This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft File: 0KpKGno60j-q4q6un6YZTwISgSk.mft (raw, json) Hash identifier: N1rgd5Jc7mlxlQtomK8HWodprxv4TJ7cpF5xmV0UAPs= Subject key identifier: C0:33:1E:B7:90:0D:98:BF:46:EE:06:9B:04:B1:78:09:E8:04:AC:AF Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29 Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129 Certificate serial: 019AF1D1D05675FD0EDA9DD9B37DF09009C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft Manifest number: 037D Signing time: Sat 06 Dec 2025 04:00:50 +0000 Manifest this update: Sat 06 Dec 2025 04:00:50 +0000 Manifest next update: Sun 07 Dec 2025 04:00:50 +0000 Files and hashes: 1: 0KpKGno60j-q4q6un6YZTwISgSk.crl (hash: OFyGtvs7TN4A6WUyGuIVVmCSo78DzNfZDiW8ARxwdOA=) 2: 2mOIvyxqACEFmIkGDLPkH-bc67w.roa (hash: a5V4lxFeCQH7YtlBbiNtuF1rDDvq1OPE/o43ZTFdAYQ=) 3: BPcKYotNA4ZeZvm82W73v75zPQs.roa (hash: oHpWOGTj/PoKbHsHCYFs8uXPSnbHGEoV8KY7k9zJBk4=) 4: GkxGrjdz0A7AWmifnWDimQZWI38.roa (hash: tHXJR2KGAG4wHE8bdFOYoF9Jdtd+4jQD2aXhMHJzWK8=) 5: ief4j2bb-cAvwzzS1T0xB8OgxGk.roa (hash: cv2vWMrY2M65pVapU15+XFEE8tVsd4Na8PnjBxEQRuA=) 6: wkwsgzJc2eo9ng8QQ8kvMc3qjbc.roa (hash: +iuoTytPo6r5GmeijHeI4hmWR8iJmhnqPLAkE9k79sI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:d0:56:75:fd:0e:da:9d:d9:b3:7d:f0:90:09:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129 Validity Not Before: Dec 6 04:00:50 2025 GMT Not After : Dec 7 04:00:50 2025 GMT Subject: CN=c0331eb7900d98bf46ee069b04b17809e804acaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:aa:5e:4b:08:30:6b:94:a3:66:3e:4b:13:c4: 4f:78:fc:73:8b:6a:47:5c:2c:98:9b:7c:87:45:78: 17:55:ac:5b:9b:87:c6:06:b5:bd:17:32:81:8d:2d: d5:d1:61:45:34:8d:64:58:3d:c3:80:8f:d2:2b:69: 7f:6b:2e:9b:c8:2c:87:95:14:95:ce:37:0f:96:44: 6c:55:9c:e7:03:b0:2a:a2:3c:e8:0c:24:84:03:69: f7:9b:d7:dd:01:c8:25:1a:03:16:7c:06:f7:a5:2d: 6b:d7:33:b2:47:e5:8a:0e:c6:02:43:83:47:d8:c7: 87:d0:0e:38:f7:ff:a7:35:2e:b9:ac:40:bc:5b:69: 18:5f:04:0b:08:a8:d9:dd:f0:00:34:5b:ba:a2:77: e2:ed:21:23:80:d4:b3:93:af:68:05:68:ff:bb:b5: e1:2f:23:15:33:60:8a:c0:12:c7:91:b4:20:11:d2: aa:7d:f7:5a:7a:56:01:40:b8:73:4b:a2:e3:e2:44: 7b:0b:78:75:6d:7f:ef:5d:d8:85:82:bb:44:96:06: 6a:cd:f8:26:3e:41:07:1f:a5:c0:2e:09:21:95:c6: 42:76:72:9b:14:d9:fa:8b:dd:fa:a8:4f:2b:6a:f8: 11:b0:5d:d1:ab:32:67:4f:bf:32:3f:00:78:c2:08: 16:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:33:1E:B7:90:0D:98:BF:46:EE:06:9B:04:B1:78:09:E8:04:AC:AF X509v3 Authority Key Identifier: keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:0f:52:1d:3b:ef:97:8e:db:b0:6f:79:0d:0e:a1:15:d2:17: 80:bd:32:c4:2d:7b:0a:43:03:96:83:18:16:2e:3a:3b:d9:54: 44:dc:65:f1:bb:bb:11:27:5a:0a:22:a3:0a:29:df:8c:31:0a: dd:09:79:77:f2:d4:2c:0e:40:a7:94:4a:0c:c9:6d:69:dd:46: 36:d3:12:f8:21:f7:ed:bd:7f:e0:f0:db:ff:16:b9:e7:ef:b2: 4f:56:3c:22:2a:1b:31:4c:24:8b:b8:cc:d9:02:ec:76:d4:dc: a3:05:c5:bd:7d:b7:07:2d:eb:2e:5b:f6:f5:91:ab:f0:15:58: 90:81:48:dd:35:8b:60:2a:6e:12:c0:f1:b8:68:90:80:a5:a0: 56:19:7e:02:32:00:e6:6f:3e:34:ed:0e:d5:7a:c3:de:5f:7a: 81:80:9c:44:e0:14:d2:07:1c:ce:7e:a2:4c:52:ca:e4:ce:84: 36:65:21:6b:28:f7:07:c5:87:57:ae:29:f9:31:62:30:38:36: 8b:a1:b8:b7:8d:fe:da:c8:fc:ba:66:7f:8d:42:6f:57:54:7c: 3c:7b:cc:7e:88:c0:fb:c8:da:f0:ea:3f:5b:46:dd:d1:a4:85: 0b:34:28:2b:d5:96:18:00:ab:d3:85:16:da:3f:1c:df:c7:ac: 12:8f:cf:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0dBWdf0O2p3Zs33wkAnHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYWE0YTFhN2EzYWQyM2ZhYWUyYWVhZTlmYTYxOTRmMDIx MjgxMjkwHhcNMjUxMjA2MDQwMDUwWhcNMjUxMjA3MDQwMDUwWjAzMTEwLwYDVQQD EyhjMDMzMWViNzkwMGQ5OGJmNDZlZTA2OWIwNGIxNzgwOWU4MDRhY2FmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkqpeSwgwa5SjZj5LE8RPePxzi2pH XCyYm3yHRXgXVaxbm4fGBrW9FzKBjS3V0WFFNI1kWD3DgI/SK2l/ay6byCyHlRSV zjcPlkRsVZznA7AqojzoDCSEA2n3m9fdAcglGgMWfAb3pS1r1zOyR+WKDsYCQ4NH 2MeH0A449/+nNS65rEC8W2kYXwQLCKjZ3fAANFu6onfi7SEjgNSzk69oBWj/u7Xh LyMVM2CKwBLHkbQgEdKqffdaelYBQLhzS6Lj4kR7C3h1bX/vXdiFgrtElgZqzfgm PkEHH6XALgkhlcZCdnKbFNn6i936qE8ravgRsF3RqzJnT78yPwB4wggWjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMAzHreQDZi/Ru4GmwSxeAnoBKyvMB8GA1UdIwQY MBaAFNCqShp6OtI/quKurp+mGU8CEoEpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS83NjU1NmUtYTFkOC00ZTBhLTg0Njgt MjIxNGYxOGViMzI5LzEvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS83NjU1NmUtYTFkOC00ZTBhLTg0NjgtMjIxNGYxOGViMzI5 LzEvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEQ9SHTvv l47bsG95DQ6hFdIXgL0yxC17CkMDloMYFi46O9lURNxl8bu7ESdaCiKjCinfjDEK 3Ql5d/LULA5Ap5RKDMltad1GNtMS+CH37b1/4PDb/xa55++yT1Y8IiobMUwki7jM 2QLsdtTcowXFvX23By3rLlv29ZGr8BVYkIFI3TWLYCpuEsDxuGiQgKWgVhl+AjIA 5m8+NO0O1XrD3l96gYCcROAU0gcczn6iTFLK5M6ENmUhayj3B8WHV64p+TFiMDg2 i6G4t43+2sj8umZ/jUJvV1R8PHvMfojA+8ja8Oo/W0bd0aSFCzQoK9WWGACr04UW 2j8c38esEo/PvA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:42:28 2025 by rpki-client