This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft File: rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft (raw, json) Hash identifier: st+0FdBwod3IIkOTNd15RvsoiMbcWqeprwLiScyyM8M= Subject key identifier: 10:9B:69:A1:AC:CD:60:61:A6:ED:56:32:9D:C4:69:EC:FC:E0:A0:28 Authority key identifier: AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5 Certificate issuer: /CN=ae1ef3d626a754e43d07c700d0513c114b660ef5 Certificate serial: 019AF31B2F0A183F39965D22D1A92D680032 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 10:00:36 +0000 Manifest this update: Sat 06 Dec 2025 10:00:36 +0000 Manifest next update: Sun 07 Dec 2025 10:00:36 +0000 Files and hashes: 1: 4Z6xjw98hxZ8bvYUhmvQisZFvOM.roa (hash: j5d+sT1h6lzMh+Fw7CHOI9NqQUP8la0OU484/Ch6a44=) 2: rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl (hash: PmKSr50nbmeuuQ2HUZu/M4uTBZ0zWURcYhRgfAhif1k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:2f:0a:18:3f:39:96:5d:22:d1:a9:2d:68:00:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae1ef3d626a754e43d07c700d0513c114b660ef5 Validity Not Before: Dec 6 10:00:36 2025 GMT Not After : Dec 7 10:00:36 2025 GMT Subject: CN=109b69a1accd6061a6ed56329dc469ecfce0a028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:ef:b7:04:04:88:59:3a:1e:10:11:66:fd:05: 37:63:5c:d2:e9:a6:b9:a1:61:c6:cd:99:d2:07:8d: c6:72:f6:d9:03:51:dd:b9:f2:47:3b:8d:52:8e:c3: 15:1a:21:9f:9f:67:1a:ae:ef:e8:44:c9:da:91:be: 58:a5:af:47:16:06:60:23:04:41:c9:de:79:40:d9: 85:68:93:c7:0c:e9:c9:89:1b:f5:b8:a7:52:c5:bc: 84:9d:65:f4:68:35:ea:5c:1f:86:ae:dd:7f:e9:b9: c0:26:0f:dd:49:cb:11:f3:1b:13:10:80:a9:20:ec: b8:60:a9:27:6e:2d:d0:52:28:2d:27:5e:f7:d6:56: 38:9f:c4:a9:6c:33:5c:95:a2:82:4e:8a:3b:a2:39: e5:6c:de:4f:9f:73:17:0a:ea:51:d4:8a:85:f7:f5: d9:f3:05:ed:a4:01:79:64:ba:ee:da:3d:c1:85:86: 4a:aa:89:78:be:1a:8a:d6:e1:84:75:f9:11:0d:a7: 18:62:a6:24:41:58:ec:08:7c:8e:af:e3:59:f3:4e: 07:a4:df:28:a5:ce:3c:98:b4:42:8f:f3:95:80:0b: 4f:0d:0c:01:44:e0:a0:ef:10:ba:e8:2c:67:2d:3a: bd:5f:ec:c1:7d:a9:2d:f2:da:13:42:bd:da:22:c3: bc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:9B:69:A1:AC:CD:60:61:A6:ED:56:32:9D:C4:69:EC:FC:E0:A0:28 X509v3 Authority Key Identifier: keyid:AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:85:5f:2b:78:1e:1b:a6:8c:43:a4:99:a8:41:84:d1:c5:ef: 5f:74:2b:92:aa:d0:bf:bf:58:0b:ce:be:4d:bd:4a:06:4d:26: ee:27:94:a5:4d:53:2a:50:67:8a:6f:67:ac:79:f7:e8:ec:8c: a0:0e:23:bc:19:bc:72:20:1f:4b:e2:53:df:78:e1:cf:06:78: e3:6d:e2:82:a0:4a:52:a3:93:1b:dd:d9:40:57:e7:f7:05:27: df:fb:63:12:ad:b0:b3:c0:8f:56:57:55:3c:bf:fc:f8:dd:af: c1:67:5a:f8:fe:f3:8e:11:f7:f8:ee:84:42:fd:1e:c1:56:74: 38:a5:51:87:4c:ef:46:de:50:f6:46:fc:66:15:1a:8f:96:d6: 6d:bc:e2:2d:4d:e7:f5:72:4f:e4:0b:ad:18:54:71:c5:9b:c5: 35:28:57:af:ae:a6:b6:ba:48:34:dd:21:90:bd:c1:3e:cc:9d: e9:65:ef:47:f3:12:35:bf:9b:ce:45:fe:6a:07:e3:50:d2:8a: 5d:fe:66:95:ef:48:b0:a7:ea:0d:7f:c5:03:5b:4c:af:b1:2b: 26:85:59:84:97:f6:2e:08:a5:7f:68:8c:61:8b:56:97:a7:dc: 0f:b2:e9:2f:7b:88:ef:fc:0e:96:a9:b6:f3:12:16:d0:49:0f: 2e:f3:e6:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzGy8KGD85ll0i0aktaAAyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlMWVmM2Q2MjZhNzU0ZTQzZDA3YzcwMGQwNTEzYzExNGI2 NjBlZjUwHhcNMjUxMjA2MTAwMDM2WhcNMjUxMjA3MTAwMDM2WjAzMTEwLwYDVQQD EygxMDliNjlhMWFjY2Q2MDYxYTZlZDU2MzI5ZGM0NjllY2ZjZTBhMDI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi++3BASIWToeEBFm/QU3Y1zS6aa5 oWHGzZnSB43GcvbZA1HdufJHO41SjsMVGiGfn2caru/oRMnakb5Ypa9HFgZgIwRB yd55QNmFaJPHDOnJiRv1uKdSxbyEnWX0aDXqXB+Grt1/6bnAJg/dScsR8xsTEICp IOy4YKknbi3QUigtJ1731lY4n8SpbDNclaKCToo7ojnlbN5Pn3MXCupR1IqF9/XZ 8wXtpAF5ZLru2j3BhYZKqol4vhqK1uGEdfkRDacYYqYkQVjsCHyOr+NZ804HpN8o pc48mLRCj/OVgAtPDQwBROCg7xC66CxnLTq9X+zBfakt8toTQr3aIsO8CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBCbaaGszWBhpu1WMp3Eaez84KAoMB8GA1UdIwQY MBaAFK4e89Ymp1TkPQfHANBRPBFLZg71MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmg3ejFpYW5WT1E5QjhjQTBGRThFVXRtRHZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hZmU5YjgtZTg4MS00NDYyLWExZWUt OGU4MWQxMzUwNzM2LzEvcmg3ejFpYW5WT1E5QjhjQTBGRThFVXRtRHZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9hZmU5YjgtZTg4MS00NDYyLWExZWUtOGU4MWQxMzUwNzM2 LzEvcmg3ejFpYW5WT1E5QjhjQTBGRThFVXRtRHZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcoVfK3ge G6aMQ6SZqEGE0cXvX3QrkqrQv79YC86+Tb1KBk0m7ieUpU1TKlBnim9nrHn36OyM oA4jvBm8ciAfS+JT33jhzwZ4423igqBKUqOTG93ZQFfn9wUn3/tjEq2ws8CPVldV PL/8+N2vwWda+P7zjhH3+O6EQv0ewVZ0OKVRh0zvRt5Q9kb8ZhUaj5bWbbziLU3n 9XJP5AutGFRxxZvFNShXr66mtrpINN0hkL3BPsyd6WXvR/MSNb+bzkX+agfjUNKK Xf5mle9IsKfqDX/FA1tMr7ErJoVZhJf2Lgilf2iMYYtWl6fcD7LpL3uI7/wOlqm2 8xIW0EkPLvPmFA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:32:28 2025 by rpki-client