This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.mft File: ci0p5qil5cpi3rc-r_OrE95VBq0.mft (raw, json) Hash identifier: XCf1QLvn2V3N3HPBZkbZCyKcObeYdingUgyAjQbT14g= Subject key identifier: 6E:68:EE:71:58:1A:46:D2:4E:8B:9A:D7:5E:50:00:9A:E4:2C:21:7B Authority key identifier: 72:2D:29:E6:A8:A5:E5:CA:62:DE:B7:3E:AF:F3:AB:13:DE:55:06:AD Certificate issuer: /CN=722d29e6a8a5e5ca62deb73eaff3ab13de5506ad Certificate serial: 019AF4651C795A0E20FE6288A19D96612EFC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ci0p5qil5cpi3rc-r_OrE95VBq0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.mft Manifest number: 0269 Signing time: Sat 06 Dec 2025 16:00:58 +0000 Manifest this update: Sat 06 Dec 2025 16:00:58 +0000 Manifest next update: Sun 07 Dec 2025 16:00:58 +0000 Files and hashes: 1: ci0p5qil5cpi3rc-r_OrE95VBq0.crl (hash: xTF7ItvqpbjUVl66FDJ7Px2VkkFz1QDb4gQSGcTywKk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.crl rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.mft rsync://rpki.ripe.net/repository/DEFAULT/ci0p5qil5cpi3rc-r_OrE95VBq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:1c:79:5a:0e:20:fe:62:88:a1:9d:96:61:2e:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=722d29e6a8a5e5ca62deb73eaff3ab13de5506ad Validity Not Before: Dec 6 16:00:58 2025 GMT Not After : Dec 7 16:00:58 2025 GMT Subject: CN=6e68ee71581a46d24e8b9ad75e50009ae42c217b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1e:49:70:90:d2:f4:4a:40:54:47:38:92:1a: 2d:65:c9:2f:62:c8:b7:e8:7c:a6:18:e7:81:d3:f2: d0:a3:c0:a2:0b:47:fc:d2:73:32:13:4b:c9:e2:c9: 42:5d:da:c1:6a:83:4b:73:36:f8:ff:66:d3:db:ac: 9f:82:85:d7:c0:f3:8c:86:df:01:f0:0c:e2:51:0a: a7:66:d0:dd:b6:5a:6c:55:ed:d0:b0:13:b9:91:a1: bc:79:af:ce:e8:8a:97:44:0d:51:2b:4c:a7:e7:ad: 66:c4:64:5e:07:a2:15:56:d4:b2:1d:6e:95:2f:e1: 82:56:14:dc:fb:4a:f4:2e:b4:a5:9a:37:57:dc:46: e0:a1:7d:c0:98:05:db:e1:58:a3:e2:2a:13:17:65: 89:6e:5f:c2:ad:c3:38:34:64:3a:5d:bd:bd:4a:83: 4a:fb:fa:71:0e:a8:02:97:60:fe:77:47:dd:fc:58: 60:63:c0:72:22:13:c7:58:27:e1:a0:e3:6d:d3:0a: cb:e3:28:1f:d2:aa:ee:66:f0:c9:4d:5c:ad:5d:59: 77:1a:02:38:26:92:f9:3b:38:fc:0a:c3:f7:ef:93: 11:fc:83:48:f3:af:c6:da:79:53:9b:0c:c1:ce:85: d6:b2:57:f8:d9:40:39:eb:2f:ee:29:bc:f4:fe:04: 14:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:68:EE:71:58:1A:46:D2:4E:8B:9A:D7:5E:50:00:9A:E4:2C:21:7B X509v3 Authority Key Identifier: keyid:72:2D:29:E6:A8:A5:E5:CA:62:DE:B7:3E:AF:F3:AB:13:DE:55:06:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ci0p5qil5cpi3rc-r_OrE95VBq0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:61:91:63:59:34:68:25:8e:72:5b:c0:6c:e6:24:0f:a5:d7: 4f:85:b7:bd:ba:8b:a7:60:a4:43:5a:77:4f:5c:a4:d6:38:ab: 4d:46:6d:7c:4a:39:cf:05:6d:29:f6:66:49:5a:a2:85:09:60: 2a:27:4e:a5:b7:65:0c:f3:70:97:67:06:46:af:d5:f3:ba:3f: fb:36:d0:94:30:b8:f5:c7:c5:b9:c5:b0:84:96:11:74:6c:62: ee:f1:37:09:1f:9e:14:5e:36:fe:0a:75:3e:bc:21:89:7a:94: 52:85:f5:e1:45:f0:a8:da:f8:80:b7:3d:5a:77:16:b4:7b:d4: 3f:65:f8:44:4f:64:37:c6:ff:08:1c:63:a7:82:0d:86:08:15: 9c:df:af:0e:40:77:a0:5d:08:87:0a:ae:78:f1:63:8a:c9:a6: 1a:90:54:23:f3:ed:f1:4f:d6:78:e1:f1:a5:5f:67:9b:a8:d2: ea:5c:dc:a1:ac:90:72:43:bc:6b:13:cb:84:6a:36:e3:51:dd: b0:53:4b:a9:5f:db:bc:19:49:ae:e8:fd:2b:f0:20:71:12:7b: 14:0b:0b:0c:28:2d:41:5f:f6:5f:75:ae:7c:88:1d:32:59:cf: 6b:89:a1:e8:c6:d4:c1:29:a7:ba:47:8b:cd:61:8a:4b:e8:2e: 11:cd:99:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZRx5Wg4g/mKIoZ2WYS78MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyMmQyOWU2YThhNWU1Y2E2MmRlYjczZWFmZjNhYjEzZGU1 NTA2YWQwHhcNMjUxMjA2MTYwMDU4WhcNMjUxMjA3MTYwMDU4WjAzMTEwLwYDVQQD Eyg2ZTY4ZWU3MTU4MWE0NmQyNGU4YjlhZDc1ZTUwMDA5YWU0MmMyMTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnB5JcJDS9EpAVEc4khotZckvYsi3 6HymGOeB0/LQo8CiC0f80nMyE0vJ4slCXdrBaoNLczb4/2bT26yfgoXXwPOMht8B 8AziUQqnZtDdtlpsVe3QsBO5kaG8ea/O6IqXRA1RK0yn561mxGReB6IVVtSyHW6V L+GCVhTc+0r0LrSlmjdX3EbgoX3AmAXb4Vij4ioTF2WJbl/CrcM4NGQ6Xb29SoNK +/pxDqgCl2D+d0fd/FhgY8ByIhPHWCfhoONt0wrL4ygf0qruZvDJTVytXVl3GgI4 JpL5Ozj8CsP375MR/INI86/G2nlTmwzBzoXWslf42UA56y/uKbz0/gQUCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG5o7nFYGkbSToua115QAJrkLCF7MB8GA1UdIwQY MBaAFHItKeaopeXKYt63Pq/zqxPeVQatMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2kwcDVxaWw1Y3BpM3JjLXJfT3JFOTVWQnEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8xMDZlMGYtYWQ4MC00N2MzLWJkNGYt NTU0NzkwMGI4ZDU5LzEvY2kwcDVxaWw1Y3BpM3JjLXJfT3JFOTVWQnEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC8xMDZlMGYtYWQ4MC00N2MzLWJkNGYtNTU0NzkwMGI4ZDU5 LzEvY2kwcDVxaWw1Y3BpM3JjLXJfT3JFOTVWQnEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACGGRY1k0 aCWOclvAbOYkD6XXT4W3vbqLp2CkQ1p3T1yk1jirTUZtfEo5zwVtKfZmSVqihQlg KidOpbdlDPNwl2cGRq/V87o/+zbQlDC49cfFucWwhJYRdGxi7vE3CR+eFF42/gp1 PrwhiXqUUoX14UXwqNr4gLc9WncWtHvUP2X4RE9kN8b/CBxjp4INhggVnN+vDkB3 oF0IhwquePFjismmGpBUI/Pt8U/WeOHxpV9nm6jS6lzcoayQckO8axPLhGo241Hd sFNLqV/bvBlJruj9K/AgcRJ7FAsLDCgtQV/2X3WufIgdMlnPa4mh6MbUwSmnukeL zWGKS+guEc2Z6g== -----END CERTIFICATE-----Generated at Sat Dec 6 17:46:07 2025 by rpki-client