This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json) Hash identifier: vH8LJoTHyQRLdJqMTRF/hzSOxSb2QiTQjKHCjCkTzIg= Subject key identifier: 7F:3D:2F:99:7B:00:F2:AF:6C:87:1C:ED:39:2C:37:7A:EF:38:91:04 Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe Certificate serial: 019AF57844E0CFA537551D0C35F7132FC71D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 21:01:31 +0000 Manifest this update: Sat 06 Dec 2025 21:01:31 +0000 Manifest next update: Sun 07 Dec 2025 21:01:31 +0000 Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: ko5Lkes9nsvvcqMT8NKdZJvw6o8Jzy0giL0LobiOeOo=) 2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:78:44:e0:cf:a5:37:55:1d:0c:35:f7:13:2f:c7:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe Validity Not Before: Dec 6 21:01:31 2025 GMT Not After : Dec 7 21:01:31 2025 GMT Subject: CN=7f3d2f997b00f2af6c871ced392c377aef389104 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e6:59:30:7d:ea:b2:c8:64:41:e9:3a:a0:13: da:17:4d:01:2d:5a:06:98:88:39:27:e7:0d:2e:7d: 8e:94:98:47:eb:98:bb:92:fc:b0:28:db:b4:ec:87: 8e:1b:75:df:6a:1e:1a:4d:a9:04:6a:08:11:4f:f4: ef:d6:34:2c:38:1b:5d:86:13:04:f0:e0:84:8e:dc: c2:18:10:e7:44:61:59:ac:f3:d9:ab:81:e3:6e:c9: af:1b:0d:09:35:d3:bf:4c:fa:80:be:11:af:fa:55: 88:02:8c:90:e9:2a:fa:02:74:51:d3:36:d4:fd:4b: 11:01:31:4c:b6:a7:43:47:cb:24:50:77:62:00:15: 41:39:01:be:d3:50:93:60:f8:2e:cc:ab:1e:89:0f: e4:fa:61:97:43:1a:fd:17:8c:18:be:3e:0e:d9:4c: d8:31:33:a7:dc:fa:4c:bf:11:97:b8:be:1d:97:c6: 72:38:54:a2:f3:a3:be:8c:66:a1:3b:eb:18:22:30: fd:33:fb:de:a5:b7:3a:82:19:7c:08:e2:e1:fe:1d: ed:40:19:87:51:3e:8e:ae:4b:f6:75:b4:e0:0e:f1: 3a:d0:c1:8d:0e:29:34:8d:cf:40:dd:6a:b3:0d:ef: 19:b2:05:a3:52:f9:ac:8c:ee:68:a6:92:49:9b:de: 9b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:3D:2F:99:7B:00:F2:AF:6C:87:1C:ED:39:2C:37:7A:EF:38:91:04 X509v3 Authority Key Identifier: keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:3c:41:3b:a5:72:21:7b:ad:62:1d:3f:75:11:64:8f:5d:04: b2:65:5f:33:9a:2d:65:d6:74:fd:dd:1d:2f:43:a5:73:fe:cc: bc:a8:b0:72:fd:b9:f8:04:68:7f:45:9b:1a:a6:70:74:6c:df: 13:9a:e9:09:aa:d6:46:a5:13:5a:e9:47:ab:e8:6e:21:1e:d8: 84:98:8b:e4:6e:e0:b3:05:a6:09:af:78:fe:b9:84:bf:32:2b: 09:c1:85:cf:8e:bc:83:bf:ed:50:c2:b0:3e:26:0d:5c:d0:16: e6:4e:9d:1c:a8:5e:95:ce:03:83:18:11:8c:25:99:83:66:2f: 36:d5:50:c9:8f:3e:da:ca:3a:8b:8a:2f:67:91:50:e6:93:1d: 6c:49:10:8d:7f:08:24:11:fc:90:11:16:79:f1:d1:44:69:d4: cb:1a:f6:cd:a1:a8:df:84:27:90:a9:65:1d:ec:d2:37:1a:ce: 29:45:7d:ae:3f:71:66:86:a1:7d:02:dc:98:2e:8a:96:7d:4c: 63:5b:ec:18:27:f2:be:ee:f6:64:c2:cc:9d:b0:a0:a5:18:57: 64:6d:cb:46:b6:b2:30:f4:36:0d:3d:e5:67:23:f4:e8:b1:16: c9:d2:ca:6f:92:68:d8:fa:c2:3e:ce:5b:2a:35:23:03:6b:26: 3d:d7:9a:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1eETgz6U3VR0MNfcTL8cdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2YjdlZGVmNjE4NTg3MjNjNGFkZWJlM2VlNWE4OWY3MDA1 OGQ1ZmUwHhcNMjUxMjA2MjEwMTMxWhcNMjUxMjA3MjEwMTMxWjAzMTEwLwYDVQQD Eyg3ZjNkMmY5OTdiMDBmMmFmNmM4NzFjZWQzOTJjMzc3YWVmMzg5MTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+ZZMH3qsshkQek6oBPaF00BLVoG mIg5J+cNLn2OlJhH65i7kvywKNu07IeOG3Xfah4aTakEaggRT/Tv1jQsOBtdhhME 8OCEjtzCGBDnRGFZrPPZq4HjbsmvGw0JNdO/TPqAvhGv+lWIAoyQ6Sr6AnRR0zbU /UsRATFMtqdDR8skUHdiABVBOQG+01CTYPguzKseiQ/k+mGXQxr9F4wYvj4O2UzY MTOn3PpMvxGXuL4dl8ZyOFSi86O+jGahO+sYIjD9M/vepbc6ghl8COLh/h3tQBmH UT6Orkv2dbTgDvE60MGNDik0jc9A3WqzDe8ZsgWjUvmsjO5oppJJm96b7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH89L5l7APKvbIcc7TksN3rvOJEEMB8GA1UdIwQY MBaAFAa37e9hhYcjxK3r4+5aifcAWNX+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUt ODk1NTFlOGNjZTEyLzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUtODk1NTFlOGNjZTEy LzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArTxBO6Vy IXutYh0/dRFkj10EsmVfM5otZdZ0/d0dL0Olc/7MvKiwcv25+ARof0WbGqZwdGzf E5rpCarWRqUTWulHq+huIR7YhJiL5G7gswWmCa94/rmEvzIrCcGFz468g7/tUMKw PiYNXNAW5k6dHKhelc4DgxgRjCWZg2YvNtVQyY8+2so6i4ovZ5FQ5pMdbEkQjX8I JBH8kBEWefHRRGnUyxr2zaGo34QnkKllHezSNxrOKUV9rj9xZoahfQLcmC6Kln1M Y1vsGCfyvu72ZMLMnbCgpRhXZG3LRrayMPQ2DT3lZyP06LEWydLKb5Jo2PrCPs5b KjUjA2smPdeaXw== -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:43 2025 by rpki-client