This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft (raw, json) Hash identifier: XIq4KUhX3fhBSZLjJR4bhCzpQ1M1oJSexoOktuOqs4c= Subject key identifier: F7:B8:FF:71:82:0C:5E:1C:02:B7:09:6C:08:5A:D6:9B:6C:C4:F7:24 Authority key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2 Certificate issuer: /CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2 Certificate serial: 019AF12E4B2E7AA2A97CE09372B7594B5445 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft Manifest number: 0BE8 Signing time: Sat 06 Dec 2025 01:02:14 +0000 Manifest this update: Sat 06 Dec 2025 01:02:14 +0000 Manifest next update: Sun 07 Dec 2025 01:02:14 +0000 Files and hashes: 1: aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl (hash: auDrZIFbmoaIcNKbFWqIL/1qv8jyWbLMkkNlATCAc2Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:4b:2e:7a:a2:a9:7c:e0:93:72:b7:59:4b:54:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2 Validity Not Before: Dec 6 01:02:14 2025 GMT Not After : Dec 7 01:02:14 2025 GMT Subject: CN=f7b8ff71820c5e1c02b7096c085ad69b6cc4f724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3c:27:54:9b:64:04:ad:5d:29:40:12:82:f1: cf:00:f9:22:b2:86:03:8f:47:12:b7:8d:de:fb:f2: 7e:0d:1e:17:6c:ae:24:6b:f0:63:ac:07:c7:e8:80: 19:5f:2a:d1:5c:fa:62:66:64:05:88:2d:e7:3a:74: 2c:3f:70:77:40:d8:90:3b:50:4c:19:05:4e:e1:e4: 9a:65:69:f3:0d:1b:f1:73:70:5c:4c:88:30:66:32: b4:2a:3f:ac:3a:30:14:70:82:63:95:e1:9f:5d:7e: a8:15:e5:4a:00:80:a0:c6:af:77:a8:e5:dd:a1:9d: 1b:13:e5:94:8e:27:b5:f0:65:7c:b7:8e:63:c9:43: b7:34:8a:f6:72:7f:4c:38:8f:e3:fa:9b:06:db:7e: 9e:24:75:83:be:c9:9d:74:8c:34:c1:47:8a:64:c0: 9e:f4:ee:6e:b0:03:50:e5:f0:af:54:85:f1:d3:b2: 06:31:c3:1d:ba:ee:de:41:5e:aa:fd:e3:fc:10:49: e4:e3:ab:f5:74:85:86:26:eb:b5:40:10:74:6d:1c: b2:2d:f3:92:a5:22:6c:56:d3:1f:72:14:54:54:9e: 1e:56:d2:64:13:52:1b:3a:69:76:32:b3:af:3f:a9: 5f:00:0f:18:6f:dd:d7:14:2d:4c:2b:0e:19:ea:6b: 3c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B8:FF:71:82:0C:5E:1C:02:B7:09:6C:08:5A:D6:9B:6C:C4:F7:24 X509v3 Authority Key Identifier: keyid:69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:8c:67:db:40:54:ab:66:c2:6c:f9:24:04:ac:e7:89:52:1d: 86:9f:00:5c:97:4e:bb:15:c0:1a:e6:97:25:17:05:3c:99:10: b1:a2:20:e6:7a:d5:4d:e9:c2:5a:87:df:33:34:9b:fe:d1:79: b6:7e:ad:6c:3c:52:73:1c:31:2b:80:84:3d:83:92:6c:19:11: 39:f0:f0:55:06:ef:60:d8:3a:40:48:15:00:de:0c:11:18:35: 42:89:a3:80:69:ee:0c:5f:1d:c3:23:ef:f3:cc:f6:c4:db:2f: de:53:86:9c:4b:9d:fc:99:fe:03:1c:eb:a1:bb:8c:55:95:fe: 17:37:bd:51:a0:c9:5f:2e:ea:9c:93:7e:87:9d:08:2b:90:d8: 6b:38:6b:b4:d1:96:6f:73:f4:e5:4f:95:82:b7:b1:41:bb:72: 18:8f:00:20:79:56:97:f3:1b:8a:c4:e5:95:d2:7e:8e:90:af: 2c:8e:d8:10:3c:eb:d1:53:7d:a0:66:5b:84:5d:0a:1f:82:a5: 89:22:07:1c:a6:1c:bf:dd:ef:f1:14:91:cc:8b:1f:ca:c8:72: 3e:94:96:d9:b6:20:64:81:4a:0a:01:a7:65:c9:ed:92:cf:6f: a4:5b:1c:c9:dd:5b:eb:f2:f7:a3:38:41:50:10:d2:f7:9a:8b: 69:2a:e1:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLksueqKpfOCTcrdZS1RFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZTNhZDhiMDIyNDUyMWNkMGFlNzQ5MmM2OTRiYzJkNGVl MWZkYjIwHhcNMjUxMjA2MDEwMjE0WhcNMjUxMjA3MDEwMjE0WjAzMTEwLwYDVQQD EyhmN2I4ZmY3MTgyMGM1ZTFjMDJiNzA5NmMwODVhZDY5YjZjYzRmNzI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzwnVJtkBK1dKUASgvHPAPkisoYD j0cSt43e+/J+DR4XbK4ka/BjrAfH6IAZXyrRXPpiZmQFiC3nOnQsP3B3QNiQO1BM GQVO4eSaZWnzDRvxc3BcTIgwZjK0Kj+sOjAUcIJjleGfXX6oFeVKAICgxq93qOXd oZ0bE+WUjie18GV8t45jyUO3NIr2cn9MOI/j+psG236eJHWDvsmddIw0wUeKZMCe 9O5usANQ5fCvVIXx07IGMcMduu7eQV6q/eP8EEnk46v1dIWGJuu1QBB0bRyyLfOS pSJsVtMfchRUVJ4eVtJkE1IbOml2MrOvP6lfAA8Yb93XFC1MKw4Z6ms8XQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPe4/3GCDF4cArcJbAha1ptsxPckMB8GA1UdIwQY MBaAFGnjrYsCJFIc0K50ksaUvC1O4f2yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iZDhlYzEtMTdhNC00NGRmLTg4M2Qt ZTk3ZDIyNmZiZWVhLzEvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9iZDhlYzEtMTdhNC00NGRmLTg4M2QtZTk3ZDIyNmZiZWVh LzEvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANYxn20BU q2bCbPkkBKzniVIdhp8AXJdOuxXAGuaXJRcFPJkQsaIg5nrVTenCWoffMzSb/tF5 tn6tbDxScxwxK4CEPYOSbBkROfDwVQbvYNg6QEgVAN4MERg1QomjgGnuDF8dwyPv 88z2xNsv3lOGnEud/Jn+AxzrobuMVZX+Fze9UaDJXy7qnJN+h50IK5DYazhrtNGW b3P05U+VgrexQbtyGI8AIHlWl/MbisTlldJ+jpCvLI7YEDzr0VN9oGZbhF0KH4Kl iSIHHKYcv93v8RSRzIsfyshyPpSW2bYgZIFKCgGnZcntks9vpFscyd1b6/L3ozhB UBDS95qLaSrhrg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:11 2025 by rpki-client