This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft File: 9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft (raw, json) Hash identifier: DzK4182Y6RaCqzGkukNp+3lqYJIUCnSUWtnFZ7L7hBE= Subject key identifier: EE:1E:22:99:2D:14:57:AF:A3:3D:BF:AD:7E:BA:B2:C7:9E:46:AD:84 Authority key identifier: F4:ED:5E:5D:BB:A1:EA:B6:D3:95:8E:59:41:82:9C:9D:A1:B2:C6:7F Certificate issuer: /CN=f4ed5e5dbba1eab6d3958e5941829c9da1b2c67f Certificate serial: 019AF12E27F89874F8C72934BE3095BCA066 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft Manifest number: 0B6D Signing time: Sat 06 Dec 2025 01:02:05 +0000 Manifest this update: Sat 06 Dec 2025 01:02:05 +0000 Manifest next update: Sun 07 Dec 2025 01:02:05 +0000 Files and hashes: 1: 9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl (hash: i7x5w1V4q+Ydl1bmWLJSAjTWh7rp+J40LZPvuqtvdrc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:27:f8:98:74:f8:c7:29:34:be:30:95:bc:a0:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4ed5e5dbba1eab6d3958e5941829c9da1b2c67f Validity Not Before: Dec 6 01:02:05 2025 GMT Not After : Dec 7 01:02:05 2025 GMT Subject: CN=ee1e22992d1457afa33dbfad7ebab2c79e46ad84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:72:d7:dd:b4:c6:44:56:01:67:fd:32:b9:f3: c8:ee:1b:d6:dc:ec:69:be:7a:3b:00:30:db:6a:f9: c2:a3:7d:d9:9d:4a:71:c8:8b:40:81:50:41:6e:a8: e0:62:7c:2d:1e:06:ba:55:2d:89:b3:e5:60:e8:20: e9:f0:6d:62:0a:46:76:46:cd:d2:c8:d7:a1:4f:85: 63:c7:38:02:1a:6c:a8:59:8e:c0:68:98:47:44:65: 4e:95:dd:24:50:7b:b0:5f:62:f5:ed:6d:f4:22:f1: 08:e4:fc:0d:08:cc:9e:c1:a7:45:2e:73:10:3b:6e: 4c:31:a7:96:cf:bc:1d:e4:89:33:3d:5f:a6:b9:74: 7f:37:33:20:d2:0c:d6:43:91:57:6d:f8:a7:ce:81: 53:4f:d4:b3:38:3c:e6:50:19:7e:ee:98:3b:34:48: b2:14:11:bb:cd:81:a5:72:24:16:fb:47:8d:3c:56: 23:50:70:73:12:b3:8d:4b:81:6a:68:cb:6b:a4:6a: 1f:e9:b2:90:45:8c:ac:40:db:15:6a:db:3f:de:bb: 53:c7:e5:bf:b4:01:78:37:20:11:3f:b3:d2:c2:06: d5:eb:9a:92:32:44:3a:9e:16:64:65:e9:dd:50:8f: ec:45:31:8b:ae:0e:60:e9:c8:d7:95:5e:3f:b2:2b: 4e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1E:22:99:2D:14:57:AF:A3:3D:BF:AD:7E:BA:B2:C7:9E:46:AD:84 X509v3 Authority Key Identifier: keyid:F4:ED:5E:5D:BB:A1:EA:B6:D3:95:8E:59:41:82:9C:9D:A1:B2:C6:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:ff:02:8d:2b:3c:dd:d9:26:db:13:c5:64:cd:41:7a:ee:47: ce:a7:e9:a3:bb:af:a9:b1:de:9a:3d:7b:ff:cb:19:a2:46:c7: 46:a8:db:cc:42:61:ab:04:69:9f:e5:99:ad:f8:3f:aa:6e:54: e2:db:b3:4d:1a:5a:b2:fc:7d:0a:9e:7d:96:74:9b:96:a6:02: 2c:5a:03:7c:3a:cc:60:8a:5c:fc:e5:df:3c:b8:e6:4f:28:b4: d1:1f:76:18:43:8c:1e:e3:33:87:ff:0b:3a:4f:75:9f:33:f1: 07:45:3f:13:90:9c:6e:45:74:ca:73:e0:47:2a:c8:54:bc:85: dd:f5:16:92:bf:50:db:38:0b:ae:34:da:92:ab:5b:42:8a:bf: b5:92:ba:50:cd:46:23:6d:dc:5d:08:03:c7:8b:8c:d5:12:6e: 51:e6:e4:7a:d0:23:71:ec:24:c7:88:94:d1:85:1f:92:e6:f0: 9c:c6:d6:5d:16:23:0c:4f:91:7c:85:0c:41:b2:49:94:54:3d: 52:ff:78:10:7e:9e:ac:c9:2a:9e:aa:1a:0a:76:82:f0:42:ce: 91:67:0d:f4:53:d0:13:e0:09:8c:7e:10:23:8a:09:22:cf:51: 68:0f:9c:5f:9b:9a:e4:0a:39:8e:eb:b9:a2:50:01:77:41:cf: 7c:84:8b:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLif4mHT4xyk0vjCVvKBmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0ZWQ1ZTVkYmJhMWVhYjZkMzk1OGU1OTQxODI5YzlkYTFi MmM2N2YwHhcNMjUxMjA2MDEwMjA1WhcNMjUxMjA3MDEwMjA1WjAzMTEwLwYDVQQD EyhlZTFlMjI5OTJkMTQ1N2FmYTMzZGJmYWQ3ZWJhYjJjNzllNDZhZDg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHLX3bTGRFYBZ/0yufPI7hvW3Oxp vno7ADDbavnCo33ZnUpxyItAgVBBbqjgYnwtHga6VS2Js+Vg6CDp8G1iCkZ2Rs3S yNehT4VjxzgCGmyoWY7AaJhHRGVOld0kUHuwX2L17W30IvEI5PwNCMyewadFLnMQ O25MMaeWz7wd5IkzPV+muXR/NzMg0gzWQ5FXbfinzoFTT9SzODzmUBl+7pg7NEiy FBG7zYGlciQW+0eNPFYjUHBzErONS4FqaMtrpGof6bKQRYysQNsVats/3rtTx+W/ tAF4NyARP7PSwgbV65qSMkQ6nhZkZendUI/sRTGLrg5g6cjXlV4/sitO3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO4eIpktFFevoz2/rX66sseeRq2EMB8GA1UdIwQY MBaAFPTtXl27oeq205WOWUGCnJ2hssZ/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU8xZVhidWg2cmJUbFk1WlFZS2NuYUd5eG44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9hZmM4NmMtMjViMC00NzRjLWE1YzQt ZGIxYTZiYmNiYjcyLzEvOU8xZVhidWg2cmJUbFk1WlFZS2NuYUd5eG44Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9hZmM4NmMtMjViMC00NzRjLWE1YzQtZGIxYTZiYmNiYjcy LzEvOU8xZVhidWg2cmJUbFk1WlFZS2NuYUd5eG44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ/8CjSs8 3dkm2xPFZM1Beu5Hzqfpo7uvqbHemj17/8sZokbHRqjbzEJhqwRpn+WZrfg/qm5U 4tuzTRpasvx9Cp59lnSblqYCLFoDfDrMYIpc/OXfPLjmTyi00R92GEOMHuMzh/8L Ok91nzPxB0U/E5CcbkV0ynPgRyrIVLyF3fUWkr9Q2zgLrjTakqtbQoq/tZK6UM1G I23cXQgDx4uM1RJuUebketAjcewkx4iU0YUfkubwnMbWXRYjDE+RfIUMQbJJlFQ9 Uv94EH6erMkqnqoaCnaC8ELOkWcN9FPQE+AJjH4QI4oJIs9RaA+cX5ua5Ao5juu5 olABd0HPfISLUg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:59:00 2025 by rpki-client