This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft File: orO6gtodtcGUN6wzeDhG8vK_9GI.mft (raw, json) Hash identifier: 8F7laS5Vy4nczORhU8RWRh9JjjlcmHGJprzDgJWvRHs= Subject key identifier: C7:7D:03:86:41:E2:8D:D6:A8:AE:89:DE:54:54:B6:96:75:DB:BA:49 Authority key identifier: A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62 Certificate issuer: /CN=a2b3ba82da1db5c19437ac33783846f2f2bff462 Certificate serial: 019AF12CFB94B32D34C1B0BB85075CEB0C6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft Manifest number: 0501 Signing time: Sat 06 Dec 2025 01:00:48 +0000 Manifest this update: Sat 06 Dec 2025 01:00:48 +0000 Manifest next update: Sun 07 Dec 2025 01:00:48 +0000 Files and hashes: 1: orO6gtodtcGUN6wzeDhG8vK_9GI.crl (hash: 9lCbUfOa3BrfSGF4NhUQjKJaU5mhoMvelkbu1CmKk1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:fb:94:b3:2d:34:c1:b0:bb:85:07:5c:eb:0c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2b3ba82da1db5c19437ac33783846f2f2bff462 Validity Not Before: Dec 6 01:00:48 2025 GMT Not After : Dec 7 01:00:48 2025 GMT Subject: CN=c77d038641e28dd6a8ae89de5454b69675dbba49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b8:b3:25:73:5d:99:08:d5:eb:28:ad:88:4e: 48:04:80:55:52:19:41:19:73:df:ff:3a:23:7a:22: 43:f4:3c:b3:ba:2b:7d:23:fa:7f:91:74:32:df:e5: 56:18:cc:f4:1b:67:e1:5f:7e:67:d6:6d:b6:fc:d0: a5:85:ca:45:3e:02:3e:5a:dd:dd:b0:51:a7:92:e0: 25:f5:c3:8c:6f:c8:72:65:34:ff:67:04:45:8c:d9: 96:e0:9b:3c:67:d5:ff:c0:57:6c:19:fd:c0:e3:b9: f8:93:c6:64:98:e7:52:b9:b4:7f:73:4e:c4:6a:c6: d4:7b:13:c3:60:97:68:26:5b:f9:9b:65:b5:94:c7: 26:7a:8a:1e:b0:b2:cb:e4:84:26:c9:63:08:04:3c: 33:fb:ef:af:81:d0:96:c6:af:40:c8:ea:a4:a6:2f: 7f:96:75:39:a3:f4:f1:c7:e4:a7:b2:ea:22:2f:18: b8:2b:18:51:ee:5b:71:4e:08:db:3c:e6:ec:4f:d2: cc:21:69:01:06:e1:19:17:0e:35:f0:ee:5b:c5:b8: a0:1e:90:3c:38:36:d6:cb:f8:c9:95:f3:1d:49:a1: c7:0d:c2:96:c8:80:c6:fb:cb:23:3a:c2:2e:17:39: 22:9e:3a:24:1f:1f:63:2c:eb:50:e8:a4:6a:2b:28: f6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7D:03:86:41:E2:8D:D6:A8:AE:89:DE:54:54:B6:96:75:DB:BA:49 X509v3 Authority Key Identifier: keyid:A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:78:a7:4a:0f:8d:ce:53:a3:67:e8:d1:41:b5:f3:34:92:a5: c7:63:3a:eb:c7:9d:31:d1:4b:d8:81:58:46:2c:33:63:7b:bf: 7a:6d:41:86:3e:76:37:50:da:66:96:b6:dc:72:38:9e:e2:26: b1:2c:53:3b:3c:01:61:1f:06:64:19:ea:36:da:95:47:b6:0a: 74:05:61:db:a5:67:14:89:be:eb:67:a3:52:51:f2:f7:4e:e9: 8e:a9:b8:fa:d1:27:39:f9:f0:e5:30:1e:84:3e:52:29:ad:07: e7:86:63:0f:80:71:95:9c:f2:ab:82:1c:0e:4f:e3:c3:b4:58: 68:d8:04:12:dd:1a:05:34:2b:81:88:96:2b:2e:dd:a8:56:21: 4f:19:95:b0:bd:41:7e:0f:f8:d4:de:e9:f4:9b:b2:72:0c:02: 90:3c:c5:c6:2c:36:37:7f:cb:b1:d0:37:1b:bd:3a:66:ca:6a: 71:45:2b:4b:70:87:cc:a5:e3:6f:b4:4d:b6:52:a1:a5:2e:bc: 33:49:d1:8e:e8:2b:89:f0:df:2d:a5:12:e0:a8:60:db:29:4e: 10:23:cc:3a:eb:1d:69:94:42:e1:57:33:ee:16:ea:9c:84:9a: 04:1e:48:b5:d3:29:aa:20:2e:f1:56:c7:ea:56:1d:46:bd:ae: d1:ea:be:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLPuUsy00wbC7hQdc6wxrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyYjNiYTgyZGExZGI1YzE5NDM3YWMzMzc4Mzg0NmYyZjJi ZmY0NjIwHhcNMjUxMjA2MDEwMDQ4WhcNMjUxMjA3MDEwMDQ4WjAzMTEwLwYDVQQD EyhjNzdkMDM4NjQxZTI4ZGQ2YThhZTg5ZGU1NDU0YjY5Njc1ZGJiYTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+rizJXNdmQjV6yitiE5IBIBVUhlB GXPf/zojeiJD9Dyzuit9I/p/kXQy3+VWGMz0G2fhX35n1m22/NClhcpFPgI+Wt3d sFGnkuAl9cOMb8hyZTT/ZwRFjNmW4Js8Z9X/wFdsGf3A47n4k8ZkmOdSubR/c07E asbUexPDYJdoJlv5m2W1lMcmeooesLLL5IQmyWMIBDwz+++vgdCWxq9AyOqkpi9/ lnU5o/Txx+SnsuoiLxi4KxhR7ltxTgjbPObsT9LMIWkBBuEZFw418O5bxbigHpA8 ODbWy/jJlfMdSaHHDcKWyIDG+8sjOsIuFzkinjokHx9jLOtQ6KRqKyj2tQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMd9A4ZB4o3WqK6J3lRUtpZ127pJMB8GA1UdIwQY MBaAFKKzuoLaHbXBlDesM3g4RvLyv/RiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS80NDk4MWMtOTZmOC00ODY2LWI3ZmUt Zjg5OGQyMDRlYjRlLzEvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS80NDk4MWMtOTZmOC00ODY2LWI3ZmUtZjg5OGQyMDRlYjRl LzEvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdXinSg+N zlOjZ+jRQbXzNJKlx2M668edMdFL2IFYRiwzY3u/em1Bhj52N1DaZpa23HI4nuIm sSxTOzwBYR8GZBnqNtqVR7YKdAVh26VnFIm+62ejUlHy907pjqm4+tEnOfnw5TAe hD5SKa0H54ZjD4BxlZzyq4IcDk/jw7RYaNgEEt0aBTQrgYiWKy7dqFYhTxmVsL1B fg/41N7p9JuycgwCkDzFxiw2N3/LsdA3G706ZspqcUUrS3CHzKXjb7RNtlKhpS68 M0nRjugrifDfLaUS4Khg2ylOECPMOusdaZRC4Vcz7hbqnISaBB5ItdMpqiAu8VbH 6lYdRr2u0eq+3A== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:57 2025 by rpki-client