This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json) Hash identifier: YMZxWt9ZDyuKF5KZs1YG3nhIbFiYz6nC0yNrcxpU2g4= Subject key identifier: EF:0D:F7:92:88:69:78:F8:A8:7E:B1:A4:82:5D:81:AB:A2:0A:19:16 Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03 Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03 Certificate serial: 019B3FB66ABAEB7FBE14F398C837F358503E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft Manifest number: 03A3 Signing time: Sun 21 Dec 2025 07:01:18 +0000 Manifest this update: Sun 21 Dec 2025 07:01:18 +0000 Manifest next update: Mon 22 Dec 2025 07:01:18 +0000 Files and hashes: 1: 4stdDE5Ol23RnfTsQDEl2PLTvqY.roa (hash: H7ciCHF9IxH4VLrZphwDQeEj42rPy6UE+yWgXUd3mSE=) 2: KOqyp8DhhZD3JH6K0j1zl6aQKBk.roa (hash: CehIyyDTNH2XPwU/dxmXRsBi9Cc/OKe00kUQqRs/maU=) 3: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: vJaGoYeLvM+yAd7Be+6UOBiCnwz4lZdWhpB7yCPPdZU=) 4: YCOxnrJZzRohN18jKfSDMAOgQUI.roa (hash: /PrVwAluwlwegI08mKBtFGWqwyRlaqAj4wNKvuzMcSU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:b6:6a:ba:eb:7f:be:14:f3:98:c8:37:f3:58:50:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03 Validity Not Before: Dec 21 07:01:18 2025 GMT Not After : Dec 22 07:01:18 2025 GMT Subject: CN=ef0df792886978f8a87eb1a4825d81aba20a1916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:70:a2:82:75:d5:12:ef:28:fd:7e:76:fa:57: 6c:75:e3:23:6e:a7:44:40:42:ea:aa:e6:98:19:81: 09:4d:78:db:ef:4a:62:92:19:96:51:48:c5:dd:42: a1:6b:85:61:8a:88:d9:7f:37:a0:2d:41:45:ab:f2: 75:0b:c9:2a:68:28:eb:96:9b:6a:27:30:89:08:36: 58:25:c2:c9:d2:44:c4:ab:03:7d:64:a0:23:a2:2f: 68:9b:4a:07:23:70:19:39:09:67:37:fa:1c:fd:84: c0:b7:b0:08:e8:37:42:fd:70:22:16:06:1e:37:4b: fb:d2:6f:06:5f:75:67:6a:b8:56:7c:ba:49:67:02: 9d:d5:e6:f8:d9:59:78:19:3e:35:ef:d4:6f:9b:f3: 06:e3:df:c0:38:80:ad:0b:50:48:a0:f1:5e:31:6f: 2a:16:64:a3:af:c9:a0:a2:75:a8:0d:cf:5c:9b:1e: c2:4c:98:0d:64:d9:3f:da:51:13:4d:bc:3e:c4:98: 2a:02:d4:33:6d:de:49:be:ec:ee:7d:f2:5e:55:2c: 83:f1:a8:10:0c:6b:18:ee:6b:93:23:bb:c3:93:0d: ef:83:88:90:9a:5e:ff:26:69:71:78:f0:a9:29:e6: d8:22:c3:70:0a:86:0a:e5:6b:a0:52:e0:75:ef:1d: 8c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0D:F7:92:88:69:78:F8:A8:7E:B1:A4:82:5D:81:AB:A2:0A:19:16 X509v3 Authority Key Identifier: keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:f0:1b:ee:f5:d8:3d:df:1b:db:2e:af:f6:ab:30:ff:3e:4b: fa:13:2c:df:b7:68:33:5b:e6:2f:e4:ae:c8:68:dc:65:1b:7c: ed:13:38:e7:28:5f:75:a8:64:1e:7c:0d:9d:38:d9:a2:27:48: 82:0f:ac:84:3d:a5:bb:e7:c1:83:74:fc:91:e4:b9:88:78:18: 0b:b2:d5:b0:46:ba:b1:9c:c6:65:a3:03:2d:03:11:07:15:1f: 1e:47:ad:94:ea:48:61:84:a0:42:dd:04:85:db:6f:5f:2a:68: 23:35:81:75:19:05:23:61:6c:2e:81:32:b9:24:95:11:ba:73: 53:6b:76:1d:7d:3c:db:67:95:4a:ef:cd:a9:97:10:ff:8f:e6: 3e:b5:8d:37:52:32:c8:c3:f7:cb:8c:1f:92:60:e8:a5:be:c6: 74:0d:08:c7:23:76:80:70:5e:dc:22:34:34:d0:ad:0e:0b:06: ad:e5:71:69:b1:2e:e9:04:52:33:4b:90:82:cf:ae:69:4c:0d: 26:c0:66:f6:28:69:f4:35:75:eb:dd:5d:a2:ca:0b:43:5d:bc: 8a:e2:58:58:df:b8:7f:cf:37:35:64:c8:53:38:e5:17:b3:3e: 1e:93:20:fd:b9:d4:b7:c2:d2:50:16:07:6f:a2:ae:51:10:e7: b1:17:91:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/tmq663++FPOYyDfzWFA+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzYjY1YThiYWViYTRmZjYyMTQ5MmViZWU2ZmMxZTg4YWRi MjFiMDMwHhcNMjUxMjIxMDcwMTE4WhcNMjUxMjIyMDcwMTE4WjAzMTEwLwYDVQQD EyhlZjBkZjc5Mjg4Njk3OGY4YTg3ZWIxYTQ4MjVkODFhYmEyMGExOTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3CignXVEu8o/X52+ldsdeMjbqdE QELqquaYGYEJTXjb70pikhmWUUjF3UKha4VhiojZfzegLUFFq/J1C8kqaCjrlptq JzCJCDZYJcLJ0kTEqwN9ZKAjoi9om0oHI3AZOQlnN/oc/YTAt7AI6DdC/XAiFgYe N0v70m8GX3VnarhWfLpJZwKd1eb42Vl4GT4179Rvm/MG49/AOICtC1BIoPFeMW8q FmSjr8mgonWoDc9cmx7CTJgNZNk/2lETTbw+xJgqAtQzbd5JvuzuffJeVSyD8agQ DGsY7muTI7vDkw3vg4iQml7/JmlxePCpKebYIsNwCoYK5WugUuB17x2MLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO8N95KIaXj4qH6xpIJdgauiChkWMB8GA1UdIwQY MBaAFDO2Wouuuk/2IUkuvub8HoitshsDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hYWJjNmMtMDQ1Ni00OTM1LWE0Njkt ZDU0NzE4NTUxMmRlLzEvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9hYWJjNmMtMDQ1Ni00OTM1LWE0NjktZDU0NzE4NTUxMmRl LzEvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYvAb7vXY Pd8b2y6v9qsw/z5L+hMs37doM1vmL+SuyGjcZRt87RM45yhfdahkHnwNnTjZoidI gg+shD2lu+fBg3T8keS5iHgYC7LVsEa6sZzGZaMDLQMRBxUfHketlOpIYYSgQt0E hdtvXypoIzWBdRkFI2FsLoEyuSSVEbpzU2t2HX0822eVSu/NqZcQ/4/mPrWNN1Iy yMP3y4wfkmDopb7GdA0IxyN2gHBe3CI0NNCtDgsGreVxabEu6QRSM0uQgs+uaUwN JsBm9ihp9DV1691dosoLQ128iuJYWN+4f883NWTIUzjlF7M+HpMg/bnUt8LSUBYH b6KuURDnsReRgQ== -----END CERTIFICATE-----Generated at Sun Dec 21 13:41:04 2025 by rpki-client