This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft File: pOuetVR8f18ar8CtoUCAVBlhhyY.mft (raw, json) Hash identifier: jQd1xWr0kParKg/NLnhE5uegxqFwcy2UVum0hfc0394= Subject key identifier: 0B:49:92:74:D8:12:70:28:21:D2:D0:5E:E9:44:27:F5:6B:71:E1:64 Authority key identifier: A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26 Certificate issuer: /CN=a4eb9eb5547c7f5f1aafc0ada140805419618726 Certificate serial: 019AF23FA2282D3EF8138E4A7A81A9273885 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft Manifest number: 0B52 Signing time: Sat 06 Dec 2025 06:00:47 +0000 Manifest this update: Sat 06 Dec 2025 06:00:47 +0000 Manifest next update: Sun 07 Dec 2025 06:00:47 +0000 Files and hashes: 1: J_w-klg8Fz7usxtg6f6kBplmW2Q.roa (hash: wSUiP/GQT3afkhYb4zAVk2weNrXx80BBBUvY2crSbB8=) 2: pOuetVR8f18ar8CtoUCAVBlhhyY.crl (hash: kC7GQOvaSGu+ouInZR2sjnnXNe3AZMFudvPdMw+GMHo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:a2:28:2d:3e:f8:13:8e:4a:7a:81:a9:27:38:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4eb9eb5547c7f5f1aafc0ada140805419618726 Validity Not Before: Dec 6 06:00:47 2025 GMT Not After : Dec 7 06:00:47 2025 GMT Subject: CN=0b499274d812702821d2d05ee94427f56b71e164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b2:89:2a:b1:2e:8b:ef:d2:58:bf:bc:c1:3e: 05:11:e4:f0:4e:b3:8c:df:6d:ae:74:91:e0:7c:af: cd:a2:4d:ad:84:77:20:d0:85:7b:5a:49:db:58:00: 72:88:48:4f:06:86:fd:9b:f6:30:e1:5a:f2:7b:ca: 25:04:57:94:e3:a5:24:c5:d3:88:27:b5:06:dc:8d: 64:12:87:21:18:d6:23:de:01:ae:9e:de:3e:f6:49: c1:c5:61:0a:07:1d:4a:f0:cd:12:f2:94:05:49:b5: 70:9e:75:02:ad:00:6e:76:49:dd:9e:cc:6b:92:77: 89:91:18:3f:f4:de:38:cf:d4:33:22:49:66:ee:31: ce:65:f6:de:cf:a6:c2:62:da:f9:65:94:f0:9e:5c: 3b:7e:80:ee:2e:84:7a:76:df:f4:2a:42:59:6c:99: 89:49:5d:79:73:57:ae:f6:53:d0:9c:ac:02:49:d1: 00:e0:6a:f7:fc:a8:3f:97:82:d7:83:9f:1e:66:6d: 72:44:88:00:c8:d8:c4:2b:78:1f:cb:10:2c:2a:c4: da:dd:20:10:e3:e0:c8:d6:0c:84:18:00:41:ce:3b: da:33:fb:e9:0f:ee:29:9a:6b:19:b0:8a:21:6c:4d: 59:4b:a7:26:d2:51:6e:1b:79:6b:d9:46:e3:2e:d9: d8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:49:92:74:D8:12:70:28:21:D2:D0:5E:E9:44:27:F5:6B:71:E1:64 X509v3 Authority Key Identifier: keyid:A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cf:db:a4:c2:f9:b8:96:2c:b3:56:2e:9e:c9:cb:81:4e:0d:ee: 08:b2:5f:5f:16:93:27:3e:dd:c5:6f:43:13:f6:65:97:64:61: 61:ab:cb:a3:3b:b2:62:b8:ff:e1:5d:f6:35:b8:8a:ec:cf:67: e2:c0:48:25:99:03:c4:0f:56:03:1b:9f:97:ef:7d:e9:db:c8: 77:ac:cf:a0:e3:a0:74:12:21:e4:e1:5c:b8:8a:21:6a:93:57: 92:86:5e:d6:a3:21:29:4d:94:47:85:8f:54:51:09:8f:de:33: e5:b4:9f:cd:f0:ef:85:4e:4a:d2:79:cb:85:01:68:fc:7d:f4: 74:3b:3c:da:90:73:2e:4d:8b:7f:9c:63:fc:17:ee:5d:69:1a: fa:0c:ef:81:8a:4e:35:01:54:08:86:ef:5b:d7:d0:77:06:0d: 70:b8:e9:fd:4a:ca:1d:5a:46:1e:83:e6:db:e0:37:2f:fc:39: c3:a3:75:6b:72:0a:16:02:05:d0:2e:30:b5:4f:cc:a8:4a:b8: 45:d3:5d:af:62:8f:f3:fe:41:7a:3e:f3:02:02:43:84:67:e3: 42:c8:4f:d6:d3:8e:34:60:37:20:ff:64:68:8a:27:bc:1c:89: d1:b3:3e:ea:a1:be:02:e9:52:9a:26:ca:dd:79:ef:8e:dc:6e: c8:2a:a9:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP6IoLT74E45KeoGpJziFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZWI5ZWI1NTQ3YzdmNWYxYWFmYzBhZGExNDA4MDU0MTk2 MTg3MjYwHhcNMjUxMjA2MDYwMDQ3WhcNMjUxMjA3MDYwMDQ3WjAzMTEwLwYDVQQD EygwYjQ5OTI3NGQ4MTI3MDI4MjFkMmQwNWVlOTQ0MjdmNTZiNzFlMTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLKJKrEui+/SWL+8wT4FEeTwTrOM 322udJHgfK/Nok2thHcg0IV7WknbWAByiEhPBob9m/Yw4Vrye8olBFeU46UkxdOI J7UG3I1kEochGNYj3gGunt4+9knBxWEKBx1K8M0S8pQFSbVwnnUCrQBudkndnsxr kneJkRg/9N44z9QzIklm7jHOZfbez6bCYtr5ZZTwnlw7foDuLoR6dt/0KkJZbJmJ SV15c1eu9lPQnKwCSdEA4Gr3/Kg/l4LXg58eZm1yRIgAyNjEK3gfyxAsKsTa3SAQ 4+DI1gyEGABBzjvaM/vpD+4pmmsZsIohbE1ZS6cm0lFuG3lr2UbjLtnYCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAtJknTYEnAoIdLQXulEJ/VrceFkMB8GA1UdIwQY MBaAFKTrnrVUfH9fGq/AraFAgFQZYYcmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQt MGQyMjIzMmMzNGEwLzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQtMGQyMjIzMmMzNGEw LzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz9ukwvm4 liyzVi6eycuBTg3uCLJfXxaTJz7dxW9DE/Zll2RhYavLozuyYrj/4V32NbiK7M9n 4sBIJZkDxA9WAxufl+996dvId6zPoOOgdBIh5OFcuIohapNXkoZe1qMhKU2UR4WP VFEJj94z5bSfzfDvhU5K0nnLhQFo/H30dDs82pBzLk2Lf5xj/BfuXWka+gzvgYpO NQFUCIbvW9fQdwYNcLjp/UrKHVpGHoPm2+A3L/w5w6N1a3IKFgIF0C4wtU/MqEq4 RdNdr2KP8/5Bej7zAgJDhGfjQshP1tOONGA3IP9kaIonvByJ0bM+6qG+AulSmibK 3XnvjtxuyCqpWA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:16:53 2025 by rpki-client