This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft File: o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft (raw, json) Hash identifier: TqqOk2f+v7EKObSy/Ev2TCJhQ+nzMN4Zmr2v0AiM+qE= Subject key identifier: 81:73:24:E4:DB:0F:FE:87:69:E5:A8:B4:3C:1E:4C:90:8C:77:22:76 Authority key identifier: A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64 Certificate issuer: /CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864 Certificate serial: 019AF50A72552818BD29A50C64BAC2E455B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 19:01:33 +0000 Manifest this update: Sat 06 Dec 2025 19:01:33 +0000 Manifest next update: Sun 07 Dec 2025 19:01:33 +0000 Files and hashes: 1: o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl (hash: kC0Z8j4Sj1z3DyRvCVPnJyxMeoruGRe3WQs7Ug0sRG0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:72:55:28:18:bd:29:a5:0c:64:ba:c2:e4:55:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864 Validity Not Before: Dec 6 19:01:33 2025 GMT Not After : Dec 7 19:01:33 2025 GMT Subject: CN=817324e4db0ffe8769e5a8b43c1e4c908c772276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:31:63:d5:ca:6a:d4:dc:3a:6e:4f:31:9a:16: 2b:61:39:5a:b9:30:0b:56:21:e7:ac:f6:0b:ce:41: 94:fa:4e:78:79:b2:09:5a:d6:b5:c3:2a:6b:7e:98: 63:51:7c:d2:1a:5a:61:08:be:60:ae:9c:32:22:28: 5e:00:b2:df:6c:51:da:fc:37:22:88:a3:e0:69:ad: 0e:67:48:b4:9a:c6:2c:f6:d3:30:78:c0:60:47:ef: 6d:da:73:d8:d0:cb:6a:6b:82:b0:e3:69:90:31:b5: 64:7b:c9:cd:82:d1:4d:67:44:fa:4f:a8:73:ab:f8: 67:3d:06:5e:63:c4:f0:63:f1:f0:32:fd:0d:d7:eb: 9e:44:0e:20:ad:8b:e5:83:bd:eb:05:ca:8b:23:65: 2d:35:3a:59:0e:b4:ae:2f:7a:29:15:48:c7:88:7c: cb:cb:69:bd:1d:6f:96:bc:d7:44:01:f6:bb:25:1b: fa:3b:85:9b:84:e8:e8:74:9d:cc:ac:2e:70:bf:4b: d5:2d:ab:a1:c8:33:8b:7b:0a:44:ff:b5:c6:df:0d: 3c:08:c2:00:9e:67:41:28:85:6a:07:e5:9e:66:07: ca:8e:52:c8:85:47:cb:af:56:fc:d3:7b:e0:51:a3: c1:02:06:b2:aa:8e:0d:20:f3:eb:46:4d:f2:f6:66: 3b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:73:24:E4:DB:0F:FE:87:69:E5:A8:B4:3C:1E:4C:90:8C:77:22:76 X509v3 Authority Key Identifier: keyid:A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:36:32:5b:de:d8:9d:65:b5:fc:4f:e7:87:65:94:0e:99:af: f1:73:7e:da:76:51:f7:c3:41:f2:81:b8:85:50:96:3e:ff:15: 69:ba:b6:55:d6:63:3c:d4:d5:4e:f8:65:b1:66:65:4a:7d:a8: 9d:d4:54:86:c2:54:80:32:1d:3c:57:c1:f0:d4:b1:0c:c6:8b: 30:c3:c4:d9:0e:5d:73:48:11:ee:11:64:0b:75:2a:ab:25:30: e6:9b:00:14:38:8e:4e:e2:bc:60:d9:8d:69:d6:57:66:13:42: 08:59:b2:04:fb:5b:03:7e:9e:e2:6e:fd:7f:1f:34:55:ad:ed: 7b:da:e3:50:38:54:e0:93:cb:08:0b:83:f1:7e:ee:68:02:09: 3c:c0:24:bf:00:9c:8a:c5:9d:f0:47:61:c5:54:b7:ec:51:1e: 85:46:49:ca:38:90:6f:50:cf:b2:52:b8:fa:72:f4:2f:7f:39: d8:7c:2e:e8:35:62:88:b1:04:04:46:67:ce:b2:be:0b:39:f1: 70:33:5e:e1:1c:e6:5b:25:d9:66:2c:03:85:c4:a9:25:21:9f: 11:fd:76:c1:33:dd:62:fb:81:7d:2f:6c:eb:95:b7:62:98:d4: 84:dd:ca:d4:f7:5c:47:1b:e9:39:a6:c7:b3:2b:ea:9e:71:cc: cf:27:86:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CnJVKBi9KaUMZLrC5FW5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzYThjYWY2MjE3Y2ViMTBkZDhjMTQ2Zjk2YjlkNzczZWRk ODg4NjQwHhcNMjUxMjA2MTkwMTMzWhcNMjUxMjA3MTkwMTMzWjAzMTEwLwYDVQQD Eyg4MTczMjRlNGRiMGZmZTg3NjllNWE4YjQzYzFlNGM5MDhjNzcyMjc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTFj1cpq1Nw6bk8xmhYrYTlauTAL ViHnrPYLzkGU+k54ebIJWta1wyprfphjUXzSGlphCL5grpwyIiheALLfbFHa/Dci iKPgaa0OZ0i0msYs9tMweMBgR+9t2nPY0Mtqa4Kw42mQMbVke8nNgtFNZ0T6T6hz q/hnPQZeY8TwY/HwMv0N1+ueRA4grYvlg73rBcqLI2UtNTpZDrSuL3opFUjHiHzL y2m9HW+WvNdEAfa7JRv6O4WbhOjodJ3MrC5wv0vVLauhyDOLewpE/7XG3w08CMIA nmdBKIVqB+WeZgfKjlLIhUfLr1b803vgUaPBAgayqo4NIPPrRk3y9mY7/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIFzJOTbD/6HaeWotDweTJCMdyJ2MB8GA1UdIwQY MBaAFKOoyvYhfOsQ3YwUb5a513Pt2IhkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzZqSzlpRjg2eERkakJSdmxyblhjLTNZaUdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi81ZmQwMjMtOTJlYS00YTYzLWI3ZDAt ZTVjYmEyMTM3MzA4LzEvbzZqSzlpRjg2eERkakJSdmxyblhjLTNZaUdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi81ZmQwMjMtOTJlYS00YTYzLWI3ZDAtZTVjYmEyMTM3MzA4 LzEvbzZqSzlpRjg2eERkakJSdmxyblhjLTNZaUdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcjYyW97Y nWW1/E/nh2WUDpmv8XN+2nZR98NB8oG4hVCWPv8Vabq2VdZjPNTVTvhlsWZlSn2o ndRUhsJUgDIdPFfB8NSxDMaLMMPE2Q5dc0gR7hFkC3UqqyUw5psAFDiOTuK8YNmN adZXZhNCCFmyBPtbA36e4m79fx80Va3te9rjUDhU4JPLCAuD8X7uaAIJPMAkvwCc isWd8EdhxVS37FEehUZJyjiQb1DPslK4+nL0L3852Hwu6DViiLEEBEZnzrK+Cznx cDNe4RzmWyXZZiwDhcSpJSGfEf12wTPdYvuBfS9s65W3YpjUhN3K1PdcRxvpOabH syvqnnHMzyeGbg== -----END CERTIFICATE-----Generated at Sat Dec 6 23:42:52 2025 by rpki-client