This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft File: bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft (raw, json) Hash identifier: ZN30C9UQartajjtdm8rAFMyW7iKxRu+z18R5a3ocPBg= Subject key identifier: 43:68:08:9F:68:00:D9:07:3A:B4:1C:25:58:C0:B5:1B:26:AB:FD:CC Authority key identifier: 6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68 Certificate issuer: /CN=6ce3fb867861daafd781279897fe25a8eb371468 Certificate serial: 019B3268B993B3F114C34B768A00D0B01489 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft Manifest number: 03D6 Signing time: Thu 18 Dec 2025 17:01:22 +0000 Manifest this update: Thu 18 Dec 2025 17:01:22 +0000 Manifest next update: Fri 19 Dec 2025 17:01:22 +0000 Files and hashes: 1: EH31K6AeAlTxuZgsWC0CP6nqgCw.roa (hash: 5F10SKVR7MZweS+vgHdYbBmQMLKWeQTvpJE6zRYHQ8A=) 2: bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl (hash: 4QTwhnpq02AfvceOBt5igtbPPLN1ZwQoR+3gFkxrT5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:68:b9:93:b3:f1:14:c3:4b:76:8a:00:d0:b0:14:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ce3fb867861daafd781279897fe25a8eb371468 Validity Not Before: Dec 18 17:01:22 2025 GMT Not After : Dec 19 17:01:22 2025 GMT Subject: CN=4368089f6800d9073ab41c2558c0b51b26abfdcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:83:d9:ea:aa:03:10:0e:4f:43:21:0a:3e:23: b4:f6:07:2f:3d:8a:7f:53:af:62:2f:f7:aa:52:34: a2:8f:10:a7:46:df:c9:53:4e:eb:97:c2:b9:fa:6c: 24:11:ec:a6:23:77:a2:25:9c:f6:d2:a1:24:b2:5e: 3d:20:0d:c3:92:85:f4:bb:9a:d7:21:8f:44:7b:c2: 85:1d:20:1b:33:f9:54:4d:81:62:d3:92:88:79:79: 8b:f4:52:6a:b2:cc:0f:9b:21:ab:61:15:6f:e7:59: 58:3b:ae:07:f9:d7:de:35:5c:ae:c8:99:60:7c:33: 23:ac:39:20:7a:9a:5d:e8:34:6c:d4:08:8f:ba:d3: 68:3c:7e:c3:55:38:9b:6d:33:22:2f:d0:97:f2:93: 72:c1:f3:e2:87:a9:0f:1c:16:6b:96:b4:63:5f:4b: 1c:75:fe:36:8e:e7:fc:89:a9:5d:41:a2:49:e7:b0: 28:ea:f6:89:6b:ee:60:f1:a2:0b:57:8a:6c:04:18: a2:68:e4:25:23:09:b1:6f:ec:9a:5c:f4:a4:84:93: 13:d6:55:b0:d5:d7:d8:93:14:51:e4:2d:01:3e:98: 3b:78:8e:e7:ea:c5:b1:78:9b:8d:58:73:05:b9:f3: 75:5a:10:01:64:75:c2:f1:60:0f:d2:fb:e5:35:c1: d3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:68:08:9F:68:00:D9:07:3A:B4:1C:25:58:C0:B5:1B:26:AB:FD:CC X509v3 Authority Key Identifier: keyid:6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:39:18:ac:bb:1f:32:e5:1e:8b:0c:f8:4d:63:c0:c7:30:d6: 96:14:fc:1f:01:f8:05:ca:38:ea:be:1f:59:e5:c5:18:28:5a: e8:e7:d4:80:53:c0:89:ef:7a:60:db:a9:f4:9b:24:4c:78:97: 19:d9:ac:52:5e:45:f2:a6:cf:89:39:12:4a:fe:37:20:1b:5a: 1b:5a:a0:ff:f0:67:e6:e3:b1:f9:9d:86:ad:31:a8:de:52:c4: 59:d5:42:a8:62:11:e9:d3:8b:c9:20:34:23:2c:c6:10:ff:30: 1f:05:15:42:50:ce:eb:5e:31:f2:72:89:d2:57:a5:34:86:15: f1:de:ef:06:42:32:f7:47:b4:24:c8:2d:e0:53:fc:b2:e2:60: 5a:32:ce:02:05:31:f6:c1:e0:54:29:2d:bd:fa:ae:8b:b7:e0: 37:45:e9:cb:5d:a7:b2:28:f6:3d:f1:0d:a6:8c:c0:30:fc:4a: 33:71:33:d9:45:41:85:b8:2e:cd:22:61:0e:03:26:5e:37:c7: f1:f0:32:c1:49:66:c6:90:c4:88:99:f5:8e:cf:3c:d8:34:44: a5:06:80:c5:d8:cc:3b:8f:5e:25:0e:c6:28:09:7f:c4:44:77: 98:25:2e:c7:30:82:17:05:74:97:57:2d:38:04:49:c5:05:9e: ce:0c:78:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyaLmTs/EUw0t2igDQsBSJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZTNmYjg2Nzg2MWRhYWZkNzgxMjc5ODk3ZmUyNWE4ZWIz NzE0NjgwHhcNMjUxMjE4MTcwMTIyWhcNMjUxMjE5MTcwMTIyWjAzMTEwLwYDVQQD Eyg0MzY4MDg5ZjY4MDBkOTA3M2FiNDFjMjU1OGMwYjUxYjI2YWJmZGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7YPZ6qoDEA5PQyEKPiO09gcvPYp/ U69iL/eqUjSijxCnRt/JU07rl8K5+mwkEeymI3eiJZz20qEksl49IA3DkoX0u5rX IY9Ee8KFHSAbM/lUTYFi05KIeXmL9FJqsswPmyGrYRVv51lYO64H+dfeNVyuyJlg fDMjrDkgeppd6DRs1AiPutNoPH7DVTibbTMiL9CX8pNywfPih6kPHBZrlrRjX0sc df42juf8ialdQaJJ57Ao6vaJa+5g8aILV4psBBiiaOQlIwmxb+yaXPSkhJMT1lWw 1dfYkxRR5C0BPpg7eI7n6sWxeJuNWHMFufN1WhABZHXC8WAP0vvlNcHTjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFENoCJ9oANkHOrQcJVjAtRsmq/3MMB8GA1UdIwQY MBaAFGzj+4Z4Ydqv14EnmJf+JajrNxRoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9jM2Y5OTUtODZlZi00YTY3LWFjYWMt ZTQzOTFmYmNhZjE0LzEvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9jM2Y5OTUtODZlZi00YTY3LWFjYWMtZTQzOTFmYmNhZjE0 LzEvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArTkYrLsf MuUeiwz4TWPAxzDWlhT8HwH4Bco46r4fWeXFGCha6OfUgFPAie96YNup9JskTHiX GdmsUl5F8qbPiTkSSv43IBtaG1qg//Bn5uOx+Z2GrTGo3lLEWdVCqGIR6dOLySA0 IyzGEP8wHwUVQlDO614x8nKJ0lelNIYV8d7vBkIy90e0JMgt4FP8suJgWjLOAgUx 9sHgVCktvfqui7fgN0Xpy12nsij2PfENpozAMPxKM3Ez2UVBhbguzSJhDgMmXjfH 8fAywUlmxpDEiJn1js882DREpQaAxdjMO49eJQ7GKAl/xER3mCUuxzCCFwV0l1ct OARJxQWezgx4Yg== -----END CERTIFICATE-----Generated at Thu Dec 18 23:06:25 2025 by rpki-client