This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.mft File: o7HPJ-q7mfazXewahDm21lPc4zo.mft (raw, json) Hash identifier: vOiDFrdjfOnkbhJryB5Zr4owfFTfaDSeonnzyOYpGxw= Subject key identifier: 78:A7:22:6B:7B:2E:58:D2:E9:10:5C:55:63:79:6A:1E:08:D9:63:DD Authority key identifier: A3:B1:CF:27:EA:BB:99:F6:B3:5D:EC:1A:84:39:B6:D6:53:DC:E3:3A Certificate issuer: /CN=a3b1cf27eabb99f6b35dec1a8439b6d653dce33a Certificate serial: 019B42B6DD7707B71639CB8003632EAB52D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o7HPJ-q7mfazXewahDm21lPc4zo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.mft Manifest number: 1788 Signing time: Sun 21 Dec 2025 21:00:39 +0000 Manifest this update: Sun 21 Dec 2025 21:00:39 +0000 Manifest next update: Mon 22 Dec 2025 21:00:39 +0000 Files and hashes: 1: o7HPJ-q7mfazXewahDm21lPc4zo.crl (hash: /+VSF37iDCEzfxO+LTmP8MHv7ZlOjqvq+A/bD7QckQc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.mft rsync://rpki.ripe.net/repository/DEFAULT/o7HPJ-q7mfazXewahDm21lPc4zo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 21:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:b6:dd:77:07:b7:16:39:cb:80:03:63:2e:ab:52:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3b1cf27eabb99f6b35dec1a8439b6d653dce33a Validity Not Before: Dec 21 21:00:39 2025 GMT Not After : Dec 22 21:00:39 2025 GMT Subject: CN=78a7226b7b2e58d2e9105c5563796a1e08d963dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f2:d8:14:50:0d:59:13:ad:49:cc:ee:55:95: cc:7f:be:5d:8d:89:fa:88:6c:c4:7b:bd:b8:ae:74: fa:fa:b5:be:41:eb:67:15:ea:0c:59:39:07:32:37: e6:bf:88:3b:4a:b9:f7:75:19:21:f4:09:3a:8f:64: 01:75:f4:56:cd:49:df:f2:15:06:91:2e:b6:ed:5a: 87:28:aa:29:1f:f3:90:50:17:ea:2d:c6:57:c9:18: 4a:fc:cc:b9:58:1b:28:17:bc:9f:1a:bf:07:41:42: 17:ba:ab:73:0f:b6:4a:83:3f:66:f2:32:90:68:a5: 12:b5:5a:0e:c7:53:a8:59:84:cf:d7:0b:f3:ef:3b: fb:2f:66:75:d0:e7:23:e7:cc:89:1b:eb:17:15:af: 9b:ea:f2:00:74:12:1a:fc:a5:98:6d:10:52:22:a0: 9d:53:e6:5a:cd:5f:16:58:6b:d0:3f:25:e2:ed:c0: 47:40:af:c6:a3:72:86:3f:80:45:43:ad:86:36:e1: 89:80:3e:2c:6d:e9:b2:9b:aa:4b:ab:af:78:85:bc: d1:3f:46:f2:6b:22:b0:5c:8d:bd:a9:fa:f3:b2:e2: 34:ee:be:f9:bd:1a:b9:55:48:e3:4b:62:02:48:8b: fd:e6:51:bb:ca:fb:54:35:7c:47:01:de:39:de:0f: 76:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A7:22:6B:7B:2E:58:D2:E9:10:5C:55:63:79:6A:1E:08:D9:63:DD X509v3 Authority Key Identifier: keyid:A3:B1:CF:27:EA:BB:99:F6:B3:5D:EC:1A:84:39:B6:D6:53:DC:E3:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o7HPJ-q7mfazXewahDm21lPc4zo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:35:12:25:41:20:07:72:fa:e8:11:02:36:37:46:57:c3:11: 02:4d:b9:f8:27:50:73:03:f1:50:9e:5c:06:04:d8:24:8e:9e: 71:05:69:13:a4:ff:e8:4a:c4:24:d1:d5:00:01:60:86:33:f9: 37:0a:ca:38:e5:de:b9:62:dd:96:76:34:42:96:d8:b0:84:4e: 02:4a:44:a4:37:22:f5:f3:2b:bb:d6:a6:e6:a1:4a:89:5c:80: 43:30:ab:70:24:5e:4b:85:05:e0:3f:99:fd:d7:76:75:e8:be: a1:be:7c:17:69:59:b6:8d:8c:11:d1:ef:59:02:e7:dc:a8:ae: dd:24:04:ea:d9:8f:25:ff:ce:81:3c:fb:3f:f6:69:53:2e:10: b2:10:6e:7d:5b:b3:e7:94:1b:76:2c:03:a0:1a:fa:4e:ea:18: 55:aa:87:db:2c:63:a3:3f:49:d3:8e:bc:db:5b:34:3b:0b:5b: 60:d3:2e:8d:70:79:f2:79:b5:ee:14:c6:a3:4b:0b:bc:7e:5c: 7a:d4:d8:0a:dc:68:c1:d0:65:b8:01:5d:23:c4:0c:8f:7f:41: fe:6f:51:1c:41:4a:6c:14:6d:23:0f:2d:e0:01:dd:e8:ed:cd: 3d:b6:97:1e:d5:2a:30:1d:09:7a:30:8f:66:f1:da:af:15:49: ba:74:c5:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCtt13B7cWOcuAA2Muq1LWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzYjFjZjI3ZWFiYjk5ZjZiMzVkZWMxYTg0MzliNmQ2NTNk Y2UzM2EwHhcNMjUxMjIxMjEwMDM5WhcNMjUxMjIyMjEwMDM5WjAzMTEwLwYDVQQD Eyg3OGE3MjI2YjdiMmU1OGQyZTkxMDVjNTU2Mzc5NmExZTA4ZDk2M2RkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vLYFFANWROtSczuVZXMf75djYn6 iGzEe724rnT6+rW+QetnFeoMWTkHMjfmv4g7Srn3dRkh9Ak6j2QBdfRWzUnf8hUG kS627VqHKKopH/OQUBfqLcZXyRhK/My5WBsoF7yfGr8HQUIXuqtzD7ZKgz9m8jKQ aKUStVoOx1OoWYTP1wvz7zv7L2Z10Ocj58yJG+sXFa+b6vIAdBIa/KWYbRBSIqCd U+ZazV8WWGvQPyXi7cBHQK/Go3KGP4BFQ62GNuGJgD4sbemym6pLq694hbzRP0by ayKwXI29qfrzsuI07r75vRq5VUjjS2ICSIv95lG7yvtUNXxHAd453g92SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHinImt7LljS6RBcVWN5ah4I2WPdMB8GA1UdIwQY MBaAFKOxzyfqu5n2s13sGoQ5ttZT3OM6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzdIUEotcTdtZmF6WGV3YWhEbTIxbFBjNHpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy80MTY3NDItN2RkNi00MTAxLThjMTgt MDU3ODZiZmQ2ODU3LzEvbzdIUEotcTdtZmF6WGV3YWhEbTIxbFBjNHpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy80MTY3NDItN2RkNi00MTAxLThjMTgtMDU3ODZiZmQ2ODU3 LzEvbzdIUEotcTdtZmF6WGV3YWhEbTIxbFBjNHpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMDUSJUEg B3L66BECNjdGV8MRAk25+CdQcwPxUJ5cBgTYJI6ecQVpE6T/6ErEJNHVAAFghjP5 NwrKOOXeuWLdlnY0QpbYsIROAkpEpDci9fMru9am5qFKiVyAQzCrcCReS4UF4D+Z /dd2dei+ob58F2lZto2MEdHvWQLn3Kiu3SQE6tmPJf/OgTz7P/ZpUy4QshBufVuz 55QbdiwDoBr6TuoYVaqH2yxjoz9J046821s0OwtbYNMujXB58nm17hTGo0sLvH5c etTYCtxowdBluAFdI8QMj39B/m9RHEFKbBRtIw8t4AHd6O3NPbaXHtUqMB0JejCP ZvHarxVJunTFCg== -----END CERTIFICATE-----Generated at Mon Dec 22 06:51:06 2025 by rpki-client