This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json) Hash identifier: Uf5gklQhXs+X6GbwepXc6dNzq4T1i4XYQAFowv+CfEE= Subject key identifier: D9:F0:97:E2:6A:2E:E7:14:2D:9A:04:3B:88:A0:4C:18:A7:0C:EB:12 Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd Certificate serial: 019B481504BB71FC60B2824F720B4688F12B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft Manifest number: 1795 Signing time: Mon 22 Dec 2025 22:01:35 +0000 Manifest this update: Mon 22 Dec 2025 22:01:35 +0000 Manifest next update: Tue 23 Dec 2025 22:01:35 +0000 Files and hashes: 1: IzqBcQZCo9AKRsEzHD5ErtBM_K0.roa (hash: 0bRYcwVRhwMrT0GU5K4Qo3lVJkdxZF0F6kEv8Ur6Vac=) 2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: +MDVUM4jWX/+3hSy5UEPP0ZykyGB+3mbtpnk7bcQ/m4=) 3: sHSL6KeWD6muqNxIvHz053KucUs.asa (hash: Dii9+VgXhOO/o5gmGbq2K3cC3ucJXOQeg7Dp4dNWbSE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 22:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:15:04:bb:71:fc:60:b2:82:4f:72:0b:46:88:f1:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd Validity Not Before: Dec 22 22:01:35 2025 GMT Not After : Dec 23 22:01:35 2025 GMT Subject: CN=d9f097e26a2ee7142d9a043b88a04c18a70ceb12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c0:e5:8e:52:61:7b:7b:58:10:3a:d2:ea:fa: bc:d7:b5:0c:4e:9f:91:39:16:31:e2:e0:f9:be:75: 84:bf:71:ff:29:eb:a3:3a:08:1f:40:a1:0b:90:cf: ce:02:8a:d1:25:c9:ad:4c:7c:c2:f1:33:2f:25:76: 6f:8a:8d:5d:33:c2:07:f7:8f:26:52:e8:b9:91:a0: 58:78:17:db:93:7b:6f:a2:e0:e9:51:8c:b4:6e:30: 26:ac:03:9e:5c:da:b7:d1:a5:19:86:51:08:c7:a3: aa:ce:80:0e:bd:85:0d:bc:81:54:dc:83:63:26:59: d6:fd:86:51:70:a6:e3:69:e8:fe:4b:f3:04:01:90: 2b:4c:0f:f9:05:1c:4a:8b:e2:19:7e:d7:d2:aa:07: 7f:ad:4d:6e:77:37:2c:74:c8:83:28:06:e8:c5:0a: 02:32:84:63:70:51:7e:70:a8:02:48:53:c4:0c:9d: 46:69:86:56:43:c4:c5:b7:80:7d:fc:33:6b:4e:dd: 61:de:63:ca:e7:e8:8e:5d:75:99:9e:27:00:5b:46: f3:a3:55:50:a0:c7:3c:ce:2a:2e:0c:ac:c2:95:76: 35:eb:d7:f9:e2:ab:21:2a:6f:20:a7:6d:0b:2b:17: 67:00:74:45:84:f5:65:55:53:4d:e2:cf:ca:08:11: ef:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F0:97:E2:6A:2E:E7:14:2D:9A:04:3B:88:A0:4C:18:A7:0C:EB:12 X509v3 Authority Key Identifier: keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:73:d2:f7:a9:e6:f5:e8:17:95:76:26:a8:31:cd:92:66:60: 43:be:aa:24:6d:19:90:ab:93:db:80:43:8e:8e:e9:6c:b4:52: c5:87:5b:03:9e:0c:94:d5:fb:c5:b8:20:ff:2c:7c:a4:25:f3: 93:5e:4b:68:44:d1:0a:97:6e:95:20:90:f7:e3:55:1e:80:29: 36:96:85:55:75:79:85:3f:76:c1:bd:f0:69:c2:73:d7:f6:96: e5:b7:25:4d:32:96:c0:68:56:68:dd:63:00:eb:f2:eb:05:96: 2d:d7:11:39:90:e4:83:bf:9c:37:22:8c:23:89:05:db:77:f9: 7d:ac:06:73:f5:7b:86:62:98:d7:de:38:3a:ce:b7:32:ac:97: d2:4e:ea:ad:87:68:00:71:9e:85:07:e3:e9:a5:79:b0:53:ac: ba:c5:cd:41:aa:69:b9:42:26:1c:db:03:27:f6:6b:ac:ef:06: 11:4f:e3:9f:b8:7a:dc:ba:34:1c:44:9c:7b:20:02:fb:72:49: 51:3f:10:5c:20:ef:53:a5:d0:fd:1a:b8:8c:a5:06:d9:8c:d9: 7b:75:a9:85:59:82:e6:0d:6b:33:06:7d:82:a3:4f:c9:93:27: 77:24:59:2e:6e:4b:ca:6b:bc:fd:91:0c:0c:d2:c9:a4:46:bd: e2:6d:7e:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIFQS7cfxgsoJPcgtGiPErMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYjZmNTRlYTliMTVhOGJkNGYzMzgyNTM4NmNiMjc3YjAz NDM5ZGQwHhcNMjUxMjIyMjIwMTM1WhcNMjUxMjIzMjIwMTM1WjAzMTEwLwYDVQQD EyhkOWYwOTdlMjZhMmVlNzE0MmQ5YTA0M2I4OGEwNGMxOGE3MGNlYjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7MDljlJhe3tYEDrS6vq817UMTp+R ORYx4uD5vnWEv3H/KeujOggfQKELkM/OAorRJcmtTHzC8TMvJXZvio1dM8IH948m Uui5kaBYeBfbk3tvouDpUYy0bjAmrAOeXNq30aUZhlEIx6OqzoAOvYUNvIFU3INj JlnW/YZRcKbjaej+S/MEAZArTA/5BRxKi+IZftfSqgd/rU1udzcsdMiDKAboxQoC MoRjcFF+cKgCSFPEDJ1GaYZWQ8TFt4B9/DNrTt1h3mPK5+iOXXWZnicAW0bzo1VQ oMc8ziouDKzClXY169f54qshKm8gp20LKxdnAHRFhPVlVVNN4s/KCBHvxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNnwl+JqLucULZoEO4igTBinDOsSMB8GA1UdIwQY MBaAFLO29U6psVqL1PM4JThssnewNDndMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczdiMVRxbXhXb3ZVOHpnbE9HeXlkN0EwT2QwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi84ZGU0YTMtOGQ1YS00NmIxLWE3MzUt MmY0NmU5MzE3Y2M2LzEvczdiMVRxbXhXb3ZVOHpnbE9HeXlkN0EwT2QwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi84ZGU0YTMtOGQ1YS00NmIxLWE3MzUtMmY0NmU5MzE3Y2M2 LzEvczdiMVRxbXhXb3ZVOHpnbE9HeXlkN0EwT2QwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuXPS96nm 9egXlXYmqDHNkmZgQ76qJG0ZkKuT24BDjo7pbLRSxYdbA54MlNX7xbgg/yx8pCXz k15LaETRCpdulSCQ9+NVHoApNpaFVXV5hT92wb3wacJz1/aW5bclTTKWwGhWaN1j AOvy6wWWLdcROZDkg7+cNyKMI4kF23f5fawGc/V7hmKY1944Os63MqyX0k7qrYdo AHGehQfj6aV5sFOsusXNQappuUImHNsDJ/ZrrO8GEU/jn7h63Lo0HESceyAC+3JJ UT8QXCDvU6XQ/Rq4jKUG2YzZe3WphVmC5g1rMwZ9gqNPyZMndyRZLm5Lymu8/ZEM DNLJpEa94m1+Ew== -----END CERTIFICATE-----Generated at Tue Dec 23 03:06:54 2025 by rpki-client