This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft File: byDBquA8J08ClCjuoKRCQgjU8-0.mft (raw, json) Hash identifier: zSxF2OxBaX4Wd1OwKlx4VLOwPmGODaWkxc+gyrx5MXM= Subject key identifier: 9B:2F:43:AF:06:B9:DD:3D:FE:25:A4:58:A2:EB:07:E5:78:7E:BD:F8 Authority key identifier: 6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED Certificate issuer: /CN=6f20c1aae03c274f029428eea0a4424208d4f3ed Certificate serial: 019AF2ADDD521397481E6D7650782FB108AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 08:01:11 +0000 Manifest this update: Sat 06 Dec 2025 08:01:11 +0000 Manifest next update: Sun 07 Dec 2025 08:01:11 +0000 Files and hashes: 1: QR-XfIkw00mD51XnwCvsG-9T89w.roa (hash: a0XDBbD/tQURYMLpVooHaNMf9NXfcD/rGt0gapo+gwA=) 2: byDBquA8J08ClCjuoKRCQgjU8-0.crl (hash: 3pgsT5PMOYMFjtv4ginb2DkRGrMlsXCWm70j04+jWYQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:dd:52:13:97:48:1e:6d:76:50:78:2f:b1:08:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f20c1aae03c274f029428eea0a4424208d4f3ed Validity Not Before: Dec 6 08:01:11 2025 GMT Not After : Dec 7 08:01:11 2025 GMT Subject: CN=9b2f43af06b9dd3dfe25a458a2eb07e5787ebdf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:90:c1:87:a5:05:c8:1b:a7:ac:a7:c9:22:f4: f4:4d:35:3b:f7:c1:c0:c8:e9:3a:71:88:ad:32:92: fe:e7:1c:3c:f9:31:8d:13:d9:03:cf:e0:9b:7c:f3: a1:8f:cf:3e:47:ac:2f:33:8e:b3:32:13:cf:2d:a6: 49:f8:f9:d7:0c:cc:91:2f:ba:a8:58:b4:63:fa:63: d4:af:79:6c:fa:22:cb:99:25:db:6e:7f:6a:f3:59: 20:39:36:a6:23:44:3a:65:21:8d:ff:f7:48:ef:8f: 3a:33:a3:a4:87:81:f5:6d:ec:92:88:ca:bc:6e:b8: 7b:13:82:71:aa:43:f8:74:f3:f5:2f:f4:70:3d:c3: be:f1:cd:05:1c:e4:7a:3e:dc:e7:75:e4:1b:04:b3: 33:b7:5d:69:4d:6a:58:b5:71:96:18:bd:be:77:9c: 5a:c6:ae:38:6e:ec:94:a7:7f:83:0d:a9:b2:f4:b0: b1:bc:c4:2a:74:db:67:3b:f3:5e:ef:5f:36:0b:df: 87:8c:05:7b:84:b7:8d:92:99:ed:85:4c:24:1f:5b: c1:5a:3d:6f:d7:9a:8c:0f:ec:83:64:6c:d7:63:54: 05:4a:76:d9:58:d7:0f:a8:59:b0:72:e3:ad:5c:67: 9c:4e:f2:3d:90:6a:2c:bc:8a:e2:6e:79:a4:09:ee: 38:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2F:43:AF:06:B9:DD:3D:FE:25:A4:58:A2:EB:07:E5:78:7E:BD:F8 X509v3 Authority Key Identifier: keyid:6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:e2:b1:30:8b:99:08:dc:6c:c3:27:5f:6b:b9:5a:2e:9b:90: e3:af:5d:32:9d:f4:1a:94:d6:00:91:f8:e7:19:35:e0:a5:09: b5:ac:c5:dd:18:37:f0:00:ed:d2:be:0b:22:1c:34:9b:ab:ae: 37:20:8b:0a:aa:c2:c9:8d:6c:ff:06:81:8b:78:51:3a:8d:d7: 96:14:39:19:07:55:38:1c:f4:c4:56:37:86:9e:29:d2:1c:e6: 18:fd:4f:86:9e:04:f4:e5:37:35:c3:28:6f:84:3c:3a:2b:44: f0:a4:27:ea:f2:38:94:ba:d5:1b:97:6f:e5:16:ce:6b:2f:20: ad:7c:88:ae:fe:59:f3:f8:a2:d7:b0:a6:9b:20:8d:a8:3e:6c: 77:da:fe:ab:f9:4b:3c:e0:d4:63:44:1a:5c:0c:44:de:34:3f: 98:f3:a8:27:4b:ee:f0:f3:7b:4d:7f:c7:34:50:d7:88:0b:9b: 70:67:20:af:74:ce:9a:93:95:7c:97:59:db:e1:84:74:c9:18: f7:b9:a4:e1:f1:d2:8a:92:2a:84:e6:12:09:f2:8d:47:fb:37: b5:c7:2f:e9:94:59:f3:0c:b3:07:d7:0d:f8:49:4c:a6:20:6b: 56:e5:bf:5d:e1:94:c1:40:10:a6:01:06:5e:ee:8d:b6:a2:04: 42:0b:5d:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrd1SE5dIHm12UHgvsQivMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMjBjMWFhZTAzYzI3NGYwMjk0MjhlZWEwYTQ0MjQyMDhk NGYzZWQwHhcNMjUxMjA2MDgwMTExWhcNMjUxMjA3MDgwMTExWjAzMTEwLwYDVQQD Eyg5YjJmNDNhZjA2YjlkZDNkZmUyNWE0NThhMmViMDdlNTc4N2ViZGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5DBh6UFyBunrKfJIvT0TTU798HA yOk6cYitMpL+5xw8+TGNE9kDz+CbfPOhj88+R6wvM46zMhPPLaZJ+PnXDMyRL7qo WLRj+mPUr3ls+iLLmSXbbn9q81kgOTamI0Q6ZSGN//dI7486M6Okh4H1beySiMq8 brh7E4JxqkP4dPP1L/RwPcO+8c0FHOR6PtzndeQbBLMzt11pTWpYtXGWGL2+d5xa xq44buyUp3+DDamy9LCxvMQqdNtnO/Ne7182C9+HjAV7hLeNkpnthUwkH1vBWj1v 15qMD+yDZGzXY1QFSnbZWNcPqFmwcuOtXGecTvI9kGosvIribnmkCe44OQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJsvQ68Gud09/iWkWKLrB+V4fr34MB8GA1UdIwQY MBaAFG8gwargPCdPApQo7qCkQkII1PPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUt MDk1ZDBiZDI1NTVmLzEvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUtMDk1ZDBiZDI1NTVm LzEvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGOKxMIuZ CNxswydfa7laLpuQ469dMp30GpTWAJH45xk14KUJtazF3Rg38ADt0r4LIhw0m6uu NyCLCqrCyY1s/waBi3hROo3XlhQ5GQdVOBz0xFY3hp4p0hzmGP1Php4E9OU3NcMo b4Q8OitE8KQn6vI4lLrVG5dv5RbOay8grXyIrv5Z8/ii17CmmyCNqD5sd9r+q/lL PODUY0QaXAxE3jQ/mPOoJ0vu8PN7TX/HNFDXiAubcGcgr3TOmpOVfJdZ2+GEdMkY 97mk4fHSipIqhOYSCfKNR/s3tccv6ZRZ8wyzB9cN+ElMpiBrVuW/XeGUwUAQpgEG Xu6NtqIEQgtdOg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:08:04 2025 by rpki-client