This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json) Hash identifier: 7RzD3F5SGFEXkTivvrUypngw3smLKQErk6K2HjfYN8s= Subject key identifier: F1:CA:A9:3D:30:50:D6:0B:CA:69:35:8E:8E:AA:FE:25:CD:87:BF:D6 Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d Certificate serial: 019B318CCB3BCAA13F6CF28F7521B4B692CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft Manifest number: 037C Signing time: Thu 18 Dec 2025 13:01:09 +0000 Manifest this update: Thu 18 Dec 2025 13:01:09 +0000 Manifest next update: Fri 19 Dec 2025 13:01:09 +0000 Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: zE4xlySF4u0r/SzlQKofrPK7vuYSxt3FVcIKAbUQPLg=) 2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:8c:cb:3b:ca:a1:3f:6c:f2:8f:75:21:b4:b6:92:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d Validity Not Before: Dec 18 13:01:09 2025 GMT Not After : Dec 19 13:01:09 2025 GMT Subject: CN=f1caa93d3050d60bca69358e8eaafe25cd87bfd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5c:a6:18:41:d7:16:1a:5c:d9:7c:ad:01:02: 86:92:b6:63:5e:56:61:38:08:06:98:96:dc:96:22: 67:e3:c7:5a:d8:f4:67:bb:bb:a4:b5:14:89:88:f1: 2f:d2:e5:38:90:9b:27:f6:0f:24:3b:34:56:87:e2: 8b:f0:ca:d0:e1:dd:f2:e0:8e:18:30:f8:d8:16:36: f8:0a:e7:0c:05:31:96:60:70:1e:c5:77:86:f0:3a: cc:40:37:6e:df:ec:65:bc:55:c1:50:1b:1e:31:74: f8:77:57:5a:ac:73:43:fe:1e:92:f3:6d:3a:53:7d: 22:1d:04:33:1d:98:bc:94:82:c1:81:59:06:f7:0e: a9:de:85:fe:02:0e:42:28:40:1b:fb:af:bb:d7:b6: f9:21:b3:e3:56:3f:2e:72:2d:7f:95:12:c5:2d:10: 12:ce:80:c6:00:4d:dd:10:fe:5f:66:eb:3c:be:bb: c8:8b:5d:fd:1a:84:b4:64:d0:08:46:12:83:d1:04: 42:78:53:02:b5:40:88:59:8f:8f:e9:48:f9:c6:4d: e4:d3:5c:8c:13:34:07:0c:b7:52:bf:47:77:07:48: c1:5b:78:e3:88:0f:bb:dd:45:91:f4:5b:da:d3:ac: 25:37:b2:17:41:3b:e5:12:1d:2b:8c:05:0e:c1:52: df:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:CA:A9:3D:30:50:D6:0B:CA:69:35:8E:8E:AA:FE:25:CD:87:BF:D6 X509v3 Authority Key Identifier: keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:71:89:62:40:4d:9f:6e:23:81:49:ba:fe:06:37:c9:9a:7c: 81:ab:02:b8:58:80:4b:62:82:3e:6e:c3:64:bc:4e:a9:26:66: 35:d4:81:91:d4:06:0d:91:9e:2e:dc:d4:87:44:2b:16:3b:08: 95:a1:a2:fb:f5:1b:ab:61:65:b8:72:be:c6:e0:dc:e4:97:82: 75:ad:67:73:07:21:48:6a:5d:fb:e9:3f:d8:b6:47:6f:d9:05: e5:1f:34:d8:13:db:d6:a5:6a:9b:03:42:15:41:76:84:27:1d: e1:9a:ee:62:6b:06:00:a6:2e:9c:42:5a:f5:d8:af:50:22:33: 0f:c6:a7:51:f1:4e:e9:c1:7e:32:64:00:af:5c:89:f3:cf:e1: e2:ca:cf:ea:9b:96:ac:2c:4f:be:7e:1a:b1:03:5d:73:61:f1: 7e:94:b5:51:dc:83:de:3c:09:f4:50:43:33:f9:06:39:cc:3f: 42:28:49:73:a8:f5:ed:b6:b5:4b:27:6a:e1:bc:4b:4e:2d:6c: 24:dc:3f:74:7f:15:b8:b9:c3:02:70:0d:c6:0d:60:b8:b9:fb: b0:ad:93:22:22:b8:57:b4:aa:96:5c:ca:de:24:88:ac:73:a9: 55:65:44:ef:a9:d9:aa:35:58:b4:96:72:1b:0c:65:7d:58:88: 12:f5:45:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxjMs7yqE/bPKPdSG0tpLPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhMmY2NzFmMTA4MzRkYWU0OGVhOGQ5ODczNDJjMzc1Y2Fi MzMxNmQwHhcNMjUxMjE4MTMwMTA5WhcNMjUxMjE5MTMwMTA5WjAzMTEwLwYDVQQD EyhmMWNhYTkzZDMwNTBkNjBiY2E2OTM1OGU4ZWFhZmUyNWNkODdiZmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2FymGEHXFhpc2XytAQKGkrZjXlZh OAgGmJbcliJn48da2PRnu7uktRSJiPEv0uU4kJsn9g8kOzRWh+KL8MrQ4d3y4I4Y MPjYFjb4CucMBTGWYHAexXeG8DrMQDdu3+xlvFXBUBseMXT4d1darHND/h6S8206 U30iHQQzHZi8lILBgVkG9w6p3oX+Ag5CKEAb+6+717b5IbPjVj8uci1/lRLFLRAS zoDGAE3dEP5fZus8vrvIi139GoS0ZNAIRhKD0QRCeFMCtUCIWY+P6Uj5xk3k01yM EzQHDLdSv0d3B0jBW3jjiA+73UWR9Fva06wlN7IXQTvlEh0rjAUOwVLf/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPHKqT0wUNYLymk1jo6q/iXNh7/WMB8GA1UdIwQY MBaAFOovZx8Qg02uSOqNmHNCw3XKszFtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMt MWM0MjBmMDU1NzlmLzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMtMWM0MjBmMDU1Nzlm LzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPXGJYkBN n24jgUm6/gY3yZp8gasCuFiAS2KCPm7DZLxOqSZmNdSBkdQGDZGeLtzUh0QrFjsI laGi+/Ubq2FluHK+xuDc5JeCda1ncwchSGpd++k/2LZHb9kF5R802BPb1qVqmwNC FUF2hCcd4ZruYmsGAKYunEJa9divUCIzD8anUfFO6cF+MmQAr1yJ88/h4srP6puW rCxPvn4asQNdc2HxfpS1UdyD3jwJ9FBDM/kGOcw/QihJc6j17ba1Sydq4bxLTi1s JNw/dH8VuLnDAnANxg1guLn7sK2TIiK4V7SqllzK3iSIrHOpVWVE76nZqjVYtJZy GwxlfViIEvVFkg== -----END CERTIFICATE-----Generated at Thu Dec 18 22:05:53 2025 by rpki-client