This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft File: rx7uIsUBU2MRinHSapRj3JN0uig.mft (raw, json) Hash identifier: vrLP43hC0EdZA5IbWNgUOw/vXNIvtzEik4UYIuIxiFk= Subject key identifier: DA:C4:17:FF:C7:E6:18:50:5C:30:48:A9:05:C5:2F:5D:4A:0B:21:F8 Authority key identifier: AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28 Certificate issuer: /CN=af1eee22c5015363118a71d26a9463dc9374ba28 Certificate serial: 019B3B34D34484F42A6AB8F93A618EDDA58D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft Manifest number: 0B48 Signing time: Sat 20 Dec 2025 10:01:16 +0000 Manifest this update: Sat 20 Dec 2025 10:01:16 +0000 Manifest next update: Sun 21 Dec 2025 10:01:16 +0000 Files and hashes: 1: LUZuaBg79dIsS49OjD0lOYRx6WI.roa (hash: v0D4l90748oOxXUPlzJQ4Ifkz4PFxH9/jO6hptgWgns=) 2: rx7uIsUBU2MRinHSapRj3JN0uig.crl (hash: 8C2r5QoARIEgbm+1Q6iO1gno8RxKCik4HdCtqlmdREI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:34:d3:44:84:f4:2a:6a:b8:f9:3a:61:8e:dd:a5:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af1eee22c5015363118a71d26a9463dc9374ba28 Validity Not Before: Dec 20 10:01:16 2025 GMT Not After : Dec 21 10:01:16 2025 GMT Subject: CN=dac417ffc7e618505c3048a905c52f5d4a0b21f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:11:f6:34:1b:00:02:b4:00:e9:df:12:ef:5d: 28:cb:fb:41:63:03:fb:14:e8:b0:2c:3b:ac:24:ea: 9a:c1:ca:57:42:f2:39:b0:f1:2f:7a:f4:24:dd:86: 43:1e:17:6b:fc:26:da:05:cb:42:8a:50:b5:0c:aa: 60:19:9d:05:ea:b1:42:af:66:17:2b:87:7b:1b:bc: ef:cb:2e:c1:3f:2b:87:88:ba:40:ea:da:18:dc:c5: 42:d4:9b:4f:ef:cc:7c:99:59:f4:c9:c8:8c:5a:6c: bb:f8:8d:a9:c5:31:ef:18:90:18:6a:4a:f2:8b:99: ef:2c:3b:4e:0f:8a:2c:9e:e0:38:d0:0a:b2:d9:2b: f3:02:8a:ea:e9:1d:87:97:54:bc:89:76:20:18:bc: 08:a0:52:4c:c9:e0:66:25:cb:42:38:3e:3f:eb:38: 94:09:fb:a1:94:55:d9:6d:42:27:e0:97:59:1d:87: 51:c6:05:fb:89:a1:f6:ec:db:3b:86:f3:8f:8a:5d: 15:c3:2d:35:c4:5c:b5:16:f4:03:6d:ec:bf:af:77: ef:c1:3c:f4:06:5e:88:a6:09:e0:c1:bb:3e:e4:8b: b3:6d:ec:ce:a1:8f:de:ff:e1:84:f5:e9:4d:7c:28: 0c:d4:d0:b8:1a:32:69:e0:bc:d6:08:7e:48:d0:9e: d1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C4:17:FF:C7:E6:18:50:5C:30:48:A9:05:C5:2F:5D:4A:0B:21:F8 X509v3 Authority Key Identifier: keyid:AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:09:b7:ee:1a:a1:77:8d:72:b1:63:a7:c9:0f:bc:49:c8:a4: ba:3a:e5:28:15:4f:5e:d8:a5:0d:1e:52:6c:b6:2e:c4:80:7c: 52:7e:e9:cd:dd:82:5d:f7:b6:f6:3e:73:e1:e6:59:09:ff:18: cd:e1:af:f3:6f:6a:24:47:7a:c3:02:88:1c:5c:57:a2:9d:19: 0c:e6:9b:b5:1b:53:a7:44:18:0d:2a:7e:83:ce:c0:4c:be:2c: e6:91:76:84:64:1b:f0:99:12:68:c2:82:e4:24:da:a1:90:2a: f6:6d:ca:67:7b:ff:e4:06:3a:55:fc:71:b6:78:1b:4a:94:03: 48:ff:cd:26:18:ee:ba:61:fc:15:8a:9c:d8:32:6d:15:0d:37: ae:aa:2f:18:35:c0:e8:8e:6b:46:6f:8a:47:9d:e3:fe:66:20: 5e:18:e0:44:14:00:9a:46:70:93:a4:bb:f9:dc:be:a3:0e:f4: 8c:be:c0:cc:f1:28:aa:77:62:23:c1:a3:5a:4e:18:f4:31:95: 80:53:6d:46:4f:d5:b1:e3:3f:21:fb:7a:88:fb:0a:36:43:c0: d2:6b:c9:66:63:98:75:43:10:b8:a9:34:f8:54:61:91:df:ca: cb:61:20:67:7f:5c:f3:2e:bc:42:ee:84:9a:ad:c6:f8:9b:00: d0:33:78:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7NNNEhPQqarj5OmGO3aWNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMWVlZTIyYzUwMTUzNjMxMThhNzFkMjZhOTQ2M2RjOTM3 NGJhMjgwHhcNMjUxMjIwMTAwMTE2WhcNMjUxMjIxMTAwMTE2WjAzMTEwLwYDVQQD EyhkYWM0MTdmZmM3ZTYxODUwNWMzMDQ4YTkwNWM1MmY1ZDRhMGIyMWY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBH2NBsAArQA6d8S710oy/tBYwP7 FOiwLDusJOqawcpXQvI5sPEvevQk3YZDHhdr/CbaBctCilC1DKpgGZ0F6rFCr2YX K4d7G7zvyy7BPyuHiLpA6toY3MVC1JtP78x8mVn0yciMWmy7+I2pxTHvGJAYakry i5nvLDtOD4osnuA40Aqy2SvzAorq6R2Hl1S8iXYgGLwIoFJMyeBmJctCOD4/6ziU CfuhlFXZbUIn4JdZHYdRxgX7iaH27Ns7hvOPil0Vwy01xFy1FvQDbey/r3fvwTz0 Bl6Ipgngwbs+5IuzbezOoY/e/+GE9elNfCgM1NC4GjJp4LzWCH5I0J7R+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNrEF//H5hhQXDBIqQXFL11KCyH4MB8GA1UdIwQY MBaAFK8e7iLFAVNjEYpx0mqUY9yTdLooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcng3dUlzVUJVMk1SaW5IU2FwUmozSk4wdWlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC9mZGMyZjQtMjIyMi00ZjFiLWE1ZTUt YjIxNzhlZjJmODJmLzEvcng3dUlzVUJVMk1SaW5IU2FwUmozSk4wdWlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC9mZGMyZjQtMjIyMi00ZjFiLWE1ZTUtYjIxNzhlZjJmODJm LzEvcng3dUlzVUJVMk1SaW5IU2FwUmozSk4wdWlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxwm37hqh d41ysWOnyQ+8ScikujrlKBVPXtilDR5SbLYuxIB8Un7pzd2CXfe29j5z4eZZCf8Y zeGv829qJEd6wwKIHFxXop0ZDOabtRtTp0QYDSp+g87ATL4s5pF2hGQb8JkSaMKC 5CTaoZAq9m3KZ3v/5AY6VfxxtngbSpQDSP/NJhjuumH8FYqc2DJtFQ03rqovGDXA 6I5rRm+KR53j/mYgXhjgRBQAmkZwk6S7+dy+ow70jL7AzPEoqndiI8GjWk4Y9DGV gFNtRk/VseM/Ift6iPsKNkPA0mvJZmOYdUMQuKk0+FRhkd/Ky2EgZ39c8y68Qu6E mq3G+JsA0DN4YQ== -----END CERTIFICATE-----Generated at Sat Dec 20 19:53:53 2025 by rpki-client