This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft File: AOC06vnBB5HzU7qYfeI2ChOEF70.mft (raw, json) Hash identifier: EXsD22Yv0ei1S62ceFflJYcBQjG2dZIkdOEqzgzA8Gw= Subject key identifier: 0E:6B:DA:72:31:DE:D1:35:6B:5E:8A:5C:0A:39:FB:01:49:44:4A:53 Authority key identifier: 00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD Certificate issuer: /CN=00e0b4eaf9c10791f353ba987de2360a138417bd Certificate serial: 019AF2400064A696091418068170D4650F50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft Manifest number: 098B Signing time: Sat 06 Dec 2025 06:01:11 +0000 Manifest this update: Sat 06 Dec 2025 06:01:11 +0000 Manifest next update: Sun 07 Dec 2025 06:01:11 +0000 Files and hashes: 1: 7Qz5q4z6Tluf-_C3llmKbm-Y_6k.roa (hash: Btz39reQ2rKKUs2JCEZIO4ZVKwDZCOjT3ZoGf4qNKOM=) 2: AOC06vnBB5HzU7qYfeI2ChOEF70.crl (hash: IsiWYet80TYWpLq74lxsb1yqOlRJJUrk6hauzA9yHUQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:00:64:a6:96:09:14:18:06:81:70:d4:65:0f:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e0b4eaf9c10791f353ba987de2360a138417bd Validity Not Before: Dec 6 06:01:11 2025 GMT Not After : Dec 7 06:01:11 2025 GMT Subject: CN=0e6bda7231ded1356b5e8a5c0a39fb0149444a53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7f:e9:59:b3:78:9c:6a:6e:bf:44:e5:0b:e3: cf:8f:1e:77:05:de:f3:f1:de:c9:2f:0f:b0:a4:0b: 81:5f:b9:4c:26:37:35:97:d7:3d:94:e9:21:2e:56: 6c:38:5b:d8:d1:ae:8f:b7:18:c8:ff:42:86:19:5e: 28:7b:b8:8d:df:12:6f:4d:5b:d6:a4:b6:3e:c8:d8: cd:ac:5d:82:0e:d6:76:c3:4f:c2:41:dc:46:93:58: f8:ed:f6:5d:44:2a:81:4c:9d:34:73:54:e1:13:e7: b7:ed:8e:ff:ce:31:71:12:02:51:39:77:68:63:d5: f3:d3:1f:49:28:f5:58:0a:53:d4:2b:b9:14:43:e9: c7:f9:70:2d:3d:65:ba:b0:44:1e:f1:89:a2:80:0e: de:58:70:be:e0:f8:06:e1:95:e8:19:4f:51:2b:66: 58:13:52:d2:df:c5:9d:de:3b:d7:53:f5:48:1c:79: 68:85:ac:d0:c6:6a:4e:8a:69:57:01:b3:16:99:6d: f6:b9:50:18:17:5f:75:fe:cc:ad:db:30:db:de:2c: e7:bb:5e:fc:f7:6c:68:65:45:92:4b:9f:52:59:ea: df:f0:7b:6e:0a:5c:fd:c3:f8:59:a5:66:62:21:9e: 7d:f1:3b:76:7b:ce:91:a6:17:d2:df:34:d9:0f:4c: 1f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6B:DA:72:31:DE:D1:35:6B:5E:8A:5C:0A:39:FB:01:49:44:4A:53 X509v3 Authority Key Identifier: keyid:00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:30:e4:be:ec:de:e9:a1:a2:dc:3e:d5:21:b1:c2:e6:a9:e6: 4e:04:90:a6:60:54:d2:9e:23:54:3d:82:04:56:c9:9e:32:0b: 89:3c:e9:e5:ee:6a:a8:0e:c2:18:e3:ed:2b:46:cd:0f:59:c2: 0f:ce:ca:d5:94:9e:28:6c:09:64:fc:d7:4a:77:12:15:e9:29: 57:24:bc:4a:db:80:9d:1f:cb:35:ab:9c:92:e3:f2:9b:7a:c4: 2c:1d:ef:c1:6e:16:d8:a0:e6:1d:6c:ea:d1:ca:63:f7:41:be: 59:05:00:18:6a:0a:18:10:7f:d3:df:75:5b:ab:65:5c:e0:6c: 41:a1:6a:20:be:ba:fe:68:37:24:83:1a:ac:30:a4:f5:dd:62: 66:8e:8e:88:ea:5a:61:85:d3:9a:99:71:72:da:ee:6a:bb:1e: dd:a5:07:9e:02:ad:58:e1:ac:15:64:cd:a5:77:0f:7c:df:ef: 50:bf:ec:f7:ae:d2:8b:31:5d:3f:29:86:17:ad:af:ae:8d:e9: 68:fc:45:7b:01:3a:a3:9d:e2:f5:6d:a7:0d:4b:29:ac:1b:6f: d2:53:33:b8:7b:e7:06:35:09:87:32:9a:02:34:17:d8:d0:e7: ae:c9:af:e2:53:f7:e6:c9:80:3d:89:eb:7b:0c:a3:82:51:e6: 45:85:14:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQABkppYJFBgGgXDUZQ9QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTBiNGVhZjljMTA3OTFmMzUzYmE5ODdkZTIzNjBhMTM4 NDE3YmQwHhcNMjUxMjA2MDYwMTExWhcNMjUxMjA3MDYwMTExWjAzMTEwLwYDVQQD EygwZTZiZGE3MjMxZGVkMTM1NmI1ZThhNWMwYTM5ZmIwMTQ5NDQ0YTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAln/pWbN4nGpuv0TlC+PPjx53Bd7z 8d7JLw+wpAuBX7lMJjc1l9c9lOkhLlZsOFvY0a6PtxjI/0KGGV4oe7iN3xJvTVvW pLY+yNjNrF2CDtZ2w0/CQdxGk1j47fZdRCqBTJ00c1ThE+e37Y7/zjFxEgJROXdo Y9Xz0x9JKPVYClPUK7kUQ+nH+XAtPWW6sEQe8YmigA7eWHC+4PgG4ZXoGU9RK2ZY E1LS38Wd3jvXU/VIHHlohazQxmpOimlXAbMWmW32uVAYF191/syt2zDb3iznu178 92xoZUWSS59SWerf8HtuClz9w/hZpWZiIZ598Tt2e86RphfS3zTZD0wfdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA5r2nIx3tE1a16KXAo5+wFJREpTMB8GA1UdIwQY MBaAFADgtOr5wQeR81O6mH3iNgoThBe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8yMTAwNDMtNWFmZS00NTZmLWIzZjgt ZGMwMjc0MzJlNWE1LzEvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8yMTAwNDMtNWFmZS00NTZmLWIzZjgtZGMwMjc0MzJlNWE1 LzEvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATDDkvuze 6aGi3D7VIbHC5qnmTgSQpmBU0p4jVD2CBFbJnjILiTzp5e5qqA7CGOPtK0bND1nC D87K1ZSeKGwJZPzXSncSFekpVyS8StuAnR/LNauckuPym3rELB3vwW4W2KDmHWzq 0cpj90G+WQUAGGoKGBB/0991W6tlXOBsQaFqIL66/mg3JIMarDCk9d1iZo6OiOpa YYXTmplxctruarse3aUHngKtWOGsFWTNpXcPfN/vUL/s967SizFdPymGF62vro3p aPxFewE6o53i9W2nDUsprBtv0lMzuHvnBjUJhzKaAjQX2NDnrsmv4lP35smAPYnr ewyjglHmRYUU8Q== -----END CERTIFICATE-----Generated at Sat Dec 6 12:22:06 2025 by rpki-client