This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft File: bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft (raw, json) Hash identifier: sJgHK3FfUyYvacCGv66ceCCqTGIqWFs4Z8NMK4sBakY= Subject key identifier: 80:13:90:B4:18:7A:2A:9D:A8:0F:03:C7:6E:E8:58:7E:16:AB:40:C6 Authority key identifier: 6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68 Certificate issuer: /CN=6ce3fb867861daafd781279897fe25a8eb371468 Certificate serial: 019B07EC2D400B47D1B9FD504FCDBC44B3BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft Manifest number: 03C0 Signing time: Wed 10 Dec 2025 11:01:17 +0000 Manifest this update: Wed 10 Dec 2025 11:01:17 +0000 Manifest next update: Thu 11 Dec 2025 11:01:17 +0000 Files and hashes: 1: EH31K6AeAlTxuZgsWC0CP6nqgCw.roa (hash: 5F10SKVR7MZweS+vgHdYbBmQMLKWeQTvpJE6zRYHQ8A=) 2: bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl (hash: OvqUXLzfCYfFSQwwDArZ9P0+ZEcxJ7nAyWZ6mkt294M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:ec:2d:40:0b:47:d1:b9:fd:50:4f:cd:bc:44:b3:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ce3fb867861daafd781279897fe25a8eb371468 Validity Not Before: Dec 10 11:01:17 2025 GMT Not After : Dec 11 11:01:17 2025 GMT Subject: CN=801390b4187a2a9da80f03c76ee8587e16ab40c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:63:64:af:d5:f8:14:ff:a4:2b:51:77:2b:a4: f2:b8:a3:3b:83:e2:c9:91:cd:09:cb:8b:f5:67:02: 12:e9:68:fe:c8:c7:cb:8c:dc:17:99:3f:f1:e5:71: ed:a8:78:c5:82:ef:74:6e:3f:1f:ff:32:ea:9c:47: 19:1a:f9:c0:83:1a:45:16:ee:2e:8c:8f:92:6b:ae: 74:a7:00:3f:02:0b:bd:db:d8:8b:07:54:aa:dc:db: cf:3a:d6:31:af:5b:e5:5c:a7:99:eb:fb:c9:a7:c6: 8b:23:7e:f5:84:00:cf:a7:af:35:3b:64:0a:ee:a6: 9a:d0:a1:80:30:85:9b:e4:a8:83:cb:9a:2f:1b:b5: 00:91:55:bd:64:c2:7a:13:50:2c:b3:a4:bd:73:36: 11:4a:e0:a0:d4:1a:f9:a6:d1:57:99:4b:80:cd:30: d1:eb:0e:30:77:4a:a5:f9:ad:2d:88:cf:01:c8:8e: 44:dd:d1:0d:85:e0:9b:89:8d:88:e0:0a:1c:9f:12: 09:69:05:bc:79:5c:c4:98:25:d5:f4:3c:34:19:d8: 04:05:03:f7:db:55:ce:5d:4b:f2:a2:f1:60:bf:77: c3:66:cc:48:ba:8a:60:ed:a6:0f:8f:bd:3f:f7:4c: 96:e5:a6:c7:92:d8:78:1e:d1:77:bf:47:c5:81:90: d3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:13:90:B4:18:7A:2A:9D:A8:0F:03:C7:6E:E8:58:7E:16:AB:40:C6 X509v3 Authority Key Identifier: keyid:6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:38:02:0d:c3:d8:f5:95:6b:d3:a9:71:af:49:dd:13:98:4c: 37:70:47:07:bd:65:13:c6:07:48:8d:40:dd:b3:28:cc:0e:a0: d5:d7:b1:55:06:36:f8:47:c5:5b:94:d6:65:66:13:5d:5c:c3: e4:82:a8:fb:ad:26:a8:d7:5c:84:88:be:5d:7c:a8:fe:5a:d0: 66:76:c3:89:00:be:54:24:d1:dc:fd:23:18:8e:2a:c8:87:09: 55:53:c3:b2:4a:84:3d:47:2f:bf:c6:db:4e:fd:38:da:4c:e5: fa:c6:f5:1a:a6:44:08:6c:38:94:9c:78:cf:46:07:c3:1d:7c: 0b:88:39:7b:70:54:eb:29:b1:8d:5a:fc:c6:5d:ef:46:13:82: 55:91:d1:58:bb:87:28:93:e1:f7:5d:76:e1:82:3f:a1:4d:26: 13:f1:c6:5f:cb:f3:7c:d6:a5:06:4a:69:43:50:0c:40:7b:74: 70:64:65:17:d7:ec:0c:e5:4a:23:2e:af:75:27:84:ab:7b:dc: c6:77:b5:3d:0c:66:f9:37:57:e8:8a:1d:06:35:fe:08:75:a4: e3:b1:e5:ee:4f:11:a8:a1:0f:b0:a5:c9:7b:12:0c:78:27:34: e9:23:db:33:a5:cb:e2:6a:40:78:5e:16:08:6e:2e:20:06:66: 8a:38:a0:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsH7C1AC0fRuf1QT828RLO7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZTNmYjg2Nzg2MWRhYWZkNzgxMjc5ODk3ZmUyNWE4ZWIz NzE0NjgwHhcNMjUxMjEwMTEwMTE3WhcNMjUxMjExMTEwMTE3WjAzMTEwLwYDVQQD Eyg4MDEzOTBiNDE4N2EyYTlkYTgwZjAzYzc2ZWU4NTg3ZTE2YWI0MGM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmNkr9X4FP+kK1F3K6TyuKM7g+LJ kc0Jy4v1ZwIS6Wj+yMfLjNwXmT/x5XHtqHjFgu90bj8f/zLqnEcZGvnAgxpFFu4u jI+Sa650pwA/Agu929iLB1Sq3NvPOtYxr1vlXKeZ6/vJp8aLI371hADPp681O2QK 7qaa0KGAMIWb5KiDy5ovG7UAkVW9ZMJ6E1Ass6S9czYRSuCg1Br5ptFXmUuAzTDR 6w4wd0ql+a0tiM8ByI5E3dENheCbiY2I4AocnxIJaQW8eVzEmCXV9Dw0GdgEBQP3 21XOXUvyovFgv3fDZsxIuopg7aYPj70/90yW5abHkth4HtF3v0fFgZDTQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIATkLQYeiqdqA8Dx27oWH4Wq0DGMB8GA1UdIwQY MBaAFGzj+4Z4Ydqv14EnmJf+JajrNxRoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9jM2Y5OTUtODZlZi00YTY3LWFjYWMt ZTQzOTFmYmNhZjE0LzEvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9jM2Y5OTUtODZlZi00YTY3LWFjYWMtZTQzOTFmYmNhZjE0 LzEvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjTgCDcPY 9ZVr06lxr0ndE5hMN3BHB71lE8YHSI1A3bMozA6g1dexVQY2+EfFW5TWZWYTXVzD 5IKo+60mqNdchIi+XXyo/lrQZnbDiQC+VCTR3P0jGI4qyIcJVVPDskqEPUcvv8bb Tv042kzl+sb1GqZECGw4lJx4z0YHwx18C4g5e3BU6ymxjVr8xl3vRhOCVZHRWLuH KJPh91124YI/oU0mE/HGX8vzfNalBkppQ1AMQHt0cGRlF9fsDOVKIy6vdSeEq3vc xne1PQxm+TdX6IodBjX+CHWk47Hl7k8RqKEPsKXJexIMeCc06SPbM6XL4mpAeF4W CG4uIAZmijigIQ== -----END CERTIFICATE-----Generated at Wed Dec 10 17:22:00 2025 by rpki-client