This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json) Hash identifier: i1PcnT0+A4Go+HUG/eNuaJ7H+70HIyg0zyZBLFk6j1E= Subject key identifier: 4E:DF:CB:95:F7:D4:7A:77:D2:9E:E6:F0:8B:91:E0:83:16:24:76:98 Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52 Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652 Certificate serial: 019B51BC013C12086142C9853444BBA3F64A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft Manifest number: 1793 Signing time: Wed 24 Dec 2025 19:00:34 +0000 Manifest this update: Wed 24 Dec 2025 19:00:34 +0000 Manifest next update: Thu 25 Dec 2025 19:00:34 +0000 Files and hashes: 1: KrPbG6M_7Mm1PtcHhZI4wknQI1M.roa (hash: tjtqRRJLnNhIS/xM5FVWwtZTtirmBRvu7piQDYGy3mE=) 2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: m10BRM237iaTAxQxqshvaEWcAzDGAZt/tuxcBKD1Bf0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 19:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:bc:01:3c:12:08:61:42:c9:85:34:44:bb:a3:f6:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652 Validity Not Before: Dec 24 19:00:34 2025 GMT Not After : Dec 25 19:00:34 2025 GMT Subject: CN=4edfcb95f7d47a77d29ee6f08b91e08316247698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:92:5d:71:8f:e1:f6:2b:ed:f8:37:5b:ef:10: 14:99:28:62:3b:9b:97:b2:1c:85:53:53:50:c5:92: 38:da:89:78:24:3a:ba:0b:68:1e:57:84:0c:2f:80: 9d:b4:8e:66:c0:d9:0d:fd:f4:f0:c1:bb:51:4f:b5: 46:f9:e2:cb:52:b0:78:f6:22:9d:ba:53:eb:a2:ba: e9:05:c7:89:0b:b3:7e:6b:f6:64:58:60:b8:c6:63: 22:09:2f:75:14:fd:4e:ea:e9:99:64:88:ec:1b:d8: 01:62:f2:b2:86:c7:8f:63:22:75:ce:b0:20:f3:21: 37:0b:b3:68:62:0e:05:3b:9d:35:14:67:c7:5b:85: 1f:64:f4:06:95:d8:22:cf:17:5f:4c:e4:25:15:d6: c3:60:df:52:48:7a:02:d4:64:69:f8:38:a3:f4:ec: fb:26:b4:fd:2c:1b:e5:e0:d6:94:59:05:98:9a:b2: fb:58:cd:3e:43:6c:61:49:df:18:1c:af:14:3f:4f: 9c:55:78:64:a8:4e:55:ad:3e:be:0d:fb:c3:fa:88: 63:32:11:06:5d:03:77:be:0e:17:35:db:1f:4d:8a: 4f:c6:fe:da:d2:28:73:e0:33:69:15:51:59:67:e5: 92:fb:16:6c:f4:df:57:c3:d6:a8:cd:4e:5e:04:9f: 1f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DF:CB:95:F7:D4:7A:77:D2:9E:E6:F0:8B:91:E0:83:16:24:76:98 X509v3 Authority Key Identifier: keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:a0:e7:64:23:07:81:48:72:2e:fe:5e:d0:ce:33:60:b0:13: a0:cd:19:1e:f3:3b:7c:5d:0d:b6:ca:c3:93:9e:a1:a6:98:7a: 9e:a4:6f:fe:8f:13:3d:7d:f9:2c:69:84:b6:ab:6c:24:4e:c8: d2:c9:6e:c2:30:4f:08:25:b8:d8:81:6d:6f:94:ec:6f:bb:ce: da:f2:55:f4:47:e6:c8:19:d1:fb:07:bb:af:da:7d:5c:77:43: 18:94:2f:1e:a6:1c:ee:bf:72:01:0f:c1:b8:72:76:f2:80:d0: 38:cd:85:1c:e4:85:fd:9c:23:a3:8d:24:51:31:2a:3e:cc:1e: a6:2e:86:08:5e:25:7f:2d:89:0a:dd:c4:f5:ba:86:78:e6:58: 09:d9:c2:f8:49:e3:e8:50:7e:83:4e:97:e7:1c:63:21:5f:a9: 62:bf:a9:c8:c9:a1:e8:75:55:f9:4e:5f:17:97:55:db:0a:2f: 86:78:04:21:8a:ee:16:57:1b:be:3d:77:88:66:fc:7e:0b:0b: 2a:c6:48:20:f1:2b:0f:83:9b:d9:47:bf:66:42:9c:6f:35:33: 50:61:e9:f9:5b:1a:ec:41:eb:8b:d4:14:7d:49:ab:57:b3:8f: 1f:c0:88:23:20:95:44:ce:46:35:3e:c1:cc:08:e0:3f:bb:96: 0d:7e:1e:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvAE8EghhQsmFNES7o/ZKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmYmExMGIwYTY3NmQzZTFmYWI1NjUyODQzMGZhYzg5MWEw ODM2NTIwHhcNMjUxMjI0MTkwMDM0WhcNMjUxMjI1MTkwMDM0WjAzMTEwLwYDVQQD Eyg0ZWRmY2I5NWY3ZDQ3YTc3ZDI5ZWU2ZjA4YjkxZTA4MzE2MjQ3Njk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpJdcY/h9ivt+Ddb7xAUmShiO5uX shyFU1NQxZI42ol4JDq6C2geV4QML4CdtI5mwNkN/fTwwbtRT7VG+eLLUrB49iKd ulProrrpBceJC7N+a/ZkWGC4xmMiCS91FP1O6umZZIjsG9gBYvKyhsePYyJ1zrAg 8yE3C7NoYg4FO501FGfHW4UfZPQGldgizxdfTOQlFdbDYN9SSHoC1GRp+Dij9Oz7 JrT9LBvl4NaUWQWYmrL7WM0+Q2xhSd8YHK8UP0+cVXhkqE5VrT6+DfvD+ohjMhEG XQN3vg4XNdsfTYpPxv7a0ihz4DNpFVFZZ+WS+xZs9N9Xw9aozU5eBJ8faQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE7fy5X31Hp30p7m8IuR4IMWJHaYMB8GA1UdIwQY MBaAFK+6ELCmdtPh+rVlKEMPrIkaCDZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUt ZTAyN2RjYjFkMTg2LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUtZTAyN2RjYjFkMTg2 LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj6DnZCMH gUhyLv5e0M4zYLAToM0ZHvM7fF0NtsrDk56hpph6nqRv/o8TPX35LGmEtqtsJE7I 0sluwjBPCCW42IFtb5Tsb7vO2vJV9EfmyBnR+we7r9p9XHdDGJQvHqYc7r9yAQ/B uHJ28oDQOM2FHOSF/Zwjo40kUTEqPswepi6GCF4lfy2JCt3E9bqGeOZYCdnC+Enj 6FB+g06X5xxjIV+pYr+pyMmh6HVV+U5fF5dV2wovhngEIYruFlcbvj13iGb8fgsL KsZIIPErD4Ob2Ue/ZkKcbzUzUGHp+Vsa7EHri9QUfUmrV7OPH8CIIyCVRM5GNT7B zAjgP7uWDX4egQ== -----END CERTIFICATE-----Generated at Thu Dec 25 05:24:00 2025 by rpki-client