This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json) Hash identifier: 5aGFu0z3IyMqwSmn7MlQc7QKtLhUkgwVBfxcWXteGD4= Subject key identifier: E0:4D:86:CE:F8:AD:7B:DC:1D:85:6C:37:28:08:66:6B:AA:AF:3A:C4 Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73 Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73 Certificate serial: 019AF1D197F23C9D4B34CAEBFB3611E3F438 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft Manifest number: 092E Signing time: Sat 06 Dec 2025 04:00:36 +0000 Manifest this update: Sat 06 Dec 2025 04:00:36 +0000 Manifest next update: Sun 07 Dec 2025 04:00:36 +0000 Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: nOzURvsFvfmltBP4HfA9uvTQ6gE3bnzL3rcuGYU4WZg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:97:f2:3c:9d:4b:34:ca:eb:fb:36:11:e3:f4:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73 Validity Not Before: Dec 6 04:00:36 2025 GMT Not After : Dec 7 04:00:36 2025 GMT Subject: CN=e04d86cef8ad7bdc1d856c372808666baaaf3ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:86:9a:bf:cd:58:15:e7:7f:cc:52:7e:df:2f: 88:c6:7d:03:47:bc:42:8d:83:c5:28:ef:17:46:bf: 6d:76:9b:3d:98:d7:d6:2a:4c:68:fe:dc:9d:3e:4e: c3:bb:e3:97:ae:de:1e:3d:d4:d2:62:ac:ed:b3:b5: 2a:6c:c0:bd:3b:a1:ad:a5:35:a3:ff:aa:f3:ed:43: 74:8f:a9:51:d9:c0:15:de:f1:a9:d0:67:86:48:42: 00:b4:f8:89:02:ba:0d:c4:35:fb:dd:09:4d:de:43: f7:f3:ec:be:3a:90:67:65:ce:21:31:31:c2:c9:d5: c6:75:cb:b9:59:ab:65:82:b5:cb:ac:6c:00:62:27: 24:f2:0e:47:1c:3f:f7:21:64:c9:f3:80:5a:ff:5e: 56:b9:02:41:f7:9c:32:6f:46:7a:01:99:1b:b7:a1: de:26:5b:0b:07:bd:d2:4f:df:2f:1a:69:07:96:6e: 63:51:fa:44:0a:e6:61:57:44:34:4e:23:2b:1a:d2: a3:0f:70:12:cb:bb:20:b9:69:37:aa:56:e2:1e:6d: 1a:38:e3:0a:e7:1a:4d:4b:50:7b:60:c9:97:0b:e9: c6:4d:ce:5d:e6:48:07:d2:47:61:a2:e6:cb:50:f1: c7:83:f5:49:8d:30:d8:a8:48:98:0e:6f:77:c8:91: d8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4D:86:CE:F8:AD:7B:DC:1D:85:6C:37:28:08:66:6B:AA:AF:3A:C4 X509v3 Authority Key Identifier: keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:f7:f6:28:7f:6a:70:af:3f:78:9b:76:2f:0e:71:5f:f4:7c: 06:31:5b:51:10:e2:58:a0:8a:9d:03:a5:f5:de:a5:bf:f1:2d: 2a:60:25:ba:2b:15:4a:b6:16:a8:a3:32:d2:bf:be:02:5d:21: fe:53:d0:62:1c:fb:31:30:5d:70:a3:91:cb:e5:b4:af:a7:7d: 60:48:88:43:74:da:6e:7e:c8:9a:a5:8e:24:d5:44:92:04:e5: 21:ea:3b:e8:bd:b6:31:68:24:6e:6e:1d:5f:19:4f:8d:77:b9: 6f:61:84:0d:1c:5a:0a:d6:bc:47:48:09:e9:67:a3:fe:6f:39: a2:09:3c:cb:48:5d:27:2c:e2:57:72:c0:00:cf:a1:d4:c0:e4: 8a:ad:a8:a6:78:2a:63:61:a5:12:62:f5:1e:eb:d8:89:57:66: 55:8a:75:e3:b7:2a:ae:fb:9c:5c:85:31:38:21:e8:06:10:eb: b6:e8:7d:63:ff:4a:6f:93:08:e2:92:04:28:e6:15:64:b8:a0: 9a:1b:84:b7:eb:02:d0:bc:79:46:15:a7:b1:ae:09:e1:06:24: eb:cf:ae:c5:85:80:3c:80:31:49:00:93:73:f5:81:3e:37:9c: 8a:61:cc:e1:4c:df:1d:38:3d:1c:df:07:e1:26:63:47:65:aa: 97:73:68:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0ZfyPJ1LNMrr+zYR4/Q4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYjJkMDIzNDFjMTE5NDlhOGM4NzE1M2Y4NjZjMGY2OGYx YmJkNzMwHhcNMjUxMjA2MDQwMDM2WhcNMjUxMjA3MDQwMDM2WjAzMTEwLwYDVQQD EyhlMDRkODZjZWY4YWQ3YmRjMWQ4NTZjMzcyODA4NjY2YmFhYWYzYWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYaav81YFed/zFJ+3y+Ixn0DR7xC jYPFKO8XRr9tdps9mNfWKkxo/tydPk7Du+OXrt4ePdTSYqzts7UqbMC9O6GtpTWj /6rz7UN0j6lR2cAV3vGp0GeGSEIAtPiJAroNxDX73QlN3kP38+y+OpBnZc4hMTHC ydXGdcu5WatlgrXLrGwAYick8g5HHD/3IWTJ84Ba/15WuQJB95wyb0Z6AZkbt6He JlsLB73ST98vGmkHlm5jUfpECuZhV0Q0TiMrGtKjD3ASy7sguWk3qlbiHm0aOOMK 5xpNS1B7YMmXC+nGTc5d5kgH0kdhoubLUPHHg/VJjTDYqEiYDm93yJHYkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOBNhs74rXvcHYVsNygIZmuqrzrEMB8GA1UdIwQY MBaAFCuy0CNBwRlJqMhxU/hmwPaPG71zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzdMUUkwSEJHVW1veUhGVC1HYkE5bzhidlhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kN2E3OTQtNWUzOC00ZTg0LTgxNTYt NDYwNjU2ZmUzYWI1LzEvSzdMUUkwSEJHVW1veUhGVC1HYkE5bzhidlhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS9kN2E3OTQtNWUzOC00ZTg0LTgxNTYtNDYwNjU2ZmUzYWI1 LzEvSzdMUUkwSEJHVW1veUhGVC1HYkE5bzhidlhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcvf2KH9q cK8/eJt2Lw5xX/R8BjFbURDiWKCKnQOl9d6lv/EtKmAluisVSrYWqKMy0r++Al0h /lPQYhz7MTBdcKORy+W0r6d9YEiIQ3Tabn7ImqWOJNVEkgTlIeo76L22MWgkbm4d XxlPjXe5b2GEDRxaCta8R0gJ6Wej/m85ogk8y0hdJyziV3LAAM+h1MDkiq2opngq Y2GlEmL1HuvYiVdmVYp147cqrvucXIUxOCHoBhDrtuh9Y/9Kb5MI4pIEKOYVZLig mhuEt+sC0Lx5RhWnsa4J4QYk68+uxYWAPIAxSQCTc/WBPjecimHM4UzfHTg9HN8H 4SZjR2Wql3NoGA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:25:21 2025 by rpki-client