This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft File: 6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft (raw, json) Hash identifier: kT/KV8GZw4Ws0OspDS/xHJeDcD+RXZkHkph8mGbsh1A= Subject key identifier: 71:03:2B:CD:49:9A:14:A9:C4:2B:FA:F2:61:1A:DC:A9:7E:87:AB:9D Authority key identifier: E9:72:A6:C2:EB:EA:46:41:30:72:F9:0D:D5:26:D7:8F:11:02:F4:F2 Certificate issuer: /CN=e972a6c2ebea46413072f90dd526d78f1102f4f2 Certificate serial: 019AF208B042D509A1107C45C5AB9A0E2976 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XKmwuvqRkEwcvkN1SbXjxEC9PI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft Manifest number: 0820 Signing time: Sat 06 Dec 2025 05:00:46 +0000 Manifest this update: Sat 06 Dec 2025 05:00:46 +0000 Manifest next update: Sun 07 Dec 2025 05:00:46 +0000 Files and hashes: 1: 6XKmwuvqRkEwcvkN1SbXjxEC9PI.crl (hash: t1H47eGCCADMxeB/ueV0Dx00GqTZDERAfYA0BeafRak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft rsync://rpki.ripe.net/repository/DEFAULT/6XKmwuvqRkEwcvkN1SbXjxEC9PI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:b0:42:d5:09:a1:10:7c:45:c5:ab:9a:0e:29:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e972a6c2ebea46413072f90dd526d78f1102f4f2 Validity Not Before: Dec 6 05:00:46 2025 GMT Not After : Dec 7 05:00:46 2025 GMT Subject: CN=71032bcd499a14a9c42bfaf2611adca97e87ab9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:54:18:ab:54:59:27:eb:bc:dd:d2:12:4e:4a: e4:19:8a:73:80:d9:a3:58:83:ae:d2:69:de:0c:f9: bc:56:55:f1:76:16:a3:a3:07:8f:a2:7b:4f:3b:16: 57:db:78:25:73:ff:a6:7b:58:db:45:21:a0:41:47: b5:5c:34:b0:d4:e1:49:c1:e8:f9:89:7e:73:60:96: fb:2e:93:8d:7b:d4:37:b4:9a:91:66:75:9a:ed:f1: 03:4a:55:b6:b9:c0:26:79:00:8c:cc:c6:69:fd:f4: fd:66:d6:cd:72:70:22:e2:b4:b6:78:c3:07:b2:fe: ca:d8:05:13:dd:0c:77:24:f5:6a:9f:55:96:a7:11: f1:35:a0:6a:87:ca:35:f4:02:61:5f:c7:75:0a:3e: 3f:9e:fd:fe:0a:f0:63:1f:60:c0:1d:d9:5a:f8:5e: 07:6f:65:d5:20:e9:b5:e2:9b:30:6e:b1:22:0a:6c: 54:b1:8c:43:62:e6:17:c6:cc:88:12:3f:8c:b4:3c: 68:aa:3b:c7:65:b8:60:bd:d1:45:5b:a8:c0:5c:21: 82:74:82:b7:05:e0:a2:58:d7:d0:5c:ea:fa:7b:73: 2e:de:ba:95:b5:04:97:c7:c6:63:90:de:dd:03:1c: 62:0e:87:62:c1:1b:fe:04:39:11:2d:a7:53:bd:d4: 41:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:03:2B:CD:49:9A:14:A9:C4:2B:FA:F2:61:1A:DC:A9:7E:87:AB:9D X509v3 Authority Key Identifier: keyid:E9:72:A6:C2:EB:EA:46:41:30:72:F9:0D:D5:26:D7:8F:11:02:F4:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XKmwuvqRkEwcvkN1SbXjxEC9PI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:31:fa:34:1a:f9:d0:f1:61:31:4d:87:fd:3a:f3:26:c9:f3: 3e:c2:73:f6:ad:cf:28:99:a6:32:eb:21:19:c9:ae:2f:57:31: 9a:97:d2:0c:1a:b9:48:b7:20:b1:17:52:79:7b:92:9c:59:68: 88:25:3d:27:ee:7c:55:0c:01:a4:85:2a:89:fe:94:df:dc:c3: 04:8b:30:c6:ed:11:3d:fc:06:9e:05:25:76:ee:26:2a:34:48: 8e:4e:68:7e:50:9b:21:60:20:1f:27:12:3f:fa:f0:36:2e:61: 73:19:cd:77:f5:05:94:fa:b6:b9:f0:1b:bb:04:c7:d6:25:1b: c7:72:a3:b9:53:86:91:71:c5:28:f7:68:19:da:f6:db:f0:0a: fd:9c:37:5b:5d:0e:8a:1b:ec:04:ac:81:bf:2e:f3:8d:71:89: a3:fd:ab:c7:3c:2e:ce:70:4d:42:85:61:70:4d:2b:62:a1:a7: 02:18:8e:6b:42:1c:10:86:53:59:90:68:99:34:9c:a6:d1:0b: 66:a0:cf:94:cd:55:63:f7:9b:44:3a:87:a1:6d:58:95:c9:ef: 24:2c:8d:71:06:b8:e2:61:dc:63:33:3f:b0:39:8d:92:93:5e: 0b:fe:ac:ea:e6:c0:3b:24:1a:c6:46:63:4a:42:8b:f2:bc:32: 4b:e8:8f:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCLBC1QmhEHxFxauaDil2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5NzJhNmMyZWJlYTQ2NDEzMDcyZjkwZGQ1MjZkNzhmMTEw MmY0ZjIwHhcNMjUxMjA2MDUwMDQ2WhcNMjUxMjA3MDUwMDQ2WjAzMTEwLwYDVQQD Eyg3MTAzMmJjZDQ5OWExNGE5YzQyYmZhZjI2MTFhZGNhOTdlODdhYjlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1QYq1RZJ+u83dISTkrkGYpzgNmj WIOu0mneDPm8VlXxdhajowePontPOxZX23glc/+me1jbRSGgQUe1XDSw1OFJwej5 iX5zYJb7LpONe9Q3tJqRZnWa7fEDSlW2ucAmeQCMzMZp/fT9ZtbNcnAi4rS2eMMH sv7K2AUT3Qx3JPVqn1WWpxHxNaBqh8o19AJhX8d1Cj4/nv3+CvBjH2DAHdla+F4H b2XVIOm14pswbrEiCmxUsYxDYuYXxsyIEj+MtDxoqjvHZbhgvdFFW6jAXCGCdIK3 BeCiWNfQXOr6e3Mu3rqVtQSXx8ZjkN7dAxxiDodiwRv+BDkRLadTvdRBuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHEDK81JmhSpxCv68mEa3Kl+h6udMB8GA1UdIwQY MBaAFOlypsLr6kZBMHL5DdUm148RAvTyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlhLbXd1dnFSa0V3Y3ZrTjFTYlhqeEVDOVBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iNzYyOGQtNDI2Yy00ODg5LWEwMGMt NGY5NzRjOTc3OTQ1LzEvNlhLbXd1dnFSa0V3Y3ZrTjFTYlhqeEVDOVBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9iNzYyOGQtNDI2Yy00ODg5LWEwMGMtNGY5NzRjOTc3OTQ1 LzEvNlhLbXd1dnFSa0V3Y3ZrTjFTYlhqeEVDOVBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALjH6NBr5 0PFhMU2H/TrzJsnzPsJz9q3PKJmmMushGcmuL1cxmpfSDBq5SLcgsRdSeXuSnFlo iCU9J+58VQwBpIUqif6U39zDBIswxu0RPfwGngUldu4mKjRIjk5oflCbIWAgHycS P/rwNi5hcxnNd/UFlPq2ufAbuwTH1iUbx3KjuVOGkXHFKPdoGdr22/AK/Zw3W10O ihvsBKyBvy7zjXGJo/2rxzwuznBNQoVhcE0rYqGnAhiOa0IcEIZTWZBomTScptEL ZqDPlM1VY/ebRDqHoW1YlcnvJCyNcQa44mHcYzM/sDmNkpNeC/6s6ubAOyQaxkZj SkKL8rwyS+iPMA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:18 2025 by rpki-client