This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json) Hash identifier: 12pTs3qRSU4wKfzEh/gtNbuFrM3w+4uOM+i5ujKjJOk= Subject key identifier: F1:37:27:3A:EE:42:DE:31:12:E7:48:9D:A3:C2:DA:F3:2E:4B:81:E0 Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80 Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80 Certificate serial: 019AF12EC9634C681F6B4BCF721BB2044098 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft Manifest number: 0F61 Signing time: Sat 06 Dec 2025 01:02:46 +0000 Manifest this update: Sat 06 Dec 2025 01:02:46 +0000 Manifest next update: Sun 07 Dec 2025 01:02:46 +0000 Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: oFlqKI84B7V17idvzTWHm8jtU9U7/b5onRHbcCKwbak=) 2: c4vhQn8zi1dmhfuFlEzS457ekqY.roa (hash: K0d7LR2NOcizL+J6fo8ZUFPUHzj1ReR3yGovArPpqzY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c9:63:4c:68:1f:6b:4b:cf:72:1b:b2:04:40:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80 Validity Not Before: Dec 6 01:02:46 2025 GMT Not After : Dec 7 01:02:46 2025 GMT Subject: CN=f137273aee42de3112e7489da3c2daf32e4b81e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:52:9c:1a:56:97:ce:f0:a2:c8:8f:19:36:0b: f9:c7:92:28:b1:7c:05:e4:19:e0:40:2e:6f:d0:07: a4:81:9c:1e:57:b5:2d:a1:4d:95:34:bf:6e:a4:d4: 3a:6b:64:18:6c:ea:f3:8e:a3:a0:30:33:32:f0:5b: 55:b0:24:16:ea:eb:c9:5c:92:2c:8c:d0:30:21:71: bd:78:a5:8e:73:e5:b9:58:fe:4f:94:0f:7e:5b:cb: 78:44:32:3d:f0:61:08:21:1f:84:11:97:79:19:d4: c8:f7:56:31:a8:50:2f:dd:fa:07:6e:9c:28:0d:6e: fa:ce:67:32:64:96:b6:29:5f:78:c5:f1:53:f3:09: f8:ac:47:8b:f8:d4:26:b9:9d:4b:21:59:f9:3e:a7: 98:0e:0c:84:53:09:f6:80:0a:78:7f:78:8a:d6:d1: 5d:81:07:c8:48:37:d2:40:ec:eb:53:03:87:e9:47: 71:26:db:62:3a:8c:04:f6:b2:2d:cb:61:19:fb:30: 90:97:cf:4e:fd:0b:68:32:06:29:6e:91:21:39:a7: 06:ab:48:35:e3:49:5a:93:f1:30:c4:ca:26:57:c1: 8a:0d:74:0a:f8:23:50:48:81:b4:b6:0f:2d:7f:42: 94:8c:ba:bf:c1:f2:48:50:73:60:5c:fc:c7:94:eb: c0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:37:27:3A:EE:42:DE:31:12:E7:48:9D:A3:C2:DA:F3:2E:4B:81:E0 X509v3 Authority Key Identifier: keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:fe:02:9d:3d:70:be:bc:3c:0b:a4:a4:c7:7e:c7:31:11:29: 91:b4:5e:0f:43:6f:f8:af:fe:6f:e3:84:8d:2d:0f:41:3e:85: 1e:c7:e5:1c:66:63:48:c7:b7:6b:cb:38:78:fa:0b:2a:06:21: 99:e3:b9:4d:6c:a0:98:c5:d0:c0:2a:e1:3b:27:b6:9c:2b:ad: ee:0c:85:4b:aa:32:95:dd:8c:4d:1a:b5:67:12:db:b7:16:68: b3:84:3c:24:d8:28:ec:35:79:c4:06:a3:0c:0a:60:79:a9:35: 33:e2:66:08:f9:6b:da:61:61:06:1b:2d:c3:16:ae:ee:50:6e: e3:44:4c:6f:c5:68:da:35:d6:91:6e:f4:3f:f6:7c:ca:57:b4: bf:f3:50:aa:80:17:28:ba:98:33:9a:d9:ef:3d:62:96:62:9e: de:bd:76:30:42:5b:9b:fb:f0:83:9c:9a:1a:e1:2f:0f:f4:23: 14:3b:ea:1f:70:2b:01:a5:94:51:63:e8:60:3e:9b:99:a2:07: 83:0a:c7:e9:e3:98:7c:f5:ef:c3:e1:ee:51:e1:19:7b:ff:7e: f9:30:e9:12:80:a3:19:76:9e:c2:f6:88:44:36:df:6e:e3:57: 28:da:aa:88:95:ab:7a:e7:eb:6f:85:a7:02:4b:a6:b0:e2:7c: 6b:eb:ae:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsljTGgfa0vPchuyBECYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxYjRiZWIwYTZhN2UxMjg0YWJmNDM4NTM0OGNmNDg2MTAw YjlmODAwHhcNMjUxMjA2MDEwMjQ2WhcNMjUxMjA3MDEwMjQ2WjAzMTEwLwYDVQQD EyhmMTM3MjczYWVlNDJkZTMxMTJlNzQ4OWRhM2MyZGFmMzJlNGI4MWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6FKcGlaXzvCiyI8ZNgv5x5IosXwF 5BngQC5v0AekgZweV7UtoU2VNL9upNQ6a2QYbOrzjqOgMDMy8FtVsCQW6uvJXJIs jNAwIXG9eKWOc+W5WP5PlA9+W8t4RDI98GEIIR+EEZd5GdTI91YxqFAv3foHbpwo DW76zmcyZJa2KV94xfFT8wn4rEeL+NQmuZ1LIVn5PqeYDgyEUwn2gAp4f3iK1tFd gQfISDfSQOzrUwOH6UdxJttiOowE9rIty2EZ+zCQl89O/QtoMgYpbpEhOacGq0g1 40lak/EwxMomV8GKDXQK+CNQSIG0tg8tf0KUjLq/wfJIUHNgXPzHlOvAKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPE3JzruQt4xEudInaPC2vMuS4HgMB8GA1UdIwQY MBaAFNG0vrCmp+EoSr9DhTSM9IYQC5+AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGJTLXNLYW40U2hLdjBPRk5JejBoaEFMbjRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9mOGQ5OGQtMWZmZS00NjM5LWIzNzMt OWJhMTE3MmE2OGMwLzEvMGJTLXNLYW40U2hLdjBPRk5JejBoaEFMbjRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9mOGQ5OGQtMWZmZS00NjM5LWIzNzMtOWJhMTE3MmE2OGMw LzEvMGJTLXNLYW40U2hLdjBPRk5JejBoaEFMbjRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR/4CnT1w vrw8C6Skx37HMREpkbReD0Nv+K/+b+OEjS0PQT6FHsflHGZjSMe3a8s4ePoLKgYh meO5TWygmMXQwCrhOye2nCut7gyFS6oyld2MTRq1ZxLbtxZos4Q8JNgo7DV5xAaj DApgeak1M+JmCPlr2mFhBhstwxau7lBu40RMb8Vo2jXWkW70P/Z8yle0v/NQqoAX KLqYM5rZ7z1ilmKe3r12MEJbm/vwg5yaGuEvD/QjFDvqH3ArAaWUUWPoYD6bmaIH gwrH6eOYfPXvw+HuUeEZe/9++TDpEoCjGXaewvaIRDbfbuNXKNqqiJWreufrb4Wn AkumsOJ8a+uuRQ== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:17 2025 by rpki-client