This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft File: D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft (raw, json) Hash identifier: l2LNKPY8oNHW9vAK3NLmw4RSRvTpVdqpNrBJV1KOnjc= Subject key identifier: 67:53:C6:43:A7:07:35:77:5A:3F:2D:73:2F:BA:24:37:8E:16:FD:EC Authority key identifier: 0F:B7:F1:FD:87:68:E2:11:63:54:2A:FC:F5:5A:83:C6:98:02:15:A3 Certificate issuer: /CN=0fb7f1fd8768e21163542afcf55a83c6980215a3 Certificate serial: 019AF3F712A1E4C5D310A3F5EEA83EB21E9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7fx_Ydo4hFjVCr89VqDxpgCFaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft Manifest number: 08BD Signing time: Sat 06 Dec 2025 14:00:46 +0000 Manifest this update: Sat 06 Dec 2025 14:00:46 +0000 Manifest next update: Sun 07 Dec 2025 14:00:46 +0000 Files and hashes: 1: D7fx_Ydo4hFjVCr89VqDxpgCFaM.crl (hash: TrYr3mMyaRrsk660Mx908Rzx32rxxq/A4l9Yy6RmTmc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft rsync://rpki.ripe.net/repository/DEFAULT/D7fx_Ydo4hFjVCr89VqDxpgCFaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:12:a1:e4:c5:d3:10:a3:f5:ee:a8:3e:b2:1e:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0fb7f1fd8768e21163542afcf55a83c6980215a3 Validity Not Before: Dec 6 14:00:46 2025 GMT Not After : Dec 7 14:00:46 2025 GMT Subject: CN=6753c643a70735775a3f2d732fba24378e16fdec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:0c:5e:2f:ad:b3:ca:d5:82:f8:91:cc:b0:32: 9e:7c:9a:bc:df:0b:b1:77:65:10:36:f7:c8:3f:4d: 02:61:49:b1:5d:a9:72:4f:3b:e2:ea:a7:a6:a2:e3: 96:f4:61:3b:39:c9:cd:58:c3:e8:4c:8e:e8:10:c7: 00:af:d6:e1:cf:99:47:0a:b4:a1:07:25:c4:8d:47: 11:b1:3e:10:b4:d4:c7:0a:1b:04:0e:bf:e6:04:da: 60:3f:f3:8b:83:b9:c8:a7:b8:9f:a1:76:6b:18:48: 14:db:80:b3:a8:7e:82:cb:ed:a0:32:43:58:33:c6: d9:a2:3c:76:1e:17:02:46:ff:89:36:04:a0:1d:1a: f4:c6:2f:0c:1c:28:b3:d6:30:f0:5d:66:78:f9:b9: da:e7:86:e2:0e:9f:c9:4a:1f:ac:87:2c:67:da:3c: a2:31:69:bb:a4:df:d0:40:6b:02:6e:30:3b:16:45: 32:e1:f6:15:e2:ac:58:35:14:83:70:b2:6b:a8:f2: 68:11:19:73:d8:95:5a:84:a4:ea:6a:df:1a:4c:a0: 55:30:4f:78:28:5d:69:57:a3:2e:41:40:65:3d:53: ee:62:00:0b:45:d8:de:21:d3:7b:72:2c:d1:5f:5b: 36:54:c3:88:70:9f:bf:4a:9d:03:17:f5:74:3a:a2: 47:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:53:C6:43:A7:07:35:77:5A:3F:2D:73:2F:BA:24:37:8E:16:FD:EC X509v3 Authority Key Identifier: keyid:0F:B7:F1:FD:87:68:E2:11:63:54:2A:FC:F5:5A:83:C6:98:02:15:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7fx_Ydo4hFjVCr89VqDxpgCFaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:3d:da:02:dc:d1:9c:cc:27:22:27:43:11:30:7a:56:68:16: ea:2c:17:ea:59:af:f7:f5:53:80:ab:be:31:7c:43:0b:b6:e3: fe:70:65:da:d0:46:2d:10:b4:b4:e2:9f:c0:08:05:10:12:c0: ac:48:56:37:52:ab:f5:f6:ae:02:49:ba:e2:d3:c0:bf:ff:0d: 1a:02:11:ee:0a:a7:42:d4:a6:c6:e0:c4:26:63:ff:17:d4:1b: 76:b5:b7:19:e8:d5:d3:28:8d:21:eb:7e:16:89:ec:48:1b:dc: a8:a2:fa:72:d9:f5:8a:4b:ca:36:46:fe:e2:ac:de:1c:39:e3: 0d:24:35:74:b6:20:7e:43:3b:5e:97:af:b1:68:0c:db:ee:6b: b1:23:b9:10:f3:6c:53:a0:ff:d3:9b:64:74:91:3e:86:60:f0: f0:bb:03:86:15:c1:a0:2d:64:17:ac:9a:dc:cd:e2:cc:4d:28: 74:2f:9e:de:ea:69:24:4f:71:3c:ea:7a:8c:b0:0a:48:eb:e9: fa:91:1a:a5:ee:e0:b6:d6:bd:97:0b:73:ca:c9:68:dd:57:c2: ae:c2:55:83:2a:f5:18:15:9e:63:d6:9e:89:2e:16:b7:33:e0: df:be:8a:ed:94:f1:11:c0:22:2f:04:fd:31:96:e2:26:fd:c3: a1:b0:dc:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz9xKh5MXTEKP17qg+sh6fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmYjdmMWZkODc2OGUyMTE2MzU0MmFmY2Y1NWE4M2M2OTgw MjE1YTMwHhcNMjUxMjA2MTQwMDQ2WhcNMjUxMjA3MTQwMDQ2WjAzMTEwLwYDVQQD Eyg2NzUzYzY0M2E3MDczNTc3NWEzZjJkNzMyZmJhMjQzNzhlMTZmZGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiwxeL62zytWC+JHMsDKefJq83wux d2UQNvfIP00CYUmxXalyTzvi6qemouOW9GE7OcnNWMPoTI7oEMcAr9bhz5lHCrSh ByXEjUcRsT4QtNTHChsEDr/mBNpgP/OLg7nIp7ifoXZrGEgU24CzqH6Cy+2gMkNY M8bZojx2HhcCRv+JNgSgHRr0xi8MHCiz1jDwXWZ4+bna54biDp/JSh+shyxn2jyi MWm7pN/QQGsCbjA7FkUy4fYV4qxYNRSDcLJrqPJoERlz2JVahKTqat8aTKBVME94 KF1pV6MuQUBlPVPuYgALRdjeIdN7cizRX1s2VMOIcJ+/Sp0DF/V0OqJHWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGdTxkOnBzV3Wj8tcy+6JDeOFv3sMB8GA1UdIwQY MBaAFA+38f2HaOIRY1Qq/PVag8aYAhWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDdmeF9ZZG80aEZqVkNyODlWcUR4cGdDRmFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9lN2M4ZDAtNzQ5Yi00NTJkLWJmZjAt YTBlMjhkY2ZmZmM3LzEvRDdmeF9ZZG80aEZqVkNyODlWcUR4cGdDRmFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC9lN2M4ZDAtNzQ5Yi00NTJkLWJmZjAtYTBlMjhkY2ZmZmM3 LzEvRDdmeF9ZZG80aEZqVkNyODlWcUR4cGdDRmFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhj3aAtzR nMwnIidDETB6VmgW6iwX6lmv9/VTgKu+MXxDC7bj/nBl2tBGLRC0tOKfwAgFEBLA rEhWN1Kr9fauAkm64tPAv/8NGgIR7gqnQtSmxuDEJmP/F9QbdrW3GejV0yiNIet+ FonsSBvcqKL6ctn1ikvKNkb+4qzeHDnjDSQ1dLYgfkM7XpevsWgM2+5rsSO5EPNs U6D/05tkdJE+hmDw8LsDhhXBoC1kF6ya3M3izE0odC+e3uppJE9xPOp6jLAKSOvp +pEape7gtta9lwtzyslo3VfCrsJVgyr1GBWeY9aeiS4WtzPg376K7ZTxEcAiLwT9 MZbiJv3DobDcpg== -----END CERTIFICATE-----Generated at Sat Dec 6 17:08:58 2025 by rpki-client