This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft File: 0KHbRmz4CCBik9B-ZfISH-tJoz4.mft (raw, json) Hash identifier: stdNIRXMOYyAEj5hacqqJ5Rv6ocDX5B3/LY5xgPG24A= Subject key identifier: AD:8D:EB:1B:22:22:5B:3D:82:20:16:AD:06:BE:6A:91:AD:7F:46:4D Authority key identifier: D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E Certificate issuer: /CN=d0a1db466cf808206293d07e65f2121feb49a33e Certificate serial: 019AF65378B660718F584DCA576A9E68634C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft Manifest number: 1552 Signing time: Sun 07 Dec 2025 01:00:56 +0000 Manifest this update: Sun 07 Dec 2025 01:00:56 +0000 Manifest next update: Mon 08 Dec 2025 01:00:56 +0000 Files and hashes: 1: 0KHbRmz4CCBik9B-ZfISH-tJoz4.crl (hash: qOm3Ge6i4cq8jPIay04LihCj5/fSvVe53fC3HdA/7qQ=) 2: wC7Ohmh2aveKOZ7_Cl4a1vLomLo.roa (hash: hPiN8yhRbkkwhBqX7IPJBoamojlDhfcUtcDIIbpri30=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:53:78:b6:60:71:8f:58:4d:ca:57:6a:9e:68:63:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0a1db466cf808206293d07e65f2121feb49a33e Validity Not Before: Dec 7 01:00:56 2025 GMT Not After : Dec 8 01:00:56 2025 GMT Subject: CN=ad8deb1b22225b3d822016ad06be6a91ad7f464d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ee:33:dd:5d:c6:25:27:75:51:72:d8:72:57: 4c:ae:63:29:e4:76:a3:f0:b8:a5:7b:5b:da:44:b8: 8f:db:86:8f:05:1f:7b:b8:0e:7e:31:f2:c6:28:2a: ff:8a:92:f6:9b:d5:c7:e6:79:ec:a9:e5:70:b3:75: 06:ef:df:82:43:0f:bd:b1:5e:fe:7d:fb:a4:4b:ee: e8:46:00:e3:bc:ea:5e:d6:29:12:8e:6e:aa:99:39: 89:a4:36:65:33:6f:08:e7:ca:84:da:c1:e7:5a:91: 1e:78:73:fa:c0:c6:d2:b9:f4:bb:4f:6b:4c:e2:60: 9a:ca:de:50:46:d4:e7:46:13:6d:b7:d6:25:e4:1d: 3b:ec:fa:68:f2:46:a9:e0:32:ed:53:22:15:cd:dd: 32:d4:87:d9:e2:79:5a:f0:06:2e:2f:5e:98:34:23: 4f:53:5d:2b:b8:e8:2e:47:62:73:ef:df:9b:1a:ec: fc:4e:7e:ec:c0:a2:dc:73:60:18:b6:a0:77:84:7c: c6:54:0b:cf:44:69:d4:b2:af:e1:d8:93:11:83:4a: b1:e9:8a:81:40:0b:2a:60:cd:00:8a:83:1a:29:0c: 7c:f9:fa:f6:42:cd:bd:2e:ba:8a:e0:50:23:db:40: 41:b5:b4:6f:52:57:7a:d1:e8:d2:09:96:8d:7a:a8: 79:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8D:EB:1B:22:22:5B:3D:82:20:16:AD:06:BE:6A:91:AD:7F:46:4D X509v3 Authority Key Identifier: keyid:D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:e5:01:3e:c3:28:a4:d9:2d:8c:53:25:81:5b:ed:e2:a6:f1: 41:33:07:2f:4a:0d:6b:5f:a9:c3:d8:e0:f2:a5:c0:71:00:2f: b8:d1:16:fc:18:25:91:f6:d5:0a:a4:ad:4a:33:6b:6a:57:b8: 98:27:a8:58:b0:cd:57:29:c7:ee:1f:9f:8b:b7:df:2b:2e:ab: bc:05:a9:31:9d:15:96:af:b6:da:f6:05:17:b1:c5:30:c6:a9: 18:1c:76:d6:6e:b7:b6:40:56:e1:22:08:e9:bd:e3:9e:d7:2c: 08:a8:86:1f:52:e2:de:fe:fd:62:9d:9c:c1:da:9a:55:7e:33: 7b:a5:63:cd:07:12:fe:81:96:9a:0c:f6:1b:05:2c:a6:dd:83: 60:dd:bd:3c:45:9a:b7:08:38:74:0a:7c:47:25:9e:50:51:f4: 84:97:1c:83:8a:5c:50:7d:18:87:b9:9e:ef:76:ba:47:73:fb: 61:77:f2:c2:c5:ba:1e:a3:88:9a:b4:5d:83:f4:a5:3a:7d:70: ee:e4:0a:4b:3d:e5:d8:44:98:1d:31:25:ca:e7:74:1b:ac:f5: 77:54:e2:9a:af:21:a5:3a:a0:af:56:28:d9:b8:15:fe:56:cb: 22:ab:c4:c4:3e:ac:1f:1c:75:dd:ee:17:73:e0:f0:8e:7c:15: 14:c3:2a:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2U3i2YHGPWE3KV2qeaGNMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYTFkYjQ2NmNmODA4MjA2MjkzZDA3ZTY1ZjIxMjFmZWI0 OWEzM2UwHhcNMjUxMjA3MDEwMDU2WhcNMjUxMjA4MDEwMDU2WjAzMTEwLwYDVQQD EyhhZDhkZWIxYjIyMjI1YjNkODIyMDE2YWQwNmJlNmE5MWFkN2Y0NjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+4z3V3GJSd1UXLYcldMrmMp5Haj 8Lile1vaRLiP24aPBR97uA5+MfLGKCr/ipL2m9XH5nnsqeVws3UG79+CQw+9sV7+ ffukS+7oRgDjvOpe1ikSjm6qmTmJpDZlM28I58qE2sHnWpEeeHP6wMbSufS7T2tM 4mCayt5QRtTnRhNtt9Yl5B077Ppo8kap4DLtUyIVzd0y1IfZ4nla8AYuL16YNCNP U10ruOguR2Jz79+bGuz8Tn7swKLcc2AYtqB3hHzGVAvPRGnUsq/h2JMRg0qx6YqB QAsqYM0AioMaKQx8+fr2Qs29LrqK4FAj20BBtbRvUld60ejSCZaNeqh5tQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK2N6xsiIls9giAWrQa+apGtf0ZNMB8GA1UdIwQY MBaAFNCh20Zs+AggYpPQfmXyEh/rSaM+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMt NDc2MmIwMTBlZjFlLzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMtNDc2MmIwMTBlZjFl LzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjeUBPsMo pNktjFMlgVvt4qbxQTMHL0oNa1+pw9jg8qXAcQAvuNEW/BglkfbVCqStSjNrale4 mCeoWLDNVynH7h+fi7ffKy6rvAWpMZ0Vlq+22vYFF7HFMMapGBx21m63tkBW4SII 6b3jntcsCKiGH1Li3v79Yp2cwdqaVX4ze6VjzQcS/oGWmgz2GwUspt2DYN29PEWa twg4dAp8RyWeUFH0hJccg4pcUH0Yh7me73a6R3P7YXfywsW6HqOImrRdg/SlOn1w 7uQKSz3l2ESYHTElyud0G6z1d1Timq8hpTqgr1Yo2bgV/lbLIqvExD6sHxx13e4X c+DwjnwVFMMqCg== -----END CERTIFICATE-----Generated at Sun Dec 7 03:32:03 2025 by rpki-client