This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft File: 6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json) Hash identifier: ZCro+kLdD0qbiPLEXxEW1htvSetrMc0JDsTUj+P4VOQ= Subject key identifier: DD:A8:5F:59:7D:CA:33:74:38:F7:AE:3B:8B:C6:80:92:26:F1:DF:25 Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78 Certificate issuer: /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78 Certificate serial: 019AF12E14A23D602731C51104FB26BE7D32 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft Manifest number: 03B0 Signing time: Sat 06 Dec 2025 01:02:00 +0000 Manifest this update: Sat 06 Dec 2025 01:02:00 +0000 Manifest next update: Sun 07 Dec 2025 01:02:00 +0000 Files and hashes: 1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: Y/FxrHIswiEiCDfZJtzYtkexYuZrFv1nWeyiEnuOpMw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:14:a2:3d:60:27:31:c5:11:04:fb:26:be:7d:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78 Validity Not Before: Dec 6 01:02:00 2025 GMT Not After : Dec 7 01:02:00 2025 GMT Subject: CN=dda85f597dca337438f7ae3b8bc6809226f1df25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:5e:3d:76:00:6c:91:f3:6a:0f:41:ee:29:dd: 4b:8c:4d:07:b4:b2:3c:dc:88:69:2d:a1:52:13:bc: aa:bd:e7:bc:b3:ba:d2:1f:c4:61:f8:5f:8b:d4:fa: 35:8d:5a:50:7c:0f:25:51:6a:e5:59:5b:4d:e9:ca: 9d:3b:e5:34:42:e5:05:7d:12:be:33:ef:c2:d4:bb: af:57:b1:9b:d9:81:30:7d:03:4e:9c:6a:08:c0:f2: 0a:dc:19:73:b2:fd:96:bd:03:bd:5e:40:8b:ee:f4: 6a:a1:9d:35:aa:6e:bc:e6:bd:b2:d8:71:f0:d2:9c: 8c:77:23:66:64:c9:09:c9:fa:fa:39:c2:0c:dc:74: c6:6c:9d:db:5f:a4:d4:40:4f:48:e9:cc:00:8d:e6: 1b:9c:35:66:8b:b0:ab:d5:19:e4:50:04:60:66:c3: 73:60:5c:b6:9c:12:bd:a8:2f:25:68:b8:4d:e5:38: 87:30:c7:46:d7:15:1c:28:a9:22:14:7e:7f:9e:c9: 97:7c:15:b8:81:8f:d2:7e:4e:2a:e2:b3:e4:26:8c: 38:eb:f6:ae:90:14:5c:f0:a4:e3:fe:12:ff:3b:91: e1:29:0c:27:e3:4b:ec:ea:f9:25:e3:cb:ff:99:dc: a7:c5:33:54:73:bc:34:d1:d6:50:44:28:18:76:b8: 82:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A8:5F:59:7D:CA:33:74:38:F7:AE:3B:8B:C6:80:92:26:F1:DF:25 X509v3 Authority Key Identifier: keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:01:e3:7b:d0:8d:e3:1e:2f:93:f6:94:9e:b6:4a:d1:15:4f: 55:02:18:7d:f6:a1:20:9d:93:b4:f5:dc:71:a4:3b:65:2d:dc: 3f:31:2f:72:50:f5:9b:0c:d6:83:d1:0d:c5:41:8c:97:cc:ab: 52:8c:f6:db:44:fe:fb:27:dd:fc:c4:12:01:dc:d6:2d:54:c6: b3:61:db:a5:68:a5:e0:86:61:55:c5:a2:31:f6:e0:14:a4:96: cd:e9:2c:c8:df:e3:23:47:69:65:c5:a9:8b:3d:5b:9d:a9:d4: 57:f3:ba:16:0e:b8:5a:0d:ae:b5:ab:ca:5d:91:ba:80:f8:14: 4b:d7:5f:da:36:1e:42:9f:b7:af:33:bd:5d:25:a6:a8:e4:d1: e7:55:4f:6f:6d:f8:bc:41:f9:53:62:68:ea:38:00:2a:af:2c: aa:c7:f7:c4:5c:26:75:19:c0:e5:29:55:55:f5:57:35:6d:b7: 9d:a7:93:20:60:85:aa:75:e8:9c:cf:7f:c5:7a:fe:d0:7f:1f: 1b:f2:eb:97:29:33:5b:93:f8:db:1b:3c:53:59:f4:65:aa:37: 7f:87:67:18:68:90:1d:83:67:63:d0:dc:6c:fa:90:9f:8f:f6: 16:3e:46:43:92:67:fa:1d:0d:e6:6b:d4:47:c1:ab:cb:95:7d: c0:3b:5d:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLhSiPWAnMcURBPsmvn0yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhNDFlODM5OGZmN2NlZmI1MjIxNjM2ZWIyMjgyMTI2ZWJm ZTNiNzgwHhcNMjUxMjA2MDEwMjAwWhcNMjUxMjA3MDEwMjAwWjAzMTEwLwYDVQQD EyhkZGE4NWY1OTdkY2EzMzc0MzhmN2FlM2I4YmM2ODA5MjI2ZjFkZjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlV49dgBskfNqD0HuKd1LjE0HtLI8 3IhpLaFSE7yqvee8s7rSH8Rh+F+L1Po1jVpQfA8lUWrlWVtN6cqdO+U0QuUFfRK+ M+/C1LuvV7Gb2YEwfQNOnGoIwPIK3Blzsv2WvQO9XkCL7vRqoZ01qm685r2y2HHw 0pyMdyNmZMkJyfr6OcIM3HTGbJ3bX6TUQE9I6cwAjeYbnDVmi7Cr1RnkUARgZsNz YFy2nBK9qC8laLhN5TiHMMdG1xUcKKkiFH5/nsmXfBW4gY/Sfk4q4rPkJow46/au kBRc8KTj/hL/O5HhKQwn40vs6vkl48v/mdynxTNUc7w00dZQRCgYdriCXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN2oX1l9yjN0OPeuO4vGgJIm8d8lMB8GA1UdIwQY MBaAFOpB6DmP9877UiFjbrIoISbr/jt4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2Ut NjI4YjQzOTRiODIyLzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2UtNjI4YjQzOTRiODIy LzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACAHje9CN 4x4vk/aUnrZK0RVPVQIYffahIJ2TtPXccaQ7ZS3cPzEvclD1mwzWg9ENxUGMl8yr Uoz220T++yfd/MQSAdzWLVTGs2HbpWil4IZhVcWiMfbgFKSWzeksyN/jI0dpZcWp iz1bnanUV/O6Fg64Wg2utavKXZG6gPgUS9df2jYeQp+3rzO9XSWmqOTR51VPb234 vEH5U2Jo6jgAKq8sqsf3xFwmdRnA5SlVVfVXNW23naeTIGCFqnXonM9/xXr+0H8f G/LrlykzW5P42xs8U1n0Zao3f4dnGGiQHYNnY9DcbPqQn4/2Fj5GQ5Jn+h0N5mvU R8Gry5V9wDtdEQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:33:17 2025 by rpki-client