This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft File: q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft (raw, json) Hash identifier: yTgCJwNGfqbPmRokXV0fk07C4zrzaw7ZCSGDBWfvvyA= Subject key identifier: 0B:D7:E4:C0:DB:6B:78:58:ED:57:7B:3A:52:E0:77:EC:A5:BD:D8:01 Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac Certificate serial: 019AF5E5B1D6A28AAFAD3D53ADD5EA7C720D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft Manifest number: 17A7 Signing time: Sat 06 Dec 2025 23:01:02 +0000 Manifest this update: Sat 06 Dec 2025 23:01:02 +0000 Manifest next update: Sun 07 Dec 2025 23:01:02 +0000 Files and hashes: 1: OWpwpyh1mzp7VRLchsqWjA7Bd6c.roa (hash: oss82o3LFtVmuDKRa45drAtMghVcyPl5JboekWr/Lf4=) 2: VAImUOtIDMTUQI76JnLfRrvllyo.roa (hash: 4SRj/s3ojBfQysGt03CIZScJZWxzkyEXZbgo7Y3hEkk=) 3: a-k-PpKc_hbf1tf8ym45DzWV9JI.roa (hash: CGjB95jiiaCzW7zL6nSnhujYT7ypy6568fnCUOok1Hk=) 4: cqMsKKEpjqP4gOzkP6YxkMm3WxE.roa (hash: cpcpc/9CzEy+wkt4CwIjle5PkQNTLuHjrssCk9RjDo4=) 5: hJ2Q_kNZVtX9DYCp6pRdbULfToU.roa (hash: Bj3orwiHHH0lwtlViSgWz8igoGg/S7618D6XjO8Tllo=) 6: q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl (hash: XZN0aA08mhGmFw8Py4pCHXPj98WDbC8538rSWKDZmZs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:b1:d6:a2:8a:af:ad:3d:53:ad:d5:ea:7c:72:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac Validity Not Before: Dec 6 23:01:02 2025 GMT Not After : Dec 7 23:01:02 2025 GMT Subject: CN=0bd7e4c0db6b7858ed577b3a52e077eca5bdd801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:41:7d:07:b0:e8:25:ae:63:86:6f:88:ec:9d: 3f:08:4c:33:83:de:f3:db:fa:0b:ef:4b:a5:3d:90: e8:67:3c:9b:a3:2c:46:ef:0f:25:49:9f:f4:77:f3: b2:39:6a:b4:26:93:ae:e8:d8:10:8a:88:fa:29:b4: d4:a1:54:56:64:de:1b:0b:7b:cc:09:9b:69:52:40: 4d:20:43:1b:71:eb:b2:d5:e6:76:00:87:25:ec:18: ab:3a:63:e2:d2:b3:f4:f3:f3:95:2a:b5:e2:13:bd: b8:bc:0c:0d:85:55:1f:01:8a:87:5c:2b:60:7f:4b: fb:93:d7:e8:3c:77:89:9a:eb:04:1b:29:1f:28:e1: 12:43:87:50:9b:df:1a:a1:1f:c8:9c:80:f3:6b:1a: 13:74:eb:83:e8:d0:09:af:56:c6:2d:94:2b:52:5a: d7:3a:97:53:14:10:75:e3:11:8d:54:ca:b6:15:4d: 48:73:32:d5:a0:4b:a7:bb:c2:60:07:fa:e3:86:56: fe:7b:34:29:cb:63:45:23:0f:bc:88:8d:92:51:57: c4:aa:22:42:df:5f:94:43:50:02:1b:ca:bf:81:3a: 93:14:7d:8f:b4:47:02:48:9d:78:8e:1a:74:47:03: f2:a6:64:6d:04:ab:a0:33:43:ef:2d:08:8f:3c:36: 8a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D7:E4:C0:DB:6B:78:58:ED:57:7B:3A:52:E0:77:EC:A5:BD:D8:01 X509v3 Authority Key Identifier: keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:7e:f8:ac:63:9b:c3:16:f8:dc:3f:b3:7b:57:3d:51:89:8b: e6:14:4c:96:a5:d5:1d:ff:cd:9d:da:c6:12:c6:fb:1d:71:54: 97:fd:42:13:f0:8d:b1:48:07:3d:1d:be:32:e4:15:bf:ec:74: 3a:27:cd:40:23:9e:46:44:ec:dd:e6:a5:9c:37:f8:35:6b:6c: 00:c0:92:19:1d:a7:8b:0a:61:bd:7f:fa:9d:56:4e:23:b6:42: d4:da:af:75:b0:16:02:0e:87:4d:74:93:ba:29:2b:70:40:89: ab:9e:18:64:c2:93:df:5b:12:2a:95:7d:8c:87:d5:76:a2:5a: d4:6e:6d:30:f2:27:d3:b1:c2:93:2f:ce:71:bc:fc:a7:61:20: 82:a4:7a:23:51:e2:81:34:65:74:15:64:ec:d7:66:24:7a:8b: 7e:59:6a:03:59:4e:55:5b:8b:04:60:b0:f8:6b:e1:7f:44:96: b1:eb:41:fe:3e:45:15:7c:2f:e7:6c:d8:c1:c9:91:4b:a4:db: 29:be:a1:f2:2c:e0:8e:e9:93:bf:dd:4e:67:9d:f4:85:8b:36: 7e:e2:7b:3a:37:22:10:98:81:e3:d0:f6:b6:97:d2:1d:1a:ba: 69:5a:a2:ec:5f:89:22:7c:3f:ea:18:42:08:21:81:78:07:43: 7f:5e:41:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15bHWooqvrT1TrdXqfHINMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiYmFkM2RlODMxZGE5NDIyMmMxYWRkMTA0Y2FmNGMzMjQ3 Njg5YWMwHhcNMjUxMjA2MjMwMTAyWhcNMjUxMjA3MjMwMTAyWjAzMTEwLwYDVQQD EygwYmQ3ZTRjMGRiNmI3ODU4ZWQ1NzdiM2E1MmUwNzdlY2E1YmRkODAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm0F9B7DoJa5jhm+I7J0/CEwzg97z 2/oL70ulPZDoZzyboyxG7w8lSZ/0d/OyOWq0JpOu6NgQioj6KbTUoVRWZN4bC3vM CZtpUkBNIEMbceuy1eZ2AIcl7BirOmPi0rP08/OVKrXiE724vAwNhVUfAYqHXCtg f0v7k9foPHeJmusEGykfKOESQ4dQm98aoR/InIDzaxoTdOuD6NAJr1bGLZQrUlrX OpdTFBB14xGNVMq2FU1IczLVoEunu8JgB/rjhlb+ezQpy2NFIw+8iI2SUVfEqiJC 31+UQ1ACG8q/gTqTFH2PtEcCSJ14jhp0RwPypmRtBKugM0PvLQiPPDaKhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAvX5MDba3hY7Vd7OlLgd+ylvdgBMB8GA1UdIwQY MBaAFKu6096DHalCIsGt0QTK9MMkdomsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZTgxNDktZDUzYy00OTkyLWJkMDct NTVjNDM0ZWVjOTZjLzEvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy84ZTgxNDktZDUzYy00OTkyLWJkMDctNTVjNDM0ZWVjOTZj LzEvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiX74rGOb wxb43D+ze1c9UYmL5hRMlqXVHf/NndrGEsb7HXFUl/1CE/CNsUgHPR2+MuQVv+x0 OifNQCOeRkTs3ealnDf4NWtsAMCSGR2niwphvX/6nVZOI7ZC1NqvdbAWAg6HTXST uikrcECJq54YZMKT31sSKpV9jIfVdqJa1G5tMPIn07HCky/Ocbz8p2EggqR6I1Hi gTRldBVk7NdmJHqLfllqA1lOVVuLBGCw+Gvhf0SWsetB/j5FFXwv52zYwcmRS6Tb Kb6h8izgjumTv91OZ530hYs2fuJ7OjciEJiB49D2tpfSHRq6aVqi7F+JInw/6hhC CCGBeAdDf15B3A== -----END CERTIFICATE-----Generated at Sun Dec 7 02:54:29 2025 by rpki-client