This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json) Hash identifier: 6Zm2wBGoaZxHOG0ZwY+Vp4peetW8OO1vGiJWK8IpRBg= Subject key identifier: 7F:F8:4D:8D:D5:3C:58:D5:59:E0:A4:CD:44:B6:FE:76:80:E0:91:55 Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d Certificate serial: 019B3D23265BE86C4368326C561D0F5DCA84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft Manifest number: 0382 Signing time: Sat 20 Dec 2025 19:01:12 +0000 Manifest this update: Sat 20 Dec 2025 19:01:12 +0000 Manifest next update: Sun 21 Dec 2025 19:01:12 +0000 Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: 2zlOl/ZzqQk6e1XU9mBS2gYTk9MnUpNCPXdTLRMkqwE=) 2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:26:5b:e8:6c:43:68:32:6c:56:1d:0f:5d:ca:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d Validity Not Before: Dec 20 19:01:12 2025 GMT Not After : Dec 21 19:01:12 2025 GMT Subject: CN=7ff84d8dd53c58d559e0a4cd44b6fe7680e09155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:11:19:1b:fa:89:7d:84:5d:c5:94:94:72:20: 61:01:f8:72:1d:5f:7d:70:34:a4:06:7c:6d:1c:af: 3b:87:ce:71:89:4c:ef:e3:02:f6:19:e3:19:ee:7c: 27:e8:63:3f:d5:55:03:cb:0b:11:c1:a0:f4:54:69: 2d:ba:74:9c:82:96:0e:f5:1c:07:aa:7e:a1:be:8d: 3b:ee:80:9a:00:7d:e2:dd:8f:8c:aa:29:f3:b1:de: c1:72:62:69:6b:cc:19:15:65:18:89:49:eb:d9:13: bf:00:24:09:53:7f:49:41:7e:54:80:d5:a0:0c:47: 3c:a0:f3:11:f3:58:b2:1f:fa:8e:31:50:b5:e9:a9: 63:73:f3:da:89:e3:4d:32:60:c8:8f:a8:91:af:9a: 3a:24:bc:7d:78:fe:ca:ea:53:38:7e:07:97:05:2a: ab:69:bf:74:94:79:2e:81:b7:ee:16:4a:16:4d:cc: 55:8f:d7:31:d1:d6:10:3d:7a:9c:42:ea:68:61:00: 8e:e4:8c:d2:34:33:1e:53:99:fb:e8:0a:fb:c9:94: 70:2b:dc:74:a9:9c:ff:23:8e:eb:7c:54:5b:d4:b8: c7:b4:e4:be:e3:98:a7:5b:dd:8e:b3:35:d1:0e:32: f5:97:cd:a6:75:1d:48:dd:81:e8:3a:87:c5:d1:fe: 01:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F8:4D:8D:D5:3C:58:D5:59:E0:A4:CD:44:B6:FE:76:80:E0:91:55 X509v3 Authority Key Identifier: keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:4d:c2:f6:7f:ee:ac:8b:25:f9:b8:07:d6:f1:cf:4d:04:20: 95:b0:2a:66:82:e2:18:36:71:88:f1:b2:a8:7f:e0:d5:13:37: fb:ac:de:a1:ac:fe:1b:c5:9e:f2:05:64:ca:ec:cd:bd:0b:f9: 7c:76:c1:9c:f8:17:ab:80:43:00:c8:37:52:a1:ed:59:dc:ae: 55:1f:1b:48:9c:7e:2d:03:44:f0:e4:9f:4e:78:62:8c:48:53: ae:c3:39:a1:2f:41:44:2f:fe:1d:65:47:7d:74:cf:4a:09:70: ae:3d:9f:5d:f7:4c:97:0e:ba:e0:a0:cf:ca:a7:0d:fc:c7:b1: 86:65:9c:88:13:cd:0e:c9:5e:78:37:07:04:aa:3d:39:8c:99: 69:5c:1b:32:dc:60:92:a6:f0:c5:6d:47:ff:12:73:f3:c2:a3: eb:ec:6c:37:d5:4c:c0:e3:0f:63:3d:78:ef:83:7c:5d:ff:73: a3:53:1f:45:2b:76:fd:fa:2e:6a:0f:fc:0d:fd:b1:bf:00:6a: d7:78:24:0d:16:55:72:31:dd:b6:d1:6c:cd:d8:83:72:2b:ec: 54:80:42:3b:7c:2e:74:74:2b:de:79:c9:bd:01:0c:cd:3b:a1: 9b:50:ea:e5:f0:e0:d7:2c:86:6b:95:b7:62:13:8a:d5:cd:7b: 2b:59:0e:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9IyZb6GxDaDJsVh0PXcqEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhMmY2NzFmMTA4MzRkYWU0OGVhOGQ5ODczNDJjMzc1Y2Fi MzMxNmQwHhcNMjUxMjIwMTkwMTEyWhcNMjUxMjIxMTkwMTEyWjAzMTEwLwYDVQQD Eyg3ZmY4NGQ4ZGQ1M2M1OGQ1NTllMGE0Y2Q0NGI2ZmU3NjgwZTA5MTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0hEZG/qJfYRdxZSUciBhAfhyHV99 cDSkBnxtHK87h85xiUzv4wL2GeMZ7nwn6GM/1VUDywsRwaD0VGktunScgpYO9RwH qn6hvo077oCaAH3i3Y+Mqinzsd7BcmJpa8wZFWUYiUnr2RO/ACQJU39JQX5UgNWg DEc8oPMR81iyH/qOMVC16aljc/PaieNNMmDIj6iRr5o6JLx9eP7K6lM4fgeXBSqr ab90lHkugbfuFkoWTcxVj9cx0dYQPXqcQupoYQCO5IzSNDMeU5n76Ar7yZRwK9x0 qZz/I47rfFRb1LjHtOS+45inW92OszXRDjL1l82mdR1I3YHoOofF0f4BIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH/4TY3VPFjVWeCkzUS2/naA4JFVMB8GA1UdIwQY MBaAFOovZx8Qg02uSOqNmHNCw3XKszFtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMt MWM0MjBmMDU1NzlmLzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMtMWM0MjBmMDU1Nzlm LzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJU3C9n/u rIsl+bgH1vHPTQQglbAqZoLiGDZxiPGyqH/g1RM3+6zeoaz+G8We8gVkyuzNvQv5 fHbBnPgXq4BDAMg3UqHtWdyuVR8bSJx+LQNE8OSfTnhijEhTrsM5oS9BRC/+HWVH fXTPSglwrj2fXfdMlw664KDPyqcN/MexhmWciBPNDsleeDcHBKo9OYyZaVwbMtxg kqbwxW1H/xJz88Kj6+xsN9VMwOMPYz1474N8Xf9zo1MfRSt2/fouag/8Df2xvwBq 13gkDRZVcjHdttFszdiDcivsVIBCO3wudHQr3nnJvQEMzTuhm1Dq5fDg1yyGa5W3 YhOK1c17K1kOSA== -----END CERTIFICATE-----Generated at Sun Dec 21 04:41:53 2025 by rpki-client