This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft File: 7fBEw2PXiOdDNOE24DzH_R5JohY.mft (raw, json) Hash identifier: GevabyxVarTNV57Ss2RRB48bFeNDcM9exKgym8DiWAs= Subject key identifier: B8:96:22:67:54:FA:B0:7B:E1:A6:EF:52:67:65:6D:1E:16:99:15:6D Authority key identifier: ED:F0:44:C3:63:D7:88:E7:43:34:E1:36:E0:3C:C7:FD:1E:49:A2:16 Certificate issuer: /CN=edf044c363d788e74334e136e03cc7fd1e49a216 Certificate serial: 019B30E7ACD9CEB0B44AE1B2D3BD1C5B75C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft Manifest number: 09F8 Signing time: Thu 18 Dec 2025 10:00:47 +0000 Manifest this update: Thu 18 Dec 2025 10:00:47 +0000 Manifest next update: Fri 19 Dec 2025 10:00:47 +0000 Files and hashes: 1: 7fBEw2PXiOdDNOE24DzH_R5JohY.crl (hash: tjZpE+hwhwy7sttE1TWZhpEhkerm0UpRICpgw7e+oaE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 10:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:e7:ac:d9:ce:b0:b4:4a:e1:b2:d3:bd:1c:5b:75:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=edf044c363d788e74334e136e03cc7fd1e49a216 Validity Not Before: Dec 18 10:00:47 2025 GMT Not After : Dec 19 10:00:47 2025 GMT Subject: CN=b896226754fab07be1a6ef5267656d1e1699156d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:65:f0:0b:a7:d6:be:36:0b:b3:aa:4d:e5:60: 14:cf:ff:eb:34:37:bc:99:7a:e1:52:c3:cf:8e:64: d2:b9:f4:52:91:83:43:46:58:f6:ad:7d:11:5d:52: 9a:86:ca:78:8f:33:4d:cb:af:10:55:bf:07:e0:50: 6b:ac:5a:ef:74:b6:43:92:29:a2:c8:ae:83:fb:ae: ca:bb:93:57:2a:15:2d:6a:3f:94:69:1c:5b:3e:d5: c7:91:1d:04:1d:53:0e:82:f7:a1:ee:23:fd:58:fa: c0:0e:bc:82:f2:08:e2:a0:29:b3:9d:50:cc:d5:5d: ba:5d:c9:df:57:c6:a8:12:04:ea:f2:e7:9d:5a:93: 58:c9:e7:52:00:31:82:9d:7b:bf:5c:3f:17:5c:ec: 30:c7:c8:1c:2b:48:11:82:59:3a:36:a6:3c:48:f8: 34:96:dc:83:1b:d1:ea:ca:37:d3:37:7b:51:bc:17: fc:e0:16:03:85:9b:51:e1:10:03:c6:1a:b6:7f:33: 88:c8:d1:30:94:e7:ba:82:8a:f3:c2:39:14:f7:7a: 99:ed:93:4e:5e:d8:42:8f:29:28:3e:f0:e1:79:f9: b6:ea:57:21:97:eb:76:a7:93:e5:b5:4f:f6:9b:d3: 6e:c1:a7:5b:09:fb:9d:c0:74:d0:cb:17:8a:f4:37: 7e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:96:22:67:54:FA:B0:7B:E1:A6:EF:52:67:65:6D:1E:16:99:15:6D X509v3 Authority Key Identifier: keyid:ED:F0:44:C3:63:D7:88:E7:43:34:E1:36:E0:3C:C7:FD:1E:49:A2:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:d1:34:9b:14:4b:99:88:94:b3:02:7b:95:32:fe:6e:88:62: db:82:3d:d4:05:b3:73:96:5c:3b:4d:46:83:08:9d:da:bb:62: 7f:c0:51:49:3d:6c:ba:f5:87:23:d4:7b:3c:0b:51:f5:64:f7: 13:a0:0b:d3:8e:64:18:bf:e8:b6:b8:80:da:86:ab:a2:2b:e4: 67:71:bc:ee:b0:d1:f0:41:4d:50:c1:42:fb:63:97:b3:2a:c5: 1d:4c:ae:a5:7d:dc:47:29:40:b0:29:2c:6d:55:3b:5e:17:8c: 48:b2:b3:0c:25:79:30:f1:38:6f:e8:32:a5:71:18:a4:f3:13: 34:95:1e:70:23:7c:c1:83:a5:3f:a9:ed:79:69:0e:ce:42:92: 52:cb:51:33:e0:8f:9a:e3:e5:54:a2:a8:a9:31:ae:13:ff:f3: f9:78:d6:cf:f1:83:18:39:e9:8e:b1:9e:14:dd:08:15:8d:e3: 89:5a:ad:6e:bc:bb:3b:37:eb:cf:c9:ab:9b:d0:2e:f5:6e:16: 1d:cc:6f:e0:f0:ea:f8:ae:ba:c3:0d:5d:a3:07:69:10:93:fd: 80:0b:ee:dd:1c:92:72:75:cd:7e:cc:f7:7d:1a:88:ba:e8:6a: 1b:6a:ed:8f:9d:e0:be:ca:18:bd:20:70:78:c7:73:7a:07:0e: ac:8f:a3:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsw56zZzrC0SuGy070cW3XCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkZjA0NGMzNjNkNzg4ZTc0MzM0ZTEzNmUwM2NjN2ZkMWU0 OWEyMTYwHhcNMjUxMjE4MTAwMDQ3WhcNMjUxMjE5MTAwMDQ3WjAzMTEwLwYDVQQD EyhiODk2MjI2NzU0ZmFiMDdiZTFhNmVmNTI2NzY1NmQxZTE2OTkxNTZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2XwC6fWvjYLs6pN5WAUz//rNDe8 mXrhUsPPjmTSufRSkYNDRlj2rX0RXVKahsp4jzNNy68QVb8H4FBrrFrvdLZDkimi yK6D+67Ku5NXKhUtaj+UaRxbPtXHkR0EHVMOgveh7iP9WPrADryC8gjioCmznVDM 1V26XcnfV8aoEgTq8uedWpNYyedSADGCnXu/XD8XXOwwx8gcK0gRglk6NqY8SPg0 ltyDG9HqyjfTN3tRvBf84BYDhZtR4RADxhq2fzOIyNEwlOe6gorzwjkU93qZ7ZNO XthCjykoPvDhefm26lchl+t2p5PltU/2m9NuwadbCfudwHTQyxeK9Dd+7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLiWImdU+rB74abvUmdlbR4WmRVtMB8GA1UdIwQY MBaAFO3wRMNj14jnQzThNuA8x/0eSaIWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2ZCRXcyUFhpT2RETk9FMjREekhfUjVKb2hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zNDA0OTEtZDFkMi00MzJjLTk1NmQt MmZlMTU5NGRkYzljLzEvN2ZCRXcyUFhpT2RETk9FMjREekhfUjVKb2hZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8zNDA0OTEtZDFkMi00MzJjLTk1NmQtMmZlMTU5NGRkYzlj LzEvN2ZCRXcyUFhpT2RETk9FMjREekhfUjVKb2hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJtE0mxRL mYiUswJ7lTL+bohi24I91AWzc5ZcO01Ggwid2rtif8BRST1suvWHI9R7PAtR9WT3 E6AL045kGL/otriA2oaroivkZ3G87rDR8EFNUMFC+2OXsyrFHUyupX3cRylAsCks bVU7XheMSLKzDCV5MPE4b+gypXEYpPMTNJUecCN8wYOlP6nteWkOzkKSUstRM+CP muPlVKKoqTGuE//z+XjWz/GDGDnpjrGeFN0IFY3jiVqtbry7Ozfrz8mrm9Au9W4W Hcxv4PDq+K66ww1dowdpEJP9gAvu3RyScnXNfsz3fRqIuuhqG2rtj53gvsoYvSBw eMdzegcOrI+jUw== -----END CERTIFICATE-----Generated at Thu Dec 18 14:24:38 2025 by rpki-client