This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft File: 4OkqeIpBBX0ndk8W87HSo-9jRdY.mft (raw, json) Hash identifier: Y+YSUgefDL0MDZiwEyiUvOJBf03RnAewW1kMjcBYs1I= Subject key identifier: 6F:36:5E:B5:A5:73:29:E9:92:9B:3C:03:9F:1B:55:3C:24:3D:29:B2 Authority key identifier: E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6 Certificate issuer: /CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6 Certificate serial: 019AF19B6E3C379E9D7CF9CBC98C78D916D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 03:01:26 +0000 Manifest this update: Sat 06 Dec 2025 03:01:26 +0000 Manifest next update: Sun 07 Dec 2025 03:01:26 +0000 Files and hashes: 1: 4OkqeIpBBX0ndk8W87HSo-9jRdY.crl (hash: TPP+03cS+UQ/2DqEM9pGGm254kUXsnDmQqGbggxJb1c=) 2: BL-NDYgvhNS3ykN2bZ3XYSmCEZI.roa (hash: fBvbXWPI6WfZJHj+SHtFQme53z0G5Q3tNcbJRdIO7rA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:6e:3c:37:9e:9d:7c:f9:cb:c9:8c:78:d9:16:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6 Validity Not Before: Dec 6 03:01:26 2025 GMT Not After : Dec 7 03:01:26 2025 GMT Subject: CN=6f365eb5a57329e9929b3c039f1b553c243d29b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b8:e9:36:c6:34:de:01:94:80:73:5b:c4:d5: 8f:c0:a4:75:41:be:3d:d3:3c:a1:aa:10:91:ab:72: 26:1f:c1:4c:0c:d8:8f:22:f4:4e:2b:95:d8:de:77: af:35:57:60:43:9f:b5:14:be:cb:59:c5:b6:38:67: c6:68:19:db:d3:f4:8b:12:f3:ed:3b:83:d8:42:cc: 2e:4a:c7:f6:eb:2e:1f:31:7f:ad:0f:a8:55:6a:d9: dc:d3:80:4d:af:54:ee:e0:28:ea:40:c7:59:b9:3b: c5:49:f0:51:be:ae:46:a1:e8:be:e9:9d:9d:cf:3d: 8a:58:e6:1b:05:f9:38:3d:76:49:6f:77:f2:20:1a: 88:09:2a:4f:6d:88:74:d9:59:44:e8:6a:e5:ba:b1: 41:dc:ac:fe:ff:c4:e8:af:34:a7:5b:e4:87:fa:62: 44:9f:e9:a3:88:91:55:8b:1c:5c:ab:31:ad:51:9b: a6:82:d9:f5:cc:98:c3:d0:05:b1:75:be:78:e0:a6: 2f:27:ca:bc:83:92:a9:63:70:a6:0a:84:cb:fa:e4: 5a:a6:c7:dc:1f:f5:12:76:3e:b4:2a:0a:31:25:72: 3b:e3:ad:d0:16:ef:68:13:85:d0:a8:b6:e5:43:0b: c2:22:16:37:79:be:15:a3:9e:2b:83:43:0c:10:3e: c9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:36:5E:B5:A5:73:29:E9:92:9B:3C:03:9F:1B:55:3C:24:3D:29:B2 X509v3 Authority Key Identifier: keyid:E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:85:7f:fe:7a:00:b0:88:f6:5c:02:43:a4:b7:ad:90:5a:c2: 92:f2:84:1a:5a:4d:45:39:7b:4f:0e:3e:23:b1:11:33:50:17: 2a:32:b6:e6:92:47:0d:d8:85:b2:33:cb:be:1d:cd:38:66:ec: ea:3d:91:e1:f2:5f:20:f3:56:5b:f3:0d:65:2d:80:1c:92:72: 2a:dd:4f:e3:12:56:f8:7a:9a:0e:fd:21:27:4b:15:dd:7d:c1: 6b:c4:b5:ae:13:b5:a1:ae:79:6b:54:bd:c7:fa:6d:c0:b2:d1: 92:5e:9c:eb:25:4a:00:1d:d0:dd:71:98:59:2d:b3:e2:cb:33: 08:48:5e:9b:bd:af:c7:0d:e6:ca:22:e1:5d:7c:07:1e:55:8d: c0:6b:e9:00:b1:95:d0:15:93:90:83:f9:a5:86:c7:4b:9f:8b: 36:8d:c4:75:48:4d:ad:9e:6b:32:a5:fe:e8:ff:8a:e1:e5:74: 95:bd:40:44:8d:ef:b3:f0:b6:ff:31:e2:44:fc:07:82:b8:33: 7f:60:82:c3:d3:db:b2:75:37:72:e0:6d:0a:d8:5f:83:7c:7c: 8c:24:73:c6:2d:de:d5:9a:e9:f1:f4:90:01:a3:c2:e9:49:68: 87:ca:7d:db:91:e8:b8:7a:48:17:3a:bc:29:e9:11:e0:b9:23: 24:d6:d7:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm248N56dfPnLyYx42RbWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwZTkyYTc4OGE0MTA1N2QyNzc2NGYxNmYzYjFkMmEzZWY2 MzQ1ZDYwHhcNMjUxMjA2MDMwMTI2WhcNMjUxMjA3MDMwMTI2WjAzMTEwLwYDVQQD Eyg2ZjM2NWViNWE1NzMyOWU5OTI5YjNjMDM5ZjFiNTUzYzI0M2QyOWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bjpNsY03gGUgHNbxNWPwKR1Qb49 0zyhqhCRq3ImH8FMDNiPIvROK5XY3nevNVdgQ5+1FL7LWcW2OGfGaBnb0/SLEvPt O4PYQswuSsf26y4fMX+tD6hVatnc04BNr1Tu4CjqQMdZuTvFSfBRvq5Goei+6Z2d zz2KWOYbBfk4PXZJb3fyIBqICSpPbYh02VlE6GrlurFB3Kz+/8TorzSnW+SH+mJE n+mjiJFVixxcqzGtUZumgtn1zJjD0AWxdb544KYvJ8q8g5KpY3CmCoTL+uRapsfc H/USdj60KgoxJXI7463QFu9oE4XQqLblQwvCIhY3eb4Vo54rg0MMED7JCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG82XrWlcynpkps8A58bVTwkPSmyMB8GA1UdIwQY MBaAFODpKniKQQV9J3ZPFvOx0qPvY0XWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNE9rcWVJcEJCWDBuZGs4Vzg3SFNvLTlqUmRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9kNDY0ODctNDNmZi00NWVlLTgyMjgt YmE1OWZiMmM0NjEwLzEvNE9rcWVJcEJCWDBuZGs4Vzg3SFNvLTlqUmRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC9kNDY0ODctNDNmZi00NWVlLTgyMjgtYmE1OWZiMmM0NjEw LzEvNE9rcWVJcEJCWDBuZGs4Vzg3SFNvLTlqUmRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmoV//noA sIj2XAJDpLetkFrCkvKEGlpNRTl7Tw4+I7ERM1AXKjK25pJHDdiFsjPLvh3NOGbs 6j2R4fJfIPNWW/MNZS2AHJJyKt1P4xJW+HqaDv0hJ0sV3X3Ba8S1rhO1oa55a1S9 x/ptwLLRkl6c6yVKAB3Q3XGYWS2z4sszCEhem72vxw3myiLhXXwHHlWNwGvpALGV 0BWTkIP5pYbHS5+LNo3EdUhNrZ5rMqX+6P+K4eV0lb1ARI3vs/C2/zHiRPwHgrgz f2CCw9PbsnU3cuBtCthfg3x8jCRzxi3e1Zrp8fSQAaPC6Uloh8p925HouHpIFzq8 KekR4LkjJNbXjg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:06:47 2025 by rpki-client