This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft File: k7Hqu-XuDASWgOKryVU0OexkPAs.mft (raw, json) Hash identifier: 6CGQBgsqHnjLKQct4F7xhBzN1kCeLllmfoHdy+2MqOQ= Subject key identifier: 0A:4B:19:F5:18:84:60:F7:E1:81:D2:3C:2B:5A:FC:CC:1C:00:D9:69 Authority key identifier: 93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B Certificate issuer: /CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b Certificate serial: 019B0CDB3C29C26256C6FB132698582FD6E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft Manifest number: 1122 Signing time: Thu 11 Dec 2025 10:00:52 +0000 Manifest this update: Thu 11 Dec 2025 10:00:52 +0000 Manifest next update: Fri 12 Dec 2025 10:00:52 +0000 Files and hashes: 1: PQ_yvQsZl8a1BJZelz18O8KYziI.roa (hash: a9+EgNIf1zhqdc2reiY/K2IYhXxlOzKE9JswUeuIGNI=) 2: k7Hqu-XuDASWgOKryVU0OexkPAs.crl (hash: Jk47kjEOYb8G/uoQKXHYhOyuBP8/4XFQ9a4dpZAbvCo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.crl rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 10:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0c:db:3c:29:c2:62:56:c6:fb:13:26:98:58:2f:d6:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b Validity Not Before: Dec 11 10:00:52 2025 GMT Not After : Dec 12 10:00:52 2025 GMT Subject: CN=0a4b19f5188460f7e181d23c2b5afccc1c00d969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a2:89:d9:98:83:de:14:9f:2c:5a:65:91:5c: ae:07:52:36:f9:c2:1d:63:3e:12:3d:e3:da:f0:ad: f9:b5:2a:cc:a1:e7:4a:fb:81:44:69:f9:f0:b1:b7: a8:d4:73:9f:c2:24:97:9b:67:de:a3:a5:b8:67:b1: e0:8c:70:aa:6c:8b:b0:0b:63:79:2b:39:36:24:50: bc:c0:23:81:0f:21:02:b5:e3:35:8f:93:7e:f4:61: ae:af:73:15:3e:46:65:42:99:28:8e:d1:14:94:74: bd:c7:09:4f:6f:82:a2:49:d6:e0:a6:23:a6:c1:ed: ad:c1:1d:58:e1:fc:24:3f:34:3c:05:c3:d7:7a:fe: 29:04:02:00:a0:f0:e9:e3:25:50:83:bc:e5:db:aa: cc:d6:eb:b6:20:8c:b3:9e:d7:40:37:2f:e6:77:48: ab:56:60:db:69:86:bd:75:62:ed:95:0e:3b:eb:f2: 7d:07:df:dc:93:0b:30:63:e5:e7:78:00:0f:a4:ad: 20:11:da:41:6c:33:a8:ae:d2:12:27:0a:65:7f:81: 3b:dd:2d:cf:53:7b:5a:77:9d:2e:01:7c:6f:79:90: 65:fb:ae:b0:5c:f7:ce:57:3e:a3:60:a2:ff:c9:d2: 5c:53:42:97:fc:1c:fa:5b:9c:12:03:13:8e:c7:a0: 4e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:4B:19:F5:18:84:60:F7:E1:81:D2:3C:2B:5A:FC:CC:1C:00:D9:69 X509v3 Authority Key Identifier: keyid:93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:76:f0:60:51:7d:e7:37:b4:00:70:aa:55:b6:05:b5:97:dd: 1a:24:2b:23:6b:ad:f5:d7:e4:57:b3:9f:76:9e:65:d8:f4:20: 92:64:ea:7a:56:5b:1f:b6:5a:cb:f1:64:7b:83:d9:09:6f:be: 27:e1:1d:56:ec:ae:ed:05:94:65:83:fa:5c:40:bf:67:c6:12: 89:b6:f4:8c:20:fa:43:42:4f:66:c2:63:39:98:ac:ed:f1:72: 10:67:d4:99:9d:63:94:18:03:0d:00:b7:5e:dd:d3:66:37:2e: 97:8c:34:31:5d:8a:d2:ca:4b:4f:c4:29:ee:62:53:6e:41:de: 50:6d:f5:09:31:ab:3f:47:58:44:cd:ab:2c:c4:7b:a7:11:3c: dc:6f:10:57:18:56:9c:d5:98:35:66:74:e1:c5:d4:cc:64:07: 5f:26:40:15:d4:74:ab:a0:2a:14:42:80:83:45:73:b7:1a:0a: 2f:38:34:2d:b0:bd:d9:f1:61:98:4b:78:4c:e7:d5:e0:f6:57: f0:69:c5:f8:a8:62:58:e4:60:42:90:4c:2e:f2:5a:86:2d:34: d4:5e:a7:c6:ad:78:dc:cc:fd:32:e6:b6:ad:01:e0:e8:68:21: e1:90:d3:52:66:be:95:06:e9:09:17:da:66:bb:da:1a:ab:e9: e2:7d:93:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsM2zwpwmJWxvsTJphYL9biMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzYjFlYWJiZTVlZTBjMDQ5NjgwZTJhYmM5NTUzNDM5ZWM2 NDNjMGIwHhcNMjUxMjExMTAwMDUyWhcNMjUxMjEyMTAwMDUyWjAzMTEwLwYDVQQD EygwYTRiMTlmNTE4ODQ2MGY3ZTE4MWQyM2MyYjVhZmNjYzFjMDBkOTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaKJ2ZiD3hSfLFplkVyuB1I2+cId Yz4SPePa8K35tSrMoedK+4FEafnwsbeo1HOfwiSXm2feo6W4Z7HgjHCqbIuwC2N5 Kzk2JFC8wCOBDyECteM1j5N+9GGur3MVPkZlQpkojtEUlHS9xwlPb4KiSdbgpiOm we2twR1Y4fwkPzQ8BcPXev4pBAIAoPDp4yVQg7zl26rM1uu2IIyzntdANy/md0ir VmDbaYa9dWLtlQ476/J9B9/ckwswY+XneAAPpK0gEdpBbDOortISJwplf4E73S3P U3tad50uAXxveZBl+66wXPfOVz6jYKL/ydJcU0KX/Bz6W5wSAxOOx6BOCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFApLGfUYhGD34YHSPCta/MwcANlpMB8GA1UdIwQY MBaAFJOx6rvl7gwEloDiq8lVNDnsZDwLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazdIcXUtWHVEQVNXZ09LcnlWVTBPZXhrUEFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8xYjUxMmItMjE1OS00ZjljLWEwYmYt OWQyOGJmNWVmM2MxLzEvazdIcXUtWHVEQVNXZ09LcnlWVTBPZXhrUEFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8xYjUxMmItMjE1OS00ZjljLWEwYmYtOWQyOGJmNWVmM2Mx LzEvazdIcXUtWHVEQVNXZ09LcnlWVTBPZXhrUEFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsXbwYFF9 5ze0AHCqVbYFtZfdGiQrI2ut9dfkV7Ofdp5l2PQgkmTqelZbH7Zay/Fke4PZCW++ J+EdVuyu7QWUZYP6XEC/Z8YSibb0jCD6Q0JPZsJjOZis7fFyEGfUmZ1jlBgDDQC3 Xt3TZjcul4w0MV2K0spLT8Qp7mJTbkHeUG31CTGrP0dYRM2rLMR7pxE83G8QVxhW nNWYNWZ04cXUzGQHXyZAFdR0q6AqFEKAg0VztxoKLzg0LbC92fFhmEt4TOfV4PZX 8GnF+KhiWORgQpBMLvJahi001F6nxq143Mz9Mua2rQHg6Ggh4ZDTUma+lQbpCRfa ZrvaGqvp4n2TpQ== -----END CERTIFICATE-----Generated at Thu Dec 11 15:08:37 2025 by rpki-client