This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json) Hash identifier: 8HosqgmQ7zTy0GpUs7tYv2IGZ7KEd3YcYT0di1xiHLw= Subject key identifier: C6:E4:36:B9:99:27:D5:0E:8D:A9:CD:CB:B5:81:1A:7D:CC:FE:20:22 Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22 Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22 Certificate serial: 019B1D97B9791F50FB00CB7F7AFECB08C009 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft Manifest number: 153B Signing time: Sun 14 Dec 2025 16:00:41 +0000 Manifest this update: Sun 14 Dec 2025 16:00:41 +0000 Manifest next update: Mon 15 Dec 2025 16:00:41 +0000 Files and hashes: 1: hzoYOWaigOBhVgvLojtyU6Dx7N4.roa (hash: T/q+Lugm+i1exm5XgQ+QByz6sPtwXurIWQU3uySV9uU=) 2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: 2qSCB6R23TQWhAvBjbdkmzucC5F39whTYSmt5GFpq1E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:97:b9:79:1f:50:fb:00:cb:7f:7a:fe:cb:08:c0:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22 Validity Not Before: Dec 14 16:00:41 2025 GMT Not After : Dec 15 16:00:41 2025 GMT Subject: CN=c6e436b99927d50e8da9cdcbb5811a7dccfe2022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:63:88:c1:c4:a8:b4:50:8b:a7:33:83:bb:eb: 8b:dc:08:e2:9e:b5:d4:32:bc:a4:0a:ba:65:1c:80: 8e:77:c5:8f:ac:08:2f:d3:de:37:6d:78:ec:8e:57: f0:24:aa:d2:b9:79:fa:63:6c:a9:b2:7b:d3:32:c7: b4:ec:01:4d:f9:fe:b2:4b:53:c3:bd:77:ee:9c:ff: d3:31:a6:ab:4d:2b:97:ad:36:98:18:c1:fb:d0:db: c6:c8:84:09:ea:dd:8c:6d:8b:cd:fd:a2:7c:14:38: 4d:44:42:ec:86:88:93:87:2a:ee:92:48:f1:3d:72: 02:bb:71:36:53:1f:c9:5f:82:22:b8:50:ab:86:d3: 3e:e6:ea:a6:9e:61:c0:25:a0:48:f8:bd:ef:21:10: eb:c0:7a:f4:66:a5:e8:89:d6:8b:f7:c4:16:db:3b: ce:4b:25:4f:c3:2e:e7:c4:31:2c:21:95:05:15:76: 31:78:94:5a:8f:2e:6c:6c:4d:53:17:3f:b3:51:64: da:2f:b5:e9:d3:fc:2e:5c:41:03:68:47:34:c9:27: e5:59:e9:fe:fd:4e:4e:50:4f:29:30:7c:56:94:d1: 23:15:d5:a5:2b:4c:1a:17:6e:f4:91:65:f4:d0:4f: a5:2b:97:79:91:24:22:5d:e1:43:7b:9f:39:9d:13: 3d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E4:36:B9:99:27:D5:0E:8D:A9:CD:CB:B5:81:1A:7D:CC:FE:20:22 X509v3 Authority Key Identifier: keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:f6:67:28:26:01:67:63:64:cd:0e:d4:4d:e4:48:c1:9d:a9: d0:fe:2f:a5:27:6a:12:28:46:b6:e3:9f:28:0e:e8:5d:0a:6b: 62:6f:95:e5:7b:94:57:9d:c3:6d:28:8f:12:4e:09:42:3a:88: 87:db:ae:2f:04:6d:77:6a:21:91:24:1b:fd:93:60:41:b4:b0: 5e:37:94:9d:ec:4e:8f:fe:b5:85:75:6a:ae:43:5a:61:06:03: 05:02:fc:11:e6:21:be:71:17:9e:42:55:0e:28:33:82:6f:67: 8e:81:05:d8:08:6d:ad:39:0f:8f:ad:47:3e:fd:79:9b:43:0b: 46:ed:93:a8:a8:f2:fe:85:fe:ba:88:97:54:ea:2a:00:4f:be: 62:5d:9a:d3:8a:62:29:22:0b:f4:3a:f9:a3:c9:70:5e:6d:cd: aa:4f:f0:39:ca:6c:bb:ec:4e:c3:10:11:7c:49:bf:40:3f:7c: e3:3a:ff:11:ad:ef:25:63:69:8c:84:45:3b:ea:69:b3:45:34: f2:6e:f5:91:89:f6:72:ae:57:ab:65:1c:aa:24:76:79:54:8f: 17:d3:09:64:51:fe:6b:b0:ee:cb:9f:83:d7:a2:47:85:92:af: 79:39:15:c1:82:f1:c8:53:a9:12:1d:56:22:e6:d5:0f:cc:24: 3e:80:ce:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdl7l5H1D7AMt/ev7LCMAJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYjZiNmQ3ZTVkZDBjMzI4ZjZjZWFmN2U5ZTljMGQxY2I4 YzFkMjIwHhcNMjUxMjE0MTYwMDQxWhcNMjUxMjE1MTYwMDQxWjAzMTEwLwYDVQQD EyhjNmU0MzZiOTk5MjdkNTBlOGRhOWNkY2JiNTgxMWE3ZGNjZmUyMDIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2mOIwcSotFCLpzODu+uL3AjinrXU MrykCrplHICOd8WPrAgv0943bXjsjlfwJKrSuXn6Y2ypsnvTMse07AFN+f6yS1PD vXfunP/TMaarTSuXrTaYGMH70NvGyIQJ6t2MbYvN/aJ8FDhNRELshoiThyrukkjx PXICu3E2Ux/JX4IiuFCrhtM+5uqmnmHAJaBI+L3vIRDrwHr0ZqXoidaL98QW2zvO SyVPwy7nxDEsIZUFFXYxeJRajy5sbE1TFz+zUWTaL7Xp0/wuXEEDaEc0ySflWen+ /U5OUE8pMHxWlNEjFdWlK0waF270kWX00E+lK5d5kSQiXeFDe585nRM9lwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMbkNrmZJ9UOjanNy7WBGn3M/iAiMB8GA1UdIwQY MBaAFLO2ttfl3Qwyj2zq9+npwNHLjB0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczdhMjEtWGREREtQYk9yMzZlbkEwY3VNSFNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yZDc5NDYtZGI4Yi00YTU3LWE3MGIt MjA3MTU0NmI3MGY5LzEvczdhMjEtWGREREtQYk9yMzZlbkEwY3VNSFNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8yZDc5NDYtZGI4Yi00YTU3LWE3MGItMjA3MTU0NmI3MGY5 LzEvczdhMjEtWGREREtQYk9yMzZlbkEwY3VNSFNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi/ZnKCYB Z2NkzQ7UTeRIwZ2p0P4vpSdqEihGtuOfKA7oXQprYm+V5XuUV53DbSiPEk4JQjqI h9uuLwRtd2ohkSQb/ZNgQbSwXjeUnexOj/61hXVqrkNaYQYDBQL8EeYhvnEXnkJV Digzgm9njoEF2AhtrTkPj61HPv15m0MLRu2TqKjy/oX+uoiXVOoqAE++Yl2a04pi KSIL9Dr5o8lwXm3Nqk/wOcpsu+xOwxARfEm/QD984zr/Ea3vJWNpjIRFO+pps0U0 8m71kYn2cq5Xq2UcqiR2eVSPF9MJZFH+a7Duy5+D16JHhZKveTkVwYLxyFOpEh1W IubVD8wkPoDOlQ== -----END CERTIFICATE-----Generated at Sun Dec 14 22:51:24 2025 by rpki-client