This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json)
Hash identifier: i1PcnT0+A4Go+HUG/eNuaJ7H+70HIyg0zyZBLFk6j1E=
Subject key identifier: 4E:DF:CB:95:F7:D4:7A:77:D2:9E:E6:F0:8B:91:E0:83:16:24:76:98
Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652
Certificate serial: 019B51BC013C12086142C9853444BBA3F64A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
Manifest number: 1793
Signing time: Wed 24 Dec 2025 19:00:34 +0000
Manifest this update: Wed 24 Dec 2025 19:00:34 +0000
Manifest next update: Thu 25 Dec 2025 19:00:34 +0000
Files and hashes: 1: KrPbG6M_7Mm1PtcHhZI4wknQI1M.roa (hash: tjtqRRJLnNhIS/xM5FVWwtZTtirmBRvu7piQDYGy3mE=)
2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: m10BRM237iaTAxQxqshvaEWcAzDGAZt/tuxcBKD1Bf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Dec 2025 19:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:51:bc:01:3c:12:08:61:42:c9:85:34:44:bb:a3:f6:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652
Validity
Not Before: Dec 24 19:00:34 2025 GMT
Not After : Dec 25 19:00:34 2025 GMT
Subject: CN=4edfcb95f7d47a77d29ee6f08b91e08316247698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:92:5d:71:8f:e1:f6:2b:ed:f8:37:5b:ef:10:
14:99:28:62:3b:9b:97:b2:1c:85:53:53:50:c5:92:
38:da:89:78:24:3a:ba:0b:68:1e:57:84:0c:2f:80:
9d:b4:8e:66:c0:d9:0d:fd:f4:f0:c1:bb:51:4f:b5:
46:f9:e2:cb:52:b0:78:f6:22:9d:ba:53:eb:a2:ba:
e9:05:c7:89:0b:b3:7e:6b:f6:64:58:60:b8:c6:63:
22:09:2f:75:14:fd:4e:ea:e9:99:64:88:ec:1b:d8:
01:62:f2:b2:86:c7:8f:63:22:75:ce:b0:20:f3:21:
37:0b:b3:68:62:0e:05:3b:9d:35:14:67:c7:5b:85:
1f:64:f4:06:95:d8:22:cf:17:5f:4c:e4:25:15:d6:
c3:60:df:52:48:7a:02:d4:64:69:f8:38:a3:f4:ec:
fb:26:b4:fd:2c:1b:e5:e0:d6:94:59:05:98:9a:b2:
fb:58:cd:3e:43:6c:61:49:df:18:1c:af:14:3f:4f:
9c:55:78:64:a8:4e:55:ad:3e:be:0d:fb:c3:fa:88:
63:32:11:06:5d:03:77:be:0e:17:35:db:1f:4d:8a:
4f:c6:fe:da:d2:28:73:e0:33:69:15:51:59:67:e5:
92:fb:16:6c:f4:df:57:c3:d6:a8:cd:4e:5e:04:9f:
1f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:DF:CB:95:F7:D4:7A:77:D2:9E:E6:F0:8B:91:E0:83:16:24:76:98
X509v3 Authority Key Identifier:
keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:a0:e7:64:23:07:81:48:72:2e:fe:5e:d0:ce:33:60:b0:13:
a0:cd:19:1e:f3:3b:7c:5d:0d:b6:ca:c3:93:9e:a1:a6:98:7a:
9e:a4:6f:fe:8f:13:3d:7d:f9:2c:69:84:b6:ab:6c:24:4e:c8:
d2:c9:6e:c2:30:4f:08:25:b8:d8:81:6d:6f:94:ec:6f:bb:ce:
da:f2:55:f4:47:e6:c8:19:d1:fb:07:bb:af:da:7d:5c:77:43:
18:94:2f:1e:a6:1c:ee:bf:72:01:0f:c1:b8:72:76:f2:80:d0:
38:cd:85:1c:e4:85:fd:9c:23:a3:8d:24:51:31:2a:3e:cc:1e:
a6:2e:86:08:5e:25:7f:2d:89:0a:dd:c4:f5:ba:86:78:e6:58:
09:d9:c2:f8:49:e3:e8:50:7e:83:4e:97:e7:1c:63:21:5f:a9:
62:bf:a9:c8:c9:a1:e8:75:55:f9:4e:5f:17:97:55:db:0a:2f:
86:78:04:21:8a:ee:16:57:1b:be:3d:77:88:66:fc:7e:0b:0b:
2a:c6:48:20:f1:2b:0f:83:9b:d9:47:bf:66:42:9c:6f:35:33:
50:61:e9:f9:5b:1a:ec:41:eb:8b:d4:14:7d:49:ab:57:b3:8f:
1f:c0:88:23:20:95:44:ce:46:35:3e:c1:cc:08:e0:3f:bb:96:
0d:7e:1e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 25 05:24:00 2025 by rpki-client