This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json) Hash identifier: oXSD5rXVjLuDOzyrr1QAidkeYQtOimVqVowvBzL8lmU= Subject key identifier: 6A:5F:DB:66:BC:B8:9A:84:73:AD:0C:FF:DF:D6:61:06:C6:D2:6A:E7 Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48 Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48 Certificate serial: 019AF12D95D596EA7E9457D9F9EDCEAFD7CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft Manifest number: 0483 Signing time: Sat 06 Dec 2025 01:01:27 +0000 Manifest this update: Sat 06 Dec 2025 01:01:27 +0000 Manifest next update: Sun 07 Dec 2025 01:01:27 +0000 Files and hashes: 1: 1vvIkvJGRy621vVPsoLS7KLp9WQ.roa (hash: AaLmkGEE5WFi/MsCmNoVGVjYg2GotUKYwJ8yvjW+a60=) 2: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: 9m+Gsm7O4TmEJRcG/UIEwKe1lgSMa9AU4HRnCK9MgHg=) 3: KLjjQzFk9GYkvqPEoe40SA-mXbg.roa (hash: 2jEymy+mMO9pWyCpodUhIwEZFiuwLfDEfoelvtg+xqA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:95:d5:96:ea:7e:94:57:d9:f9:ed:ce:af:d7:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48 Validity Not Before: Dec 6 01:01:27 2025 GMT Not After : Dec 7 01:01:27 2025 GMT Subject: CN=6a5fdb66bcb89a8473ad0cffdfd66106c6d26ae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:3a:87:d7:4d:a3:3d:db:8b:e7:35:a0:90:bb: b0:ed:31:17:2a:7a:e2:75:90:ff:eb:8c:c4:90:41: 6f:13:99:46:d1:72:45:1d:1a:ad:8f:21:2c:08:9f: 88:59:48:79:f8:32:ca:db:3a:b3:a3:02:43:ef:40: 07:1b:19:b7:64:80:d1:4a:44:2f:a7:44:1e:0b:93: 21:60:d3:9f:cd:97:15:65:9e:94:e3:5b:f8:af:29: 63:f4:6d:58:e7:ea:f8:a7:16:bc:65:2c:6e:e7:24: 30:e4:68:80:d7:d8:3c:96:51:af:6a:6f:35:93:82: db:79:e3:7b:8a:5b:bf:57:8a:56:50:30:49:dc:74: a8:5a:59:2d:78:5b:c9:d0:53:01:f6:3a:a3:f9:8d: 06:77:21:b2:4e:ae:b9:28:d7:cf:0c:34:83:4d:9f: 41:46:4f:04:47:d8:96:e7:a6:f5:f8:0c:f6:95:1b: 18:ba:d7:b3:0a:8a:6a:1b:0a:58:28:cb:f2:92:eb: 5f:22:51:93:c3:b7:32:af:64:24:88:90:48:3f:6e: f9:4d:25:3c:30:a8:eb:e5:1e:75:9c:29:ae:14:8a: 8d:46:b2:9a:a7:d5:74:99:52:3c:b5:07:65:fa:46: 89:a9:93:0f:a9:0c:c6:b4:aa:cc:e0:f0:c8:b6:1f: 68:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:5F:DB:66:BC:B8:9A:84:73:AD:0C:FF:DF:D6:61:06:C6:D2:6A:E7 X509v3 Authority Key Identifier: keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:0c:33:b8:fe:73:21:ab:cb:18:e0:e7:f1:55:30:87:54:12: 78:dc:5d:7b:d9:e6:3c:49:20:86:37:03:b8:e0:71:58:03:d8: 45:ef:a1:ff:10:ac:2d:db:44:7f:da:a5:92:cc:54:a0:ea:26: fe:27:f1:ac:c8:b9:5c:ac:8b:bf:be:3b:04:6b:1d:49:a5:93: e1:f0:43:c8:57:c3:04:19:74:eb:54:ec:be:e2:57:c3:61:c0: de:f3:df:f6:27:8c:4c:4e:23:02:fc:ba:23:46:c7:6c:7a:a3: cd:c8:78:9a:bd:7b:7d:9a:26:d4:ce:85:a8:ab:27:bd:fb:df: 8a:d4:86:f2:d6:20:9c:42:97:62:b9:57:8f:f2:10:bd:12:e0: fb:dd:11:89:64:a2:d9:d7:d9:9e:a2:79:0f:fe:a4:19:cd:02: 6a:cb:71:af:f9:91:20:af:ef:d1:a6:c0:b0:d6:48:a8:c3:fd: 14:3e:85:30:19:e6:bb:b7:02:77:da:f0:37:f1:01:52:5c:0e: c4:a8:98:9e:ac:d6:1a:b4:22:3d:cd:31:f5:ff:6d:8a:40:66: ea:12:b6:85:8e:32:13:d5:f3:28:43:80:7f:3d:86:52:22:e8: 79:cd:ca:50:c5:db:82:25:a7:36:d2:3b:c7:37:52:c2:fc:ae: 50:ac:2c:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLZXVlup+lFfZ+e3Or9fOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZWU5MGQzNDJkODY1ZWE2N2YyYjBkMmZiNzRjMDM5Zjgz ZTRhNDgwHhcNMjUxMjA2MDEwMTI3WhcNMjUxMjA3MDEwMTI3WjAzMTEwLwYDVQQD Eyg2YTVmZGI2NmJjYjg5YTg0NzNhZDBjZmZkZmQ2NjEwNmM2ZDI2YWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zqH102jPduL5zWgkLuw7TEXKnri dZD/64zEkEFvE5lG0XJFHRqtjyEsCJ+IWUh5+DLK2zqzowJD70AHGxm3ZIDRSkQv p0QeC5MhYNOfzZcVZZ6U41v4rylj9G1Y5+r4pxa8ZSxu5yQw5GiA19g8llGvam81 k4LbeeN7ilu/V4pWUDBJ3HSoWlkteFvJ0FMB9jqj+Y0GdyGyTq65KNfPDDSDTZ9B Rk8ER9iW56b1+Az2lRsYutezCopqGwpYKMvykutfIlGTw7cyr2QkiJBIP275TSU8 MKjr5R51nCmuFIqNRrKap9V0mVI8tQdl+kaJqZMPqQzGtKrM4PDIth9ohQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGpf22a8uJqEc60M/9/WYQbG0mrnMB8GA1UdIwQY MBaAFNjukNNC2GXqZ/Kw0vt0wDn4PkpIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk82UTAwTFlaZXBuOHJEUy0zVEFPZmctU2tnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9jZjVjMTAtMjEzMS00MTE2LWI2Zjkt NTEwNTI1YzQ3NDRjLzEvMk82UTAwTFlaZXBuOHJEUy0zVEFPZmctU2tnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9jZjVjMTAtMjEzMS00MTE2LWI2ZjktNTEwNTI1YzQ3NDRj LzEvMk82UTAwTFlaZXBuOHJEUy0zVEFPZmctU2tnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvAwzuP5z IavLGODn8VUwh1QSeNxde9nmPEkghjcDuOBxWAPYRe+h/xCsLdtEf9qlksxUoOom /ifxrMi5XKyLv747BGsdSaWT4fBDyFfDBBl061TsvuJXw2HA3vPf9ieMTE4jAvy6 I0bHbHqjzch4mr17fZom1M6FqKsnvfvfitSG8tYgnEKXYrlXj/IQvRLg+90RiWSi 2dfZnqJ5D/6kGc0Castxr/mRIK/v0abAsNZIqMP9FD6FMBnmu7cCd9rwN/EBUlwO xKiYnqzWGrQiPc0x9f9tikBm6hK2hY4yE9XzKEOAfz2GUiLoec3KUMXbgiWnNtI7 xzdSwvyuUKwsTA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:06:09 2025 by rpki-client