This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json) Hash identifier: WtFW9/aJ3sNHCSJqhFi2oH45Wxv09ndeq6UhhtoNSxo= Subject key identifier: 03:B7:56:82:80:9E:65:E0:A2:8D:37:9F:0A:FB:96:A4:2C:F8:03:6E Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f Certificate serial: 019AF1641DF2E6E7D30E7F3FAA44073FF07A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft Manifest number: 06BC Signing time: Sat 06 Dec 2025 02:01:01 +0000 Manifest this update: Sat 06 Dec 2025 02:01:01 +0000 Manifest next update: Sun 07 Dec 2025 02:01:01 +0000 Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=) 2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: cESOBKxuxjYVnOskDFt+UtBHGj1phCEQVD3+9nnwpXQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:1d:f2:e6:e7:d3:0e:7f:3f:aa:44:07:3f:f0:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f Validity Not Before: Dec 6 02:01:01 2025 GMT Not After : Dec 7 02:01:01 2025 GMT Subject: CN=03b75682809e65e0a28d379f0afb96a42cf8036e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e6:b0:be:9b:89:64:3c:28:d1:db:00:41:b6: b0:b7:54:15:33:46:16:ad:1a:ee:da:75:3f:d2:b2: dc:8b:ac:b9:04:3e:81:c2:ea:e7:99:12:9b:b5:df: 3e:c3:8f:eb:66:54:f0:fc:01:d0:6a:c4:a4:00:d8: 3d:f0:e8:83:c9:4f:fd:9c:e1:da:19:e1:0d:58:50: 8b:cd:e8:9e:66:3d:6e:47:89:ff:e1:a4:71:f4:34: 98:b5:51:92:1f:9c:ee:44:02:ac:de:1b:f5:1c:bf: 72:f7:72:41:42:a3:9d:f2:47:27:6a:60:9c:56:ee: fc:3a:8e:3c:26:e0:7c:f9:f0:a3:4c:32:37:9f:46: 9f:5a:6e:3d:8c:5b:49:5c:7a:bd:d1:eb:a4:bc:d5: a7:50:fa:b4:de:0a:d4:0a:d9:b0:10:d8:f4:8b:7b: 4f:64:0a:de:66:b6:88:9b:98:0b:5e:1a:08:d7:65: 42:b7:bf:a0:2c:ec:35:85:f2:e9:de:41:0d:a5:0b: 52:cc:a9:5e:1d:87:46:74:f2:ca:7d:11:b6:1b:38: 72:41:56:34:97:e3:99:a6:93:dd:e9:53:7c:86:ba: 98:3f:1c:bd:d3:79:80:3f:6a:fa:63:ca:17:81:c7: e2:de:fd:c2:d1:bf:e9:e1:24:dc:c6:60:4d:29:91: 62:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B7:56:82:80:9E:65:E0:A2:8D:37:9F:0A:FB:96:A4:2C:F8:03:6E X509v3 Authority Key Identifier: keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:80:fb:64:02:70:e6:0d:7d:42:49:92:b5:1c:77:6d:03:5f: 13:6e:d9:9f:5c:88:37:6b:d1:18:15:d6:72:44:96:77:25:64: 3a:60:b6:ee:ff:ef:73:12:2b:e0:95:08:11:66:3b:47:cc:bc: 63:ab:dc:fc:be:f6:28:f0:d4:e3:f3:68:4b:a5:c2:09:c5:2e: 37:9c:1b:0e:3f:e6:e5:6c:3e:d4:c8:cc:25:be:a4:8d:5c:a0: 6b:1a:b4:c6:00:cf:ee:d6:04:b0:d3:65:f8:dc:89:58:77:b0: 54:79:0c:90:2e:af:f1:77:50:58:74:65:1d:71:28:b9:47:a8: 08:fa:19:10:bf:98:a5:c8:72:99:53:cc:9e:be:9b:1b:96:1e: f8:0b:58:8f:b3:cd:28:c6:58:dd:da:b0:7e:38:e9:ed:01:c4: 16:cc:b6:ed:66:b2:dd:fd:ab:5c:df:81:89:cb:c5:73:be:5f: 8a:79:b3:a2:09:ab:7d:09:ce:a1:2e:14:76:b1:5a:02:62:72: 80:0c:62:00:81:cd:36:41:0c:94:0e:c7:de:8e:be:f0:08:0e: 50:93:08:5d:2b:01:af:ba:42:7e:8f:a1:10:3d:ee:93:32:7f: d2:08:63:ef:08:82:e0:59:38:3e:5a:57:ed:ed:58:f1:8a:fd: 17:28:92:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZB3y5ufTDn8/qkQHP/B6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwOWZkYTA0N2IzYTBiMWM4MjA0MzVlNjk5Mzg4NjYwZGEz MmM2M2YwHhcNMjUxMjA2MDIwMTAxWhcNMjUxMjA3MDIwMTAxWjAzMTEwLwYDVQQD EygwM2I3NTY4MjgwOWU2NWUwYTI4ZDM3OWYwYWZiOTZhNDJjZjgwMzZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+awvpuJZDwo0dsAQbawt1QVM0YW rRru2nU/0rLci6y5BD6BwurnmRKbtd8+w4/rZlTw/AHQasSkANg98OiDyU/9nOHa GeENWFCLzeieZj1uR4n/4aRx9DSYtVGSH5zuRAKs3hv1HL9y93JBQqOd8kcnamCc Vu78Oo48JuB8+fCjTDI3n0afWm49jFtJXHq90eukvNWnUPq03grUCtmwENj0i3tP ZAreZraIm5gLXhoI12VCt7+gLOw1hfLp3kENpQtSzKleHYdGdPLKfRG2GzhyQVY0 l+OZppPd6VN8hrqYPxy903mAP2r6Y8oXgcfi3v3C0b/p4STcxmBNKZFiJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAO3VoKAnmXgoo03nwr7lqQs+ANuMB8GA1UdIwQY MBaAFKCf2gR7OgscggQ15pk4hmDaMsY/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWIt Mjk5MjBlNTE2N2Q5LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWItMjk5MjBlNTE2N2Q5 LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF4D7ZAJw 5g19QkmStRx3bQNfE27Zn1yIN2vRGBXWckSWdyVkOmC27v/vcxIr4JUIEWY7R8y8 Y6vc/L72KPDU4/NoS6XCCcUuN5wbDj/m5Ww+1MjMJb6kjVygaxq0xgDP7tYEsNNl +NyJWHewVHkMkC6v8XdQWHRlHXEouUeoCPoZEL+YpchymVPMnr6bG5Ye+AtYj7PN KMZY3dqwfjjp7QHEFsy27Way3f2rXN+BicvFc75finmzogmrfQnOoS4UdrFaAmJy gAxiAIHNNkEMlA7H3o6+8AgOUJMIXSsBr7pCfo+hED3ukzJ/0ghj7wiC4Fk4PlpX 7e1Y8Yr9FyiSCQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:09 2025 by rpki-client