f3:cb:d2:41:f3: 3d:64:e3:a6:00:d2:b0:3a:d9:ba:85:fb:4c:9b:39: e4:3a:28:b4:b3:d3:5a:ef:b5:da:ea:26:f3:70:94: 6e:1e:67:8a:64:ec:14:ac:58:16:b2:0a:f2:b3:e9: 64:17:d1:da:90:8c:1c:39:cb:7f:23:07:48:10:88: 50:4f:61:93:4c:92:bc:d6:8e:33:bb:b2:50:07:95: d0:13:5c:90:3c:fd:f0:63:04:d5:26:da:de:94:46: 2d:5d:e3:f9:38:73:ae:e4:a6:69:02:b8:11:26:c4: 40:fc:95:5c:6e:40:b9:a4:c1:0c:80:3e:db:fe:1d: 24:3d:c7:0c:72:6c:e8:93:5a:64:f6:24:2f:36:99: 8a:b6:4b:4c:5a:d9:9d:70:08:06:43:bd:48:2c:d5: 98:95:f3:68:c0:87:c3:2e:ad:2b:17:44:30:e0:70: ef:79:8e:0d:fa:7e:5e:7b:7d:9a:6d:f1:b9:af:20: b2:30:8e:1c:9a:61:de:f5:68:c1:02:d8:2a:4d:2c: 35:d5:7c:8d:d4:b9:2b:4e:73:0f:6e:81:5d:0a:6b: a5:0c:76:17:ec:2a:12:67:1e:ca:68:74:fd:80:a5: a4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AF:8F:9E:0C:78:6A:C4:53:3E:55:68:F7:8A:B6:F4:59:5D:2E:BE X509v3 Authority Key Identifier: keyid:71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:23:e1:32:bb:85:5a:ad:47:a5:9a:1f:6d:56:30:4d:74:cc: b1:c6:0a:b0:97:29:05:44:b5:70:56:ab:ea:c3:f5:49:64:63: 03:21:7e:b4:4c:57:0b:3f:29:ab:9c:a1:31:85:e6:f2:92:f0: 94:46:bf:ad:03:12:b8:01:95:5b:8c:cc:c6:c4:1a:bf:f9:0c: 21:8f:84:cf:95:4b:90:ce:af:4e:bb:0c:12:01:4c:da:ee:3a: 61:7c:7f:e3:fe:4a:ac:98:c9:54:77:cb:b7:a4:10:2c:80:6c: 50:b1:76:02:82:81:ac:15:10:5c:ae:0e:d6:65:a6:1e:3d:1b: a2:2b:0d:7c:66:27:b2:9e:dc:c9:2e:d3:27:49:fb:55:22:19: 99:be:2f:54:2f:cf:39:1e:48:36:a5:d9:8a:65:59:01:54:08: 61:8f:1b:47:96:21:c8:ac:00:fa:96:10:0b:00:b1:bd:1c:a7: 7a:52:2e:36:0f:2a:b4:ce:33:d1:76:d9:72:0d:27:d3:8f:ec: 92:c3:a7:0f:51:0d:8a:28:fb:fe:62:fe:fa:64:1b:88:64:ad: 00:4a:20:72:1c:51:04:5b:af:86:8a:b6:53:39:ab:ee:85:e5: 84:4f:7e:9b:cc:ee:19:d9:a0:90:1c:d0:31:2f:74:96:3c:ba: 7d:56:d6:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG2VaVst9xJsaHr8z5LJFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxMTczODY5NzNmYmY4OGE4NjdjODJhODg2N2IwNTBmY2E2 MGIwMTEwHhcNMjUxMjA2MTAwMDUwWhcNMjUxMjA3MTAwMDUwWjAzMTEwLwYDVQQD EyhkYWFmOGY5ZTBjNzg2YWM0NTMzZTU1NjhmNzhhYjZmNDU5NWQyZWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmRUsD/dV02SmMLfic7Db739T4Ln 1nNP88vSQfM9ZOOmANKwOtm6hftMmznkOii0s9Na77Xa6ibzcJRuHmeKZOwUrFgW sgrys+lkF9HakIwcOct/IwdIEIhQT2GTTJK81o4zu7JQB5XQE1yQPP3wYwTVJtre lEYtXeP5OHOu5KZpArgRJsRA/JVcbkC5pMEMgD7b/h0kPccMcmzok1pk9iQvNpmK tktMWtmdcAgGQ71ILNWYlfNowIfDLq0rF0Qw4HDveY4N+n5ee32abfG5ryCyMI4c mmHe9WjBAtgqTSw11XyN1LkrTnMPboFdCmulDHYX7CoSZx7KaHT9gKWkKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNqvj54MeGrEUz5VaPeKtvRZXS6+MB8GA1UdIwQY MBaAFHEXOGlz+/iKhnyCqIZ7BQ/KYLARMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1JjNGFYUDctSXFHZklLb2huc0ZEOHBnc0JFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi83OTM4MDUtZTRlOS00MmUyLTgzODYt OWYzMDNlYTY3ZTY1LzEvY1JjNGFYUDctSXFHZklLb2huc0ZEOHBnc0JFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi83OTM4MDUtZTRlOS00MmUyLTgzODYtOWYzMDNlYTY3ZTY1 LzEvY1JjNGFYUDctSXFHZklLb2huc0ZEOHBnc0JFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAciPhMruF Wq1HpZofbVYwTXTMscYKsJcpBUS1cFar6sP1SWRjAyF+tExXCz8pq5yhMYXm8pLw lEa/rQMSuAGVW4zMxsQav/kMIY+Ez5VLkM6vTrsMEgFM2u46YXx/4/5KrJjJVHfL t6QQLIBsULF2AoKBrBUQXK4O1mWmHj0boisNfGYnsp7cyS7TJ0n7VSIZmb4vVC/P OR5INqXZimVZAVQIYY8bR5YhyKwA+pYQCwCxvRynelIuNg8qtM4z0XbZcg0n04/s ksOnD1ENiij7/mL++mQbiGStAEogchxRBFuvhoq2Uzmr7oXlhE9+m8zuGdmgkBzQ MS90ljy6fVbW8g== -----END CERTIFICATE-----Generated at Sat Dec 6 12:10:36 2025 by rpki-client