This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json) Hash identifier: liCQbkRDLqMe/iO7e1OAMm8Jvpm/JZkIE+KEcrs+2Ew= Subject key identifier: EF:0D:51:AA:2C:98:20:24:67:0F:9F:71:61:A7:59:FC:FF:84:BB:FC Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad Certificate serial: 019B620B553F3BBAE29D0673DD71BB6536D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft Manifest number: 0464 Signing time: Sat 27 Dec 2025 23:01:08 +0000 Manifest this update: Sat 27 Dec 2025 23:01:08 +0000 Manifest next update: Sun 28 Dec 2025 23:01:08 +0000 Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: mG48hMYWlqrQ6ENVzJqBKyiUqPuZIegNVJM5czTNqDU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:62:0b:55:3f:3b:ba:e2:9d:06:73:dd:71:bb:65:36:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad Validity Not Before: Dec 27 23:01:08 2025 GMT Not After : Dec 28 23:01:08 2025 GMT Subject: CN=ef0d51aa2c982024670f9f7161a759fcff84bbfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:51:00:82:94:e7:b4:89:9f:ce:5e:d5:c0:fb: 9c:3f:18:e6:5a:ef:a3:f0:a9:ae:d9:6c:a2:03:b8: 62:46:d9:78:a5:48:4a:a2:e4:1e:a8:c8:b7:ba:bb: 8d:81:53:90:ff:f3:70:89:84:84:9f:5f:31:26:d0: c3:82:dd:d1:83:a6:02:03:14:23:75:0f:55:f2:92: 5e:9b:90:22:c9:fd:fe:7c:48:85:73:6b:3a:43:40: 32:fb:ec:63:0a:84:a2:d9:c4:d3:d3:61:0c:69:e0: 50:6a:28:e3:42:01:74:ca:2d:2d:b1:78:ab:cb:3c: 86:89:84:a2:54:96:75:c3:78:0a:f1:a9:86:5a:0f: 4f:8a:01:54:a5:c2:26:05:4a:6d:8f:67:ed:4d:ae: f9:21:de:40:06:9c:36:94:6b:16:d2:d1:d2:4a:60: 51:3c:66:e8:e2:14:dc:53:d6:17:40:b4:07:76:7e: 84:78:a6:ce:61:0b:37:8a:2e:1b:f2:e1:4d:30:3d: e1:bc:83:9a:06:6f:4e:18:c6:5b:1e:02:03:a1:e6: 5c:72:87:5d:45:64:48:56:ea:82:24:66:7b:ea:5f: 24:a5:c8:35:d0:72:c7:06:d1:1b:28:76:7f:cf:bb: c1:64:27:55:7d:55:24:a2:98:3c:cc:ef:03:a2:da: 47:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0D:51:AA:2C:98:20:24:67:0F:9F:71:61:A7:59:FC:FF:84:BB:FC X509v3 Authority Key Identifier: keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:6d:01:a1:58:7c:d6:6a:e7:12:92:83:38:4b:39:c6:70:ce: 36:ca:5e:52:3c:ed:67:6a:85:8f:9c:d9:af:c0:be:db:7f:a3: b7:3a:bc:7b:3a:5f:4b:f1:de:06:ed:64:b7:56:52:b6:fb:74: 2d:b3:de:c4:07:22:5f:1b:ba:20:91:97:82:eb:66:48:2e:03: 13:59:ce:72:72:70:27:ad:b0:e7:31:48:82:52:99:d1:11:39: 94:49:28:23:2e:74:71:e3:7c:1d:0e:f1:5b:3e:5f:24:9a:ed: ff:65:92:24:0e:82:17:81:5c:3f:5c:27:57:45:94:8f:0d:e2: df:3a:d2:e2:8b:f5:73:a7:21:94:aa:38:c9:9a:7f:ef:cc:2d: 9d:a1:d9:07:df:56:80:1b:53:c7:4d:6f:81:40:82:be:30:c3: 1f:e6:bf:b0:0b:6f:d7:c8:e5:a8:77:b2:64:3f:9b:b3:22:c3: 68:7a:52:8a:41:97:b3:d6:8f:4f:04:59:82:3a:b6:be:0f:cd: b5:31:85:83:0c:94:5d:6b:45:37:e7:f2:6d:3e:2a:95:63:4e: 80:b1:43:4c:ee:1c:ce:21:00:7d:61:c9:99:76:08:f6:c9:be: 02:07:43:4d:b6:11:c1:69:6a:87:9d:a1:96:9e:9b:08:75:11: 50:47:2c:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtiC1U/O7rinQZz3XG7ZTbUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYmM4YTg2NjhmNTBmZGFmNDk0ZjUyOGEyY2FhZmQwMmI3 YzMxYWQwHhcNMjUxMjI3MjMwMTA4WhcNMjUxMjI4MjMwMTA4WjAzMTEwLwYDVQQD EyhlZjBkNTFhYTJjOTgyMDI0NjcwZjlmNzE2MWE3NTlmY2ZmODRiYmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1EAgpTntImfzl7VwPucPxjmWu+j 8Kmu2WyiA7hiRtl4pUhKouQeqMi3uruNgVOQ//NwiYSEn18xJtDDgt3Rg6YCAxQj dQ9V8pJem5Aiyf3+fEiFc2s6Q0Ay++xjCoSi2cTT02EMaeBQaijjQgF0yi0tsXir yzyGiYSiVJZ1w3gK8amGWg9PigFUpcImBUptj2ftTa75Id5ABpw2lGsW0tHSSmBR PGbo4hTcU9YXQLQHdn6EeKbOYQs3ii4b8uFNMD3hvIOaBm9OGMZbHgIDoeZccodd RWRIVuqCJGZ76l8kpcg10HLHBtEbKHZ/z7vBZCdVfVUkopg8zO8DotpHDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO8NUaosmCAkZw+fcWGnWfz/hLv8MB8GA1UdIwQY MBaAFL+8ioZo9Q/a9JT1KKLKr9ArfDGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjIt ZGE2MTk5YjgyZjExLzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjItZGE2MTk5YjgyZjEx LzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH20BoVh8 1mrnEpKDOEs5xnDONspeUjztZ2qFj5zZr8C+23+jtzq8ezpfS/HeBu1kt1ZStvt0 LbPexAciXxu6IJGXgutmSC4DE1nOcnJwJ62w5zFIglKZ0RE5lEkoIy50ceN8HQ7x Wz5fJJrt/2WSJA6CF4FcP1wnV0WUjw3i3zrS4ov1c6chlKo4yZp/78wtnaHZB99W gBtTx01vgUCCvjDDH+a/sAtv18jlqHeyZD+bsyLDaHpSikGXs9aPTwRZgjq2vg/N tTGFgwyUXWtFN+fybT4qlWNOgLFDTO4cziEAfWHJmXYI9sm+AgdDTbYRwWlqh52h lp6bCHURUEcsEA== -----END CERTIFICATE-----Generated at Sun Dec 28 03:20:13 2025 by rpki-client