This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft File: cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft (raw, json) Hash identifier: 58mzhfZMCEskDosfvNNPWVnU/HkEiKrOFh+usvIVWV4= Subject key identifier: E1:1D:C3:3D:91:39:B1:17:26:FB:B6:16:17:1B:B7:58:26:FB:88:82 Authority key identifier: 70:EA:97:D1:62:6B:12:6F:59:1C:6F:B3:1E:8E:CB:89:39:DB:42:2A Certificate issuer: /CN=70ea97d1626b126f591c6fb31e8ecb8939db422a Certificate serial: 019AF19B3251E89FCB547CAA68991F6BED72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft Manifest number: 8B Signing time: Sat 06 Dec 2025 03:01:11 +0000 Manifest this update: Sat 06 Dec 2025 03:01:11 +0000 Manifest next update: Sun 07 Dec 2025 03:01:11 +0000 Files and hashes: 1: cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl (hash: mqF4IWfTaD9qEQJfHXtmQmo5mUM/yp4ewJbjpNp16OQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:32:51:e8:9f:cb:54:7c:aa:68:99:1f:6b:ed:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70ea97d1626b126f591c6fb31e8ecb8939db422a Validity Not Before: Dec 6 03:01:11 2025 GMT Not After : Dec 7 03:01:11 2025 GMT Subject: CN=e11dc33d9139b11726fbb616171bb75826fb8882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:60:6c:78:32:f9:b2:69:3c:f5:9c:2a:7a:3b: 41:b5:21:37:fc:80:d1:23:d1:7a:e3:04:28:53:08: 7c:55:20:83:61:25:82:3e:56:a7:05:ce:77:72:a8: 9f:9e:67:cb:aa:23:68:89:91:93:f2:00:b5:a5:b7: 8e:b3:8b:d8:be:1d:db:fb:48:17:fb:83:83:ff:aa: 8c:cc:75:3e:79:9c:20:66:b2:27:36:43:dd:fd:6a: d2:a6:48:6b:c9:c6:5c:61:31:d3:c4:7d:74:84:92: f2:1c:b7:59:32:4b:e1:d1:3c:59:65:52:71:08:75: 56:f6:da:d3:26:e4:e6:94:13:42:d2:25:f7:b6:09: 33:0f:9f:fe:15:1e:81:25:c0:b0:13:04:3f:58:35: 64:cb:44:63:af:5a:f0:81:64:66:4f:c5:c5:2c:ae: 01:04:b3:05:dc:45:4d:48:74:87:6a:af:13:fa:c1: ca:bc:87:0a:c3:19:ea:f5:35:14:2a:90:ad:b0:3d: 7c:fd:88:37:52:09:0b:69:53:8a:37:9a:4d:9e:19: ea:c6:6b:b4:92:70:96:b2:8c:2a:d9:1d:7e:0e:01: 2d:30:34:ec:80:12:af:7e:c7:a4:d1:c1:00:d9:c2: 92:c7:90:44:d8:b5:5a:ba:c7:cc:d2:78:47:de:01: e1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1D:C3:3D:91:39:B1:17:26:FB:B6:16:17:1B:B7:58:26:FB:88:82 X509v3 Authority Key Identifier: keyid:70:EA:97:D1:62:6B:12:6F:59:1C:6F:B3:1E:8E:CB:89:39:DB:42:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:ce:26:58:47:fe:47:59:c9:bb:8d:bc:ac:fd:59:b2:55:28: f4:13:50:5a:a7:47:c4:98:cd:9a:9d:09:d5:25:c1:ff:33:1e: 22:ed:2e:06:19:81:4e:fb:bf:b7:52:3b:7e:9f:2a:f6:16:7a: 7d:a4:a8:ca:0c:4e:3d:4a:d9:a0:e7:ca:b8:7b:49:9b:59:88: 68:68:20:a6:f3:50:c5:d0:c4:bd:61:14:6a:1f:d3:d8:e1:97: df:0b:89:f0:eb:f5:5c:32:65:27:f8:8e:6b:5d:fe:03:06:96: df:25:f4:d1:6c:c1:02:b2:05:ec:f6:58:9b:ea:43:67:50:88: 6b:20:61:f7:e5:94:96:e6:9b:d1:83:f1:8d:02:ac:ef:f1:97: cd:65:57:c1:d4:6f:e0:08:98:d3:60:af:b5:7f:b4:a3:bf:e9: 5a:6a:49:15:20:b4:e4:8f:80:4b:4d:f2:03:39:ed:99:b7:c3: bb:17:1d:87:62:14:1b:a6:10:ae:f2:9f:a3:50:ec:8a:66:18: 66:84:63:2f:73:57:1a:e2:91:09:f3:70:fa:a9:22:ef:5c:24: 88:19:05:ff:6c:bd:4f:43:4e:3e:c2:b5:55:88:c9:a6:85:0a: 66:eb:95:dd:6d:3c:ef:c0:4b:57:d9:d2:f7:ac:30:fa:db:5a: 99:4d:5a:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmzJR6J/LVHyqaJkfa+1yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZWE5N2QxNjI2YjEyNmY1OTFjNmZiMzFlOGVjYjg5Mzlk YjQyMmEwHhcNMjUxMjA2MDMwMTExWhcNMjUxMjA3MDMwMTExWjAzMTEwLwYDVQQD EyhlMTFkYzMzZDkxMzliMTE3MjZmYmI2MTYxNzFiYjc1ODI2ZmI4ODgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGBseDL5smk89ZwqejtBtSE3/IDR I9F64wQoUwh8VSCDYSWCPlanBc53cqifnmfLqiNoiZGT8gC1pbeOs4vYvh3b+0gX +4OD/6qMzHU+eZwgZrInNkPd/WrSpkhrycZcYTHTxH10hJLyHLdZMkvh0TxZZVJx CHVW9trTJuTmlBNC0iX3tgkzD5/+FR6BJcCwEwQ/WDVky0Rjr1rwgWRmT8XFLK4B BLMF3EVNSHSHaq8T+sHKvIcKwxnq9TUUKpCtsD18/Yg3UgkLaVOKN5pNnhnqxmu0 knCWsowq2R1+DgEtMDTsgBKvfsek0cEA2cKSx5BE2LVausfM0nhH3gHh4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOEdwz2RObEXJvu2Fhcbt1gm+4iCMB8GA1UdIwQY MBaAFHDql9FiaxJvWRxvsx6Oy4k520IqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY09xWDBXSnJFbTlaSEctekhvN0xpVG5iUWlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9iNjM1NjktYTI2Ny00MTQ0LWFkMzAt ZWM5YTdkMWJkZjViLzEvY09xWDBXSnJFbTlaSEctekhvN0xpVG5iUWlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9iNjM1NjktYTI2Ny00MTQ0LWFkMzAtZWM5YTdkMWJkZjVi LzEvY09xWDBXSnJFbTlaSEctekhvN0xpVG5iUWlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARM4mWEf+ R1nJu428rP1ZslUo9BNQWqdHxJjNmp0J1SXB/zMeIu0uBhmBTvu/t1I7fp8q9hZ6 faSoygxOPUrZoOfKuHtJm1mIaGggpvNQxdDEvWEUah/T2OGX3wuJ8Ov1XDJlJ/iO a13+AwaW3yX00WzBArIF7PZYm+pDZ1CIayBh9+WUluab0YPxjQKs7/GXzWVXwdRv 4AiY02CvtX+0o7/pWmpJFSC05I+AS03yAzntmbfDuxcdh2IUG6YQrvKfo1DsimYY ZoRjL3NXGuKRCfNw+qki71wkiBkF/2y9T0NOPsK1VYjJpoUKZuuV3W0878BLV9nS 96ww+ttamU1a6A== -----END CERTIFICATE-----Generated at Sat Dec 6 08:26:19 2025 by rpki-client