This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft File: rCGhE9G6AdEH_feRMIwKUfPQbdo.mft (raw, json) Hash identifier: 6qAS14jjPUEEHzWgMm70nbU8hlfNrG8dZopYb81Xi/E= Subject key identifier: A6:9D:F4:18:51:3A:EB:E7:3E:2A:62:AD:F5:E9:03:2D:EA:10:D4:7E Authority key identifier: AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA Certificate issuer: /CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda Certificate serial: 019AF1D211B6020C38F3A7DD034B1784CE3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft Manifest number: 064A Signing time: Sat 06 Dec 2025 04:01:07 +0000 Manifest this update: Sat 06 Dec 2025 04:01:07 +0000 Manifest next update: Sun 07 Dec 2025 04:01:07 +0000 Files and hashes: 1: 0Yi_JnLw94TXhrC5nYi7nz8aE9Q.roa (hash: PcfAm6zv9EFMWgISV3l4XmKFXD7W1Vvh/DKcICx2Ck4=) 2: rCGhE9G6AdEH_feRMIwKUfPQbdo.crl (hash: BCww3BSYNcgMQrKuHJWs5pLPxM8eoTevHlO30gunscg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:11:b6:02:0c:38:f3:a7:dd:03:4b:17:84:ce:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda Validity Not Before: Dec 6 04:01:07 2025 GMT Not After : Dec 7 04:01:07 2025 GMT Subject: CN=a69df418513aebe73e2a62adf5e9032dea10d47e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:43:d0:6b:57:60:01:cb:18:e8:e8:ce:ab:ea: 70:3e:45:78:f9:c4:dd:11:19:55:79:43:fa:a2:ab: 5c:d2:36:32:d5:fa:a8:2d:41:5e:31:76:63:23:eb: 6a:80:1c:b7:8e:52:97:ed:a9:5f:60:ff:ca:66:ad: 54:24:61:a9:64:3f:06:4a:2d:d8:bb:2b:c8:69:9e: 7e:fa:59:e2:9e:5a:7a:57:16:c9:fc:42:d9:ee:80: c4:ed:bd:e2:e3:8d:dd:e9:f9:ab:f4:f6:9d:a9:01: e7:63:d6:1d:a6:6d:23:a1:a5:f7:2e:a0:9e:b8:d4: b8:e0:0b:a6:17:3d:e0:78:38:54:2c:10:85:a3:dc: 9b:1c:b6:2d:60:46:4e:08:1f:6d:0b:af:b2:84:44: 5d:49:d9:1d:3a:f5:83:97:87:f1:d3:96:1e:29:6b: 1a:93:95:37:dc:5b:b7:40:ca:73:53:f5:2a:43:6a: 30:e7:26:ce:a4:e6:f8:8a:ef:e9:88:43:58:54:f7: de:68:09:03:b4:cc:11:5c:bd:69:2d:a7:b7:f1:fb: 92:51:d9:5b:0b:4a:7a:b3:e1:39:08:fe:ce:5b:85: ec:45:8a:34:c3:7a:79:c2:72:8e:ee:46:3f:c9:54: 74:d1:d8:96:2c:d1:fc:a0:51:42:be:74:92:56:72: 82:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9D:F4:18:51:3A:EB:E7:3E:2A:62:AD:F5:E9:03:2D:EA:10:D4:7E X509v3 Authority Key Identifier: keyid:AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:e1:af:03:a4:87:0a:30:dc:02:2d:70:a3:07:64:3a:00:81: 56:82:52:6e:49:7c:81:c6:57:63:fd:44:2a:1d:13:dc:f9:c0: 23:15:6e:d5:2f:c9:ad:52:94:82:bf:0e:17:33:a0:be:e4:ba: 98:5e:6c:b2:ba:43:39:1c:e5:3b:01:c2:39:4f:e0:54:c1:16: 37:7c:57:5f:2b:ad:29:4e:d8:c5:a1:df:05:d7:bf:59:b3:fb: 52:8c:a8:cb:5a:70:e6:d1:89:6d:d2:4a:f3:bd:50:3f:7e:51: c0:ab:75:fe:ad:af:8d:61:f3:db:e8:8a:13:cf:93:90:db:7d: cb:54:05:13:6c:42:2a:2d:a8:ed:63:03:3a:09:8b:6d:5e:a3: 75:f2:7b:10:9f:c1:15:23:a3:8a:35:d4:78:35:af:5f:21:db: 83:06:87:70:74:43:8b:9e:4b:f1:ec:75:05:23:7b:e0:ec:e9: d2:43:95:2a:77:c9:5f:1c:65:0b:f1:cc:84:28:a0:e9:a4:e2: 6e:67:b8:04:0f:c6:fc:37:e8:ed:19:17:3b:db:9d:32:6e:49: 89:ff:96:22:87:1f:0e:24:1c:4f:ba:6b:29:db:d3:22:2f:8f: f9:6b:73:10:07:88:45:eb:44:a0:d0:3d:38:0c:da:eb:f7:d9: 50:32:cf:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0hG2Agw486fdA0sXhM4/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjMjFhMTEzZDFiYTAxZDEwN2ZkZjc5MTMwOGMwYTUxZjNk MDZkZGEwHhcNMjUxMjA2MDQwMTA3WhcNMjUxMjA3MDQwMTA3WjAzMTEwLwYDVQQD EyhhNjlkZjQxODUxM2FlYmU3M2UyYTYyYWRmNWU5MDMyZGVhMTBkNDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8kPQa1dgAcsY6OjOq+pwPkV4+cTd ERlVeUP6oqtc0jYy1fqoLUFeMXZjI+tqgBy3jlKX7alfYP/KZq1UJGGpZD8GSi3Y uyvIaZ5++lninlp6VxbJ/ELZ7oDE7b3i443d6fmr9PadqQHnY9Ydpm0joaX3LqCe uNS44AumFz3geDhULBCFo9ybHLYtYEZOCB9tC6+yhERdSdkdOvWDl4fx05YeKWsa k5U33Fu3QMpzU/UqQ2ow5ybOpOb4iu/piENYVPfeaAkDtMwRXL1pLae38fuSUdlb C0p6s+E5CP7OW4XsRYo0w3p5wnKO7kY/yVR00diWLNH8oFFCvnSSVnKC/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKad9BhROuvnPipirfXpAy3qENR+MB8GA1UdIwQY MBaAFKwhoRPRugHRB/33kTCMClHz0G3aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81ODkzZjctYjRmMS00OTYxLTk0MjYt ZmQ3M2I4MDgzM2I3LzEvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My81ODkzZjctYjRmMS00OTYxLTk0MjYtZmQ3M2I4MDgzM2I3 LzEvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkeGvA6SH CjDcAi1wowdkOgCBVoJSbkl8gcZXY/1EKh0T3PnAIxVu1S/JrVKUgr8OFzOgvuS6 mF5ssrpDORzlOwHCOU/gVMEWN3xXXyutKU7YxaHfBde/WbP7Uoyoy1pw5tGJbdJK 871QP35RwKt1/q2vjWHz2+iKE8+TkNt9y1QFE2xCKi2o7WMDOgmLbV6jdfJ7EJ/B FSOjijXUeDWvXyHbgwaHcHRDi55L8ex1BSN74Ozp0kOVKnfJXxxlC/HMhCig6aTi bme4BA/G/Dfo7RkXO9udMm5Jif+WIocfDiQcT7prKdvTIi+P+WtzEAeIRetEoNA9 OAza6/fZUDLPAw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:03:20 2025 by rpki-client