This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft File: aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft (raw, json) Hash identifier: h1+F03SaMIY2ZfXlUy9g/6F478HKZ+ozzaAuW9jO2o4= Subject key identifier: 00:4A:41:D3:C0:4C:56:2E:85:90:DA:A4:87:E8:D0:4E:A7:87:69:11 Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28 Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28 Certificate serial: 019AF31BB1DA384A5E2BED6E5FA600B617E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft Manifest number: 0BCB Signing time: Sat 06 Dec 2025 10:01:09 +0000 Manifest this update: Sat 06 Dec 2025 10:01:09 +0000 Manifest next update: Sun 07 Dec 2025 10:01:09 +0000 Files and hashes: 1: PecnHh8YFMYIBEgD1PQBC-sYFMY.roa (hash: G67Iyj0Q7isunYlJO9b465cfL0xQGyEo+TS/2SlDQcA=) 2: aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl (hash: Fnxz2plBzQHkhL4CUhjRfjXaUqw6lF01ocKuHGpWYRc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:b1:da:38:4a:5e:2b:ed:6e:5f:a6:00:b6:17:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28 Validity Not Before: Dec 6 10:01:09 2025 GMT Not After : Dec 7 10:01:09 2025 GMT Subject: CN=004a41d3c04c562e8590daa487e8d04ea7876911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7c:83:1d:a7:52:af:05:5c:d1:f9:80:72:f3: 59:75:07:8a:ca:50:34:39:41:d1:f2:e9:00:d1:c3: d5:43:f4:a0:00:98:03:67:6e:76:13:0c:dc:9f:eb: 2a:bd:92:9c:82:18:18:df:52:f3:79:26:f8:f4:47: aa:83:10:02:89:1f:3f:92:aa:83:0d:0b:15:1f:7f: fa:66:24:dc:0e:89:d7:28:31:cd:fc:cb:ee:29:29: 41:15:14:8a:5e:3e:f0:c4:59:b1:d0:ba:c9:a7:a0: 94:7b:b7:fb:36:0a:08:56:a5:ad:77:6d:5a:51:04: 59:36:f2:33:66:f9:a2:de:65:e1:bf:89:57:35:94: 97:a6:55:ff:22:98:51:be:82:72:0d:b1:30:0f:f6: 13:4c:88:c9:ff:cd:bb:a1:7f:5a:d3:42:1f:c4:44: 26:fe:b9:41:7e:ce:38:8d:37:df:ae:b7:95:b7:ef: a9:c9:99:3f:44:0f:0a:8c:73:78:e9:0b:05:a3:3c: c7:08:47:9b:a4:bd:20:44:2e:0b:44:8f:3f:38:e5: 7f:45:16:ba:cd:e4:d8:a3:4d:2f:00:10:f2:fe:b5: 4e:bb:b9:2d:7c:3a:c2:56:eb:0f:b3:15:01:e9:65: 99:95:65:2f:92:3f:94:fb:cd:5b:46:c1:11:7b:a1: 12:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:4A:41:D3:C0:4C:56:2E:85:90:DA:A4:87:E8:D0:4E:A7:87:69:11 X509v3 Authority Key Identifier: keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e4:d3:33:e0:f9:a2:64:6b:a8:fb:fd:71:3b:94:74:bd:c9: 62:12:6d:8a:ca:d5:9f:66:f5:52:a9:74:41:35:3a:84:f1:19: 15:49:3d:ad:ed:18:03:9a:84:84:2e:ed:b0:d9:b6:3f:04:e8: ce:ed:ec:8d:3b:82:2f:2c:43:d0:4c:f9:69:40:6d:6d:d8:ba: 4e:04:21:df:df:2b:b6:72:4b:05:d9:f3:04:15:c4:95:fa:e3: 17:5e:27:7d:a5:1b:50:71:19:a1:c8:98:49:1a:13:d4:e8:02: 2d:f2:92:3c:3b:f8:6a:40:59:78:53:b0:ed:d5:45:e9:f0:dd: de:f5:a7:dc:af:1a:b2:1a:da:0d:83:7c:48:64:00:e4:94:36: 6a:4e:50:69:87:9f:5c:9b:4b:58:4b:26:69:ae:7f:73:bb:23: c2:cd:df:d6:82:24:0b:6a:fd:b2:26:35:4e:46:08:b6:fd:6e: 18:61:ad:23:69:9c:76:cd:b3:7f:57:9c:3b:5b:45:9e:07:80: 98:b2:ed:df:24:ae:de:94:99:41:36:1c:d9:68:8c:e7:c3:a9: 42:c6:81:cc:26:ad:1c:9a:25:07:74:29:ed:ea:f8:96:82:4d: c6:3e:28:1b:ee:3e:a6:b6:a2:4e:dc:06:bf:da:82:7e:52:e2: 74:8c:11:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG7HaOEpeK+1uX6YAthfnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4M2IzM2RjNzIxOGIzZmU4ODNjNDk1MDUxMzRjYjM5YTY2 NGZkMjgwHhcNMjUxMjA2MTAwMTA5WhcNMjUxMjA3MTAwMTA5WjAzMTEwLwYDVQQD EygwMDRhNDFkM2MwNGM1NjJlODU5MGRhYTQ4N2U4ZDA0ZWE3ODc2OTExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXyDHadSrwVc0fmAcvNZdQeKylA0 OUHR8ukA0cPVQ/SgAJgDZ252Ewzcn+sqvZKcghgY31LzeSb49EeqgxACiR8/kqqD DQsVH3/6ZiTcDonXKDHN/MvuKSlBFRSKXj7wxFmx0LrJp6CUe7f7NgoIVqWtd21a UQRZNvIzZvmi3mXhv4lXNZSXplX/IphRvoJyDbEwD/YTTIjJ/827oX9a00IfxEQm /rlBfs44jTffrreVt++pyZk/RA8KjHN46QsFozzHCEebpL0gRC4LRI8/OOV/RRa6 zeTYo00vABDy/rVOu7ktfDrCVusPsxUB6WWZlWUvkj+U+81bRsERe6ESLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFABKQdPATFYuhZDapIfo0E6nh2kRMB8GA1UdIwQY MBaAFGg7M9xyGLP+iDxJUFE0yzmmZP0oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEt MTRjNmI5NTRkOTc2LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEtMTRjNmI5NTRkOTc2 LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADOTTM+D5 omRrqPv9cTuUdL3JYhJtisrVn2b1Uql0QTU6hPEZFUk9re0YA5qEhC7tsNm2PwTo zu3sjTuCLyxD0Ez5aUBtbdi6TgQh398rtnJLBdnzBBXElfrjF14nfaUbUHEZociY SRoT1OgCLfKSPDv4akBZeFOw7dVF6fDd3vWn3K8ashraDYN8SGQA5JQ2ak5QaYef XJtLWEsmaa5/c7sjws3f1oIkC2r9siY1TkYItv1uGGGtI2mcds2zf1ecO1tFngeA mLLt3ySu3pSZQTYc2WiM58OpQsaBzCatHJolB3Qp7er4loJNxj4oG+4+praiTtwG v9qCflLidIwRig== -----END CERTIFICATE-----Generated at Sat Dec 6 13:07:39 2025 by rpki-client