This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft File: 7ix0WZPMS28UcK6rRhTwhdSuQKk.mft (raw, json) Hash identifier: oILDleBAOIByTS/YiwJmGnAg7gNPYwW6hSmDyyYOeRg= Subject key identifier: D2:E3:6E:2A:98:08:CB:59:BD:38:03:10:A8:BE:5F:02:9D:8D:4D:CB Authority key identifier: EE:2C:74:59:93:CC:4B:6F:14:70:AE:AB:46:14:F0:85:D4:AE:40:A9 Certificate issuer: /CN=ee2c745993cc4b6f1470aeab4614f085d4ae40a9 Certificate serial: 019B6F8FD7A7F6C6C94CA4F8B139F2C00CB3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft Manifest number: 1435 Signing time: Tue 30 Dec 2025 14:00:56 +0000 Manifest this update: Tue 30 Dec 2025 14:00:56 +0000 Manifest next update: Wed 31 Dec 2025 14:00:56 +0000 Files and hashes: 1: 7ix0WZPMS28UcK6rRhTwhdSuQKk.crl (hash: OJ6QwkopFz/IiOzmmhbRFK7024kiwfvz3e10mCcpSH4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.crl rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6f:8f:d7:a7:f6:c6:c9:4c:a4:f8:b1:39:f2:c0:0c:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee2c745993cc4b6f1470aeab4614f085d4ae40a9 Validity Not Before: Dec 30 14:00:56 2025 GMT Not After : Dec 31 14:00:56 2025 GMT Subject: CN=d2e36e2a9808cb59bd380310a8be5f029d8d4dcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:df:e3:79:85:9e:98:9f:29:d2:94:3d:53:46: 5e:da:9e:0e:48:4f:79:84:af:2d:61:7c:73:3e:05: a8:f0:e0:57:95:e0:38:74:00:7c:de:5a:18:d9:48: 98:7c:36:d5:ae:c9:88:d8:8a:f5:06:33:fc:42:c2: eb:3c:62:17:4d:f2:9e:d8:14:1d:ea:9a:83:b2:1f: d4:2a:a0:2e:36:18:80:0e:6b:a6:47:f3:89:99:7f: 12:df:b2:6e:7c:9f:b0:28:48:52:5b:5a:ac:0a:d9: fe:da:53:a7:9c:ce:fe:82:27:2b:67:01:66:f1:46: 20:b7:75:f6:d5:ca:7a:56:a5:2b:b8:be:23:25:6e: 36:1e:d2:cf:5d:19:f2:d4:1a:e3:ae:db:3f:38:16: dd:87:06:11:d0:aa:e6:9a:6c:c9:67:b8:33:41:58: f8:84:0f:2e:7d:32:70:8e:3d:cb:1a:4b:2d:c5:1d: 18:a1:32:de:5b:89:6f:af:29:16:4c:03:e7:cc:5f: c5:dd:45:73:8a:74:40:6b:94:fd:65:28:2f:97:77: 24:29:7f:39:a7:35:a7:84:78:a5:70:2e:9c:a5:09: ef:c4:b4:1c:c7:76:1a:a8:51:c2:61:1e:be:cd:3d: e5:03:e6:b4:6b:a4:58:03:e9:41:f5:e4:12:c9:0e: a1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E3:6E:2A:98:08:CB:59:BD:38:03:10:A8:BE:5F:02:9D:8D:4D:CB X509v3 Authority Key Identifier: keyid:EE:2C:74:59:93:CC:4B:6F:14:70:AE:AB:46:14:F0:85:D4:AE:40:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:74:80:b0:3e:ec:3e:e4:a4:54:7c:e2:84:24:e3:d7:10:26: 53:d8:ad:39:36:24:69:85:47:17:55:8d:d7:37:9a:e9:9b:70: c9:18:c6:31:3f:22:8c:36:b6:1c:5a:f0:c3:74:78:cb:f8:45: 3e:75:ba:50:43:60:f6:4f:41:10:db:7b:52:e7:45:59:11:fe: 55:45:b8:35:56:0e:5a:d1:8f:0d:83:6a:bc:f3:4c:04:0a:6d: 02:5e:75:92:95:7d:2e:c6:fe:25:86:09:51:d5:f1:a9:4c:e9: 3b:99:57:bf:fd:bc:bc:09:c1:43:8b:07:9f:5e:a2:02:e9:c3: 4a:8b:85:c3:8c:33:01:a3:1f:2c:51:74:46:8c:eb:77:fd:d6: 9f:98:eb:d1:7e:3e:96:75:2f:08:82:a6:81:ff:c6:0d:49:ba: 7f:82:6c:29:10:82:75:a2:0c:ec:ba:b6:5c:3e:c3:87:98:2c: f3:22:a1:ca:34:d7:ca:d8:f0:b8:55:b6:d1:fb:38:d4:20:27: ee:22:f6:1e:2d:8e:01:07:aa:bd:1e:44:5d:b1:a1:c2:26:a5: a2:cd:8c:79:d4:57:ce:1e:9a:f6:d5:96:d7:b6:4f:e8:e9:54: 1c:7e:8a:52:4b:7b:f5:d4:c8:b4:39:82:21:c1:dc:9e:90:24: 02:6b:40:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtvj9en9sbJTKT4sTnywAyzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlMmM3NDU5OTNjYzRiNmYxNDcwYWVhYjQ2MTRmMDg1ZDRh ZTQwYTkwHhcNMjUxMjMwMTQwMDU2WhcNMjUxMjMxMTQwMDU2WjAzMTEwLwYDVQQD EyhkMmUzNmUyYTk4MDhjYjU5YmQzODAzMTBhOGJlNWYwMjlkOGQ0ZGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3d/jeYWemJ8p0pQ9U0Ze2p4OSE95 hK8tYXxzPgWo8OBXleA4dAB83loY2UiYfDbVrsmI2Ir1BjP8QsLrPGIXTfKe2BQd 6pqDsh/UKqAuNhiADmumR/OJmX8S37JufJ+wKEhSW1qsCtn+2lOnnM7+gicrZwFm 8UYgt3X21cp6VqUruL4jJW42HtLPXRny1Brjrts/OBbdhwYR0KrmmmzJZ7gzQVj4 hA8ufTJwjj3LGkstxR0YoTLeW4lvrykWTAPnzF/F3UVzinRAa5T9ZSgvl3ckKX85 pzWnhHilcC6cpQnvxLQcx3YaqFHCYR6+zT3lA+a0a6RYA+lB9eQSyQ6hxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNLjbiqYCMtZvTgDEKi+XwKdjU3LMB8GA1UdIwQY MBaAFO4sdFmTzEtvFHCuq0YU8IXUrkCpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2l4MFdaUE1TMjhVY0s2clJoVHdoZFN1UUtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8yZGI0ZDAtOTg4Mi00NTYzLWE1Nzgt NzcyYzkxNzdkNTI5LzEvN2l4MFdaUE1TMjhVY0s2clJoVHdoZFN1UUtrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8yZGI0ZDAtOTg4Mi00NTYzLWE1NzgtNzcyYzkxNzdkNTI5 LzEvN2l4MFdaUE1TMjhVY0s2clJoVHdoZFN1UUtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk3SAsD7s PuSkVHzihCTj1xAmU9itOTYkaYVHF1WN1zea6ZtwyRjGMT8ijDa2HFrww3R4y/hF PnW6UENg9k9BENt7UudFWRH+VUW4NVYOWtGPDYNqvPNMBAptAl51kpV9Lsb+JYYJ UdXxqUzpO5lXv/28vAnBQ4sHn16iAunDSouFw4wzAaMfLFF0Rozrd/3Wn5jr0X4+ lnUvCIKmgf/GDUm6f4JsKRCCdaIM7Lq2XD7Dh5gs8yKhyjTXytjwuFW20fs41CAn 7iL2Hi2OAQeqvR5EXbGhwialos2MedRXzh6a9tWW17ZP6OlUHH6KUkt79dTItDmC IcHcnpAkAmtASw== -----END CERTIFICATE-----Generated at Tue Dec 30 18:41:01 2025 by rpki-client