This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft File: obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json) Hash identifier: k4Zwk2osexbslQ8HVcafDGKV5tLliCmYrJaKtOy1aPU= Subject key identifier: 83:34:1A:17:75:8E:C3:91:DA:BE:EA:B5:98:31:2B:E7:AD:A8:84:DE Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A Certificate issuer: /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a Certificate serial: 019AF2091D880A6DC8AC4B0FA8099535BFA0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft Manifest number: 0776 Signing time: Sat 06 Dec 2025 05:01:14 +0000 Manifest this update: Sat 06 Dec 2025 05:01:14 +0000 Manifest next update: Sun 07 Dec 2025 05:01:14 +0000 Files and hashes: 1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: CGdFcWQ+jVUzjSiXT6EOshonhar7nv7yZYR8FDNO0z8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:1d:88:0a:6d:c8:ac:4b:0f:a8:09:95:35:bf:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a Validity Not Before: Dec 6 05:01:14 2025 GMT Not After : Dec 7 05:01:14 2025 GMT Subject: CN=83341a17758ec391dabeeab598312be7ada884de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:94:a4:f7:69:fd:76:53:c2:23:27:93:5d:56: 46:56:b9:0b:41:7a:05:8f:96:6b:e9:0b:12:a7:91: f5:c7:75:9d:a6:a5:ec:fd:87:d1:22:13:a4:e0:09: 37:b6:47:f9:70:45:71:db:56:ac:d4:db:c5:72:58: 24:85:2f:44:06:27:51:bd:1e:27:68:38:31:63:d8: 26:7a:78:8e:90:92:d2:48:67:43:11:44:e2:b4:be: 8a:ce:0a:86:30:17:ef:cf:b9:f1:6a:b5:e7:41:3f: 33:d3:47:d3:b1:c5:0d:a7:c3:09:85:c1:db:c5:dd: ab:c4:63:d2:a1:80:cb:ba:a8:ac:23:3d:d3:40:ee: 5f:b2:04:14:d4:47:b2:a7:b7:e5:e9:ba:06:56:96: db:1e:ae:d0:fe:e5:df:22:98:63:42:84:8f:05:16: fa:17:44:1c:d5:14:a8:f2:56:13:a2:99:b4:b1:57: 49:5d:0e:9c:d1:ec:30:13:b4:7e:2d:57:7e:4e:e6: 90:9f:9b:cc:8a:ed:ab:ef:b9:a9:68:c8:f2:05:ed: 83:85:cb:d6:6f:55:5f:0f:76:f5:ad:8f:de:f0:5b: 39:5e:8f:ff:99:29:ed:4e:92:5b:e5:53:03:3c:f9: fa:4c:3c:e6:d2:51:fa:d7:f9:ac:6e:46:72:ab:4d: 03:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:34:1A:17:75:8E:C3:91:DA:BE:EA:B5:98:31:2B:E7:AD:A8:84:DE X509v3 Authority Key Identifier: keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:b1:e7:32:c0:13:46:6a:c3:f8:74:6e:42:58:92:1e:27:e2: 6c:9e:44:7d:7f:d8:34:c1:01:0e:bd:5d:ae:6f:71:ce:cc:e2: b6:30:ac:59:dc:cd:91:e0:fa:b4:01:fd:70:7b:0f:f6:0d:76: d9:22:34:e3:8e:77:c1:5e:73:db:fd:e0:eb:9f:b3:72:01:1f: 09:0d:cf:69:45:e4:8a:3c:70:36:17:22:c1:d0:2a:8d:24:eb: f1:f0:3c:77:8a:30:48:9b:38:f0:bd:28:76:60:5a:e9:ea:da: 56:b1:dd:53:b4:d7:0e:7a:53:f1:d8:84:86:fc:bd:1b:9a:8e: b7:3d:e1:b9:1a:25:52:95:30:96:a2:a6:1e:af:43:b1:a1:44: a2:27:83:7b:43:66:0e:d0:e0:e2:f9:b6:09:0e:18:44:38:70: 60:5a:96:29:f8:a9:35:dc:73:ca:48:05:d6:57:00:8c:03:5e: 16:42:14:a0:50:55:a1:57:96:3d:bd:b4:52:fa:96:f8:5f:2a: 95:3e:ed:07:15:da:aa:c7:fa:3a:90:46:3c:00:55:43:e5:70: c4:59:68:ac:c6:c4:2d:2a:45:03:e5:6f:4e:29:e9:b7:bf:e8: 64:5d:0c:55:2a:42:c3:9f:e7:ab:b3:c8:b9:ef:cd:98:00:8f: 5a:b5:18:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCR2ICm3IrEsPqAmVNb+gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExYmI1MDU0YTE3Y2M5NGZmZmMyYmMyOTVhMTViZmVmOGE5 MDQzMGEwHhcNMjUxMjA2MDUwMTE0WhcNMjUxMjA3MDUwMTE0WjAzMTEwLwYDVQQD Eyg4MzM0MWExNzc1OGVjMzkxZGFiZWVhYjU5ODMxMmJlN2FkYTg4NGRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1JSk92n9dlPCIyeTXVZGVrkLQXoF j5Zr6QsSp5H1x3WdpqXs/YfRIhOk4Ak3tkf5cEVx21as1NvFclgkhS9EBidRvR4n aDgxY9gmeniOkJLSSGdDEUTitL6KzgqGMBfvz7nxarXnQT8z00fTscUNp8MJhcHb xd2rxGPSoYDLuqisIz3TQO5fsgQU1Eeyp7fl6boGVpbbHq7Q/uXfIphjQoSPBRb6 F0Qc1RSo8lYTopm0sVdJXQ6c0ewwE7R+LVd+TuaQn5vMiu2r77mpaMjyBe2DhcvW b1VfD3b1rY/e8Fs5Xo//mSntTpJb5VMDPPn6TDzm0lH61/msbkZyq00DeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIM0Ghd1jsOR2r7qtZgxK+etqITeMB8GA1UdIwQY MBaAFKG7UFShfMlP/8K8KVoVv++KkEMKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgt NzIyNTVkMjQ5YzVkLzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgtNzIyNTVkMjQ5YzVk LzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjrHnMsAT RmrD+HRuQliSHifibJ5EfX/YNMEBDr1drm9xzszitjCsWdzNkeD6tAH9cHsP9g12 2SI04453wV5z2/3g65+zcgEfCQ3PaUXkijxwNhciwdAqjSTr8fA8d4owSJs48L0o dmBa6eraVrHdU7TXDnpT8diEhvy9G5qOtz3huRolUpUwlqKmHq9DsaFEoieDe0Nm DtDg4vm2CQ4YRDhwYFqWKfipNdxzykgF1lcAjANeFkIUoFBVoVeWPb20UvqW+F8q lT7tBxXaqsf6OpBGPABVQ+VwxFlorMbELSpFA+VvTinpt7/oZF0MVSpCw5/nq7PI ue/NmACPWrUYSQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:08:40 2025 by rpki-client