This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft File: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft (raw, json) Hash identifier: gIJQhSM+PFEBhvslLRlJ3wrPBPj/dkQ1LI2U3dzICt0= Subject key identifier: 9E:D3:7F:EC:9D:9F:35:D2:8C:65:B1:72:64:96:80:FB:BF:22:25:70 Authority key identifier: D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3 Certificate issuer: /CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3 Certificate serial: 019AF35223B338F747537F75D9DA808F2DB3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft Manifest number: 1099 Signing time: Sat 06 Dec 2025 11:00:37 +0000 Manifest this update: Sat 06 Dec 2025 11:00:37 +0000 Manifest next update: Sun 07 Dec 2025 11:00:37 +0000 Files and hashes: 1: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl (hash: MGeUitEBSl+L4RWKD9senzX9MF7wZ4fD3hb/3HIRVQk=) 2: fKmmYJWJ4PEyW03R1GMx50v7dJU.roa (hash: mKILdaPsSf1rCWCwboqDxfWauZkoLUzcUqKnlg5HNcI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:23:b3:38:f7:47:53:7f:75:d9:da:80:8f:2d:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3 Validity Not Before: Dec 6 11:00:37 2025 GMT Not After : Dec 7 11:00:37 2025 GMT Subject: CN=9ed37fec9d9f35d28c65b172649680fbbf222570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a1:be:ed:95:73:77:fc:a4:62:4a:63:d9:e7: 58:9a:93:f9:4d:0f:73:8e:e2:d8:de:64:e6:16:2c: 5f:96:de:77:92:10:b4:44:72:14:9c:23:dd:32:06: 7b:45:d7:2c:ad:5e:fa:11:ca:62:3f:70:e8:5d:d1: 53:cf:a0:01:86:5f:ea:84:91:1c:8a:c2:ce:92:da: c3:bd:71:aa:b7:5c:d9:d2:b6:37:a9:05:7e:34:b6: 31:a9:e6:b9:ed:8b:cb:1c:e3:4e:11:17:36:bf:e4: d2:86:23:20:22:32:a1:80:e8:34:4f:ee:d6:0c:0b: 02:4a:5c:19:0f:2c:fb:69:56:37:cc:98:e5:77:db: ef:83:d3:53:96:3d:ac:33:13:90:b2:15:1c:46:41: eb:e8:2f:30:54:cd:a1:54:e1:9e:0e:d8:2e:21:ab: 71:c4:ec:77:87:2c:b5:3f:e9:a0:16:c7:81:e1:05: c7:06:6b:29:29:89:50:0b:22:6b:af:05:68:8d:19: c4:42:df:6f:aa:3e:9b:72:fe:75:27:17:b5:91:d8: 53:53:a9:8b:4d:d2:cd:77:4c:9f:c5:f5:f0:9d:9e: 97:35:2e:03:ae:8d:4e:65:38:e5:b5:92:d2:a3:d9: ba:d7:a8:7c:50:f8:ad:4d:fb:2c:1a:15:80:27:97: 6c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D3:7F:EC:9D:9F:35:D2:8C:65:B1:72:64:96:80:FB:BF:22:25:70 X509v3 Authority Key Identifier: keyid:D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:13:30:22:33:aa:cb:73:70:36:f9:82:6e:07:de:49:f6:cf: a9:f2:4e:ce:fc:7d:44:3b:24:ae:7d:59:81:64:96:64:83:ed: 05:a7:4b:e7:68:99:56:81:5a:78:7e:94:e4:9d:73:52:71:bd: 8d:32:df:48:8b:57:93:9f:08:1d:ef:30:b7:37:3f:f2:9a:68: 6d:d0:d6:15:dd:a5:1b:a2:b1:01:e4:b0:34:20:cd:1e:fb:b7: c9:fb:3d:19:48:0e:47:c8:b4:84:4a:7c:b8:4f:42:78:cb:37: 17:77:28:51:aa:cf:4d:2d:e0:cb:26:bf:39:87:5f:87:fd:d8: ce:41:0d:d5:7b:be:f8:b0:0f:8e:d6:26:0b:fb:05:a2:72:7d: 25:0d:4a:1a:4f:89:9c:5b:a8:d4:3d:95:b2:38:fa:ae:19:ed: c3:99:ef:2c:e5:b9:19:5b:42:01:ea:c7:14:0c:a1:e0:e4:38: 18:a2:55:3d:ff:7a:01:a4:e0:d0:a0:60:3e:07:53:09:00:01: d1:3a:cb:81:d7:15:ac:ba:4a:61:6a:5a:51:49:e8:35:da:d1: 2d:12:93:bf:74:ac:15:f6:44:11:16:3d:79:f4:13:f0:28:e7: 6c:44:fc:d0:94:c1:6d:20:5f:02:31:10:b7:9c:26:f4:7d:05: 1b:1b:6d:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUiOzOPdHU3912dqAjy2zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2ZWVmZjY5MDExYWQwMWExYjE3OWE2ZGQ3MGQ1OWExMTE2 ZjUxZjMwHhcNMjUxMjA2MTEwMDM3WhcNMjUxMjA3MTEwMDM3WjAzMTEwLwYDVQQD Eyg5ZWQzN2ZlYzlkOWYzNWQyOGM2NWIxNzI2NDk2ODBmYmJmMjIyNTcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqG+7ZVzd/ykYkpj2edYmpP5TQ9z juLY3mTmFixflt53khC0RHIUnCPdMgZ7RdcsrV76EcpiP3DoXdFTz6ABhl/qhJEc isLOktrDvXGqt1zZ0rY3qQV+NLYxqea57YvLHONOERc2v+TShiMgIjKhgOg0T+7W DAsCSlwZDyz7aVY3zJjld9vvg9NTlj2sMxOQshUcRkHr6C8wVM2hVOGeDtguIatx xOx3hyy1P+mgFseB4QXHBmspKYlQCyJrrwVojRnEQt9vqj6bcv51Jxe1kdhTU6mL TdLNd0yfxfXwnZ6XNS4Dro1OZTjltZLSo9m616h8UPitTfssGhWAJ5ds4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7Tf+ydnzXSjGWxcmSWgPu/IiVwMB8GA1UdIwQY MBaAFNbu/2kBGtAaGxeabdcNWaERb1HzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXU3X2FRRWEwQm9iRjVwdDF3MVpvUkZ2VWZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8yMjMxZDItY2Q5YS00Y2YxLTgwZDAt NTFiMmFhNTk4MGJlLzEvMXU3X2FRRWEwQm9iRjVwdDF3MVpvUkZ2VWZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS8yMjMxZDItY2Q5YS00Y2YxLTgwZDAtNTFiMmFhNTk4MGJl LzEvMXU3X2FRRWEwQm9iRjVwdDF3MVpvUkZ2VWZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJBMwIjOq y3NwNvmCbgfeSfbPqfJOzvx9RDskrn1ZgWSWZIPtBadL52iZVoFaeH6U5J1zUnG9 jTLfSItXk58IHe8wtzc/8ppobdDWFd2lG6KxAeSwNCDNHvu3yfs9GUgOR8i0hEp8 uE9CeMs3F3coUarPTS3gyya/OYdfh/3YzkEN1Xu++LAPjtYmC/sFonJ9JQ1KGk+J nFuo1D2Vsjj6rhntw5nvLOW5GVtCAerHFAyh4OQ4GKJVPf96AaTg0KBgPgdTCQAB 0TrLgdcVrLpKYWpaUUnoNdrRLRKTv3SsFfZEERY9efQT8CjnbET80JTBbSBfAjEQ t5wm9H0FGxttJQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:32:34 2025 by rpki-client