This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json) Hash identifier: Gug1MNQbkvhSot44F0tJAbUGXBNKRiKgU390S3FSs0c= Subject key identifier: 14:0E:53:C1:E1:5D:30:A0:C5:2B:EC:9E:03:6E:2E:8E:04:59:43:54 Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d Certificate serial: 019AF3C05739B82C8E7A9080DC79356C0CA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft Manifest number: 035C Signing time: Sat 06 Dec 2025 13:00:59 +0000 Manifest this update: Sat 06 Dec 2025 13:00:59 +0000 Manifest next update: Sun 07 Dec 2025 13:00:59 +0000 Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: HoBcfI9MpYsPQzs0oIPt50pi6iHGzlcjzqq0q0kTxbE=) 2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:57:39:b8:2c:8e:7a:90:80:dc:79:35:6c:0c:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d Validity Not Before: Dec 6 13:00:59 2025 GMT Not After : Dec 7 13:00:59 2025 GMT Subject: CN=140e53c1e15d30a0c52bec9e036e2e8e04594354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:54:28:12:a6:8c:2d:e9:87:33:51:ba:13:de: 9a:92:dc:3d:85:89:db:bc:8e:95:c2:b5:6c:8a:bc: 21:1b:47:a4:2e:2b:82:fa:b0:d4:4f:3f:3e:1d:4e: 4d:53:cd:ab:e8:4f:3c:61:9f:34:08:54:f4:06:7a: cf:e0:69:63:d4:a6:ac:23:b9:f6:bb:98:00:89:c3: 85:60:90:a4:db:98:a4:cc:c5:0d:19:72:56:c4:68: 25:e8:3a:f4:5f:c9:29:bf:ff:8f:b7:09:30:b4:03: d2:40:00:e5:a5:25:a0:43:bb:90:19:86:ee:98:7b: b0:d9:42:c8:7e:b9:3a:b5:69:9c:bc:35:67:bc:46: f2:c8:e7:24:be:f3:a8:36:36:e4:a4:aa:c4:19:be: 37:af:62:e5:74:2c:09:3d:35:3b:46:72:a2:eb:9a: c1:18:d9:f5:39:53:47:35:20:7a:81:77:4b:e6:b8: fb:66:85:5c:cc:0c:6d:fd:b1:7b:fd:bd:6c:12:ec: e5:84:f2:9c:c3:06:ab:62:0a:c2:e2:f7:e0:6a:9f: 4a:91:51:f8:83:fa:59:39:81:7a:59:57:e5:20:70: 28:b5:3e:30:26:ad:b1:88:cb:59:ea:9c:d3:14:4e: e9:c6:2a:2b:1c:d0:a4:bf:fc:3d:df:9b:f4:a2:55: 3f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0E:53:C1:E1:5D:30:A0:C5:2B:EC:9E:03:6E:2E:8E:04:59:43:54 X509v3 Authority Key Identifier: keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:9a:45:2e:6b:da:c0:eb:75:d8:87:7a:ca:82:d7:4e:bd:14: 96:a4:b4:a1:c8:80:65:4b:24:0a:a1:76:a2:65:5d:48:45:b3: 01:9a:e9:8f:44:15:34:6d:f0:ff:13:5d:29:2f:d2:71:05:de: 26:aa:0f:92:e7:f2:0f:f0:f4:24:95:9c:58:80:d7:e7:d7:c2: 69:63:ed:fa:85:08:95:d8:99:41:55:a2:5b:67:09:b2:64:c2: 04:44:13:a6:50:b7:97:b8:c3:e9:1f:95:18:7e:48:80:68:46: 82:e6:94:c4:ef:e5:0d:cb:38:8b:69:38:40:72:41:da:f5:0a: ff:dd:b8:09:de:4b:9b:d8:df:fd:24:2a:f6:81:bb:f7:13:7a: 40:32:49:ab:4c:94:57:8d:35:34:1f:89:49:ba:2b:2d:35:83: ed:e4:11:55:bc:3e:5f:0a:ec:59:b1:e0:97:6d:ff:ce:6f:fe: 23:e8:33:0c:a0:63:a4:8f:20:5f:cd:f7:c9:fa:74:1a:80:ad: 52:ed:c9:44:c4:94:99:32:ef:56:61:ca:1e:c2:a0:3c:89:9f: 65:3c:32:45:ad:ca:67:33:4e:35:00:a6:e6:9b:d5:79:f8:2d: 4a:45:ce:a1:fb:d9:87:16:cb:09:bb:1f:5d:47:4d:be:9b:0c: e0:e7:ec:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwFc5uCyOepCA3Hk1bAyoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhMmY2NzFmMTA4MzRkYWU0OGVhOGQ5ODczNDJjMzc1Y2Fi MzMxNmQwHhcNMjUxMjA2MTMwMDU5WhcNMjUxMjA3MTMwMDU5WjAzMTEwLwYDVQQD EygxNDBlNTNjMWUxNWQzMGEwYzUyYmVjOWUwMzZlMmU4ZTA0NTk0MzU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFQoEqaMLemHM1G6E96aktw9hYnb vI6VwrVsirwhG0ekLiuC+rDUTz8+HU5NU82r6E88YZ80CFT0BnrP4Glj1KasI7n2 u5gAicOFYJCk25ikzMUNGXJWxGgl6Dr0X8kpv/+PtwkwtAPSQADlpSWgQ7uQGYbu mHuw2ULIfrk6tWmcvDVnvEbyyOckvvOoNjbkpKrEGb43r2LldCwJPTU7RnKi65rB GNn1OVNHNSB6gXdL5rj7ZoVczAxt/bF7/b1sEuzlhPKcwwarYgrC4vfgap9KkVH4 g/pZOYF6WVflIHAotT4wJq2xiMtZ6pzTFE7pxiorHNCkv/w935v0olU/lwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBQOU8HhXTCgxSvsngNuLo4EWUNUMB8GA1UdIwQY MBaAFOovZx8Qg02uSOqNmHNCw3XKszFtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMt MWM0MjBmMDU1NzlmLzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMtMWM0MjBmMDU1Nzlm LzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYppFLmva wOt12Id6yoLXTr0UlqS0ociAZUskCqF2omVdSEWzAZrpj0QVNG3w/xNdKS/ScQXe JqoPkufyD/D0JJWcWIDX59fCaWPt+oUIldiZQVWiW2cJsmTCBEQTplC3l7jD6R+V GH5IgGhGguaUxO/lDcs4i2k4QHJB2vUK/924Cd5Lm9jf/SQq9oG79xN6QDJJq0yU V401NB+JSborLTWD7eQRVbw+XwrsWbHgl23/zm/+I+gzDKBjpI8gX833yfp0GoCt Uu3JRMSUmTLvVmHKHsKgPImfZTwyRa3KZzNONQCm5pvVefgtSkXOofvZhxbLCbsf XUdNvpsM4OfspQ== -----END CERTIFICATE-----Generated at Sat Dec 6 20:15:35 2025 by rpki-client