This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft File: 6YMf0OexWxfgoKfcz8q7Bj18R8o.mft (raw, json) Hash identifier: 38wvImuHr/3uQ8gB3E6F8IselKgcTb4lFVjJCtCBpqs= Subject key identifier: 45:E9:B9:A0:58:1E:7A:08:C6:6F:77:23:D5:7E:BE:34:00:57:EB:E3 Authority key identifier: E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA Certificate issuer: /CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca Certificate serial: 019AF12DDAC9A4F30A8B6085CF2F6DBCA850 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft Manifest number: 0542 Signing time: Sat 06 Dec 2025 01:01:45 +0000 Manifest this update: Sat 06 Dec 2025 01:01:45 +0000 Manifest next update: Sun 07 Dec 2025 01:01:45 +0000 Files and hashes: 1: 6YMf0OexWxfgoKfcz8q7Bj18R8o.crl (hash: 6ohXl+eoRzubz19SPUY5LoP3jXzHWSVS9hsbnqd3wok=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:da:c9:a4:f3:0a:8b:60:85:cf:2f:6d:bc:a8:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca Validity Not Before: Dec 6 01:01:45 2025 GMT Not After : Dec 7 01:01:45 2025 GMT Subject: CN=45e9b9a0581e7a08c66f7723d57ebe340057ebe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c6:ac:93:7a:63:50:d8:aa:84:e1:d3:bb:eb: be:81:4f:e0:66:5c:d1:e9:4d:1e:a1:fb:49:e5:eb: 9c:5b:2c:73:ed:be:f2:7e:82:34:47:c8:9c:c3:26: fc:d4:6b:0f:87:e9:f4:48:c3:d1:45:0f:7c:c9:c6: d9:84:e5:bb:be:0d:2b:c4:b4:84:fb:06:8f:b7:0c: 50:f8:66:e7:2d:6c:a3:4c:19:5f:cb:e3:74:82:93: 78:b6:bd:27:28:d8:fa:ab:d4:64:08:3b:87:bb:8b: 0c:23:28:c6:c5:e1:6e:7d:c7:0b:7f:1e:e7:71:4f: 20:42:d3:fd:30:0b:bf:e1:7a:76:84:24:16:73:02: fa:f4:05:a7:6a:b6:d4:af:a4:6b:79:26:41:57:f6: fd:6d:77:29:33:e3:ad:5e:d1:46:09:46:24:22:8d: d0:85:fc:c1:3d:e5:14:5c:dc:d6:97:2b:83:f9:4a: 6a:ce:ee:c4:93:14:c6:bf:5f:02:f7:60:4a:97:02: a4:d6:f8:15:cb:6b:b3:e4:cc:5b:39:08:32:bc:70: be:f4:16:b5:dc:27:14:0e:51:4d:ad:60:17:61:8d: 0d:4b:62:3a:9b:83:e2:42:74:13:84:25:d3:74:03: 6f:4e:20:ca:c8:06:b3:64:a2:24:6f:e0:2d:a6:25: 0d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:E9:B9:A0:58:1E:7A:08:C6:6F:77:23:D5:7E:BE:34:00:57:EB:E3 X509v3 Authority Key Identifier: keyid:E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:6d:b0:5c:a4:1b:59:5d:b7:d7:68:af:a9:5c:6f:dc:c8:dd: 24:29:87:09:34:7a:d1:b2:23:6e:a4:d3:36:ce:81:00:99:f8: bd:07:eb:2d:06:df:bd:4c:52:e9:a9:66:47:bb:0a:c6:df:b3: 03:39:f4:a9:71:a2:5f:db:66:52:db:3c:96:f4:74:f0:2f:1e: db:72:20:f1:23:e7:2e:68:ea:27:f8:8e:92:10:ab:46:2d:76: 61:bb:b9:c2:5c:ce:6b:f0:5a:93:e0:d3:b4:f0:a8:5e:ed:51: 7f:f6:27:b7:e3:22:b0:1d:d9:af:4c:22:fd:06:a2:d1:95:db: 91:ca:a8:17:c2:16:22:9e:8b:2c:82:78:6e:cc:96:94:ef:5a: e7:af:a3:ed:62:da:7d:e5:89:65:af:5d:85:dd:11:e9:49:89: 38:ec:da:5b:f4:bc:26:f4:f0:1a:c2:8f:b6:a9:41:42:15:19: 36:fe:be:79:6a:27:0e:3f:8c:dd:99:3c:bd:33:02:13:41:41: bd:11:a3:24:14:81:d2:39:c3:42:c8:ea:dd:cf:8c:2a:4c:92: 56:3b:3f:e8:5b:80:05:c0:58:8a:6a:ac:30:26:a2:4a:c4:b4: b8:08:aa:7a:30:b9:0b:7d:4d:c9:6b:af:4e:f3:d4:87:3c:1c: b9:99:6e:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLdrJpPMKi2CFzy9tvKhQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5ODMxZmQwZTdiMTViMTdlMGEwYTdkY2NmY2FiYjA2M2Q3 YzQ3Y2EwHhcNMjUxMjA2MDEwMTQ1WhcNMjUxMjA3MDEwMTQ1WjAzMTEwLwYDVQQD Eyg0NWU5YjlhMDU4MWU3YTA4YzY2Zjc3MjNkNTdlYmUzNDAwNTdlYmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcask3pjUNiqhOHTu+u+gU/gZlzR 6U0eoftJ5eucWyxz7b7yfoI0R8icwyb81GsPh+n0SMPRRQ98ycbZhOW7vg0rxLSE +waPtwxQ+GbnLWyjTBlfy+N0gpN4tr0nKNj6q9RkCDuHu4sMIyjGxeFufccLfx7n cU8gQtP9MAu/4Xp2hCQWcwL69AWnarbUr6RreSZBV/b9bXcpM+OtXtFGCUYkIo3Q hfzBPeUUXNzWlyuD+Upqzu7EkxTGv18C92BKlwKk1vgVy2uz5MxbOQgyvHC+9Ba1 3CcUDlFNrWAXYY0NS2I6m4PiQnQThCXTdANvTiDKyAazZKIkb+AtpiUN8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEXpuaBYHnoIxm93I9V+vjQAV+vjMB8GA1UdIwQY MBaAFOmDH9DnsVsX4KCn3M/KuwY9fEfKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi85NGZkOGEtM2I2NS00YWY3LTg4NWQt MDE0N2UxM2E5OTNlLzEvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi85NGZkOGEtM2I2NS00YWY3LTg4NWQtMDE0N2UxM2E5OTNl LzEvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj22wXKQb WV2312ivqVxv3MjdJCmHCTR60bIjbqTTNs6BAJn4vQfrLQbfvUxS6almR7sKxt+z Azn0qXGiX9tmUts8lvR08C8e23Ig8SPnLmjqJ/iOkhCrRi12Ybu5wlzOa/Bak+DT tPCoXu1Rf/Ynt+MisB3Zr0wi/Qai0ZXbkcqoF8IWIp6LLIJ4bsyWlO9a56+j7WLa feWJZa9dhd0R6UmJOOzaW/S8JvTwGsKPtqlBQhUZNv6+eWonDj+M3Zk8vTMCE0FB vRGjJBSB0jnDQsjq3c+MKkySVjs/6FuABcBYimqsMCaiSsS0uAiqejC5C31NyWuv TvPUhzwcuZlupw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:16:24 2025 by rpki-client