This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft File: 7sMTGXauon0XHGwmepjT84KmGio.mft (raw, json) Hash identifier: IHWcsQITwlu78Rxjhs8IZrpTZTly07ZTXeHEQxpSmZY= Subject key identifier: 41:39:4F:8C:04:46:73:F4:20:DB:88:5A:A3:F9:5C:25:38:B4:CB:7A Authority key identifier: EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A Certificate issuer: /CN=eec3131976aea27d171c6c267a98d3f382a61a2a Certificate serial: 019AF19ACA1363CB38AC6288B69C56C0AA9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft Manifest number: 1158 Signing time: Sat 06 Dec 2025 03:00:44 +0000 Manifest this update: Sat 06 Dec 2025 03:00:44 +0000 Manifest next update: Sun 07 Dec 2025 03:00:44 +0000 Files and hashes: 1: 7sMTGXauon0XHGwmepjT84KmGio.crl (hash: lr5SgfamjMzWI9uiddQtynrY1LrZFScuwXgZrw671BE=) 2: qvDSjgW1rEvWcrU4jpSi6rsDCpM.roa (hash: T8Hf/3k6CSkU6S1AK65rkEFSmvPdWLsEssJ2od+QI9Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:ca:13:63:cb:38:ac:62:88:b6:9c:56:c0:aa:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eec3131976aea27d171c6c267a98d3f382a61a2a Validity Not Before: Dec 6 03:00:44 2025 GMT Not After : Dec 7 03:00:44 2025 GMT Subject: CN=41394f8c044673f420db885aa3f95c2538b4cb7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:51:47:a0:a1:30:20:bc:31:78:39:e3:02:c1: b8:23:c0:a2:a2:9d:13:bf:d2:37:49:30:bb:8a:42: 10:76:72:f7:5f:dc:e3:dd:35:46:f3:7a:d2:c0:7c: a5:54:6a:24:7b:45:0a:c8:9e:a6:c2:dc:d4:4c:e9: 6c:74:a2:f3:36:d9:e2:72:07:c7:87:b6:07:77:11: 1b:fa:c6:9b:e7:ce:b3:c8:bc:51:66:2b:b4:0c:41: 4a:70:a9:7b:15:04:35:e9:3d:53:c4:de:0f:c5:fd: c6:56:95:d8:9b:9b:8b:e1:cb:cb:c2:ee:c0:a8:43: 60:39:59:c2:14:56:49:a1:b1:b5:d6:7f:0e:db:05: 0f:4f:b4:e9:e3:72:8b:f0:b5:0d:5a:31:de:25:b9: e0:89:ae:aa:a8:d5:19:78:b8:a4:a2:4c:c9:76:ba: c0:ac:27:48:59:88:da:86:e6:2d:71:2e:9d:d5:ed: e6:2f:f8:76:0a:a6:8d:3e:6f:9c:e5:ad:4c:15:e4: f2:9b:bd:08:6e:9c:92:56:5d:f9:32:81:9c:21:67: 06:c0:ee:cd:1a:27:0e:27:cd:62:7e:ff:82:55:2c: 91:33:c8:a6:70:1d:b4:6f:e8:b0:d5:da:fc:58:ad: a6:f1:49:71:ce:79:18:d6:af:a5:da:a3:3d:79:be: 2b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:39:4F:8C:04:46:73:F4:20:DB:88:5A:A3:F9:5C:25:38:B4:CB:7A X509v3 Authority Key Identifier: keyid:EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:20:a9:ef:c7:b6:9e:1b:fb:60:98:d8:28:d7:f5:2c:96:9d: 79:48:10:fb:e4:3f:cc:c7:ef:45:88:bb:52:a1:5c:05:de:69: d2:2f:10:c5:64:f6:e5:59:68:17:7f:94:7f:41:f7:e4:52:7b: c3:86:e3:16:27:5b:74:8d:a2:ec:fd:19:2d:a1:7e:a2:24:0d: ac:21:a4:38:f7:2e:ef:aa:36:42:98:11:23:7d:b9:14:84:e5: 32:31:0d:f5:bd:81:a5:4a:40:c8:3b:3a:e1:9f:a0:8a:1e:c3: 92:bf:77:e6:3e:fd:07:c9:ec:d0:22:ed:3f:b9:ae:b4:77:f5: 3d:d2:f6:ad:69:72:05:b8:6d:8b:5d:d1:4d:f3:19:e7:86:09: c2:05:e1:af:9e:e6:e2:9c:e5:dc:1e:d5:6e:52:3a:88:8a:f6: 07:2a:53:84:3b:e4:56:b9:39:ea:e7:44:70:2c:04:15:7d:f3: ed:1e:2d:30:b2:b1:d7:b5:50:fb:a3:00:ea:c8:99:df:51:11: 50:d1:e2:97:f6:9e:7e:a1:d1:6a:2f:a5:27:d1:9e:25:76:19: 68:fc:e8:44:c7:87:3c:4e:7c:ec:c7:ef:12:b3:38:bb:16:68: 32:51:91:2a:00:1e:7b:64:60:e1:a3:10:e2:67:33:4b:1a:52: 89:29:f9:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmsoTY8s4rGKItpxWwKqdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYzMxMzE5NzZhZWEyN2QxNzFjNmMyNjdhOThkM2YzODJh NjFhMmEwHhcNMjUxMjA2MDMwMDQ0WhcNMjUxMjA3MDMwMDQ0WjAzMTEwLwYDVQQD Eyg0MTM5NGY4YzA0NDY3M2Y0MjBkYjg4NWFhM2Y5NWMyNTM4YjRjYjdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1FHoKEwILwxeDnjAsG4I8Ciop0T v9I3STC7ikIQdnL3X9zj3TVG83rSwHylVGoke0UKyJ6mwtzUTOlsdKLzNtnicgfH h7YHdxEb+sab586zyLxRZiu0DEFKcKl7FQQ16T1TxN4Pxf3GVpXYm5uL4cvLwu7A qENgOVnCFFZJobG11n8O2wUPT7Tp43KL8LUNWjHeJbngia6qqNUZeLikokzJdrrA rCdIWYjahuYtcS6d1e3mL/h2CqaNPm+c5a1MFeTym70IbpySVl35MoGcIWcGwO7N GicOJ81ifv+CVSyRM8imcB20b+iw1dr8WK2m8UlxznkY1q+l2qM9eb4rJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEE5T4wERnP0INuIWqP5XCU4tMt6MB8GA1UdIwQY MBaAFO7DExl2rqJ9FxxsJnqY0/OCphoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEt NGNkM2U3MzIxNmYxLzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEtNGNkM2U3MzIxNmYx LzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAESCp78e2 nhv7YJjYKNf1LJadeUgQ++Q/zMfvRYi7UqFcBd5p0i8QxWT25VloF3+Uf0H35FJ7 w4bjFidbdI2i7P0ZLaF+oiQNrCGkOPcu76o2QpgRI325FITlMjEN9b2BpUpAyDs6 4Z+gih7Dkr935j79B8ns0CLtP7mutHf1PdL2rWlyBbhti13RTfMZ54YJwgXhr57m 4pzl3B7VblI6iIr2BypThDvkVrk56udEcCwEFX3z7R4tMLKx17VQ+6MA6siZ31ER UNHil/aefqHRai+lJ9GeJXYZaPzoRMeHPE587MfvErM4uxZoMlGRKgAee2Rg4aMQ 4mczSxpSiSn55w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:01:15 2025 by rpki-client