This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft File: pOd3fHr7fUObRvaBxMe_aoJS4xU.mft (raw, json) Hash identifier: YTNLMx1/425AX/Q9zETItEXcq2k8pc+b///TvRTSQMo= Subject key identifier: E9:AB:18:0F:12:DB:77:1E:4E:63:91:C3:87:80:FE:3B:C9:03:DE:EB Authority key identifier: A4:E7:77:7C:7A:FB:7D:43:9B:46:F6:81:C4:C7:BF:6A:82:52:E3:15 Certificate issuer: /CN=a4e7777c7afb7d439b46f681c4c7bf6a8252e315 Certificate serial: 019AF12D6FBF80564F6BBE8291DB17C2D817 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft Manifest number: 0E4C Signing time: Sat 06 Dec 2025 01:01:18 +0000 Manifest this update: Sat 06 Dec 2025 01:01:18 +0000 Manifest next update: Sun 07 Dec 2025 01:01:18 +0000 Files and hashes: 1: pOd3fHr7fUObRvaBxMe_aoJS4xU.crl (hash: wc9uaeKSzilLiKsrkmBFWYTaOkknyTHsxnO9RUT5bZI=) 2: z4rUk_E4AGcR7M7P_EXqaAGwIrE.roa (hash: vdPESCF/t7U31UD2O57fuph7iNy0Hlzj8MYZvwZ4bj4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.crl rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:6f:bf:80:56:4f:6b:be:82:91:db:17:c2:d8:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4e7777c7afb7d439b46f681c4c7bf6a8252e315 Validity Not Before: Dec 6 01:01:18 2025 GMT Not After : Dec 7 01:01:18 2025 GMT Subject: CN=e9ab180f12db771e4e6391c38780fe3bc903deeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:93:a2:b4:c4:ce:86:89:ac:66:36:39:08:d3: 8e:97:c5:23:ea:df:40:45:67:c7:9e:2d:b8:1b:f0: b0:18:e6:63:2e:73:83:59:06:ef:ef:12:cf:4c:ed: f4:3d:70:5f:dd:82:1d:a5:52:8d:a5:5c:5c:aa:a1: b0:58:a2:11:df:c1:0c:e5:4e:d9:cc:4b:5d:cd:a6: 23:a8:d4:89:a2:0b:1d:b4:20:f8:b3:cf:95:32:5e: dc:4c:8a:13:b4:31:46:78:8e:25:27:6c:ee:ff:3c: 7c:06:83:91:c1:92:f8:f5:a8:18:db:00:ef:19:19: 27:9f:9b:6c:2d:37:4e:fd:86:dc:ee:03:87:b4:aa: b8:88:89:09:30:ae:9f:aa:76:72:9b:53:5a:5d:c1: 33:19:60:2e:f2:d5:cb:cf:5c:66:8c:f8:55:18:7e: b9:60:60:f5:3d:07:31:e5:44:df:38:2a:ab:a7:2c: 0d:a3:9a:d1:8b:fa:b6:1b:5a:ec:34:65:bf:cb:1d: 67:1a:b0:d1:a2:81:c2:7b:48:78:b8:cb:36:22:0b: d7:91:0e:80:bc:59:4d:a6:18:04:62:13:27:2c:84: db:f4:3c:67:de:d0:d9:d8:f3:a2:51:ba:fe:b4:de: 61:b7:19:ef:41:1f:e1:9e:3a:dc:18:0f:58:86:4a: dd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:AB:18:0F:12:DB:77:1E:4E:63:91:C3:87:80:FE:3B:C9:03:DE:EB X509v3 Authority Key Identifier: keyid:A4:E7:77:7C:7A:FB:7D:43:9B:46:F6:81:C4:C7:BF:6A:82:52:E3:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:86:cb:68:34:1d:4c:52:c9:00:e3:53:e2:d2:56:52:d2:a4: bb:de:67:61:f7:8b:64:e5:fc:f6:14:7f:6f:32:de:cf:ab:9c: 29:1c:f6:93:6a:e3:8b:9c:c3:dc:7f:46:66:03:c1:02:d6:8f: f2:f2:5b:8b:d3:78:15:62:a8:4f:2c:82:63:f7:69:09:0e:88: f5:08:81:92:fc:94:29:30:28:3c:c0:9b:65:1e:12:07:62:27: 12:bf:86:31:91:59:2f:37:db:81:65:c1:2c:b4:74:11:ec:7d: 1e:e8:2d:12:20:b8:1a:24:e9:ca:4b:eb:f4:93:3a:89:6f:c4: 3d:79:42:ac:b5:c2:0e:5a:c0:fa:83:71:e3:7c:d9:f8:92:e1: a4:54:4a:67:9b:e8:81:e0:74:4a:34:d2:a9:3f:e6:00:1c:06: 3f:9b:9f:fc:86:9d:a8:ae:10:b7:19:1d:75:b2:e2:65:d1:08: c6:7a:96:b1:ba:57:ee:3e:b0:bb:93:4d:f5:93:3e:2a:80:eb: 33:8b:05:97:00:5e:2e:f8:f3:78:4c:ff:a6:1f:a1:fa:87:16: b6:da:b0:27:2a:6e:f2:23:72:cf:61:ad:88:74:44:99:e0:54: 7a:a7:31:3c:ad:78:4d:a4:60:c9:a1:92:5a:03:eb:53:d6:10: b3:c2:12:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLW+/gFZPa76CkdsXwtgXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZTc3NzdjN2FmYjdkNDM5YjQ2ZjY4MWM0YzdiZjZhODI1 MmUzMTUwHhcNMjUxMjA2MDEwMTE4WhcNMjUxMjA3MDEwMTE4WjAzMTEwLwYDVQQD EyhlOWFiMTgwZjEyZGI3NzFlNGU2MzkxYzM4NzgwZmUzYmM5MDNkZWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZOitMTOhomsZjY5CNOOl8Uj6t9A RWfHni24G/CwGOZjLnODWQbv7xLPTO30PXBf3YIdpVKNpVxcqqGwWKIR38EM5U7Z zEtdzaYjqNSJogsdtCD4s8+VMl7cTIoTtDFGeI4lJ2zu/zx8BoORwZL49agY2wDv GRknn5tsLTdO/Ybc7gOHtKq4iIkJMK6fqnZym1NaXcEzGWAu8tXLz1xmjPhVGH65 YGD1PQcx5UTfOCqrpywNo5rRi/q2G1rsNGW/yx1nGrDRooHCe0h4uMs2IgvXkQ6A vFlNphgEYhMnLITb9Dxn3tDZ2POiUbr+tN5htxnvQR/hnjrcGA9YhkrdawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOmrGA8S23ceTmORw4eA/jvJA97rMB8GA1UdIwQY MBaAFKTnd3x6+31Dm0b2gcTHv2qCUuMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE9kM2ZIcjdmVU9iUnZhQnhNZV9hb0pTNHhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS80NWFkNWItM2NlMS00OGYxLWJlZjct NjQxY2ZiNmUzZDliLzEvcE9kM2ZIcjdmVU9iUnZhQnhNZV9hb0pTNHhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS80NWFkNWItM2NlMS00OGYxLWJlZjctNjQxY2ZiNmUzZDli LzEvcE9kM2ZIcjdmVU9iUnZhQnhNZV9hb0pTNHhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH4bLaDQd TFLJAONT4tJWUtKku95nYfeLZOX89hR/bzLez6ucKRz2k2rji5zD3H9GZgPBAtaP 8vJbi9N4FWKoTyyCY/dpCQ6I9QiBkvyUKTAoPMCbZR4SB2InEr+GMZFZLzfbgWXB LLR0Eex9HugtEiC4GiTpykvr9JM6iW/EPXlCrLXCDlrA+oNx43zZ+JLhpFRKZ5vo geB0SjTSqT/mABwGP5uf/IadqK4QtxkddbLiZdEIxnqWsbpX7j6wu5NN9ZM+KoDr M4sFlwBeLvjzeEz/ph+h+ocWttqwJypu8iNyz2GtiHREmeBUeqcxPK14TaRgyaGS WgPrU9YQs8ISKg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:00:23 2025 by rpki-client