This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft File: 0BqOdIpGO0lQg_dHaROSBdyzObY.mft (raw, json) Hash identifier: YKeYSvzJMy6cjAEljQvAJMrFsd8qVWy8DDuOuZF2s9g= Subject key identifier: 15:43:1D:60:9D:89:26:C8:EC:07:95:DD:8C:E1:04:E5:5D:23:ED:3D Authority key identifier: D0:1A:8E:74:8A:46:3B:49:50:83:F7:47:69:13:92:05:DC:B3:39:B6 Certificate issuer: /CN=d01a8e748a463b495083f74769139205dcb339b6 Certificate serial: 019AF16433864CF4C47FCAF6E81C7D07DEEA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft Manifest number: A4 Signing time: Sat 06 Dec 2025 02:01:06 +0000 Manifest this update: Sat 06 Dec 2025 02:01:06 +0000 Manifest next update: Sun 07 Dec 2025 02:01:06 +0000 Files and hashes: 1: 0BqOdIpGO0lQg_dHaROSBdyzObY.crl (hash: qW53PfMOb5i3llo+e1JgpvbjUNW9IBRS4PL+U5OG9iE=) 2: Ni9cQ-__7IlFIEScWKkm8nTwcNM.roa (hash: KZYmuutPEp1K/Rtla/BK3MqBgIvimyKNEmmqmQ1JLcU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.crl rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:33:86:4c:f4:c4:7f:ca:f6:e8:1c:7d:07:de:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d01a8e748a463b495083f74769139205dcb339b6 Validity Not Before: Dec 6 02:01:06 2025 GMT Not After : Dec 7 02:01:06 2025 GMT Subject: CN=15431d609d8926c8ec0795dd8ce104e55d23ed3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:4d:70:03:44:a9:ff:a1:06:9c:8e:c8:93: e4:97:6a:5f:3f:4b:6f:67:d0:65:c8:1b:e5:42:e3: cf:d2:4a:6d:d0:81:d1:f4:4d:3e:11:88:01:fb:27: 85:25:08:6e:71:dc:08:a0:c5:b0:16:95:2f:b8:7b: d6:58:f4:a1:41:0c:03:74:d3:58:18:88:c9:a2:07: f4:9d:07:e1:eb:d3:d8:c3:36:a6:d3:12:27:91:95: 3e:fd:d8:77:f4:84:f9:e9:58:cc:a1:e9:2f:f5:6d: 95:2d:d3:ad:de:63:5f:6d:ac:ec:10:c9:a8:6a:90: af:80:b4:11:6e:b0:94:d3:e5:cd:d3:e0:89:97:de: a1:18:f4:71:a0:6f:13:ce:68:69:9c:1a:c8:fa:30: 94:7c:a9:57:65:e7:9a:86:8a:a1:29:94:4b:3f:db: fd:17:3f:90:52:81:d9:29:6a:d1:10:8d:42:e9:e3: 3a:c5:75:c7:5c:40:95:f9:00:cc:af:fe:8a:3d:e1: 72:13:4e:cb:eb:38:e9:97:9a:d0:fc:4c:22:50:be: 07:aa:06:e8:72:fe:d4:ad:82:ec:54:98:0b:17:78: 53:73:94:6f:5c:27:37:38:25:66:61:e1:d0:fd:5e: 16:ce:1d:f5:02:07:99:43:fc:1c:4d:9f:b0:fa:b8: 3f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:43:1D:60:9D:89:26:C8:EC:07:95:DD:8C:E1:04:E5:5D:23:ED:3D X509v3 Authority Key Identifier: keyid:D0:1A:8E:74:8A:46:3B:49:50:83:F7:47:69:13:92:05:DC:B3:39:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:c7:66:71:71:db:ad:d1:16:c1:6c:65:8f:aa:da:14:b9:48: 2c:0a:e5:46:26:f6:fc:ec:41:27:c7:51:10:1f:96:77:87:ef: ab:23:1c:21:97:5c:de:50:df:be:38:5b:c9:fd:fa:e4:e8:30: e4:ae:29:89:74:8a:d8:d0:86:fb:b5:9d:65:f8:fa:63:56:9d: a4:50:48:c1:83:49:ab:f0:fe:ec:d4:df:6e:b3:1e:fe:a3:56: 3d:bd:a7:31:c6:54:2c:fa:9a:40:a4:fa:28:d8:1b:b4:41:e6: e8:96:a9:8e:05:2a:1e:38:9d:1a:c4:67:0c:43:fb:d1:b8:1b: 99:9b:e0:a0:4f:78:45:c7:32:c4:76:7c:ef:2e:9f:c7:06:12: fe:75:5e:c7:75:fe:98:3c:21:7e:2a:b1:e3:2d:d7:87:a6:22: 37:d7:bf:b1:4f:d0:43:7b:df:4e:d3:77:8f:47:7e:64:8c:b2: f1:eb:c1:1f:1e:4d:f8:b3:d6:a8:b8:4c:8c:d1:67:b0:c1:5a: 2a:b0:e9:54:e4:6f:db:e9:50:da:69:ad:64:74:f7:67:4f:73: 9f:0b:b3:f2:18:e2:46:2f:81:5f:6c:57:0e:18:32:c0:40:45: e2:b8:7c:03:ee:be:72:d4:ea:71:72:f1:ec:7b:09:e2:c4:0f: af:db:72:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZDOGTPTEf8r26Bx9B97qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwMWE4ZTc0OGE0NjNiNDk1MDgzZjc0NzY5MTM5MjA1ZGNi MzM5YjYwHhcNMjUxMjA2MDIwMTA2WhcNMjUxMjA3MDIwMTA2WjAzMTEwLwYDVQQD EygxNTQzMWQ2MDlkODkyNmM4ZWMwNzk1ZGQ4Y2UxMDRlNTVkMjNlZDNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy51NcANEqf+hBpyOyJPkl2pfP0tv Z9BlyBvlQuPP0kpt0IHR9E0+EYgB+yeFJQhucdwIoMWwFpUvuHvWWPShQQwDdNNY GIjJogf0nQfh69PYwzam0xInkZU+/dh39IT56VjMoekv9W2VLdOt3mNfbazsEMmo apCvgLQRbrCU0+XN0+CJl96hGPRxoG8TzmhpnBrI+jCUfKlXZeeahoqhKZRLP9v9 Fz+QUoHZKWrREI1C6eM6xXXHXECV+QDMr/6KPeFyE07L6zjpl5rQ/EwiUL4Hqgbo cv7UrYLsVJgLF3hTc5RvXCc3OCVmYeHQ/V4Wzh31AgeZQ/wcTZ+w+rg/xQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBVDHWCdiSbI7AeV3YzhBOVdI+09MB8GA1UdIwQY MBaAFNAajnSKRjtJUIP3R2kTkgXcszm2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEJxT2RJcEdPMGxRZ19kSGFST1NCZHl6T2JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83ZmZiYTYtMjQ4OS00MDcyLTgyOTgt ZmUxYzg1NjcyOTdiLzEvMEJxT2RJcEdPMGxRZ19kSGFST1NCZHl6T2JZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83ZmZiYTYtMjQ4OS00MDcyLTgyOTgtZmUxYzg1NjcyOTdi LzEvMEJxT2RJcEdPMGxRZ19kSGFST1NCZHl6T2JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnsdmcXHb rdEWwWxlj6raFLlILArlRib2/OxBJ8dREB+Wd4fvqyMcIZdc3lDfvjhbyf365Ogw 5K4piXSK2NCG+7WdZfj6Y1adpFBIwYNJq/D+7NTfbrMe/qNWPb2nMcZULPqaQKT6 KNgbtEHm6JapjgUqHjidGsRnDEP70bgbmZvgoE94RccyxHZ87y6fxwYS/nVex3X+ mDwhfiqx4y3Xh6YiN9e/sU/QQ3vfTtN3j0d+ZIyy8evBHx5N+LPWqLhMjNFnsMFa KrDpVORv2+lQ2mmtZHT3Z09znwuz8hjiRi+BX2xXDhgywEBF4rh8A+6+ctTqcXLx 7HsJ4sQPr9tytQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:31:20 2025 by rpki-client