This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json) Hash identifier: FcvKRApWBfFr1FG3faArFI9D58gRBpacgXrbXtUy3HU= Subject key identifier: 40:2A:F0:46:CC:BA:1D:50:AC:7A:C1:41:0D:C5:9B:33:A7:8B:BF:5D Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03 Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03 Certificate serial: 019AF465828E28B2DD983E3FC5499F680ABF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft Manifest number: 037C Signing time: Sat 06 Dec 2025 16:01:24 +0000 Manifest this update: Sat 06 Dec 2025 16:01:24 +0000 Manifest next update: Sun 07 Dec 2025 16:01:24 +0000 Files and hashes: 1: 4stdDE5Ol23RnfTsQDEl2PLTvqY.roa (hash: H7ciCHF9IxH4VLrZphwDQeEj42rPy6UE+yWgXUd3mSE=) 2: KOqyp8DhhZD3JH6K0j1zl6aQKBk.roa (hash: CehIyyDTNH2XPwU/dxmXRsBi9Cc/OKe00kUQqRs/maU=) 3: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: IeAOqN/K1QWpmjADiQ+mFDTxjrWunaStHSvpCpnScc8=) 4: YCOxnrJZzRohN18jKfSDMAOgQUI.roa (hash: /PrVwAluwlwegI08mKBtFGWqwyRlaqAj4wNKvuzMcSU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:82:8e:28:b2:dd:98:3e:3f:c5:49:9f:68:0a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03 Validity Not Before: Dec 6 16:01:24 2025 GMT Not After : Dec 7 16:01:24 2025 GMT Subject: CN=402af046ccba1d50ac7ac1410dc59b33a78bbf5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:74:6f:63:cf:94:63:fd:69:7d:58:c5:90:ea: ab:ef:8a:e3:0f:6f:c9:11:75:0f:7f:be:59:09:99: a7:01:e2:5d:79:51:3c:f2:ce:64:fb:73:e3:25:7a: 94:92:42:57:4f:4a:64:24:9a:d1:97:2b:0a:0b:30: f0:17:8d:e6:96:54:0c:8d:bd:e3:cd:80:fe:6e:cc: a7:08:d0:a4:8d:0d:4a:ba:dd:23:bd:a2:ec:4d:a8: 42:b5:61:6d:33:d0:66:8e:e8:8e:17:5c:1b:20:89: d3:51:55:47:7b:65:10:e0:d8:d4:a6:e6:ac:cc:bf: d7:70:73:cd:66:c5:03:c9:78:38:f7:cc:4b:7f:bb: b0:d7:a2:05:a6:c8:74:ef:1e:6b:37:ab:7f:fd:66: a2:57:bf:9c:02:0b:04:a8:3f:66:b3:9e:ac:24:d2: 35:d7:51:2a:bb:52:8c:13:aa:12:c9:bc:b0:cc:a3: a7:a0:33:bb:6e:4b:4d:02:e5:23:cf:37:bd:22:99: 92:b2:39:05:19:30:ae:37:68:d3:46:62:88:9d:d2: 3e:87:a7:cf:9f:d4:1b:c6:b6:e1:66:d1:67:de:ad: 1d:22:6f:c5:bb:c1:0e:a5:ee:ae:b8:2a:a2:f8:52: af:ab:47:13:db:f4:96:b4:e2:49:a1:38:81:22:c1: 31:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2A:F0:46:CC:BA:1D:50:AC:7A:C1:41:0D:C5:9B:33:A7:8B:BF:5D X509v3 Authority Key Identifier: keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:c4:99:5d:46:e6:0a:ca:c7:2c:09:24:be:23:63:16:20:d3: 68:53:86:2b:77:b1:a6:71:6a:05:35:26:e4:cf:22:8d:74:7a: ab:4a:6c:44:e0:ae:11:2c:9f:ec:f4:01:d3:a0:ee:24:9c:1b: c7:de:15:e3:23:78:2b:7d:4e:43:7b:8c:2c:d5:d8:48:53:40: 15:dd:35:f7:1e:a2:20:e9:73:50:c2:50:d0:76:7f:b9:d0:6d: 32:1a:ff:28:15:ac:7e:25:c8:76:22:df:ad:46:a5:dc:47:0b: fe:ef:6d:a5:12:29:13:13:5f:e8:7a:f6:13:2a:b1:4f:a4:ed: a8:77:18:7c:6a:bf:20:9b:37:be:1c:81:39:20:8c:de:20:68: 87:a5:b2:86:5c:b7:8e:72:54:c5:cd:e0:d2:d8:77:74:40:ed: 64:04:ff:8f:1e:35:5f:25:b5:14:01:f4:28:37:d0:d7:59:f8: d1:bd:ad:09:a8:91:fb:cd:05:e9:8c:59:ec:14:a7:d1:f2:9b: 60:61:9e:a0:e7:58:17:2e:f4:f4:6d:c6:3f:7e:15:df:ec:c0: a9:21:15:fc:c8:f6:5b:eb:12:21:60:24:97:39:d6:94:29:c8: 9b:a6:66:a9:49:65:f6:a0:79:08:8b:c3:c1:af:ac:14:63:f7: d9:2a:cb:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZYKOKLLdmD4/xUmfaAq/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzYjY1YThiYWViYTRmZjYyMTQ5MmViZWU2ZmMxZTg4YWRi MjFiMDMwHhcNMjUxMjA2MTYwMTI0WhcNMjUxMjA3MTYwMTI0WjAzMTEwLwYDVQQD Eyg0MDJhZjA0NmNjYmExZDUwYWM3YWMxNDEwZGM1OWIzM2E3OGJiZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiHRvY8+UY/1pfVjFkOqr74rjD2/J EXUPf75ZCZmnAeJdeVE88s5k+3PjJXqUkkJXT0pkJJrRlysKCzDwF43mllQMjb3j zYD+bsynCNCkjQ1Kut0jvaLsTahCtWFtM9BmjuiOF1wbIInTUVVHe2UQ4NjUpuas zL/XcHPNZsUDyXg498xLf7uw16IFpsh07x5rN6t//WaiV7+cAgsEqD9ms56sJNI1 11Equ1KME6oSybywzKOnoDO7bktNAuUjzze9IpmSsjkFGTCuN2jTRmKIndI+h6fP n9QbxrbhZtFn3q0dIm/Fu8EOpe6uuCqi+FKvq0cT2/SWtOJJoTiBIsExbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEAq8EbMuh1QrHrBQQ3FmzOni79dMB8GA1UdIwQY MBaAFDO2Wouuuk/2IUkuvub8HoitshsDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hYWJjNmMtMDQ1Ni00OTM1LWE0Njkt ZDU0NzE4NTUxMmRlLzEvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9hYWJjNmMtMDQ1Ni00OTM1LWE0NjktZDU0NzE4NTUxMmRl LzEvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD8SZXUbm CsrHLAkkviNjFiDTaFOGK3expnFqBTUm5M8ijXR6q0psROCuESyf7PQB06DuJJwb x94V4yN4K31OQ3uMLNXYSFNAFd019x6iIOlzUMJQ0HZ/udBtMhr/KBWsfiXIdiLf rUal3EcL/u9tpRIpExNf6Hr2EyqxT6TtqHcYfGq/IJs3vhyBOSCM3iBoh6Wyhly3 jnJUxc3g0th3dEDtZAT/jx41XyW1FAH0KDfQ11n40b2tCaiR+80F6YxZ7BSn0fKb YGGeoOdYFy709G3GP34V3+zAqSEV/Mj2W+sSIWAklznWlCnIm6ZmqUll9qB5CIvD wa+sFGP32SrLVA== -----END CERTIFICATE-----Generated at Sat Dec 6 21:05:49 2025 by rpki-client