This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft File: n7jb0z1dO8T6Nknt9_kU6uejiF0.mft (raw, json) Hash identifier: M2J3rYp5GaKDDHNnrSN+8zxsVhcsy8eVaavqjMbMKb8= Subject key identifier: 40:76:2A:A5:DE:07:F4:4B:7D:51:62:F7:26:78:AE:E6:AF:F5:80:8C Authority key identifier: 9F:B8:DB:D3:3D:5D:3B:C4:FA:36:49:ED:F7:F9:14:EA:E7:A3:88:5D Certificate issuer: /CN=9fb8dbd33d5d3bc4fa3649edf7f914eae7a3885d Certificate serial: 019B4DE09AFF6F66964A48368ECF6EA73B30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft Manifest number: 0505 Signing time: Wed 24 Dec 2025 01:02:03 +0000 Manifest this update: Wed 24 Dec 2025 01:02:03 +0000 Manifest next update: Thu 25 Dec 2025 01:02:03 +0000 Files and hashes: 1: n7jb0z1dO8T6Nknt9_kU6uejiF0.crl (hash: grLMWVeqsDpuALNyZ7PyYUlOYM8QSiDdVmsEuUP6eaM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 01:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4d:e0:9a:ff:6f:66:96:4a:48:36:8e:cf:6e:a7:3b:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9fb8dbd33d5d3bc4fa3649edf7f914eae7a3885d Validity Not Before: Dec 24 01:02:03 2025 GMT Not After : Dec 25 01:02:03 2025 GMT Subject: CN=40762aa5de07f44b7d5162f72678aee6aff5808c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1b:08:6e:31:14:10:4a:52:43:40:15:eb:e5: aa:e3:c0:c9:38:c7:cc:1d:4b:fe:9d:b7:89:9f:29: 31:32:be:44:1b:ab:0e:e0:eb:74:4a:2c:25:a3:eb: 91:b1:1c:dc:3f:b3:47:84:9a:7f:c7:b1:7d:35:8c: 07:39:89:b5:5d:73:ab:f2:01:17:f5:e7:74:76:78: 6c:7e:e3:ed:03:af:78:5b:f2:bf:fa:08:b3:83:ae: e5:a1:f4:38:ef:91:06:7b:ef:2a:2c:e8:79:30:b8: 0c:7a:74:76:ce:fc:5b:cd:4e:2e:02:b9:8c:74:3a: b8:fa:41:73:23:4e:2e:e7:d1:5b:e9:0c:8d:ae:96: 0b:f9:94:0c:54:fc:d5:2c:13:83:4f:5c:88:73:91: 4d:eb:9c:6e:5a:f5:73:c7:2c:25:da:06:85:65:f7: 6f:e6:ba:22:15:7b:52:0d:81:f9:ac:cf:b8:0f:fa: 79:bf:05:d3:00:10:2a:c9:dc:44:00:14:1f:f9:81: 7d:78:fc:83:48:22:b0:b9:f8:fe:0f:02:b6:b4:16: 44:1a:3e:ff:2c:01:8b:6f:18:29:2b:52:28:1a:b6: da:bb:62:e7:35:fa:6c:f9:ad:04:5f:7e:46:14:7a: 41:89:67:a5:e8:a7:41:83:70:2b:bd:21:d4:e9:e6: 84:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:76:2A:A5:DE:07:F4:4B:7D:51:62:F7:26:78:AE:E6:AF:F5:80:8C X509v3 Authority Key Identifier: keyid:9F:B8:DB:D3:3D:5D:3B:C4:FA:36:49:ED:F7:F9:14:EA:E7:A3:88:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:1c:9f:5b:c7:ba:76:e1:2f:22:5e:1c:90:7d:f1:20:31:d4: 99:6d:e3:46:fd:4c:cf:f3:5c:e1:3d:6c:7a:33:7d:59:ca:cb: 3a:47:ac:13:d6:93:22:75:8e:bf:13:56:6e:27:33:93:7e:44: b0:73:eb:5b:b1:c0:d8:61:99:6e:6d:52:ce:02:a1:30:50:7a: 2c:d8:e4:7c:9f:8e:2c:f0:2f:04:c6:72:82:e1:43:63:df:f4: a7:04:42:fa:8d:00:da:74:28:4e:b6:a3:60:8f:b5:83:65:81: ee:33:93:77:4f:0c:19:b8:52:8c:fb:9c:9a:72:db:1b:d6:0b: 70:21:17:3a:e0:89:60:8f:68:e5:14:cc:a6:b0:56:11:c7:cb: c3:6b:a2:91:16:37:96:fd:6e:60:ee:c5:bd:fc:b9:6c:26:1f: 61:4a:3f:46:d1:ee:71:ee:d6:0a:45:d0:e0:14:a7:19:6f:03: 7b:3c:53:a0:46:26:58:67:90:f4:1f:7d:84:bb:93:d4:d2:84: 0d:5f:4e:e4:20:bf:0d:15:26:ff:27:47:11:c0:63:16:5e:14: 1b:a2:30:46:b5:19:a0:af:dc:c2:35:f3:4c:a5:21:ba:37:8e: 90:6e:77:df:8c:58:6b:5f:51:3b:9b:c2:04:3c:6d:84:23:e6: dd:26:d8:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtN4Jr/b2aWSkg2js9upzswMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmYjhkYmQzM2Q1ZDNiYzRmYTM2NDllZGY3ZjkxNGVhZTdh Mzg4NWQwHhcNMjUxMjI0MDEwMjAzWhcNMjUxMjI1MDEwMjAzWjAzMTEwLwYDVQQD Eyg0MDc2MmFhNWRlMDdmNDRiN2Q1MTYyZjcyNjc4YWVlNmFmZjU4MDhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRsIbjEUEEpSQ0AV6+Wq48DJOMfM HUv+nbeJnykxMr5EG6sO4Ot0Siwlo+uRsRzcP7NHhJp/x7F9NYwHOYm1XXOr8gEX 9ed0dnhsfuPtA694W/K/+gizg67lofQ475EGe+8qLOh5MLgMenR2zvxbzU4uArmM dDq4+kFzI04u59Fb6QyNrpYL+ZQMVPzVLBODT1yIc5FN65xuWvVzxywl2gaFZfdv 5roiFXtSDYH5rM+4D/p5vwXTABAqydxEABQf+YF9ePyDSCKwufj+DwK2tBZEGj7/ LAGLbxgpK1IoGrbau2LnNfps+a0EX35GFHpBiWel6KdBg3ArvSHU6eaErwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEB2KqXeB/RLfVFi9yZ4ruav9YCMMB8GA1UdIwQY MBaAFJ+429M9XTvE+jZJ7ff5FOrno4hdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjdqYjB6MWRPOFQ2TmtudDlfa1U2dWVqaUYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hZDBmOGQtYTVlNy00MGIzLWI4YTgt NzM2MmIxOWRlNzNlLzEvbjdqYjB6MWRPOFQ2TmtudDlfa1U2dWVqaUYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9hZDBmOGQtYTVlNy00MGIzLWI4YTgtNzM2MmIxOWRlNzNl LzEvbjdqYjB6MWRPOFQ2TmtudDlfa1U2dWVqaUYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXByfW8e6 duEvIl4ckH3xIDHUmW3jRv1Mz/Nc4T1sejN9WcrLOkesE9aTInWOvxNWbiczk35E sHPrW7HA2GGZbm1SzgKhMFB6LNjkfJ+OLPAvBMZyguFDY9/0pwRC+o0A2nQoTraj YI+1g2WB7jOTd08MGbhSjPucmnLbG9YLcCEXOuCJYI9o5RTMprBWEcfLw2uikRY3 lv1uYO7Fvfy5bCYfYUo/RtHuce7WCkXQ4BSnGW8DezxToEYmWGeQ9B99hLuT1NKE DV9O5CC/DRUm/ydHEcBjFl4UG6IwRrUZoK/cwjXzTKUhujeOkG5334xYa19RO5vC BDxthCPm3SbYYA== -----END CERTIFICATE-----Generated at Wed Dec 24 10:08:47 2025 by rpki-client