This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json) Hash identifier: 4Z5xFjA9/5o1rllhes32yVNv+GZCdU8kgFvGBbZAqBQ= Subject key identifier: E4:26:5A:3C:A6:F9:EE:14:F2:2A:75:DE:8F:8D:CA:07:85:5A:B3:25 Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3 Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3 Certificate serial: 019AF19B3A42C7D16C62A7FC26B12ED2F9B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft Manifest number: 0BD9 Signing time: Sat 06 Dec 2025 03:01:13 +0000 Manifest this update: Sat 06 Dec 2025 03:01:13 +0000 Manifest next update: Sun 07 Dec 2025 03:01:13 +0000 Files and hashes: 1: 7IkFNxuEd7zYMJ5GFmWYCrb0D3k.roa (hash: EbQqPJKQBhTvoE7/qrp3Wi8FH8cq4X28q+E9y9x/db0=) 2: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: iUtjha4kj/5vk4SuUhAAj0NIKuLW7Vl5NKP6giNc274=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:3a:42:c7:d1:6c:62:a7:fc:26:b1:2e:d2:f9:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3 Validity Not Before: Dec 6 03:01:13 2025 GMT Not After : Dec 7 03:01:13 2025 GMT Subject: CN=e4265a3ca6f9ee14f22a75de8f8dca07855ab325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ba:f0:ad:77:ce:01:83:83:43:07:31:7b:af: 14:de:26:e4:85:ac:61:37:c1:ef:a4:15:fb:bc:3c: c4:0a:77:39:da:68:6e:6a:b3:a1:96:c5:52:e8:09: ef:36:3b:cc:9e:78:03:92:9c:f6:f2:c3:5d:00:73: 3f:03:51:dd:28:b2:20:fc:ec:2b:7c:19:0c:f5:5a: 69:0e:5a:9a:8f:22:e1:76:0f:17:c1:1c:a6:f0:c0: 41:f7:6a:9e:23:e4:c9:f9:a7:7e:77:bf:85:29:bb: c1:f6:ff:cf:51:8f:9a:b1:b7:54:f4:7d:f6:23:64: 6a:4e:96:f1:9e:e2:4f:a3:61:8f:5c:43:c0:71:23: af:d8:54:2f:ea:70:c1:b6:05:06:9e:dd:19:48:01: 5a:28:d7:41:c8:01:cc:75:86:77:4a:70:86:72:d2: b0:50:ad:5e:39:27:e2:db:ab:a5:92:48:ee:f4:de: a7:3f:b8:c0:9d:c0:3c:c8:ab:b6:b5:69:1e:f2:87: 0f:7e:ac:ec:0e:c2:d9:c1:d9:ad:36:83:9c:35:33: ef:5c:fc:0e:16:f8:23:bc:fc:8b:e8:5d:f0:8f:5f: 69:08:3c:5d:c2:b6:9a:09:45:02:3e:4d:f5:a1:e0: 3d:9e:ea:3f:e7:a3:74:ef:3e:93:44:11:4f:f4:32: 4f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:26:5A:3C:A6:F9:EE:14:F2:2A:75:DE:8F:8D:CA:07:85:5A:B3:25 X509v3 Authority Key Identifier: keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:6d:04:8f:a6:de:ac:77:d2:31:84:4b:19:62:df:1a:bf:eb: 08:7b:13:52:0b:f3:cd:32:09:1a:4b:4d:33:3e:39:ea:e9:ac: 18:59:b2:94:78:91:12:c5:a9:8b:34:0a:1c:fe:3e:cc:7a:02: 2e:47:0b:4a:ed:2c:5c:5a:48:e4:e7:29:0e:60:ee:25:ab:36: f6:77:0e:57:a7:2d:fc:ef:9d:a5:a5:e7:13:4c:5d:bd:a2:5c: 71:f3:42:df:a8:a9:97:02:e3:c9:c4:d6:f2:35:da:c5:f7:81: 26:b4:8f:61:77:f2:1a:4d:e7:ed:dd:98:73:7b:c3:cf:65:84: da:ab:2f:18:3f:37:09:cb:2c:e9:e7:87:de:e0:68:52:17:68: d6:28:f0:b5:6e:b2:6a:99:b7:8e:41:85:da:9b:1e:75:9e:71: 70:7c:05:87:75:2d:3e:49:e2:91:4c:cb:e8:1e:b5:55:90:1c: e1:c1:e9:0b:b7:b6:c8:29:c3:e8:7b:8a:52:1a:06:fe:ed:07: 38:8e:ba:27:45:4e:77:36:a6:5a:93:ca:67:76:59:7b:00:9a: 55:09:f3:25:1b:4c:4e:f3:aa:66:2d:79:5a:c9:e1:7d:2f:eb: 11:03:e2:c0:1e:70:43:44:fd:62:96:ee:9d:bc:a2:0a:81:14: 17:1b:c6:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmzpCx9FsYqf8JrEu0vmyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlOGU4NTIzMjk4MGE2M2YwZDRkZjViMDQ5MTYzZTNmZDAy ZjU0YjMwHhcNMjUxMjA2MDMwMTEzWhcNMjUxMjA3MDMwMTEzWjAzMTEwLwYDVQQD EyhlNDI2NWEzY2E2ZjllZTE0ZjIyYTc1ZGU4ZjhkY2EwNzg1NWFiMzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbrwrXfOAYODQwcxe68U3ibkhaxh N8HvpBX7vDzECnc52mhuarOhlsVS6AnvNjvMnngDkpz28sNdAHM/A1HdKLIg/Owr fBkM9VppDlqajyLhdg8XwRym8MBB92qeI+TJ+ad+d7+FKbvB9v/PUY+asbdU9H32 I2RqTpbxnuJPo2GPXEPAcSOv2FQv6nDBtgUGnt0ZSAFaKNdByAHMdYZ3SnCGctKw UK1eOSfi26ulkkju9N6nP7jAncA8yKu2tWke8ocPfqzsDsLZwdmtNoOcNTPvXPwO FvgjvPyL6F3wj19pCDxdwraaCUUCPk31oeA9nuo/56N07z6TRBFP9DJPVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOQmWjym+e4U8ip13o+NygeFWrMlMB8GA1UdIwQY MBaAFP6OhSMpgKY/DU31sEkWPj/QL1SzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX282Rkl5bUFwajhOVGZXd1NSWS1QOUF2VkxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kMzZiOGItODY1Ni00ODViLTkzYjIt Mzg5MmFjYTI3N2IwLzEvX282Rkl5bUFwajhOVGZXd1NSWS1QOUF2VkxNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9kMzZiOGItODY1Ni00ODViLTkzYjItMzg5MmFjYTI3N2Iw LzEvX282Rkl5bUFwajhOVGZXd1NSWS1QOUF2VkxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlG0Ej6be rHfSMYRLGWLfGr/rCHsTUgvzzTIJGktNMz456umsGFmylHiREsWpizQKHP4+zHoC LkcLSu0sXFpI5OcpDmDuJas29ncOV6ct/O+dpaXnE0xdvaJccfNC36iplwLjycTW 8jXaxfeBJrSPYXfyGk3n7d2Yc3vDz2WE2qsvGD83Ccss6eeH3uBoUhdo1ijwtW6y apm3jkGF2psedZ5xcHwFh3UtPknikUzL6B61VZAc4cHpC7e2yCnD6HuKUhoG/u0H OI66J0VOdzamWpPKZ3ZZewCaVQnzJRtMTvOqZi15WsnhfS/rEQPiwB5wQ0T9Ypbu nbyiCoEUFxvGAA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:22:07 2025 by rpki-client