This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.mft File: R7cYcu1kXJZm1VEavHjwfE06uKw.mft (raw, json) Hash identifier: 4RJ5oEAeFmuPnwAHyxnP2P+cjdEbBOtBiEOhT4N29tQ= Subject key identifier: 84:01:DB:10:AD:77:21:71:F7:60:B9:D5:D9:E9:E5:06:97:44:74:B0 Authority key identifier: 47:B7:18:72:ED:64:5C:96:66:D5:51:1A:BC:78:F0:7C:4D:3A:B8:AC Certificate issuer: /CN=47b71872ed645c9666d5511abc78f07c4d3ab8ac Certificate serial: 019B2E8B50EB0E217FC2A397B9D582808101 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7cYcu1kXJZm1VEavHjwfE06uKw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.mft Manifest number: 0425 Signing time: Wed 17 Dec 2025 23:00:40 +0000 Manifest this update: Wed 17 Dec 2025 23:00:40 +0000 Manifest next update: Thu 18 Dec 2025 23:00:40 +0000 Files and hashes: 1: R7cYcu1kXJZm1VEavHjwfE06uKw.crl (hash: j/+jTPCK3Sqf4LJ7q0+QW59n1qqKMQq+uoUCrr1GmGw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.mft rsync://rpki.ripe.net/repository/DEFAULT/R7cYcu1kXJZm1VEavHjwfE06uKw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 23:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:8b:50:eb:0e:21:7f:c2:a3:97:b9:d5:82:80:81:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47b71872ed645c9666d5511abc78f07c4d3ab8ac Validity Not Before: Dec 17 23:00:40 2025 GMT Not After : Dec 18 23:00:40 2025 GMT Subject: CN=8401db10ad772171f760b9d5d9e9e506974474b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e9:7a:13:de:a6:0d:8c:2f:55:1e:8a:b8:23: 8d:86:f0:31:90:b6:ef:46:47:c3:1e:e9:1a:09:0f: de:08:8e:5a:04:1c:4d:01:d0:4f:5c:3a:1e:e5:4d: 31:ed:50:d6:c8:c4:b3:ce:23:5c:67:50:02:0f:07: 85:ad:c6:cf:c3:ea:12:b0:c7:95:16:de:13:36:10: 0a:61:be:e7:97:70:72:ac:43:3a:c6:a2:9f:08:74: e3:74:ff:7d:40:cf:03:db:ed:40:1f:18:47:f3:8f: 9a:b4:45:ca:70:6b:c9:11:2a:43:ce:df:a4:4a:08: 4e:87:48:9e:65:37:15:09:be:13:64:fb:4c:74:d6: 6b:c8:2d:cf:27:ac:6e:05:cc:07:fe:2a:53:28:89: 74:bf:29:df:63:c6:fc:67:a2:6f:81:c4:b9:cc:f2: 97:46:75:6d:2d:05:ab:0c:57:03:64:3f:e4:ca:da: 61:0d:b6:82:eb:44:85:f8:67:52:60:ba:25:4b:18: ff:20:ef:62:9b:50:c4:5b:d6:13:28:3d:3b:f0:19: 48:78:f3:e7:18:44:83:72:2f:b2:b9:82:27:51:54: 0c:6c:12:f2:d3:5b:9a:8e:07:f4:49:06:77:98:cb: 1c:ef:2e:5f:03:bc:fe:f8:35:ed:a0:4c:b1:d0:38: da:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:01:DB:10:AD:77:21:71:F7:60:B9:D5:D9:E9:E5:06:97:44:74:B0 X509v3 Authority Key Identifier: keyid:47:B7:18:72:ED:64:5C:96:66:D5:51:1A:BC:78:F0:7C:4D:3A:B8:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7cYcu1kXJZm1VEavHjwfE06uKw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:88:0a:4c:0d:1e:97:48:e8:00:ae:d1:c0:fe:99:61:ac:cd: 00:7b:dc:99:b9:8b:f4:fa:0d:10:b0:8e:bc:32:f0:ee:0f:5b: d8:4e:d7:33:27:85:17:6f:cf:41:73:70:52:e0:f3:a1:b2:83: 4a:3f:df:db:a9:01:73:06:25:09:19:39:0d:07:7a:5b:d3:8b: a0:ca:df:3a:14:4c:9b:29:ee:72:a6:e1:04:40:b6:74:a4:71: d9:6e:69:88:6c:21:00:d2:98:1e:99:62:13:7c:b3:94:96:da: ca:d3:11:6c:00:c8:77:fb:6b:0d:b4:7b:cc:e6:62:a1:1e:14: eb:1a:6b:ea:8b:0a:d7:dc:72:bb:f4:2d:e7:10:ac:c7:0c:59: c5:6d:d3:9a:17:dc:00:55:7c:9b:f9:55:27:83:85:4b:30:9a: 0e:5c:9e:23:01:2f:06:46:60:12:c8:ab:cf:fc:7e:df:ae:c9: 8f:1d:33:b9:5d:c4:0e:05:25:a9:f2:77:e6:a4:2d:2d:8b:d7: 95:a2:ef:0a:84:63:d7:1c:cc:0b:7e:b0:d2:e9:14:af:9d:ed: 27:b1:81:79:0e:62:2f:0d:03:5d:62:b4:23:0c:ce:cc:0e:a2: 77:ca:33:7b:3b:89:67:93:dc:72:1a:ab:9b:26:1b:5a:89:14: cc:15:ce:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsui1DrDiF/wqOXudWCgIEBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3YjcxODcyZWQ2NDVjOTY2NmQ1NTExYWJjNzhmMDdjNGQz YWI4YWMwHhcNMjUxMjE3MjMwMDQwWhcNMjUxMjE4MjMwMDQwWjAzMTEwLwYDVQQD Eyg4NDAxZGIxMGFkNzcyMTcxZjc2MGI5ZDVkOWU5ZTUwNjk3NDQ3NGIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqul6E96mDYwvVR6KuCONhvAxkLbv RkfDHukaCQ/eCI5aBBxNAdBPXDoe5U0x7VDWyMSzziNcZ1ACDweFrcbPw+oSsMeV Ft4TNhAKYb7nl3ByrEM6xqKfCHTjdP99QM8D2+1AHxhH84+atEXKcGvJESpDzt+k SghOh0ieZTcVCb4TZPtMdNZryC3PJ6xuBcwH/ipTKIl0vynfY8b8Z6JvgcS5zPKX RnVtLQWrDFcDZD/kytphDbaC60SF+GdSYLolSxj/IO9im1DEW9YTKD078BlIePPn GESDci+yuYInUVQMbBLy01uajgf0SQZ3mMsc7y5fA7z++DXtoEyx0Dja+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIQB2xCtdyFx92C51dnp5QaXRHSwMB8GA1UdIwQY MBaAFEe3GHLtZFyWZtVRGrx48HxNOrisMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjdjWWN1MWtYSlptMVZFYXZIandmRTA2dUt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85MDliN2ItZDQxMy00MmUxLWE2MGEt ZWM4NGRkNWM2OWJmLzEvUjdjWWN1MWtYSlptMVZFYXZIandmRTA2dUt3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS85MDliN2ItZDQxMy00MmUxLWE2MGEtZWM4NGRkNWM2OWJm LzEvUjdjWWN1MWtYSlptMVZFYXZIandmRTA2dUt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWIgKTA0e l0joAK7RwP6ZYazNAHvcmbmL9PoNELCOvDLw7g9b2E7XMyeFF2/PQXNwUuDzobKD Sj/f26kBcwYlCRk5DQd6W9OLoMrfOhRMmynucqbhBEC2dKRx2W5piGwhANKYHpli E3yzlJbaytMRbADId/trDbR7zOZioR4U6xpr6osK19xyu/Qt5xCsxwxZxW3Tmhfc AFV8m/lVJ4OFSzCaDlyeIwEvBkZgEsirz/x+367Jjx0zuV3EDgUlqfJ35qQtLYvX laLvCoRj1xzMC36w0ukUr53tJ7GBeQ5iLw0DXWK0IwzOzA6id8ozezuJZ5Pcchqr myYbWokUzBXOvA== -----END CERTIFICATE-----Generated at Thu Dec 18 08:02:26 2025 by rpki-client