This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json) Hash identifier: EeRYX+0yxzPj5sd+HYNMBgDsg/zHbwTePhb0C+ekAJc= Subject key identifier: FB:66:4D:1A:E8:C1:73:32:3D:59:AF:6B:22:13:8E:FC:9A:D3:70:0B Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96 Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196 Certificate serial: 019AF23F9ABC83E04A608227061EC3D2DA10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft Manifest number: 0AFE Signing time: Sat 06 Dec 2025 06:00:45 +0000 Manifest this update: Sat 06 Dec 2025 06:00:45 +0000 Manifest next update: Sun 07 Dec 2025 06:00:45 +0000 Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: 7fDUImeqOclCbSz8TeBqoG46qoLWS9ZgHbvF1m0W6fk=) 2: Q9uvUMUGF4tW9TpLUtXmiB_YDYU.roa (hash: 6w5t2feWmLv2FpcZk6E6i1f0DCsFUL0L2nW9iOpOGYo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:9a:bc:83:e0:4a:60:82:27:06:1e:c3:d2:da:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196 Validity Not Before: Dec 6 06:00:45 2025 GMT Not After : Dec 7 06:00:45 2025 GMT Subject: CN=fb664d1ae8c173323d59af6b22138efc9ad3700b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:62:b8:e8:b9:ff:d2:f1:67:a8:c6:d7:5d:61: 2b:fd:58:07:86:e3:2e:0d:ac:d4:67:29:62:54:2c: 49:2a:cb:f7:b8:d7:f8:3d:35:b6:2e:a6:f3:f1:d4: 28:e1:a4:11:da:f6:d0:40:3a:7a:ec:e8:33:a2:e0: 25:74:85:17:b4:8a:73:dc:6e:6b:42:ed:1f:44:f8: 5a:96:ee:f2:e6:d1:ee:70:3a:40:35:e2:98:db:ab: 18:ca:99:18:30:3a:2d:16:31:e4:60:1a:ff:cd:81: 29:ff:40:d2:89:65:61:e3:48:af:35:86:5b:7b:e5: 19:62:6e:a7:12:e9:2a:13:6b:ab:7c:d5:c4:b8:2a: 59:7d:99:f9:82:ac:b7:40:3c:c1:fc:c3:5b:94:40: 15:8f:aa:1f:f2:c1:a0:da:0b:42:10:7f:c9:f7:a5: f5:68:06:14:05:ea:65:f4:3c:fa:f7:6a:95:8e:82: 54:c7:ee:57:45:ea:ce:4e:81:46:79:e2:39:37:fc: b3:9e:a6:3c:7b:af:85:d5:f3:37:60:a9:ca:9f:3a: e4:96:0f:23:32:e5:95:5f:e1:99:97:ab:ac:23:50: 82:0d:f9:53:29:9f:39:b6:bc:65:17:40:9a:b6:80: 1e:ee:c7:98:12:34:4c:4d:08:aa:06:96:10:e2:4b: 76:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:66:4D:1A:E8:C1:73:32:3D:59:AF:6B:22:13:8E:FC:9A:D3:70:0B X509v3 Authority Key Identifier: keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:d5:53:57:c2:2c:cc:52:4f:8b:2c:be:59:52:5f:ec:cd:41: 3b:88:2e:0a:5b:4a:1d:b6:49:90:b5:7a:6b:57:a3:9b:15:86: 4c:f9:1b:6e:40:af:e3:87:5d:fe:9d:d0:d6:e9:ce:87:3a:21: d7:ef:74:2a:61:cd:9a:34:04:84:79:5d:6e:a5:cb:07:94:72: b7:a2:53:3e:67:1f:a9:aa:11:17:93:45:6d:c3:6b:0f:bf:cc: d2:75:7b:09:dd:66:43:b4:0f:94:0b:86:57:19:17:b2:35:43: 9a:41:03:dd:8d:f3:5c:b8:b3:ee:7f:42:e0:66:7a:fc:f3:32: b2:2b:56:d5:8f:a0:b2:49:81:66:49:0d:63:c2:3d:b2:58:07: 90:cd:13:62:22:5f:17:dc:1c:2d:07:91:7b:40:6b:8e:9d:23: e3:c0:05:50:95:da:e5:25:92:aa:29:b5:35:53:b6:24:ae:7e: 36:6f:0b:8c:70:b4:2a:da:5c:2f:24:76:f6:bc:96:ce:0f:9c: 52:34:8c:b6:90:48:0a:3a:db:eb:35:2f:da:1f:ed:af:f1:cb: e4:12:69:39:2d:f6:19:e3:ff:08:d9:bf:50:2a:7c:e5:84:fa: e5:b2:3a:d4:a4:09:a3:87:23:7d:9c:4a:c1:e4:8b:3d:e1:ac: 51:1f:0a:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP5q8g+BKYIInBh7D0toQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3YjE0M2Y2NGQ1MTBiYTMxMjk3Y2JhZTU2ODJmZDQxYjJj ODExOTYwHhcNMjUxMjA2MDYwMDQ1WhcNMjUxMjA3MDYwMDQ1WjAzMTEwLwYDVQQD EyhmYjY2NGQxYWU4YzE3MzMyM2Q1OWFmNmIyMjEzOGVmYzlhZDM3MDBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4WK46Ln/0vFnqMbXXWEr/VgHhuMu DazUZyliVCxJKsv3uNf4PTW2Lqbz8dQo4aQR2vbQQDp67OgzouAldIUXtIpz3G5r Qu0fRPhalu7y5tHucDpANeKY26sYypkYMDotFjHkYBr/zYEp/0DSiWVh40ivNYZb e+UZYm6nEukqE2urfNXEuCpZfZn5gqy3QDzB/MNblEAVj6of8sGg2gtCEH/J96X1 aAYUBepl9Dz692qVjoJUx+5XRerOToFGeeI5N/yznqY8e6+F1fM3YKnKnzrklg8j MuWVX+GZl6usI1CCDflTKZ85trxlF0CatoAe7seYEjRMTQiqBpYQ4kt2aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPtmTRrowXMyPVmvayITjvya03ALMB8GA1UdIwQY MBaAFPexQ/ZNUQujEpfLrlaC/UGyyBGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUt MGZiZTJkZTA2MzZkLzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUtMGZiZTJkZTA2MzZk LzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAidVTV8Is zFJPiyy+WVJf7M1BO4guCltKHbZJkLV6a1ejmxWGTPkbbkCv44dd/p3Q1unOhzoh 1+90KmHNmjQEhHldbqXLB5Ryt6JTPmcfqaoRF5NFbcNrD7/M0nV7Cd1mQ7QPlAuG VxkXsjVDmkED3Y3zXLiz7n9C4GZ6/PMysitW1Y+gskmBZkkNY8I9slgHkM0TYiJf F9wcLQeRe0Brjp0j48AFUJXa5SWSqim1NVO2JK5+Nm8LjHC0KtpcLyR29ryWzg+c UjSMtpBICjrb6zUv2h/tr/HL5BJpOS32GeP/CNm/UCp85YT65bI61KQJo4cjfZxK weSLPeGsUR8K0Q== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:12 2025 by rpki-client