This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft File: n7jb0z1dO8T6Nknt9_kU6uejiF0.mft (raw, json) Hash identifier: SCsHSwbZRcBgVeczaBQqYg0D/2+fTFpJPjlsP5sE3WE= Subject key identifier: DE:1C:E1:B9:A1:6E:CC:58:52:32:22:09:F2:17:50:CD:38:67:79:63 Authority key identifier: 9F:B8:DB:D3:3D:5D:3B:C4:FA:36:49:ED:F7:F9:14:EA:E7:A3:88:5D Certificate issuer: /CN=9fb8dbd33d5d3bc4fa3649edf7f914eae7a3885d Certificate serial: 019B53ABCDD85256568434E0CDDE42D7D8B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft Manifest number: 0508 Signing time: Thu 25 Dec 2025 04:02:06 +0000 Manifest this update: Thu 25 Dec 2025 04:02:06 +0000 Manifest next update: Fri 26 Dec 2025 04:02:06 +0000 Files and hashes: 1: n7jb0z1dO8T6Nknt9_kU6uejiF0.crl (hash: EYWbNxeFrKrcKL9LPrIoNU4VhpRI0AMpZb+rGV8kpuY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:53:ab:cd:d8:52:56:56:84:34:e0:cd:de:42:d7:d8:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9fb8dbd33d5d3bc4fa3649edf7f914eae7a3885d Validity Not Before: Dec 25 04:02:06 2025 GMT Not After : Dec 26 04:02:06 2025 GMT Subject: CN=de1ce1b9a16ecc5852322209f21750cd38677963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4c:7a:91:d1:38:20:2d:93:4c:39:c8:ba:cd: e8:e3:8f:86:cc:82:07:02:90:24:3b:19:7f:8c:f6: 2a:3b:f5:51:da:dc:f0:07:21:53:24:a1:24:d1:d8: 8a:64:fe:03:4f:77:6a:74:5b:46:1d:b3:ec:c3:7d: 45:95:5d:70:85:22:48:09:bc:57:40:30:8a:8e:b9: 92:32:15:7f:80:19:fc:50:2a:16:7a:31:4e:de:e9: a6:38:15:de:fa:be:c5:ea:3b:dd:27:d6:e5:a3:c0: a3:63:2b:47:24:e9:20:f0:b8:a2:a3:ac:0a:16:ff: 67:28:85:62:0c:fd:61:25:12:4d:63:d8:0f:ae:b2: 09:c0:de:05:12:9f:d9:d4:ae:f6:29:69:a0:77:d7: fa:ca:a7:83:b2:71:2a:7d:f4:8a:73:18:27:30:6e: 27:1b:61:d6:50:70:08:e0:56:b0:6c:a2:eb:69:e6: 3e:56:97:8c:77:9c:20:8d:b6:72:aa:81:6c:6a:c2: 54:60:dd:1a:d9:d0:4c:55:0a:55:c6:e3:ff:72:08: 64:6d:0d:ef:1a:eb:50:22:7c:e7:f0:14:38:b0:b1: 53:0a:64:41:9f:bf:21:42:c8:1d:60:d3:67:eb:fe: ae:7d:77:eb:5d:55:c0:1d:2b:b5:7b:3e:f4:28:2e: b8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1C:E1:B9:A1:6E:CC:58:52:32:22:09:F2:17:50:CD:38:67:79:63 X509v3 Authority Key Identifier: keyid:9F:B8:DB:D3:3D:5D:3B:C4:FA:36:49:ED:F7:F9:14:EA:E7:A3:88:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:3c:ec:d1:c5:57:de:29:70:79:a2:fa:be:12:54:7f:92:93: 2d:96:c3:65:26:d1:40:0a:42:b7:57:b8:79:41:16:f1:71:a3: 2e:fb:d5:bd:6c:9e:6f:51:a0:cb:6a:22:a3:a3:af:a1:3c:97: c7:d6:ce:02:16:d1:88:1a:88:d2:9a:67:ea:5b:e3:03:52:85: d8:fe:98:21:85:4e:d7:a3:54:43:8e:0a:d5:1f:89:64:16:a3: 3b:49:0e:2d:8a:d7:24:01:6c:c1:14:74:7a:60:93:2c:50:e5: 2e:eb:a0:a6:fa:76:73:fb:18:9e:af:7b:c6:9e:25:db:18:09: e4:54:ce:38:04:c8:db:ea:24:0f:30:dd:c0:ba:4d:f5:60:55: 17:10:78:a8:20:63:9f:d6:b4:8c:46:37:5e:7b:60:94:db:9d: 6c:ec:47:89:c8:96:7e:67:1d:f0:b5:df:83:68:ac:f3:e5:d4: 14:09:1d:8b:70:a0:d1:f1:a3:61:b8:4c:6a:f6:74:6f:e7:ee: 5e:44:8d:92:6d:93:3b:0d:c7:d5:dc:a0:34:a3:2d:ba:21:02: e1:ee:65:0c:ef:a2:1c:8c:3a:1f:19:07:37:c9:41:b2:3e:60: 9d:f0:e2:f7:48:a9:96:a9:20:0c:9c:84:1e:94:c9:86:cb:d6: 72:e6:0f:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtTq83YUlZWhDTgzd5C19iwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmYjhkYmQzM2Q1ZDNiYzRmYTM2NDllZGY3ZjkxNGVhZTdh Mzg4NWQwHhcNMjUxMjI1MDQwMjA2WhcNMjUxMjI2MDQwMjA2WjAzMTEwLwYDVQQD EyhkZTFjZTFiOWExNmVjYzU4NTIzMjIyMDlmMjE3NTBjZDM4Njc3OTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00x6kdE4IC2TTDnIus3o44+GzIIH ApAkOxl/jPYqO/VR2tzwByFTJKEk0diKZP4DT3dqdFtGHbPsw31FlV1whSJICbxX QDCKjrmSMhV/gBn8UCoWejFO3ummOBXe+r7F6jvdJ9blo8CjYytHJOkg8Liio6wK Fv9nKIViDP1hJRJNY9gPrrIJwN4FEp/Z1K72KWmgd9f6yqeDsnEqffSKcxgnMG4n G2HWUHAI4FawbKLraeY+VpeMd5wgjbZyqoFsasJUYN0a2dBMVQpVxuP/cghkbQ3v GutQInzn8BQ4sLFTCmRBn78hQsgdYNNn6/6ufXfrXVXAHSu1ez70KC64AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN4c4bmhbsxYUjIiCfIXUM04Z3ljMB8GA1UdIwQY MBaAFJ+429M9XTvE+jZJ7ff5FOrno4hdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjdqYjB6MWRPOFQ2TmtudDlfa1U2dWVqaUYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hZDBmOGQtYTVlNy00MGIzLWI4YTgt NzM2MmIxOWRlNzNlLzEvbjdqYjB6MWRPOFQ2TmtudDlfa1U2dWVqaUYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9hZDBmOGQtYTVlNy00MGIzLWI4YTgtNzM2MmIxOWRlNzNl LzEvbjdqYjB6MWRPOFQ2TmtudDlfa1U2dWVqaUYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABTzs0cVX 3ilweaL6vhJUf5KTLZbDZSbRQApCt1e4eUEW8XGjLvvVvWyeb1Ggy2oio6OvoTyX x9bOAhbRiBqI0ppn6lvjA1KF2P6YIYVO16NUQ44K1R+JZBajO0kOLYrXJAFswRR0 emCTLFDlLuugpvp2c/sYnq97xp4l2xgJ5FTOOATI2+okDzDdwLpN9WBVFxB4qCBj n9a0jEY3XntglNudbOxHiciWfmcd8LXfg2is8+XUFAkdi3Cg0fGjYbhMavZ0b+fu XkSNkm2TOw3H1dygNKMtuiEC4e5lDO+iHIw6HxkHN8lBsj5gnfDi90iplqkgDJyE HpTJhsvWcuYPOA== -----END CERTIFICATE-----Generated at Thu Dec 25 13:09:46 2025 by rpki-client