This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.mft File: b0dz8kDNYmnCUbZRcKp-KYroxB8.mft (raw, json) Hash identifier: 77/OrWAzxI/8xAQUDgbrBJBLI2hZacGWCpouD/ZHj9g= Subject key identifier: 02:1A:33:96:42:D3:2A:CD:F4:2A:85:2D:6A:F5:42:7C:9D:61:5A:1D Authority key identifier: 6F:47:73:F2:40:CD:62:69:C2:51:B6:51:70:AA:7E:29:8A:E8:C4:1F Certificate issuer: /CN=6f4773f240cd6269c251b65170aa7e298ae8c41f Certificate serial: 019AF19BB3DEECF61EFD2E46E1C549931F11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b0dz8kDNYmnCUbZRcKp-KYroxB8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.mft Manifest number: 0C40 Signing time: Sat 06 Dec 2025 03:01:44 +0000 Manifest this update: Sat 06 Dec 2025 03:01:44 +0000 Manifest next update: Sun 07 Dec 2025 03:01:44 +0000 Files and hashes: 1: 5z9bF-s7mwN_rrIwiP6BUqF8WSI.roa (hash: UYifmQ1R2PC8Hli/npCQiOLYGwkMeaviE7TQe/6mbAs=) 2: b0dz8kDNYmnCUbZRcKp-KYroxB8.crl (hash: /NDmEu9rfT/AAjS8VROzSESUbECV0Iyb47UdPNqKuck=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.crl rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.mft rsync://rpki.ripe.net/repository/DEFAULT/b0dz8kDNYmnCUbZRcKp-KYroxB8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:b3:de:ec:f6:1e:fd:2e:46:e1:c5:49:93:1f:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f4773f240cd6269c251b65170aa7e298ae8c41f Validity Not Before: Dec 6 03:01:44 2025 GMT Not After : Dec 7 03:01:44 2025 GMT Subject: CN=021a339642d32acdf42a852d6af5427c9d615a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:89:26:e8:af:67:e9:d7:98:62:e2:80:af:bf: 03:f8:29:ce:3e:01:77:ae:34:b0:46:1d:2e:17:cf: 2b:f0:03:63:f6:59:e6:6b:82:9c:ab:ae:48:93:52: a1:f4:b6:f9:98:18:72:cc:87:e9:f1:80:b6:ba:15: 53:f7:36:c9:41:6a:2f:00:df:74:bc:08:5b:f7:71: d1:0e:31:54:73:04:aa:c5:a3:52:09:1a:04:0d:cd: 3b:da:ae:6d:b5:c2:90:2f:f7:98:0f:b2:20:93:af: 65:b0:0b:27:8e:d3:72:2f:fc:24:87:84:a1:ad:22: 59:c6:4e:06:ac:d2:a4:4f:cc:e3:20:49:78:a1:c6: 64:05:c1:6a:ff:e1:67:fa:a1:99:10:15:0a:42:e0: 8d:79:24:67:75:2b:97:3b:23:82:da:27:95:d1:3b: 0f:05:1e:62:3f:94:96:3c:81:7e:64:a8:e8:58:76: 95:c9:89:76:2f:11:e2:cb:73:f6:55:5e:91:c6:88: 16:89:43:fa:d5:2f:d1:70:2a:a3:86:52:d2:1a:db: 82:04:4b:9b:2a:c4:eb:82:c8:6d:15:15:73:d0:10: f1:cb:29:11:c0:52:5a:8f:92:1b:6a:aa:bb:66:af: 32:d3:82:f4:30:e9:b9:96:64:41:ee:0f:50:bf:1e: ce:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:1A:33:96:42:D3:2A:CD:F4:2A:85:2D:6A:F5:42:7C:9D:61:5A:1D X509v3 Authority Key Identifier: keyid:6F:47:73:F2:40:CD:62:69:C2:51:B6:51:70:AA:7E:29:8A:E8:C4:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0dz8kDNYmnCUbZRcKp-KYroxB8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:d2:64:22:ee:70:47:1f:f4:c8:0d:a7:12:5e:fb:d6:cf:06: 66:5e:dd:a6:96:b8:cc:98:99:b0:d4:4a:1d:3c:61:f6:da:07: a3:78:ee:70:02:a7:75:0b:4b:3c:e8:9c:cb:21:fb:e9:1d:cf: bb:87:da:b8:0b:a6:e5:9b:af:c4:6c:7e:af:b6:f1:77:1b:41: 5d:14:a8:c6:bf:7e:18:81:20:1b:2c:a4:2c:40:87:d3:17:c5: e9:d6:2e:98:d3:bd:10:fb:0b:95:e5:b8:5c:6c:a8:c4:ec:db: 9e:87:c2:0f:28:f4:16:ab:2d:56:e9:88:c4:33:4c:74:59:97: 0d:00:da:2e:b0:70:5e:84:42:80:23:3c:05:3e:6d:c3:01:86: a2:e1:83:ad:40:ef:98:c8:0c:be:31:ec:8e:e9:62:1c:82:e4: 51:0e:61:71:f7:f7:9d:92:d9:db:51:26:79:38:a5:3e:ba:6e: e6:c2:9a:c6:77:72:38:65:61:81:b7:b9:f5:49:74:9f:c6:33: 14:54:9d:d3:9f:5d:d5:56:e1:6f:f3:6b:96:f9:a4:75:26:67: 22:1f:63:07:27:7a:02:cb:90:95:56:2b:1b:30:3f:11:28:fe: 09:c5:a0:4c:f1:51:44:b6:80:85:87:e6:16:c2:0e:5d:0f:6c: 4e:96:a7:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm7Pe7PYe/S5G4cVJkx8RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmNDc3M2YyNDBjZDYyNjljMjUxYjY1MTcwYWE3ZTI5OGFl OGM0MWYwHhcNMjUxMjA2MDMwMTQ0WhcNMjUxMjA3MDMwMTQ0WjAzMTEwLwYDVQQD EygwMjFhMzM5NjQyZDMyYWNkZjQyYTg1MmQ2YWY1NDI3YzlkNjE1YTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Ikm6K9n6deYYuKAr78D+CnOPgF3 rjSwRh0uF88r8ANj9lnma4Kcq65Ik1Kh9Lb5mBhyzIfp8YC2uhVT9zbJQWovAN90 vAhb93HRDjFUcwSqxaNSCRoEDc072q5ttcKQL/eYD7Igk69lsAsnjtNyL/wkh4Sh rSJZxk4GrNKkT8zjIEl4ocZkBcFq/+Fn+qGZEBUKQuCNeSRndSuXOyOC2ieV0TsP BR5iP5SWPIF+ZKjoWHaVyYl2LxHiy3P2VV6RxogWiUP61S/RcCqjhlLSGtuCBEub KsTrgshtFRVz0BDxyykRwFJaj5Ibaqq7Zq8y04L0MOm5lmRB7g9Qvx7O4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAIaM5ZC0yrN9CqFLWr1QnydYVodMB8GA1UdIwQY MBaAFG9Hc/JAzWJpwlG2UXCqfimK6MQfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjBkejhrRE5ZbW5DVWJaUmNLcC1LWXJveEI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS85ZWQ0YjItMzJiOS00OThhLWI4ZGMt NzY5Y2Q3ZGNjOTM4LzEvYjBkejhrRE5ZbW5DVWJaUmNLcC1LWXJveEI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS85ZWQ0YjItMzJiOS00OThhLWI4ZGMtNzY5Y2Q3ZGNjOTM4 LzEvYjBkejhrRE5ZbW5DVWJaUmNLcC1LWXJveEI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjdJkIu5w Rx/0yA2nEl771s8GZl7dppa4zJiZsNRKHTxh9toHo3jucAKndQtLPOicyyH76R3P u4fauAum5ZuvxGx+r7bxdxtBXRSoxr9+GIEgGyykLECH0xfF6dYumNO9EPsLleW4 XGyoxOzbnofCDyj0FqstVumIxDNMdFmXDQDaLrBwXoRCgCM8BT5twwGGouGDrUDv mMgMvjHsjuliHILkUQ5hcff3nZLZ21EmeTilPrpu5sKaxndyOGVhgbe59Ul0n8Yz FFSd059d1Vbhb/NrlvmkdSZnIh9jByd6AsuQlVYrGzA/ESj+CcWgTPFRRLaAhYfm FsIOXQ9sTpanRQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:23:26 2025 by rpki-client