This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json) Hash identifier: VXnEnGmOW4qE46HN1NO4yQ/yoZg//ImPKWmelKkvPMk= Subject key identifier: A3:C8:2B:0C:9A:AF:3D:E7:69:F6:D8:F6:66:7C:70:35:AB:A3:5B:A3 Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74 Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74 Certificate serial: 019AF42E78594360A977E3DEFF5B31346E28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft Manifest number: 041E Signing time: Sat 06 Dec 2025 15:01:17 +0000 Manifest this update: Sat 06 Dec 2025 15:01:17 +0000 Manifest next update: Sun 07 Dec 2025 15:01:17 +0000 Files and hashes: 1: MYDLO2vvDKfPNW5B_jde2eQkJYg.roa (hash: wV9kbvDo8W5gfhdwsvfFoAGi3mrp4nPR/cUxhX5vacM=) 2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: k1ONKDiKi14NtF9QGzWixdRK1hmvxZadXDjaawfSGqc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:78:59:43:60:a9:77:e3:de:ff:5b:31:34:6e:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74 Validity Not Before: Dec 6 15:01:17 2025 GMT Not After : Dec 7 15:01:17 2025 GMT Subject: CN=a3c82b0c9aaf3de769f6d8f6667c7035aba35ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cd:78:32:c7:2e:e0:9d:fb:ab:bc:5f:7a:18: 22:d7:35:33:d9:d0:41:2b:7f:d6:8d:6d:88:18:78: ef:70:12:34:3e:2c:7e:05:c0:b9:98:f5:79:bd:d7: c3:29:fe:af:02:b7:cb:12:cf:ab:79:de:b4:93:01: 1a:39:cf:77:8e:46:18:67:5b:c2:40:3b:3d:79:38: 74:90:9e:e0:44:42:7c:46:3f:71:bb:84:03:09:fc: 63:57:76:12:20:6f:13:69:a1:df:04:bf:69:54:03: ce:01:70:df:79:44:8a:80:6a:cd:33:61:84:53:75: 99:9d:20:34:97:86:0b:13:23:6b:13:6c:49:b9:39: c1:75:bd:8c:04:ef:c3:88:1a:91:ba:ce:b6:58:50: 0e:06:2d:fa:e7:92:04:d7:79:8b:91:6d:7c:96:1c: bc:44:ae:e6:f3:d2:90:ea:af:24:82:3e:81:67:2f: da:4b:05:e7:c0:98:54:0e:db:bb:c2:12:70:10:18: 16:01:60:3d:b7:5a:43:0a:c1:f4:34:04:c3:64:54: c8:8d:7a:c2:28:48:b3:23:bf:c2:6e:83:11:65:fb: 25:93:fb:a7:e3:ef:a5:e1:55:f7:47:7c:98:5e:1d: bb:20:02:c0:12:8e:96:1c:d4:27:8c:58:9c:30:32: a7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C8:2B:0C:9A:AF:3D:E7:69:F6:D8:F6:66:7C:70:35:AB:A3:5B:A3 X509v3 Authority Key Identifier: keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e6:51:de:df:1b:e6:e5:ca:19:d6:48:b8:22:c5:dd:df:08:4b: 72:e4:02:ba:4c:6c:38:85:65:56:b7:8b:7e:78:45:a1:63:c2: 48:96:3a:2f:38:9a:05:b8:10:4d:7b:40:59:25:0c:1d:a5:85: f6:b0:1a:69:ad:96:f6:4f:9a:ce:30:f4:9e:8d:4e:a4:d1:3f: 0a:ba:68:aa:37:95:0b:88:65:18:66:fa:f4:b3:14:f4:8e:ff: d0:a9:82:01:43:2a:90:6f:23:04:4b:dd:e5:16:47:71:d2:16: 2e:09:ca:b3:4f:ff:1b:0d:0e:b5:f6:4a:ef:bc:c0:30:75:21: 46:5a:8b:75:73:c4:1d:b1:8b:96:db:9b:7a:83:5a:e4:16:e2: 0e:10:87:f4:27:8c:cc:0f:f7:10:b3:ca:58:b4:6b:25:d7:15: f9:ce:0e:05:0c:76:16:f8:a5:5c:b7:1b:ab:b9:85:5f:ea:df: 5e:19:0d:ab:0e:02:09:e0:64:af:f1:9f:f3:ab:8c:d8:26:f0: bd:74:37:07:1b:4d:29:4c:0a:0a:b4:70:bc:d6:10:89:a7:92: 58:1c:37:9b:09:f4:74:16:3f:91:a6:cd:a7:44:4c:04:a4:5e: 83:0a:1a:b2:b9:cc:29:9a:2e:72:85:53:b2:12:ab:9b:86:13: be:59:c5:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LnhZQ2Cpd+Pe/1sxNG4oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjYzM4NTNkYTcwY2RlYTBkYmE0NjQxNGI2YjBlNmQxZjE3 MTZlNzQwHhcNMjUxMjA2MTUwMTE3WhcNMjUxMjA3MTUwMTE3WjAzMTEwLwYDVQQD EyhhM2M4MmIwYzlhYWYzZGU3NjlmNmQ4ZjY2NjdjNzAzNWFiYTM1YmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz814Mscu4J37q7xfehgi1zUz2dBB K3/WjW2IGHjvcBI0Pix+BcC5mPV5vdfDKf6vArfLEs+red60kwEaOc93jkYYZ1vC QDs9eTh0kJ7gREJ8Rj9xu4QDCfxjV3YSIG8TaaHfBL9pVAPOAXDfeUSKgGrNM2GE U3WZnSA0l4YLEyNrE2xJuTnBdb2MBO/DiBqRus62WFAOBi3655IE13mLkW18lhy8 RK7m89KQ6q8kgj6BZy/aSwXnwJhUDtu7whJwEBgWAWA9t1pDCsH0NATDZFTIjXrC KEizI7/CboMRZfslk/un4++l4VX3R3yYXh27IALAEo6WHNQnjFicMDKnAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKPIKwyarz3nafbY9mZ8cDWro1ujMB8GA1UdIwQY MBaAFGzDhT2nDN6g26RkFLaw5tHxcW50MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk1PRlBhY00zcURicEdRVXRyRG0wZkZ4Ym5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC9kMTI4ZGUtZDYxZC00ZjAzLTkxMzQt MDQ2YTY4YWI0YzhkLzEvYk1PRlBhY00zcURicEdRVXRyRG0wZkZ4Ym5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC9kMTI4ZGUtZDYxZC00ZjAzLTkxMzQtMDQ2YTY4YWI0Yzhk LzEvYk1PRlBhY00zcURicEdRVXRyRG0wZkZ4Ym5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA5lHe3xvm 5coZ1ki4IsXd3whLcuQCukxsOIVlVreLfnhFoWPCSJY6LziaBbgQTXtAWSUMHaWF 9rAaaa2W9k+azjD0no1OpNE/CrpoqjeVC4hlGGb69LMU9I7/0KmCAUMqkG8jBEvd 5RZHcdIWLgnKs0//Gw0OtfZK77zAMHUhRlqLdXPEHbGLltubeoNa5BbiDhCH9CeM zA/3ELPKWLRrJdcV+c4OBQx2FvilXLcbq7mFX+rfXhkNqw4CCeBkr/Gf86uM2Cbw vXQ3BxtNKUwKCrRwvNYQiaeSWBw3mwn0dBY/kabNp0RMBKRegwoasrnMKZoucoVT shKrm4YTvlnFUA== -----END CERTIFICATE-----Generated at Sat Dec 6 20:36:30 2025 by rpki-client