This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft File: fexyg377vE6m3dS-lDYZFrTDYto.mft (raw, json) Hash identifier: V2KEI2m0l1B4yNTXhtPKogTEHzBz/Jf0Q7pbYJW6Yxg= Subject key identifier: FE:7C:B5:6C:F6:12:07:37:C1:72:77:68:D5:98:F6:26:42:D7:3E:91 Authority key identifier: 7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA Certificate issuer: /CN=7dec72837efbbc4ea6ddd4be94361916b4c362da Certificate serial: 019B3F488244411045A08EF80CD54331AA86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft Manifest number: 0E71 Signing time: Sun 21 Dec 2025 05:01:15 +0000 Manifest this update: Sun 21 Dec 2025 05:01:15 +0000 Manifest next update: Mon 22 Dec 2025 05:01:15 +0000 Files and hashes: 1: U2BvE4zbzFJTHLJzSmZ1W9x-kCM.roa (hash: CneTmiRYnA+2gIbWw8P2gftXT9GSMXZurQf8UEQYJtM=) 2: fexyg377vE6m3dS-lDYZFrTDYto.crl (hash: Vk6EQAB5VR+HLFP/tS7c40vA9KZ/PCHvp/CC48LUc/o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:48:82:44:41:10:45:a0:8e:f8:0c:d5:43:31:aa:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7dec72837efbbc4ea6ddd4be94361916b4c362da Validity Not Before: Dec 21 05:01:15 2025 GMT Not After : Dec 22 05:01:15 2025 GMT Subject: CN=fe7cb56cf6120737c1727768d598f62642d73e91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:df:cf:d2:90:06:98:83:28:15:24:40:db:68: f3:7b:15:9b:7d:6f:85:00:1e:e5:88:a3:ed:1b:74: 1c:fd:a3:14:33:49:26:cd:39:03:2d:77:74:bc:90: b0:e0:3e:6e:0c:f2:8c:2b:77:6c:32:fd:eb:e5:ed: 17:33:86:3b:b4:32:03:83:57:4e:52:70:e1:50:e5: 03:b6:ef:ce:94:6e:d7:76:22:2f:7a:40:f4:44:7a: 6b:d8:9f:e7:47:cb:a7:2b:61:6f:da:e4:5c:89:10: 1b:44:26:46:e0:55:15:08:0f:ea:67:d6:ee:fe:68: db:aa:67:ce:45:3a:85:e2:7b:55:23:46:34:3e:f4: 6c:76:6e:f3:ab:a3:8f:da:e4:51:d2:be:b4:97:d5: 5f:be:d5:b8:38:fd:b9:03:5a:7d:3f:ad:80:95:44: 0a:83:44:2d:a8:c5:06:9d:d3:66:0b:bf:d7:a4:14: b3:4d:4f:88:3c:4f:43:4b:b5:b5:2c:a2:72:72:e7: e6:54:2e:95:dc:b1:5d:cb:45:28:27:84:57:5d:81: c9:89:0d:cf:85:d6:fb:54:1d:3c:cf:09:e9:8f:84: c7:ad:43:0c:e8:5a:91:8b:1d:a0:d2:b2:68:23:4b: b0:ca:cb:96:3a:8a:ba:1e:00:40:fd:46:81:7a:d8: 70:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:7C:B5:6C:F6:12:07:37:C1:72:77:68:D5:98:F6:26:42:D7:3E:91 X509v3 Authority Key Identifier: keyid:7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:fa:8f:ff:df:40:4c:7e:b1:13:89:00:9a:ef:8a:a8:41:9f: 63:dc:4e:e0:49:a7:95:b5:88:e9:b9:c0:b7:0c:b6:b1:be:63: 74:a5:96:51:63:7a:aa:1c:b7:6f:4f:3e:e2:b2:02:73:47:d4: 24:95:95:6e:9b:f1:8d:43:7e:b2:de:44:78:c6:a9:59:e2:b4: c7:03:40:cd:d8:56:2a:c2:ae:74:46:20:72:90:87:26:15:7d: a6:8f:1a:8f:95:98:2b:6f:3d:e3:a8:be:99:f2:5a:0c:23:ca: c5:37:36:84:96:8f:48:63:15:c7:5e:9b:f8:0a:18:5f:0c:ce: 80:cc:aa:34:e4:a6:42:64:28:92:68:1d:37:71:0e:58:69:4a: 3d:af:f3:f0:9b:c0:33:8f:09:d0:20:38:de:14:f3:b8:02:49: 9a:2d:c4:1e:0e:07:b7:f9:67:8a:34:8d:18:3c:ff:49:24:89: 38:c7:16:f2:7a:29:7d:35:e4:16:bc:a4:74:26:15:52:ec:58: bf:dc:48:2a:c3:a0:9b:42:a1:76:b2:7e:e3:f4:dd:20:94:7b: c0:e0:ee:ca:d5:fc:01:57:bd:a2:08:2d:f7:d0:75:58:70:45: ab:17:ae:84:0e:e0:f3:82:0c:92:c5:44:d0:cf:95:33:fe:3a: 27:1e:cf:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/SIJEQRBFoI74DNVDMaqGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkZWM3MjgzN2VmYmJjNGVhNmRkZDRiZTk0MzYxOTE2YjRj MzYyZGEwHhcNMjUxMjIxMDUwMTE1WhcNMjUxMjIyMDUwMTE1WjAzMTEwLwYDVQQD EyhmZTdjYjU2Y2Y2MTIwNzM3YzE3Mjc3NjhkNTk4ZjYyNjQyZDczZTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnt/P0pAGmIMoFSRA22jzexWbfW+F AB7liKPtG3Qc/aMUM0kmzTkDLXd0vJCw4D5uDPKMK3dsMv3r5e0XM4Y7tDIDg1dO UnDhUOUDtu/OlG7XdiIvekD0RHpr2J/nR8unK2Fv2uRciRAbRCZG4FUVCA/qZ9bu /mjbqmfORTqF4ntVI0Y0PvRsdm7zq6OP2uRR0r60l9VfvtW4OP25A1p9P62AlUQK g0QtqMUGndNmC7/XpBSzTU+IPE9DS7W1LKJycufmVC6V3LFdy0UoJ4RXXYHJiQ3P hdb7VB08zwnpj4THrUMM6FqRix2g0rJoI0uwysuWOoq6HgBA/UaBethw7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP58tWz2Egc3wXJ3aNWY9iZC1z6RMB8GA1UdIwQY MBaAFH3scoN++7xOpt3UvpQ2GRa0w2LaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmV4eWczNzd2RTZtM2RTLWxEWVpGclREWXRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy80NDQ3OGYtZTk4MC00ZTYwLTlkNmUt Mzg2NjE3YTY2NGZlLzEvZmV4eWczNzd2RTZtM2RTLWxEWVpGclREWXRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy80NDQ3OGYtZTk4MC00ZTYwLTlkNmUtMzg2NjE3YTY2NGZl LzEvZmV4eWczNzd2RTZtM2RTLWxEWVpGclREWXRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkfqP/99A TH6xE4kAmu+KqEGfY9xO4EmnlbWI6bnAtwy2sb5jdKWWUWN6qhy3b08+4rICc0fU JJWVbpvxjUN+st5EeMapWeK0xwNAzdhWKsKudEYgcpCHJhV9po8aj5WYK28946i+ mfJaDCPKxTc2hJaPSGMVx16b+AoYXwzOgMyqNOSmQmQokmgdN3EOWGlKPa/z8JvA M48J0CA43hTzuAJJmi3EHg4Ht/lnijSNGDz/SSSJOMcW8nopfTXkFrykdCYVUuxY v9xIKsOgm0KhdrJ+4/TdIJR7wODuytX8AVe9oggt99B1WHBFqxeuhA7g84IMksVE 0M+VM/46Jx7Plw== -----END CERTIFICATE-----Generated at Sun Dec 21 12:13:29 2025 by rpki-client