This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft File: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft (raw, json) Hash identifier: tdjvlmlbZKR5rSpxHadzfmufTux1uIAnrQDw7aYJwrw= Subject key identifier: 88:0E:3E:CF:B8:2F:17:EF:91:A0:57:1D:08:98:6A:EC:ED:BF:8B:62 Authority key identifier: 89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32 Certificate issuer: /CN=898ec1023791f6d43f9797e052d1354bebffc732 Certificate serial: 019B5ABF33ADC11CD95561FE73F509DEBE7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft Manifest number: E7 Signing time: Fri 26 Dec 2025 13:00:38 +0000 Manifest this update: Fri 26 Dec 2025 13:00:38 +0000 Manifest next update: Sat 27 Dec 2025 13:00:38 +0000 Files and hashes: 1: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl (hash: JMOyczvYtgAD+N3jJh59KKMWYPHes9ZIeN9/z8YRiwA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:33:ad:c1:1c:d9:55:61:fe:73:f5:09:de:be:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=898ec1023791f6d43f9797e052d1354bebffc732 Validity Not Before: Dec 26 13:00:38 2025 GMT Not After : Dec 27 13:00:38 2025 GMT Subject: CN=880e3ecfb82f17ef91a0571d08986aecedbf8b62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a4:8a:eb:4f:d3:26:ce:0a:f7:88:c7:e9:4f: 55:35:1e:34:ba:71:e9:16:d2:ec:06:94:21:a8:20: c9:83:4b:b4:80:92:eb:46:2a:f9:15:8b:6a:45:6d: 12:80:0c:f5:66:16:c6:23:b8:dd:06:09:0b:0c:66: b4:f0:53:f4:88:b3:7e:44:da:7c:76:da:a7:6c:57: 5d:2f:5e:8c:d2:cd:f7:a5:b4:e3:ce:78:48:51:4b: c6:67:04:72:fa:9f:a8:09:0b:6d:b8:97:d7:dc:c5: b2:0a:4a:c9:ed:ea:58:e9:60:75:6f:87:f0:a2:99: e6:c8:3e:22:6e:cb:0e:1e:53:7c:bc:50:e0:a5:a8: 47:fa:bc:69:b1:a3:c2:0c:90:0f:fb:61:37:3b:28: 06:0f:19:bf:7c:2f:dd:54:88:35:fd:22:66:c2:e4: b4:81:e4:be:c4:10:23:94:0f:0e:43:e6:4d:11:fb: 75:3d:3e:9f:8b:71:b2:b3:d3:10:d1:c3:3e:a5:03: 92:9e:0e:bc:1f:46:43:a8:a2:c6:2f:1f:cc:57:f2: bd:ee:21:64:c6:07:d0:90:e8:e0:c6:e8:c2:a8:1f: 81:1f:23:d4:e3:e1:48:41:e9:4f:c8:ca:26:99:bf: e4:0f:8f:3a:87:fa:ca:ec:7f:4c:8a:fe:6c:df:8e: 53:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:0E:3E:CF:B8:2F:17:EF:91:A0:57:1D:08:98:6A:EC:ED:BF:8B:62 X509v3 Authority Key Identifier: keyid:89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:fc:a6:c2:cd:03:29:2e:41:ff:03:ba:1f:38:ac:e5:0e:5d: c8:2e:7d:89:01:91:c6:75:07:1a:2d:4c:9e:06:9c:57:b8:ee: 60:69:3c:8e:78:71:17:06:39:6b:22:5c:61:23:82:7b:49:59: f3:f5:2b:d6:6e:69:64:1a:ee:20:ef:70:8d:11:a7:7a:f7:7e: 5b:92:de:42:11:3c:a8:ac:93:9c:89:cc:2e:c8:34:24:5f:d9: 4d:75:57:ab:13:f2:dd:c3:d6:f1:6e:4a:ff:90:f3:74:38:1d: ff:b8:ed:48:a8:d3:f4:76:c3:6e:22:74:15:98:a2:89:7a:26: 6e:86:7d:0f:e1:99:69:72:bc:51:64:8f:aa:be:a4:1c:2c:46: 26:08:4f:72:8f:ab:7b:25:c5:1a:46:96:12:e4:52:bc:34:2b: f1:f3:ff:80:d8:25:a8:a0:a2:b7:a2:85:88:70:52:eb:04:54: 1b:30:1e:48:5e:bc:eb:9c:7c:b4:33:c2:99:95:7a:10:15:bc: c7:37:5f:36:d3:be:76:a8:d6:54:5f:44:63:73:49:54:b3:69: ae:08:ef:74:ec:a1:57:b3:15:b5:59:df:9c:cb:32:08:78:be: 97:5b:33:a7:61:07:df:89:72:ab:a2:eb:09:10:0c:3b:f8:1a: 87:b3:23:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtavzOtwRzZVWH+c/UJ3r59MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5OGVjMTAyMzc5MWY2ZDQzZjk3OTdlMDUyZDEzNTRiZWJm ZmM3MzIwHhcNMjUxMjI2MTMwMDM4WhcNMjUxMjI3MTMwMDM4WjAzMTEwLwYDVQQD Eyg4ODBlM2VjZmI4MmYxN2VmOTFhMDU3MWQwODk4NmFlY2VkYmY4YjYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaSK60/TJs4K94jH6U9VNR40unHp FtLsBpQhqCDJg0u0gJLrRir5FYtqRW0SgAz1ZhbGI7jdBgkLDGa08FP0iLN+RNp8 dtqnbFddL16M0s33pbTjznhIUUvGZwRy+p+oCQttuJfX3MWyCkrJ7epY6WB1b4fw opnmyD4ibssOHlN8vFDgpahH+rxpsaPCDJAP+2E3OygGDxm/fC/dVIg1/SJmwuS0 geS+xBAjlA8OQ+ZNEft1PT6fi3Gys9MQ0cM+pQOSng68H0ZDqKLGLx/MV/K97iFk xgfQkOjgxujCqB+BHyPU4+FIQelPyMommb/kD486h/rK7H9Miv5s345TAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIgOPs+4LxfvkaBXHQiYauztv4tiMB8GA1UdIwQY MBaAFImOwQI3kfbUP5eX4FLRNUvr/8cyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVk3QkFqZVI5dFFfbDVmZ1V0RTFTLXZfeHpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9hYjZhN2ItNjVhYi00OTc3LTk5Mzct ZWE5YjZiYjJlMzljLzEvaVk3QkFqZVI5dFFfbDVmZ1V0RTFTLXZfeHpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9hYjZhN2ItNjVhYi00OTc3LTk5MzctZWE5YjZiYjJlMzlj LzEvaVk3QkFqZVI5dFFfbDVmZ1V0RTFTLXZfeHpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhfymws0D KS5B/wO6Hzis5Q5dyC59iQGRxnUHGi1MngacV7juYGk8jnhxFwY5ayJcYSOCe0lZ 8/Ur1m5pZBruIO9wjRGnevd+W5LeQhE8qKyTnInMLsg0JF/ZTXVXqxPy3cPW8W5K /5DzdDgd/7jtSKjT9HbDbiJ0FZiiiXomboZ9D+GZaXK8UWSPqr6kHCxGJghPco+r eyXFGkaWEuRSvDQr8fP/gNglqKCit6KFiHBS6wRUGzAeSF6865x8tDPCmZV6EBW8 xzdfNtO+dqjWVF9EY3NJVLNprgjvdOyhV7MVtVnfnMsyCHi+l1szp2EH34lyq6Lr CRAMO/gah7Mj+w== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:15 2025 by rpki-client