This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft File: 0PT6gHWHU7JDohZe3ep12-7oJsQ.mft (raw, json) Hash identifier: OJBkqJeFl0f9aRs14F/Gqt6Wkk3UrmhimXFjrW9LIsg= Subject key identifier: CC:09:D6:A2:7A:61:B4:9A:F3:4F:9E:F5:DA:E8:E4:F1:B3:42:01:6F Authority key identifier: D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4 Certificate issuer: /CN=d0f4fa80758753b243a2165eddea75dbeee826c4 Certificate serial: 019AF23FB8D73039744398DBA875FF5623AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft Manifest number: 124D Signing time: Sat 06 Dec 2025 06:00:53 +0000 Manifest this update: Sat 06 Dec 2025 06:00:53 +0000 Manifest next update: Sun 07 Dec 2025 06:00:53 +0000 Files and hashes: 1: 0PT6gHWHU7JDohZe3ep12-7oJsQ.crl (hash: lRC2ir12KhgfMyf8BlcQmuJEL49HNb7HsGnhuLS/rds=) 2: dylc3WZzrjgV2VB-T70ps5y7_v8.roa (hash: CjiSp/7ghqmIWPlGrqN52h+3zV23QhuVF2kvnW7CFVo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:b8:d7:30:39:74:43:98:db:a8:75:ff:56:23:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0f4fa80758753b243a2165eddea75dbeee826c4 Validity Not Before: Dec 6 06:00:53 2025 GMT Not After : Dec 7 06:00:53 2025 GMT Subject: CN=cc09d6a27a61b49af34f9ef5dae8e4f1b342016f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:59:fa:bf:f6:c2:77:52:5d:ab:62:30:2a:18: e5:52:bc:b5:30:8e:41:e3:b0:cf:a9:0b:64:7a:e3: 64:d7:15:c0:62:62:45:01:ff:f5:37:97:7c:36:a8: dd:14:bc:4c:47:0b:d6:45:96:ae:09:65:2f:73:c1: b9:62:77:d8:24:00:f0:97:b8:75:bc:ee:dd:68:83: c6:10:e7:c7:78:1c:10:76:05:27:96:74:54:89:bd: 98:fb:cd:cf:37:81:41:2d:4b:d8:23:f8:d0:32:4e: 94:97:41:7b:ac:4b:2c:86:f4:c6:33:2f:b8:e0:0f: 20:ef:48:83:dc:85:bf:3e:14:f8:89:2e:d2:6a:d1: 8e:b6:cb:f5:81:6e:3e:81:c9:e4:b9:e9:e3:c2:12: 09:f3:e6:82:89:88:c5:4c:c1:8a:85:78:b7:9f:32: 19:6f:e2:a7:67:53:db:b1:34:14:3a:58:05:da:00: ce:00:68:41:15:f6:52:38:89:7e:ac:41:cc:58:84: 51:ad:ad:3e:6b:ca:95:f0:d7:cf:5a:b3:11:ed:c1: 92:dc:dd:40:ce:3e:cf:83:92:b5:2c:7d:00:72:7f: e5:d3:7e:3e:d4:48:bd:ea:73:a8:58:75:c1:f8:83: f3:9c:18:e8:d8:0d:2f:cd:67:72:44:62:c4:39:e6: b7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:09:D6:A2:7A:61:B4:9A:F3:4F:9E:F5:DA:E8:E4:F1:B3:42:01:6F X509v3 Authority Key Identifier: keyid:D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:76:45:ef:f0:42:fa:58:08:93:73:65:36:75:6c:a9:cd:17: 62:46:ea:05:46:c1:55:35:ef:3f:06:9d:59:e7:d5:fe:d2:5e: 1c:9a:ae:04:cf:ec:74:87:7e:fb:41:e0:10:3a:60:7a:80:10: 88:de:63:a5:b1:c7:e2:f5:0e:f7:a7:ae:2d:3c:ac:db:9a:62: e0:5d:2a:da:f3:b9:b3:f3:07:de:f8:c4:34:ec:95:5d:44:01: 5b:b2:25:18:f4:59:ce:d9:56:89:15:b0:c0:b3:b8:94:4d:c6: e2:e6:23:a2:67:06:ab:a8:4c:a4:fd:96:53:de:a1:97:ce:b9: aa:da:45:b7:36:c7:de:0b:24:8a:d7:4b:89:c4:4a:da:ac:1a: d5:2d:2d:c3:a7:c6:f9:96:72:cb:32:1f:fe:00:53:61:fa:4c: 00:dd:6a:82:c1:b4:b9:e2:da:42:81:c8:e5:7d:17:34:51:0e: 5f:55:cb:e7:30:ba:6b:a0:f2:13:7d:1c:a6:11:d7:04:9d:a9: 3d:e6:a0:8b:40:eb:c0:fd:30:32:3c:68:e8:6a:02:82:3e:20: 79:0a:42:02:fc:75:2c:02:10:b3:e1:c3:07:75:fc:0d:92:00: 58:3e:0f:cb:d7:1f:ad:f7:f8:51:db:86:ef:b7:db:e5:49:79: 91:23:15:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP7jXMDl0Q5jbqHX/ViOuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwZjRmYTgwNzU4NzUzYjI0M2EyMTY1ZWRkZWE3NWRiZWVl ODI2YzQwHhcNMjUxMjA2MDYwMDUzWhcNMjUxMjA3MDYwMDUzWjAzMTEwLwYDVQQD EyhjYzA5ZDZhMjdhNjFiNDlhZjM0ZjllZjVkYWU4ZTRmMWIzNDIwMTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuln6v/bCd1Jdq2IwKhjlUry1MI5B 47DPqQtkeuNk1xXAYmJFAf/1N5d8NqjdFLxMRwvWRZauCWUvc8G5YnfYJADwl7h1 vO7daIPGEOfHeBwQdgUnlnRUib2Y+83PN4FBLUvYI/jQMk6Ul0F7rEsshvTGMy+4 4A8g70iD3IW/PhT4iS7SatGOtsv1gW4+gcnkuenjwhIJ8+aCiYjFTMGKhXi3nzIZ b+KnZ1PbsTQUOlgF2gDOAGhBFfZSOIl+rEHMWIRRra0+a8qV8NfPWrMR7cGS3N1A zj7Pg5K1LH0Acn/l034+1Ei96nOoWHXB+IPznBjo2A0vzWdyRGLEOea36wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMwJ1qJ6YbSa80+e9dro5PGzQgFvMB8GA1UdIwQY MBaAFND0+oB1h1OyQ6IWXt3qddvu6CbEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFBUNmdIV0hVN0pEb2haZTNlcDEyLTdvSnNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9jYTVjMTktZTQ5Ni00OWU4LThiOTMt NzJhMWYzNzcxOWJiLzEvMFBUNmdIV0hVN0pEb2haZTNlcDEyLTdvSnNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9jYTVjMTktZTQ5Ni00OWU4LThiOTMtNzJhMWYzNzcxOWJi LzEvMFBUNmdIV0hVN0pEb2haZTNlcDEyLTdvSnNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARHZF7/BC +lgIk3NlNnVsqc0XYkbqBUbBVTXvPwadWefV/tJeHJquBM/sdId++0HgEDpgeoAQ iN5jpbHH4vUO96euLTys25pi4F0q2vO5s/MH3vjENOyVXUQBW7IlGPRZztlWiRWw wLO4lE3G4uYjomcGq6hMpP2WU96hl865qtpFtzbH3gskitdLicRK2qwa1S0tw6fG +ZZyyzIf/gBTYfpMAN1qgsG0ueLaQoHI5X0XNFEOX1XL5zC6a6DyE30cphHXBJ2p Peagi0DrwP0wMjxo6GoCgj4geQpCAvx1LAIQs+HDB3X8DZIAWD4Py9cfrff4UduG 77fb5Ul5kSMVsw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:12:38 2025 by rpki-client