This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json) Hash identifier: +iL+Tq0h8bMA2dNs8g6En5zrR8HAO/Fp8BFtFegou8M= Subject key identifier: 08:A3:BB:B2:AA:2F:B1:46:B5:39:12:76:2D:87:02:FA:8F:D1:E1:06 Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad Certificate serial: 019AF20926FD8B7AAC09CAF7D8E55731F3BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft Manifest number: 042A Signing time: Sat 06 Dec 2025 05:01:17 +0000 Manifest this update: Sat 06 Dec 2025 05:01:17 +0000 Manifest next update: Sun 07 Dec 2025 05:01:17 +0000 Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: YGy7m9+tTlDMRTk13K0Mo3gRynv6mIQRmU0niBnLOYE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:26:fd:8b:7a:ac:09:ca:f7:d8:e5:57:31:f3:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad Validity Not Before: Dec 6 05:01:17 2025 GMT Not After : Dec 7 05:01:17 2025 GMT Subject: CN=08a3bbb2aa2fb146b53912762d8702fa8fd1e106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:27:fb:f9:0c:9a:41:c8:04:6a:5b:5f:96: 56:47:ae:d6:e3:a0:69:56:2f:50:03:b4:ea:ef:45: d6:60:8e:05:38:22:40:fb:9e:5e:56:76:35:09:9d: 02:4b:4d:cd:1f:7b:b6:3e:39:d3:da:c8:9e:03:fb: 12:aa:36:68:48:06:7e:c6:85:38:ea:8c:68:8a:58: e3:42:c8:f1:6a:ba:ab:fd:fa:08:64:56:b6:bc:fa: 42:a6:05:c2:71:77:b8:16:22:ec:d3:2e:b8:0c:63: 50:de:97:9b:2e:ad:57:3f:4e:6d:97:46:87:f1:ee: 68:91:7e:7e:de:74:24:1c:9d:62:bd:08:8b:93:59: 66:e2:eb:e9:15:cd:2c:a0:40:7c:07:af:8a:6b:d0: 31:d8:64:04:53:a6:e6:49:18:8b:34:74:42:54:1e: 7e:ad:49:16:67:7f:62:25:9f:1a:c9:53:f4:da:0b: e5:af:c8:12:38:a8:13:f6:78:d5:99:7b:b1:0e:ee: c5:64:26:b0:23:64:fb:92:4c:9f:69:72:a2:e6:47: a5:f1:2d:ee:ba:01:a0:f0:15:de:68:7e:5a:ae:a4: c3:2b:f8:ec:ca:8a:b9:bd:0a:33:a2:35:e6:ed:cf: 0c:8b:9e:1b:0f:13:50:17:96:d9:0c:59:b3:50:0a: 3a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A3:BB:B2:AA:2F:B1:46:B5:39:12:76:2D:87:02:FA:8F:D1:E1:06 X509v3 Authority Key Identifier: keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d7:d6:40:ae:03:b8:ff:97:3c:4d:34:1b:e0:39:41:04:c0:a6: 5e:f9:c1:5d:56:b4:0c:4c:3d:42:16:12:37:9e:a7:3d:32:9b: 53:f7:44:9d:06:65:7d:cc:1a:e4:0a:b9:91:84:3c:20:67:c4: d7:17:07:1e:d2:0a:23:74:15:4f:74:cb:a1:72:21:ef:43:b5: 8b:ee:ca:01:f8:5a:9a:a2:98:cd:e9:3f:31:cd:64:a3:c7:cf: 9e:db:29:fc:3a:57:eb:ca:d1:6f:b3:b5:f4:4c:f2:0e:6e:40: a9:7b:c8:d8:ce:80:59:8d:ff:f7:28:56:ca:d2:b5:4c:93:8d: 36:72:a4:24:79:dc:3e:40:e9:ae:f9:1e:b7:4a:1e:d8:ba:d1: db:08:65:b3:2c:67:96:dc:5e:62:ab:a6:a3:03:b3:4a:9a:2e: a5:c1:a0:13:e8:f3:d3:33:6c:9c:e5:02:20:84:27:f4:91:a5: a1:9b:4b:20:d8:08:f1:6a:99:09:0a:10:5b:2d:b8:28:1f:b9: f8:22:f9:05:4e:31:7c:05:5b:f4:6b:f2:f3:d4:41:a9:90:c9: e5:90:7e:dd:69:72:c8:c3:e1:4b:7a:61:a9:95:6b:d6:f8:ab: b1:de:92:1f:7d:62:23:9d:a9:94:7e:f7:8d:7f:31:b0:7d:83: cf:5d:07:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCSb9i3qsCcr32OVXMfO/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYmM4YTg2NjhmNTBmZGFmNDk0ZjUyOGEyY2FhZmQwMmI3 YzMxYWQwHhcNMjUxMjA2MDUwMTE3WhcNMjUxMjA3MDUwMTE3WjAzMTEwLwYDVQQD EygwOGEzYmJiMmFhMmZiMTQ2YjUzOTEyNzYyZDg3MDJmYThmZDFlMTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvc4n+/kMmkHIBGpbX5ZWR67W46Bp Vi9QA7Tq70XWYI4FOCJA+55eVnY1CZ0CS03NH3u2PjnT2sieA/sSqjZoSAZ+xoU4 6oxoiljjQsjxarqr/foIZFa2vPpCpgXCcXe4FiLs0y64DGNQ3pebLq1XP05tl0aH 8e5okX5+3nQkHJ1ivQiLk1lm4uvpFc0soEB8B6+Ka9Ax2GQEU6bmSRiLNHRCVB5+ rUkWZ39iJZ8ayVP02gvlr8gSOKgT9njVmXuxDu7FZCawI2T7kkyfaXKi5kel8S3u ugGg8BXeaH5arqTDK/jsyoq5vQozojXm7c8Mi54bDxNQF5bZDFmzUAo6NQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAiju7KqL7FGtTkSdi2HAvqP0eEGMB8GA1UdIwQY MBaAFL+8ioZo9Q/a9JT1KKLKr9ArfDGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjIt ZGE2MTk5YjgyZjExLzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjItZGE2MTk5YjgyZjEx LzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA19ZArgO4 /5c8TTQb4DlBBMCmXvnBXVa0DEw9QhYSN56nPTKbU/dEnQZlfcwa5Aq5kYQ8IGfE 1xcHHtIKI3QVT3TLoXIh70O1i+7KAfhamqKYzek/Mc1ko8fPntsp/DpX68rRb7O1 9EzyDm5AqXvI2M6AWY3/9yhWytK1TJONNnKkJHncPkDprvket0oe2LrR2whlsyxn ltxeYqumowOzSpoupcGgE+jz0zNsnOUCIIQn9JGloZtLINgI8WqZCQoQWy24KB+5 +CL5BU4xfAVb9Gvy89RBqZDJ5ZB+3WlyyMPhS3phqZVr1virsd6SH31iI52plH73 jX8xsH2Dz10HJg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:21:45 2025 by rpki-client