This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json) Hash identifier: TZmFdqJMDWpIpBb+051dKDk7jKgc7XG2CQApYfR/OE0= Subject key identifier: 88:D0:51:60:EC:30:F9:33:D2:EE:7B:31:5C:56:E1:98:5D:1D:7C:1F Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80 Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80 Certificate serial: 019AF12DBA9A035DC998339F8B743F903250 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 01:01:37 +0000 Manifest this update: Sat 06 Dec 2025 01:01:37 +0000 Manifest next update: Sun 07 Dec 2025 01:01:37 +0000 Files and hashes: 1: Uqk6ZpOTGE36LT5fcwe3jUUK8bs.roa (hash: 3ocr9qZ6ri2OW2BEWPNTcZs9jR00BhDPO+YzVSk3MLY=) 2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: u13itzRUJUbvEM+06kICRMfLM8XYEPhVFtx2wV66JzE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:ba:9a:03:5d:c9:98:33:9f:8b:74:3f:90:32:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80 Validity Not Before: Dec 6 01:01:37 2025 GMT Not After : Dec 7 01:01:37 2025 GMT Subject: CN=88d05160ec30f933d2ee7b315c56e1985d1d7c1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9d:3e:ad:be:7a:66:83:27:c6:02:96:f7:76: fb:f3:f8:a5:97:d2:b9:b1:7b:2c:20:71:20:e9:ac: 83:c9:1d:55:d2:c6:9d:ff:ca:62:da:1d:94:7c:37: 73:c3:59:6e:08:e7:f6:fe:9b:4d:96:de:78:0b:f1: ba:6e:07:19:49:76:59:c9:b9:33:1f:84:5f:f8:a4: a4:a6:d3:62:ff:47:5b:84:f8:1c:5b:d9:72:a4:de: fa:ad:b0:30:3c:67:2f:5e:83:42:4f:7b:25:0b:7e: cc:6c:b6:2f:f3:c0:4e:5e:16:25:a7:4b:5e:a8:41: 2f:e2:94:9f:5e:47:22:3a:f7:e4:93:6e:a8:16:ca: b2:43:c4:ce:60:e8:68:28:0e:70:6d:2f:07:e1:03: 13:51:61:6a:54:d2:1c:84:42:d5:f6:91:cb:23:6d: 91:c0:58:92:49:80:79:7f:06:46:31:5f:74:97:a4: 1f:59:63:66:14:e8:e7:c1:38:26:91:38:4a:72:73: 28:57:7e:3b:4a:fc:06:ea:da:02:02:76:9e:e6:5c: 2f:02:41:0e:07:63:a2:9d:fa:e1:be:0c:9e:64:a9: e4:3f:d8:5f:44:06:02:52:40:21:8a:a5:a3:b0:35: 6d:9a:85:0a:95:c6:03:25:41:f6:c4:74:c5:71:3c: 0d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D0:51:60:EC:30:F9:33:D2:EE:7B:31:5C:56:E1:98:5D:1D:7C:1F X509v3 Authority Key Identifier: keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:dd:cc:13:63:86:f8:71:c8:02:e5:3d:03:69:7d:99:ea:89: bc:40:75:8d:97:5d:7c:51:98:1e:ed:f8:a8:4d:91:49:57:04: 58:7a:4f:05:27:79:33:8a:92:1c:4d:55:10:ea:39:52:bc:92: 92:30:07:09:50:41:a4:34:1f:43:1a:db:06:01:d4:ab:70:3f: ab:b7:c9:78:c3:36:ee:18:2d:20:50:63:dd:c1:ef:ea:45:22: 7d:9f:99:6e:5d:2a:a3:18:f6:25:2c:29:be:86:2a:85:71:00: 9b:70:4f:43:30:a7:c0:3c:a5:16:55:8c:2f:6b:65:93:d3:2d: 83:15:04:f1:a5:ba:6e:0f:f4:86:cd:14:16:7a:1a:83:3f:be: c7:63:cb:b8:d3:d3:d2:bc:bb:6c:25:37:ed:e9:1a:91:f1:2c: 8e:85:43:2f:84:15:d1:b7:72:28:2a:db:bb:da:ae:9f:c5:8d: 0c:d0:cf:93:6c:8d:ee:ea:3c:4f:6d:c4:b7:03:74:54:44:7d: be:50:eb:15:df:f2:b0:ea:22:4a:21:d7:40:06:9b:ac:71:09: d4:47:64:85:e6:f1:1e:7c:cf:10:09:30:d0:21:84:1d:f8:55: 71:b9:fd:0e:41:33:9d:39:23:0c:d4:23:eb:c4:9d:f5:0a:ed: a3:20:f9:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLbqaA13JmDOfi3Q/kDJQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZDliYWEwMjIxOTQyZWRmZTRiM2E5YTU3MDgyOTVjMDQ0 MTZlODAwHhcNMjUxMjA2MDEwMTM3WhcNMjUxMjA3MDEwMTM3WjAzMTEwLwYDVQQD Eyg4OGQwNTE2MGVjMzBmOTMzZDJlZTdiMzE1YzU2ZTE5ODVkMWQ3YzFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZ0+rb56ZoMnxgKW93b78/ill9K5 sXssIHEg6ayDyR1V0sad/8pi2h2UfDdzw1luCOf2/ptNlt54C/G6bgcZSXZZybkz H4Rf+KSkptNi/0dbhPgcW9lypN76rbAwPGcvXoNCT3slC37MbLYv88BOXhYlp0te qEEv4pSfXkciOvfkk26oFsqyQ8TOYOhoKA5wbS8H4QMTUWFqVNIchELV9pHLI22R wFiSSYB5fwZGMV90l6QfWWNmFOjnwTgmkThKcnMoV347SvwG6toCAnae5lwvAkEO B2OinfrhvgyeZKnkP9hfRAYCUkAhiqWjsDVtmoUKlcYDJUH2xHTFcTwNuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIjQUWDsMPkz0u57MVxW4ZhdHXwfMB8GA1UdIwQY MBaAFHHZuqAiGULt/ks6mlcIKVwEQW6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS84YzNmYjgtNDBkZi00ZDVkLTkzNjMt NTA0NzI3YTUwYjhlLzEvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS84YzNmYjgtNDBkZi00ZDVkLTkzNjMtNTA0NzI3YTUwYjhl LzEvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO93ME2OG +HHIAuU9A2l9meqJvEB1jZddfFGYHu34qE2RSVcEWHpPBSd5M4qSHE1VEOo5UryS kjAHCVBBpDQfQxrbBgHUq3A/q7fJeMM27hgtIFBj3cHv6kUifZ+Zbl0qoxj2JSwp voYqhXEAm3BPQzCnwDylFlWML2tlk9MtgxUE8aW6bg/0hs0UFnoagz++x2PLuNPT 0ry7bCU37ekakfEsjoVDL4QV0bdyKCrbu9qun8WNDNDPk2yN7uo8T23EtwN0VER9 vlDrFd/ysOoiSiHXQAabrHEJ1EdkhebxHnzPEAkw0CGEHfhVcbn9DkEznTkjDNQj 68Sd9QrtoyD57Q== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:17 2025 by rpki-client