This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft File: 0gXOrys2rZ_lGQaehrlONtLsS94.mft (raw, json) Hash identifier: 3YlbMHUecDZyLvG8elKtDqHuYZkhdpayv3JXcc3OiK0= Subject key identifier: 5B:1D:BD:2F:D2:93:FD:6F:2A:64:F8:AB:88:CC:C2:05:8B:E4:BD:2E Authority key identifier: D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE Certificate issuer: /CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde Certificate serial: 019AF3890D7E98989E5E4BAE12A58E499046 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft Manifest number: 0A92 Signing time: Sat 06 Dec 2025 12:00:36 +0000 Manifest this update: Sat 06 Dec 2025 12:00:36 +0000 Manifest next update: Sun 07 Dec 2025 12:00:36 +0000 Files and hashes: 1: 0gXOrys2rZ_lGQaehrlONtLsS94.crl (hash: S/rQO+jEukB/88SEsViWgSR0ds3WBLW0tQWwGgH00Jk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:0d:7e:98:98:9e:5e:4b:ae:12:a5:8e:49:90:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde Validity Not Before: Dec 6 12:00:36 2025 GMT Not After : Dec 7 12:00:36 2025 GMT Subject: CN=5b1dbd2fd293fd6f2a64f8ab88ccc2058be4bd2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ee:5a:bc:3b:6e:9f:f5:11:35:b6:63:19:12: c4:2b:37:8c:23:3c:96:3a:f8:a0:fd:80:fb:06:3c: 23:2e:81:c3:fc:85:65:ec:a7:7e:0a:11:5c:db:91: 40:ac:d4:40:15:b7:ef:e1:b6:50:91:1e:99:9f:24: 63:c5:22:d3:6c:4b:15:5f:30:12:49:af:77:57:84: a5:84:68:6a:22:02:1f:7b:28:7e:23:a7:92:10:e4: 22:77:66:3e:24:f6:65:51:a7:ae:07:0a:6a:5a:ad: 2b:e7:49:20:34:92:76:1d:cb:a9:91:31:3a:3c:16: 5a:4c:fa:dd:4e:ea:aa:9f:cd:2a:f2:ef:ab:0d:81: 4d:a1:21:ee:0c:58:f9:12:b1:b7:12:55:30:13:ea: 0e:7b:99:03:fa:7e:5e:c8:94:02:a0:49:36:b3:05: 34:a3:cf:31:fd:05:14:a6:ac:b2:4c:1c:e9:f0:11: 0f:0f:82:9b:18:0c:d1:96:1a:5b:7b:cb:8e:1e:44: 0a:4f:7b:cc:fc:6f:ea:75:3f:5d:ed:32:c3:66:1e: 4a:8f:4f:d8:5b:37:e9:fb:18:6a:33:cb:3d:53:9d: 6f:8a:4a:e2:45:3c:2f:6b:82:31:60:db:84:3b:fe: af:dd:95:80:7d:65:bf:e7:af:ff:fc:00:e1:74:c7: 6d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:1D:BD:2F:D2:93:FD:6F:2A:64:F8:AB:88:CC:C2:05:8B:E4:BD:2E X509v3 Authority Key Identifier: keyid:D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:e0:a1:31:89:9e:4a:33:15:e6:c0:6a:81:63:34:9e:82:fb: f0:d1:a9:2f:21:f1:22:d3:8a:40:3b:b1:3b:13:52:d9:87:e8: 98:f2:9c:94:00:05:7e:6e:be:be:01:0d:a0:10:09:3b:d8:8e: b7:3e:9c:ab:10:35:83:82:bb:c6:e1:a2:d6:a8:92:da:fe:ab: e1:b4:44:f8:20:25:7e:4e:7e:22:b4:18:f8:4c:31:92:4b:0e: 3c:14:c8:e7:f6:39:c2:56:71:a8:62:f7:34:f0:02:43:fd:96: 03:b3:c7:35:82:05:09:9b:b7:e3:b3:0d:97:05:ae:0f:d5:06: 5e:2c:e5:b0:32:62:a4:19:fe:34:08:31:5b:92:15:33:87:36: 5d:67:c7:39:9d:55:45:5a:4d:9a:9c:36:19:ad:72:16:d7:70: 3d:83:11:90:a5:80:36:76:3d:b7:61:fb:71:b0:7e:5d:d3:6a: 6f:0e:c4:d6:ba:d6:98:6b:27:c5:12:e1:fb:6b:46:0c:67:f9: 1f:96:6d:2d:c5:ae:8e:14:ca:3d:30:c4:da:32:f3:cc:02:ed: 80:c9:71:2b:d0:13:76:e3:16:d6:81:30:27:f8:3b:ac:ec:5d: a9:ed:c4:62:53:34:25:be:71:7c:12:b6:8f:83:7a:df:cc:09: 7d:48:2f:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziQ1+mJieXkuuEqWOSZBGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyMDVjZWFmMmIzNmFkOWZlNTE5MDY5ZTg2Yjk0ZTM2ZDJl YzRiZGUwHhcNMjUxMjA2MTIwMDM2WhcNMjUxMjA3MTIwMDM2WjAzMTEwLwYDVQQD Eyg1YjFkYmQyZmQyOTNmZDZmMmE2NGY4YWI4OGNjYzIwNThiZTRiZDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvu5avDtun/URNbZjGRLEKzeMIzyW Ovig/YD7BjwjLoHD/IVl7Kd+ChFc25FArNRAFbfv4bZQkR6ZnyRjxSLTbEsVXzAS Sa93V4SlhGhqIgIfeyh+I6eSEOQid2Y+JPZlUaeuBwpqWq0r50kgNJJ2HcupkTE6 PBZaTPrdTuqqn80q8u+rDYFNoSHuDFj5ErG3ElUwE+oOe5kD+n5eyJQCoEk2swU0 o88x/QUUpqyyTBzp8BEPD4KbGAzRlhpbe8uOHkQKT3vM/G/qdT9d7TLDZh5Kj0/Y Wzfp+xhqM8s9U51vikriRTwva4IxYNuEO/6v3ZWAfWW/56///ADhdMdtMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFsdvS/Sk/1vKmT4q4jMwgWL5L0uMB8GA1UdIwQY MBaAFNIFzq8rNq2f5RkGnoa5TjbS7EveMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGdYT3J5czJyWl9sR1FhZWhybE9OdExzUzk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ZmExNzItOGU1NS00NzExLThjNzUt MThmODkyNWM2NjY1LzEvMGdYT3J5czJyWl9sR1FhZWhybE9OdExzUzk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny83ZmExNzItOGU1NS00NzExLThjNzUtMThmODkyNWM2NjY1 LzEvMGdYT3J5czJyWl9sR1FhZWhybE9OdExzUzk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAuChMYme SjMV5sBqgWM0noL78NGpLyHxItOKQDuxOxNS2YfomPKclAAFfm6+vgENoBAJO9iO tz6cqxA1g4K7xuGi1qiS2v6r4bRE+CAlfk5+IrQY+EwxkksOPBTI5/Y5wlZxqGL3 NPACQ/2WA7PHNYIFCZu347MNlwWuD9UGXizlsDJipBn+NAgxW5IVM4c2XWfHOZ1V RVpNmpw2Ga1yFtdwPYMRkKWANnY9t2H7cbB+XdNqbw7E1rrWmGsnxRLh+2tGDGf5 H5ZtLcWujhTKPTDE2jLzzALtgMlxK9ATduMW1oEwJ/g7rOxdqe3EYlM0Jb5xfBK2 j4N638wJfUgvzQ== -----END CERTIFICATE-----Generated at Sat Dec 6 20:42:30 2025 by rpki-client