This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json) Hash identifier: mjIm4lrya+OxWaO1nHmQVgZoR0f9YqkUtNrRXWi4QMM= Subject key identifier: 91:06:4A:F6:E5:B6:8B:2E:C1:05:B3:55:A8:55:D9:82:C4:9E:AC:42 Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22 Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22 Certificate serial: 019B2EFA3F2198BF43E409463472D3CA8588 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft Manifest number: 1544 Signing time: Thu 18 Dec 2025 01:01:50 +0000 Manifest this update: Thu 18 Dec 2025 01:01:50 +0000 Manifest next update: Fri 19 Dec 2025 01:01:50 +0000 Files and hashes: 1: hzoYOWaigOBhVgvLojtyU6Dx7N4.roa (hash: T/q+Lugm+i1exm5XgQ+QByz6sPtwXurIWQU3uySV9uU=) 2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: UnnnELNLwQvSM+2O13oy12DIsC2tuUk3vuantfDcerA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:fa:3f:21:98:bf:43:e4:09:46:34:72:d3:ca:85:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22 Validity Not Before: Dec 18 01:01:50 2025 GMT Not After : Dec 19 01:01:50 2025 GMT Subject: CN=91064af6e5b68b2ec105b355a855d982c49eac42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0c:44:9d:27:09:31:5d:73:58:e6:17:2c:da: d0:bb:1c:db:b1:a4:30:14:24:6f:9b:60:f2:5a:fa: 10:64:27:b5:df:c2:e4:ac:71:58:3d:ff:ee:4b:8f: 92:73:80:01:22:f3:3a:e5:2d:bc:94:12:8a:5d:c7: ad:ef:48:5d:49:4f:8e:9d:ac:55:bc:e0:70:97:4c: 04:61:6a:ac:c7:f7:37:04:5a:6b:00:c1:4e:25:e4: e1:fb:cc:bd:0f:dd:dd:ff:a9:2e:8d:99:5f:64:ef: 6b:48:c9:19:f0:d9:33:02:d1:1a:47:f5:9a:2e:2d: 04:50:1a:58:6f:99:4b:da:00:e5:59:d0:4e:9f:41: f4:5d:91:7c:2a:e4:fa:6b:8e:8c:c5:c6:83:8a:86: 3d:9a:0e:b8:7a:26:b8:31:84:52:67:4c:5c:48:73: 53:64:07:7c:88:7e:38:65:4c:ab:fd:7c:04:6f:49: 1d:f1:b2:fa:2e:e3:37:02:0c:09:3f:c7:a2:a2:7f: 5c:49:88:6e:07:80:1f:4d:1b:0e:1f:1a:82:51:2f: 30:84:89:10:5a:6e:ac:cc:86:e3:d3:bd:4d:d9:e2: 04:7f:17:3c:fd:e9:93:0c:15:72:be:3d:af:4f:0b: 39:a3:62:08:5f:76:9c:9e:ff:9a:92:40:ad:a2:96: 4d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:06:4A:F6:E5:B6:8B:2E:C1:05:B3:55:A8:55:D9:82:C4:9E:AC:42 X509v3 Authority Key Identifier: keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:30:23:97:01:ad:d2:00:aa:ce:43:a4:64:9f:4f:60:33:9e: 51:72:50:88:50:8f:15:44:cf:70:38:c6:ce:b2:62:73:eb:2f: c4:2e:dc:4d:e8:9a:2c:df:dc:c4:33:e5:b9:57:cc:8b:9c:67: f5:dc:3d:98:13:e2:83:99:a7:40:60:12:12:00:91:a0:19:00: 4b:29:1c:ce:f6:17:59:21:53:08:0d:5a:dd:6c:4e:0a:d6:77: 6e:87:97:a5:72:49:46:3c:cf:5e:69:bf:73:d5:c3:6a:81:46: 28:8a:b0:47:5c:e8:72:64:de:ed:32:c4:5a:df:8b:60:d6:15: 2b:8f:fc:e3:31:06:7c:f4:6c:51:ae:26:9a:93:54:fe:b4:7b: aa:bc:e1:b3:7b:d3:ea:3e:98:a1:c5:85:2c:9b:09:8a:52:f5: a0:55:85:9c:9c:ee:52:d8:7b:22:17:31:08:7d:59:3d:0c:70: 54:be:00:ef:ea:c6:ea:71:ae:94:5a:a6:13:a2:35:9a:bc:8e: cb:ad:94:d5:5f:4b:c6:62:7c:d8:38:b5:1c:61:94:ca:a7:4e: 35:96:61:82:d9:53:5a:74:c6:a6:cf:1f:74:04:60:da:2f:45: fb:58:d8:0c:1e:b8:67:c7:d4:94:02:2c:bf:ac:d8:de:c8:6e: 46:bb:ae:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+j8hmL9D5AlGNHLTyoWIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYjZiNmQ3ZTVkZDBjMzI4ZjZjZWFmN2U5ZTljMGQxY2I4 YzFkMjIwHhcNMjUxMjE4MDEwMTUwWhcNMjUxMjE5MDEwMTUwWjAzMTEwLwYDVQQD Eyg5MTA2NGFmNmU1YjY4YjJlYzEwNWIzNTVhODU1ZDk4MmM0OWVhYzQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgxEnScJMV1zWOYXLNrQuxzbsaQw FCRvm2DyWvoQZCe138LkrHFYPf/uS4+Sc4ABIvM65S28lBKKXcet70hdSU+OnaxV vOBwl0wEYWqsx/c3BFprAMFOJeTh+8y9D93d/6kujZlfZO9rSMkZ8NkzAtEaR/Wa Li0EUBpYb5lL2gDlWdBOn0H0XZF8KuT6a46MxcaDioY9mg64eia4MYRSZ0xcSHNT ZAd8iH44ZUyr/XwEb0kd8bL6LuM3AgwJP8eion9cSYhuB4AfTRsOHxqCUS8whIkQ Wm6szIbj071N2eIEfxc8/emTDBVyvj2vTws5o2IIX3acnv+akkCtopZNeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJEGSvbltosuwQWzVahV2YLEnqxCMB8GA1UdIwQY MBaAFLO2ttfl3Qwyj2zq9+npwNHLjB0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczdhMjEtWGREREtQYk9yMzZlbkEwY3VNSFNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yZDc5NDYtZGI4Yi00YTU3LWE3MGIt MjA3MTU0NmI3MGY5LzEvczdhMjEtWGREREtQYk9yMzZlbkEwY3VNSFNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8yZDc5NDYtZGI4Yi00YTU3LWE3MGItMjA3MTU0NmI3MGY5 LzEvczdhMjEtWGREREtQYk9yMzZlbkEwY3VNSFNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeDAjlwGt 0gCqzkOkZJ9PYDOeUXJQiFCPFUTPcDjGzrJic+svxC7cTeiaLN/cxDPluVfMi5xn 9dw9mBPig5mnQGASEgCRoBkASykczvYXWSFTCA1a3WxOCtZ3boeXpXJJRjzPXmm/ c9XDaoFGKIqwR1zocmTe7TLEWt+LYNYVK4/84zEGfPRsUa4mmpNU/rR7qrzhs3vT 6j6YocWFLJsJilL1oFWFnJzuUth7IhcxCH1ZPQxwVL4A7+rG6nGulFqmE6I1mryO y62U1V9LxmJ82Di1HGGUyqdONZZhgtlTWnTGps8fdARg2i9F+1jYDB64Z8fUlAIs v6zY3shuRruuew== -----END CERTIFICATE-----Generated at Thu Dec 18 06:52:11 2025 by rpki-client