This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft File: R1oGyte9DD25-KOB8euc1sdaqyg.mft (raw, json) Hash identifier: HO0iy3vQ6ZDSCn8ju6NQXtTHZNQAlqaiUb+R1fsGrBw= Subject key identifier: 44:65:C2:C4:7C:E9:F2:C6:45:F5:D8:58:B3:3E:5E:70:87:E0:BC:26 Authority key identifier: 47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28 Certificate issuer: /CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28 Certificate serial: 019AF12E5615947DE96FB1CB5BAA43C821F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft Manifest number: 031C Signing time: Sat 06 Dec 2025 01:02:16 +0000 Manifest this update: Sat 06 Dec 2025 01:02:16 +0000 Manifest next update: Sun 07 Dec 2025 01:02:16 +0000 Files and hashes: 1: P26izWnWykundEbYZ5JEBhpU0uU.roa (hash: cWV+pN/zcAshvYcQxK5v+o4IGsyjFJQg91I3ipirKBI=) 2: R1oGyte9DD25-KOB8euc1sdaqyg.crl (hash: OySoLeOXVGMu1jwQc/5xKf7sj8dqWf1HObECNFcqs0Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:56:15:94:7d:e9:6f:b1:cb:5b:aa:43:c8:21:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28 Validity Not Before: Dec 6 01:02:16 2025 GMT Not After : Dec 7 01:02:16 2025 GMT Subject: CN=4465c2c47ce9f2c645f5d858b33e5e7087e0bc26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d8:ab:8f:6c:65:fc:a0:9c:9a:75:8a:ec:d7: 68:96:1c:75:ee:de:0d:15:7e:51:08:c5:5c:9c:f1: 6e:a7:7e:3f:17:a1:cb:c5:21:b5:21:a7:64:9c:41: 3a:c4:35:d5:6d:f6:d5:38:ed:be:80:fd:bf:07:82: 6d:ff:8b:e3:4b:b5:64:0b:ee:12:4b:f7:c0:bb:b2: 1f:b6:e1:55:79:e2:9d:27:b0:4e:1b:a0:08:27:3a: b5:75:52:a0:8c:12:f9:9d:89:42:f0:b4:19:92:bc: 9b:11:a2:b5:77:9c:24:e1:46:4b:eb:39:a0:fb:f0: 12:0a:87:fe:15:45:51:51:0d:52:ea:17:c3:eb:ef: d7:ad:c8:75:52:e8:34:c2:fa:8a:87:0b:5b:fd:c5: 32:62:ed:ef:e2:04:c4:4f:fe:71:4d:00:fa:a5:82: 71:9f:fc:5e:4b:7a:bf:37:a3:5f:03:90:d3:1d:ba: 14:aa:70:77:a6:a6:c2:10:bd:81:92:0c:2f:ab:5c: 2e:ef:a6:43:15:68:7d:e3:49:c2:f2:41:16:1a:d3: 8b:26:7e:4f:a7:d5:d6:b8:18:c7:28:c0:e2:62:5f: bd:9e:a8:b1:4c:70:ba:f3:e2:11:d7:58:32:5f:19: e4:4a:fb:13:9a:8d:f6:cf:db:ea:7f:81:19:ff:fd: b5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:65:C2:C4:7C:E9:F2:C6:45:F5:D8:58:B3:3E:5E:70:87:E0:BC:26 X509v3 Authority Key Identifier: keyid:47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:e6:93:bf:18:2d:df:60:a0:50:47:61:a0:e0:15:8b:99:81: 22:90:00:d6:0c:de:60:4b:fb:c8:42:bc:73:fb:10:91:08:26: 01:37:14:9f:a1:af:e3:98:8f:cb:8b:11:08:34:be:d2:38:03: aa:d8:b6:5d:77:f3:27:c6:f9:ad:d7:37:08:55:f5:58:49:b1: 2d:86:6a:a1:58:c9:0c:ed:ee:05:1b:16:96:de:f6:a7:bb:9e: 59:3c:33:df:3c:8e:29:6b:b2:fc:5d:dc:07:95:65:70:1a:11: ea:77:a6:43:13:08:8c:59:bd:1d:3a:46:ff:21:78:d3:81:29: aa:f0:e8:08:5b:a6:69:f2:1e:41:89:f6:b0:8f:df:68:a3:d4: 93:bb:e0:11:41:87:3e:10:ce:ee:68:e9:a5:c5:43:26:3e:5a: 87:5e:d2:78:e6:3a:cc:28:15:2d:a9:8f:5d:e1:eb:61:7a:b4: 5e:3b:f0:7a:09:fa:7e:97:79:85:d7:96:46:18:d5:c0:79:3b: fc:c3:f1:00:9a:e6:7f:ab:0c:6a:91:09:66:cc:cd:6b:5d:a7: 78:83:95:fa:cb:c7:06:64:b5:85:89:fe:77:d1:76:e5:e9:d2: 02:87:fd:1e:0e:b8:01:83:de:dc:1a:0b:86:2b:f8:6c:8b:3c: 9a:11:ab:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLlYVlH3pb7HLW6pDyCHwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3NWEwNmNhZDdiZDBjM2RiOWY4YTM4MWYxZWI5Y2Q2Yzc1 YWFiMjgwHhcNMjUxMjA2MDEwMjE2WhcNMjUxMjA3MDEwMjE2WjAzMTEwLwYDVQQD Eyg0NDY1YzJjNDdjZTlmMmM2NDVmNWQ4NThiMzNlNWU3MDg3ZTBiYzI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtirj2xl/KCcmnWK7Ndolhx17t4N FX5RCMVcnPFup34/F6HLxSG1IadknEE6xDXVbfbVOO2+gP2/B4Jt/4vjS7VkC+4S S/fAu7IftuFVeeKdJ7BOG6AIJzq1dVKgjBL5nYlC8LQZkrybEaK1d5wk4UZL6zmg +/ASCof+FUVRUQ1S6hfD6+/Xrch1Uug0wvqKhwtb/cUyYu3v4gTET/5xTQD6pYJx n/xeS3q/N6NfA5DTHboUqnB3pqbCEL2Bkgwvq1wu76ZDFWh940nC8kEWGtOLJn5P p9XWuBjHKMDiYl+9nqixTHC68+IR11gyXxnkSvsTmo32z9vqf4EZ//21wwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFERlwsR86fLGRfXYWLM+XnCH4LwmMB8GA1UdIwQY MBaAFEdaBsrXvQw9ufijgfHrnNbHWqsoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjFvR3l0ZTlERDI1LUtPQjhldWMxc2RhcXlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iZGZkNzAtMzA2Ny00NzNkLThmNjUt YjU1MzIyMDI4YmI4LzEvUjFvR3l0ZTlERDI1LUtPQjhldWMxc2RhcXlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9iZGZkNzAtMzA2Ny00NzNkLThmNjUtYjU1MzIyMDI4YmI4 LzEvUjFvR3l0ZTlERDI1LUtPQjhldWMxc2RhcXlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEeaTvxgt 32CgUEdhoOAVi5mBIpAA1gzeYEv7yEK8c/sQkQgmATcUn6Gv45iPy4sRCDS+0jgD qti2XXfzJ8b5rdc3CFX1WEmxLYZqoVjJDO3uBRsWlt72p7ueWTwz3zyOKWuy/F3c B5VlcBoR6nemQxMIjFm9HTpG/yF404EpqvDoCFumafIeQYn2sI/faKPUk7vgEUGH PhDO7mjppcVDJj5ah17SeOY6zCgVLamPXeHrYXq0Xjvwegn6fpd5hdeWRhjVwHk7 /MPxAJrmf6sMapEJZszNa12neIOV+svHBmS1hYn+d9F25enSAof9Hg64AYPe3BoL hiv4bIs8mhGrwA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:12:47 2025 by rpki-client