This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json) Hash identifier: jqNTjcqljpGRKqg0Rm6aqkcS26+QsOj9ISke10Ptty0= Subject key identifier: 90:A6:03:C7:5F:A5:5D:88:75:9E:22:7D:16:79:2F:AC:44:F2:10:87 Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad Certificate serial: 019B33B2171F64C1D093721CA0A6C354E21F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft Manifest number: 044C Signing time: Thu 18 Dec 2025 23:01:07 +0000 Manifest this update: Thu 18 Dec 2025 23:01:07 +0000 Manifest next update: Fri 19 Dec 2025 23:01:07 +0000 Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: 8WI/+grpQPl3Jb+P1m73P88KvxKGpEfRN/KTJj/HDCg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:b2:17:1f:64:c1:d0:93:72:1c:a0:a6:c3:54:e2:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad Validity Not Before: Dec 18 23:01:07 2025 GMT Not After : Dec 19 23:01:07 2025 GMT Subject: CN=90a603c75fa55d88759e227d16792fac44f21087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ce:10:6a:e2:7b:1c:f3:2a:ba:d8:b6:e2:f5: ee:97:b5:eb:72:a1:16:50:7a:23:aa:97:e6:0e:bf: 85:09:7d:45:9f:c3:a9:1f:78:f1:17:62:77:b9:2d: 5c:6b:a6:27:32:98:c1:36:55:a1:8d:38:3f:96:99: c2:a1:81:df:49:44:84:94:41:a0:99:27:39:e3:6a: fc:dd:34:b6:5d:8e:6f:43:0d:85:84:9e:3f:bf:ef: 6a:22:e5:f9:fe:51:73:20:59:0e:00:56:b4:cc:94: d0:5b:7e:30:6c:62:a9:88:70:ad:fd:5e:48:e6:28: bc:7c:c2:1a:58:3e:2a:62:9a:9e:af:93:23:90:4a: 77:ce:84:a5:60:44:6a:08:51:24:1d:cb:8b:82:5a: ec:d5:71:8c:53:e4:96:2d:66:0d:0e:35:d3:c4:9f: f7:44:99:65:ec:62:a2:a2:47:45:51:a6:6c:3b:94: fd:0f:79:27:6e:95:8c:15:10:38:48:21:4d:83:ab: c7:ef:97:ce:f2:dc:3a:4e:14:d6:52:9f:96:63:f7: 10:9c:c1:32:78:c8:b2:7c:96:20:f9:08:59:8e:9d: 0a:2e:e9:2c:ad:7a:db:51:3a:45:c7:38:ca:85:1a: a0:46:6a:26:35:94:31:ab:9e:1d:bf:a3:d9:6d:06: c3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A6:03:C7:5F:A5:5D:88:75:9E:22:7D:16:79:2F:AC:44:F2:10:87 X509v3 Authority Key Identifier: keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d5:cc:86:7b:e9:dc:6b:42:21:f8:31:ae:cb:48:ed:69:9e:37: f4:e9:49:59:97:5a:fe:50:03:5a:2a:ad:33:f5:ae:10:0f:be: 03:b4:99:8d:c8:ed:4f:50:f5:59:0c:6f:db:44:16:0c:ee:39: 65:39:9d:4f:41:fb:1d:9a:38:15:e5:95:37:13:0c:c3:6e:35: 41:66:ad:9b:42:a0:83:05:c7:86:a1:0e:42:d3:3d:c6:75:fc: 16:92:85:3e:a1:d0:3e:fa:fb:29:94:59:f8:64:22:5c:fb:75: d7:0b:ad:01:d6:65:03:a6:01:54:0f:f7:60:5a:5c:52:7d:68: 1a:e0:25:46:44:8e:75:d9:e0:3d:8e:36:f8:22:8b:5c:11:53: 29:dc:7e:c2:23:50:28:35:3c:26:d4:d9:d9:48:20:a5:9f:4b: cb:72:3f:a1:bd:b3:07:5e:16:8f:6e:22:33:d3:e6:82:17:26: 97:60:67:d7:12:70:d2:57:ee:a1:c1:50:29:92:ca:81:4f:51: 3e:ef:f5:14:6f:39:72:97:a5:84:f2:15:35:ec:f4:77:b6:5f: 2a:9d:ce:a4:39:0b:bd:bc:39:4c:e3:16:72:27:15:f0:7b:e6: a6:e5:ae:a1:d8:ce:3c:23:fd:9e:05:af:9f:b4:eb:02:ee:31: 34:f3:6c:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszshcfZMHQk3IcoKbDVOIfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYmM4YTg2NjhmNTBmZGFmNDk0ZjUyOGEyY2FhZmQwMmI3 YzMxYWQwHhcNMjUxMjE4MjMwMTA3WhcNMjUxMjE5MjMwMTA3WjAzMTEwLwYDVQQD Eyg5MGE2MDNjNzVmYTU1ZDg4NzU5ZTIyN2QxNjc5MmZhYzQ0ZjIxMDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtc4QauJ7HPMquti24vXul7XrcqEW UHojqpfmDr+FCX1Fn8OpH3jxF2J3uS1ca6YnMpjBNlWhjTg/lpnCoYHfSUSElEGg mSc542r83TS2XY5vQw2FhJ4/v+9qIuX5/lFzIFkOAFa0zJTQW34wbGKpiHCt/V5I 5ii8fMIaWD4qYpqer5MjkEp3zoSlYERqCFEkHcuLglrs1XGMU+SWLWYNDjXTxJ/3 RJll7GKiokdFUaZsO5T9D3knbpWMFRA4SCFNg6vH75fO8tw6ThTWUp+WY/cQnMEy eMiyfJYg+QhZjp0KLuksrXrbUTpFxzjKhRqgRmomNZQxq54dv6PZbQbDCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJCmA8dfpV2IdZ4ifRZ5L6xE8hCHMB8GA1UdIwQY MBaAFL+8ioZo9Q/a9JT1KKLKr9ArfDGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjIt ZGE2MTk5YjgyZjExLzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjItZGE2MTk5YjgyZjEx LzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1cyGe+nc a0Ih+DGuy0jtaZ439OlJWZda/lADWiqtM/WuEA++A7SZjcjtT1D1WQxv20QWDO45 ZTmdT0H7HZo4FeWVNxMMw241QWatm0KggwXHhqEOQtM9xnX8FpKFPqHQPvr7KZRZ +GQiXPt11wutAdZlA6YBVA/3YFpcUn1oGuAlRkSOddngPY42+CKLXBFTKdx+wiNQ KDU8JtTZ2UggpZ9Ly3I/ob2zB14Wj24iM9Pmghcml2Bn1xJw0lfuocFQKZLKgU9R Pu/1FG85cpelhPIVNez0d7ZfKp3OpDkLvbw5TOMWcicV8HvmpuWuodjOPCP9ngWv n7TrAu4xNPNsaQ== -----END CERTIFICATE-----Generated at Fri Dec 19 07:50:45 2025 by rpki-client