This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft File: 24P1T0UTHZIHwhWgmKKmvNb_BQs.mft (raw, json) Hash identifier: Iy/TzoLe8n2VLD/Eo+OI2DABDbr6pu0aedNfXTJaVqI= Subject key identifier: C7:03:5A:54:E9:B0:BA:05:95:24:FE:73:B8:D8:66:C1:C5:90:47:0B Authority key identifier: DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B Certificate issuer: /CN=db83f54f45131d9207c215a098a2a6bcd6ff050b Certificate serial: 019B37585F9755B5A93AA55232D41CA12991 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft Manifest number: 0E7F Signing time: Fri 19 Dec 2025 16:01:36 +0000 Manifest this update: Fri 19 Dec 2025 16:01:36 +0000 Manifest next update: Sat 20 Dec 2025 16:01:36 +0000 Files and hashes: 1: 24P1T0UTHZIHwhWgmKKmvNb_BQs.crl (hash: czCVeUKWD8rqgjgGQqrJXIYu+gioZEHIUXrU8i9SG7k=) 2: Qfno-jAugdwOIbQTtdk6Qt14vp0.roa (hash: K+5ZvY56wsKUyUpWT9EX8Ty0xGLLwMy0SXranx21Z8w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:58:5f:97:55:b5:a9:3a:a5:52:32:d4:1c:a1:29:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db83f54f45131d9207c215a098a2a6bcd6ff050b Validity Not Before: Dec 19 16:01:36 2025 GMT Not After : Dec 20 16:01:36 2025 GMT Subject: CN=c7035a54e9b0ba059524fe73b8d866c1c590470b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:88:96:48:72:48:55:3f:06:43:bb:aa:d3:c1: 41:60:21:27:90:96:49:4f:f0:b7:5f:77:0b:31:24: 73:6b:e8:e4:25:e4:d7:6d:b8:35:a4:d8:ed:05:88: be:77:31:7f:57:e7:2e:ae:8a:b2:80:99:7d:80:86: 43:13:c8:5a:4b:00:1b:be:df:06:1e:f4:15:ae:86: e0:e7:34:51:8d:9a:11:53:9b:22:79:bb:f3:34:ad: 79:74:40:55:7f:01:e2:b3:f8:17:d9:fb:c5:6e:39: 1d:cf:0c:8e:28:99:85:5d:82:da:bc:47:9b:02:1e: 93:16:29:b2:58:38:e9:71:ae:ec:41:65:be:68:ba: 0d:91:ca:bb:33:36:a7:08:9d:25:c7:54:e7:aa:5b: d5:42:dd:37:77:15:6b:99:11:ad:10:94:82:e7:41: 89:e7:1f:62:4c:69:a5:71:6b:08:5b:b3:e3:0f:4b: 10:be:a5:41:6b:11:b3:6f:6c:d8:1c:fb:0c:23:46: 1a:fb:e4:84:e6:52:55:7a:fd:ca:b9:6f:00:b9:b2: 13:5e:cf:22:35:18:6b:a9:a6:18:ac:c9:92:bf:3e: eb:90:0a:44:61:71:1e:b7:04:79:49:3a:84:e0:3e: b0:25:f1:a2:69:bc:17:4c:a1:8a:09:f6:13:06:dd: 40:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:03:5A:54:E9:B0:BA:05:95:24:FE:73:B8:D8:66:C1:C5:90:47:0B X509v3 Authority Key Identifier: keyid:DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:8c:69:8e:db:d6:ce:64:98:6c:4e:20:9d:0b:cc:f3:57:e9: f7:db:6c:69:1a:bd:ac:7b:f6:e9:07:a4:1a:5b:da:af:ef:0b: c5:b2:da:64:9e:d3:15:f2:84:0a:fa:ad:ea:f5:12:73:20:bf: a3:d3:c9:c7:f4:ad:6e:06:87:be:dc:a3:3a:0c:2a:33:10:bc: 0f:6a:cd:b4:14:62:a7:b7:d7:98:f4:96:e7:dd:32:24:f6:5e: a6:34:62:4f:78:1e:72:ab:93:d8:b7:b1:5d:ec:85:ce:1d:17: a0:c6:f2:a9:36:72:f6:c9:f3:bd:0a:42:b0:24:3c:53:4d:67: f3:d1:c6:5e:b7:64:2a:6a:ff:bf:18:78:08:b2:2d:f7:17:ef: c6:bb:1b:cd:da:b1:b3:ef:b4:8b:19:39:ca:6b:bc:01:91:42: 34:8c:1c:05:31:57:48:bd:81:9b:4b:a4:74:98:4c:9a:f6:ac: d1:02:8b:49:27:e7:91:d7:16:c9:ca:d2:bc:e1:51:a8:88:9a: cf:14:5a:e4:a7:5b:7d:a4:83:54:29:3a:65:6b:12:a5:86:0f: 5a:d5:24:87:98:b9:aa:e3:0f:d6:57:ad:2e:56:6c:20:46:3c: f7:b3:5a:87:02:78:67:94:7c:12:c9:84:f0:3c:4d:7f:3d:25: 12:95:14:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3WF+XVbWpOqVSMtQcoSmRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiODNmNTRmNDUxMzFkOTIwN2MyMTVhMDk4YTJhNmJjZDZm ZjA1MGIwHhcNMjUxMjE5MTYwMTM2WhcNMjUxMjIwMTYwMTM2WjAzMTEwLwYDVQQD EyhjNzAzNWE1NGU5YjBiYTA1OTUyNGZlNzNiOGQ4NjZjMWM1OTA0NzBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIiWSHJIVT8GQ7uq08FBYCEnkJZJ T/C3X3cLMSRza+jkJeTXbbg1pNjtBYi+dzF/V+curoqygJl9gIZDE8haSwAbvt8G HvQVrobg5zRRjZoRU5siebvzNK15dEBVfwHis/gX2fvFbjkdzwyOKJmFXYLavEeb Ah6TFimyWDjpca7sQWW+aLoNkcq7MzanCJ0lx1TnqlvVQt03dxVrmRGtEJSC50GJ 5x9iTGmlcWsIW7PjD0sQvqVBaxGzb2zYHPsMI0Ya++SE5lJVev3KuW8AubITXs8i NRhrqaYYrMmSvz7rkApEYXEetwR5STqE4D6wJfGiabwXTKGKCfYTBt1AuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMcDWlTpsLoFlST+c7jYZsHFkEcLMB8GA1UdIwQY MBaAFNuD9U9FEx2SB8IVoJiiprzW/wULMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjRQMVQwVVRIWklId2hXZ21LS212TmJfQlFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lNTBjNzAtMGE3MC00NWFjLTlhZDQt MzI2NzY0YTY4Y2ZiLzEvMjRQMVQwVVRIWklId2hXZ21LS212TmJfQlFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9lNTBjNzAtMGE3MC00NWFjLTlhZDQtMzI2NzY0YTY4Y2Zi LzEvMjRQMVQwVVRIWklId2hXZ21LS212TmJfQlFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEIxpjtvW zmSYbE4gnQvM81fp99tsaRq9rHv26QekGlvar+8LxbLaZJ7TFfKECvqt6vUScyC/ o9PJx/StbgaHvtyjOgwqMxC8D2rNtBRip7fXmPSW590yJPZepjRiT3gecquT2Lex XeyFzh0XoMbyqTZy9snzvQpCsCQ8U01n89HGXrdkKmr/vxh4CLIt9xfvxrsbzdqx s++0ixk5ymu8AZFCNIwcBTFXSL2Bm0ukdJhMmvas0QKLSSfnkdcWycrSvOFRqIia zxRa5KdbfaSDVCk6ZWsSpYYPWtUkh5i5quMP1letLlZsIEY897NahwJ4Z5R8EsmE 8DxNfz0lEpUUeg== -----END CERTIFICATE-----Generated at Sat Dec 20 01:14:17 2025 by rpki-client