This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft File: a_CO0PpuGTufOlC_cmtB0MMpspc.mft (raw, json) Hash identifier: VadN/eSeqgAH1oeIgyomfM0dDUsLfVPM7l66IWHcJKQ= Subject key identifier: 04:B9:11:A1:8E:D9:53:0B:30:A3:8D:C2:01:93:C0:6E:34:A6:BB:12 Authority key identifier: 6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97 Certificate issuer: /CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297 Certificate serial: 019AF0BEF4B7AA314E5CBD55687A9D125167 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft Manifest number: 0350 Signing time: Fri 05 Dec 2025 23:00:37 +0000 Manifest this update: Fri 05 Dec 2025 23:00:37 +0000 Manifest next update: Sat 06 Dec 2025 23:00:37 +0000 Files and hashes: 1: a_CO0PpuGTufOlC_cmtB0MMpspc.crl (hash: BtHq9j+b967XtGC2AYquA2Gzluftbifk+ECnkpFhD1c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:be:f4:b7:aa:31:4e:5c:bd:55:68:7a:9d:12:51:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297 Validity Not Before: Dec 5 23:00:37 2025 GMT Not After : Dec 6 23:00:37 2025 GMT Subject: CN=04b911a18ed9530b30a38dc20193c06e34a6bb12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ea:b7:34:eb:fb:23:07:e8:9a:0e:47:fb:4b: 7f:a4:f1:c6:44:30:d7:33:bc:6e:b0:35:d9:28:42: 3d:f5:7d:70:b5:07:a1:51:da:02:1c:67:16:c4:80: ef:df:da:d2:56:0e:75:2d:86:10:81:7e:58:ef:e6: 53:c9:b0:61:f6:67:ae:eb:89:33:b2:20:a9:a3:3a: 76:a2:ce:4b:f0:70:72:c0:e4:9b:5d:7c:17:f9:e1: 0e:99:ab:35:93:41:40:ae:0b:ee:fa:24:d5:8c:92: 1a:98:dd:ef:3d:00:1b:e6:87:90:53:a7:0c:e0:72: c1:2c:20:dd:f4:5b:76:f7:6e:80:4c:24:e7:f0:bc: 32:ba:69:e3:f5:e2:e5:4b:cb:9a:09:5c:c7:29:dc: 01:27:1d:a1:34:e8:20:3a:17:27:b1:b6:89:91:db: af:79:87:50:42:0d:4a:99:68:04:1c:b0:c9:7b:c1: 54:ac:38:27:fb:5e:b5:01:c2:1a:6f:24:a4:cc:f0: f5:a4:79:26:3c:b0:64:fe:f8:49:84:aa:d2:b3:29: 24:b2:2d:58:e1:16:41:10:f9:e5:bb:a0:4f:b5:0c: 6b:31:a3:b3:4d:a9:6a:7f:31:f6:06:a9:62:57:19: 4c:59:05:6a:d7:57:74:be:2b:22:a1:00:67:f0:a9: be:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B9:11:A1:8E:D9:53:0B:30:A3:8D:C2:01:93:C0:6E:34:A6:BB:12 X509v3 Authority Key Identifier: keyid:6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:1f:3e:33:e2:de:32:9c:f8:d9:74:54:05:f9:c7:66:3f:61: 3a:20:93:6c:3c:dd:73:44:ea:74:f1:2e:a6:f5:08:42:9c:c6: 6e:66:57:e3:85:11:06:2a:a1:9e:bf:a6:b2:b3:bd:74:e8:c9: 64:d7:80:39:9a:f8:af:6f:f1:9d:7f:99:96:83:77:c5:82:a7: 93:2a:37:99:af:5d:fb:a9:24:1d:fb:1d:f7:52:cd:27:0b:e6: 7e:eb:12:b3:10:19:54:3b:f3:28:6d:0a:1e:07:9a:d2:73:b9: 49:5a:10:aa:ae:10:50:c6:22:9c:6c:3c:99:b8:d0:a5:72:33: f7:6d:b4:82:99:20:ed:98:00:c7:f8:e0:51:7c:73:11:77:f4: 99:6b:9e:ed:b9:96:fc:d7:d7:0b:5e:66:57:8a:36:48:0a:1d: 9b:ee:81:ac:0a:79:75:17:cd:bc:51:ea:da:49:2a:62:ae:c6: c0:6f:f6:a5:3c:5d:e8:08:c3:61:6a:09:be:10:f0:a7:a4:4b: 8c:a3:dc:7d:2b:e3:ba:2a:dc:f0:73:b1:dc:06:69:be:23:08: 93:1c:22:88:7f:bb:8c:50:72:3e:70:a0:14:ce:b7:7c:54:db: 80:c8:71:f8:10:f2:1f:a4:21:dc:2b:d8:66:f9:cd:77:3d:e1: 8e:5c:5f:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvvS3qjFOXL1VaHqdElFnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiZjA4ZWQwZmE2ZTE5M2I5ZjNhNTBiZjcyNmI0MWQwYzMy OWIyOTcwHhcNMjUxMjA1MjMwMDM3WhcNMjUxMjA2MjMwMDM3WjAzMTEwLwYDVQQD EygwNGI5MTFhMThlZDk1MzBiMzBhMzhkYzIwMTkzYzA2ZTM0YTZiYjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3eq3NOv7Iwfomg5H+0t/pPHGRDDX M7xusDXZKEI99X1wtQehUdoCHGcWxIDv39rSVg51LYYQgX5Y7+ZTybBh9meu64kz siCpozp2os5L8HBywOSbXXwX+eEOmas1k0FArgvu+iTVjJIamN3vPQAb5oeQU6cM 4HLBLCDd9Ft2926ATCTn8Lwyumnj9eLlS8uaCVzHKdwBJx2hNOggOhcnsbaJkduv eYdQQg1KmWgEHLDJe8FUrDgn+161AcIabySkzPD1pHkmPLBk/vhJhKrSsykksi1Y 4RZBEPnlu6BPtQxrMaOzTalqfzH2BqliVxlMWQVq11d0visioQBn8Km+xwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAS5EaGO2VMLMKONwgGTwG40prsSMB8GA1UdIwQY MBaAFGvwjtD6bhk7nzpQv3JrQdDDKbKXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYV9DTzBQcHVHVHVmT2xDX2NtdEIwTU1wc3BjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC82N2E2M2EtMWEwMy00ODIyLWFjOWUt M2Q0MjA1ZjVlMmQzLzEvYV9DTzBQcHVHVHVmT2xDX2NtdEIwTU1wc3BjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC82N2E2M2EtMWEwMy00ODIyLWFjOWUtM2Q0MjA1ZjVlMmQz LzEvYV9DTzBQcHVHVHVmT2xDX2NtdEIwTU1wc3BjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANx8+M+Le Mpz42XRUBfnHZj9hOiCTbDzdc0TqdPEupvUIQpzGbmZX44URBiqhnr+msrO9dOjJ ZNeAOZr4r2/xnX+ZloN3xYKnkyo3ma9d+6kkHfsd91LNJwvmfusSsxAZVDvzKG0K Hgea0nO5SVoQqq4QUMYinGw8mbjQpXIz9220gpkg7ZgAx/jgUXxzEXf0mWue7bmW /NfXC15mV4o2SAodm+6BrAp5dRfNvFHq2kkqYq7GwG/2pTxd6AjDYWoJvhDwp6RL jKPcfSvjuirc8HOx3AZpviMIkxwiiH+7jFByPnCgFM63fFTbgMhx+BDyH6Qh3CvY ZvnNdz3hjlxfOw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:21 2025 by rpki-client