This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft File: b_rHiuobz0OKYe-RUCRI9glkHS0.mft (raw, json) Hash identifier: TkE6b16w1wG5euCvi6UNswG4tajQ0R5bKU3asbcu1Mo= Subject key identifier: AD:D4:F6:1B:38:A9:A7:7B:29:30:9B:D0:A4:68:AB:DA:45:8E:50:71 Authority key identifier: 6F:FA:C7:8A:EA:1B:CF:43:8A:61:EF:91:50:24:48:F6:09:64:1D:2D Certificate issuer: /CN=6ffac78aea1bcf438a61ef91502448f609641d2d Certificate serial: 019AF276620F8E23C86C46707BF5953588FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft Manifest number: 13F3 Signing time: Sat 06 Dec 2025 07:00:35 +0000 Manifest this update: Sat 06 Dec 2025 07:00:35 +0000 Manifest next update: Sun 07 Dec 2025 07:00:35 +0000 Files and hashes: 1: b_rHiuobz0OKYe-RUCRI9glkHS0.crl (hash: itEqddG5V4Z1RbtimAx5Vyj3xM3CJlHPBYwr2vm3KKQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.crl rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:62:0f:8e:23:c8:6c:46:70:7b:f5:95:35:88:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ffac78aea1bcf438a61ef91502448f609641d2d Validity Not Before: Dec 6 07:00:35 2025 GMT Not After : Dec 7 07:00:35 2025 GMT Subject: CN=add4f61b38a9a77b29309bd0a468abda458e5071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ac:9f:d4:b4:a8:7c:b1:be:3b:aa:2a:ce:11: dd:f5:7f:e6:02:4d:83:07:1d:1e:45:91:c9:ee:05: 34:97:6a:95:af:6e:5c:43:e4:75:5b:3c:f9:4d:32: b9:70:1f:5a:59:ec:8f:7a:41:b5:79:b8:95:0f:3a: 84:be:2f:71:d6:46:e6:12:bc:8f:69:3f:ba:e4:35: f2:0b:a8:94:70:af:98:dd:66:4c:5e:50:eb:5d:74: 8d:e8:ab:39:37:bc:59:33:b4:09:d6:75:f1:8e:bc: 8d:f9:5f:23:2b:df:da:85:66:77:6b:49:7d:3d:33: 05:94:99:ff:9e:c6:95:63:6a:c4:af:10:28:8e:b6: 83:45:33:a7:87:73:f2:2d:e3:05:27:4c:3e:3a:4e: 48:e3:e1:82:8c:3a:93:45:6a:da:3f:71:36:1e:6c: af:36:7a:fc:3e:05:d3:76:e3:bf:be:0c:35:64:6c: d9:e2:15:18:bd:60:ef:5c:e1:73:8d:fb:29:f5:28: 2e:62:b1:d5:e7:14:62:95:9c:2a:aa:f0:55:b1:9f: 75:ea:68:a4:39:99:7a:aa:f1:ea:ac:0c:1d:16:9d: 4f:51:84:b5:2e:8d:c2:72:8c:2b:b0:f2:42:e6:30: 5e:07:58:0c:fe:f8:1f:a6:e2:cb:e7:d1:65:cb:6f: 65:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D4:F6:1B:38:A9:A7:7B:29:30:9B:D0:A4:68:AB:DA:45:8E:50:71 X509v3 Authority Key Identifier: keyid:6F:FA:C7:8A:EA:1B:CF:43:8A:61:EF:91:50:24:48:F6:09:64:1D:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e2:8f:2d:a2:5a:48:c9:90:60:73:82:36:ff:58:46:6b:ab: e9:d9:8b:44:f3:8f:cc:91:8f:6a:5e:a9:23:ac:16:f3:64:27: 28:7f:49:88:ba:f1:83:ca:a7:af:d0:18:0f:ec:c0:ce:ad:dc: 6a:c6:0c:58:06:d6:1f:b6:15:17:5f:78:e3:75:43:ce:22:d7: be:0b:9f:f6:8b:f5:52:ed:2e:1a:1c:e9:e4:c5:cf:2f:56:4c: fc:c0:1c:1d:79:3d:e7:f7:10:af:ac:a0:95:f2:1b:1b:59:3c: b4:39:6a:c4:e6:b9:cb:f7:b2:68:65:e5:52:c7:cd:61:ef:14: d6:3f:13:88:46:da:9e:d4:43:bb:49:96:5a:7d:85:4e:92:c1: 60:cf:5b:b6:eb:d7:a8:3e:f3:93:bf:73:31:9b:29:9e:c4:7b: 2d:fd:72:68:99:d8:33:9c:77:a5:d2:e2:12:5a:b5:5c:32:d9: e8:f4:a8:e6:01:7a:26:6b:23:02:b7:86:93:b6:e6:d9:bb:64: 0f:13:ef:d1:a3:41:e6:e2:27:92:bc:6b:a2:06:fb:97:b3:10: 6b:b5:ed:b9:6d:2b:4c:d4:50:7c:3f:ea:47:ba:10:49:34:31: 27:0e:33:82:13:63:66:63:f7:27:25:c5:08:f3:8b:0d:d7:86: 43:15:83:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydmIPjiPIbEZwe/WVNYj+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmZmFjNzhhZWExYmNmNDM4YTYxZWY5MTUwMjQ0OGY2MDk2 NDFkMmQwHhcNMjUxMjA2MDcwMDM1WhcNMjUxMjA3MDcwMDM1WjAzMTEwLwYDVQQD EyhhZGQ0ZjYxYjM4YTlhNzdiMjkzMDliZDBhNDY4YWJkYTQ1OGU1MDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Kyf1LSofLG+O6oqzhHd9X/mAk2D Bx0eRZHJ7gU0l2qVr25cQ+R1Wzz5TTK5cB9aWeyPekG1ebiVDzqEvi9x1kbmEryP aT+65DXyC6iUcK+Y3WZMXlDrXXSN6Ks5N7xZM7QJ1nXxjryN+V8jK9/ahWZ3a0l9 PTMFlJn/nsaVY2rErxAojraDRTOnh3PyLeMFJ0w+Ok5I4+GCjDqTRWraP3E2Hmyv Nnr8PgXTduO/vgw1ZGzZ4hUYvWDvXOFzjfsp9SguYrHV5xRilZwqqvBVsZ916mik OZl6qvHqrAwdFp1PUYS1Lo3CcowrsPJC5jBeB1gM/vgfpuLL59Fly29llwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK3U9hs4qad7KTCb0KRoq9pFjlBxMB8GA1UdIwQY MBaAFG/6x4rqG89DimHvkVAkSPYJZB0tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYl9ySGl1b2J6ME9LWWUtUlVDUkk5Z2xrSFMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi85OGU2YTktMDRkNS00NWEwLTk3MTAt MGMzNDM1MTNhZGUzLzEvYl9ySGl1b2J6ME9LWWUtUlVDUkk5Z2xrSFMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi85OGU2YTktMDRkNS00NWEwLTk3MTAtMGMzNDM1MTNhZGUz LzEvYl9ySGl1b2J6ME9LWWUtUlVDUkk5Z2xrSFMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWuKPLaJa SMmQYHOCNv9YRmur6dmLRPOPzJGPal6pI6wW82QnKH9JiLrxg8qnr9AYD+zAzq3c asYMWAbWH7YVF19443VDziLXvguf9ov1Uu0uGhzp5MXPL1ZM/MAcHXk95/cQr6yg lfIbG1k8tDlqxOa5y/eyaGXlUsfNYe8U1j8TiEbantRDu0mWWn2FTpLBYM9btuvX qD7zk79zMZspnsR7Lf1yaJnYM5x3pdLiElq1XDLZ6PSo5gF6JmsjAreGk7bm2btk DxPv0aNB5uInkrxrogb7l7MQa7XtuW0rTNRQfD/qR7oQSTQxJw4zghNjZmP3JyXF CPOLDdeGQxWDjw== -----END CERTIFICATE-----Generated at Sat Dec 6 13:14:55 2025 by rpki-client