This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft File: 9O9duhAKkrJETz5RLQGlksAZUcI.mft (raw, json) Hash identifier: pB1Dm0+LHeW5gwl3dJu6qARruq1DJpAMAQBl2tLIKlo= Subject key identifier: 2B:DF:65:CB:7F:A6:1C:1F:2E:9D:04:F1:AB:EC:6E:5C:67:C5:0F:4E Authority key identifier: F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2 Certificate issuer: /CN=f4ef5dba100a92b2444f3e512d01a592c01951c2 Certificate serial: 019B3F7F43BE7E88DF4C7E99DC0FF8CB1031 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft Manifest number: 09F6 Signing time: Sun 21 Dec 2025 06:01:03 +0000 Manifest this update: Sun 21 Dec 2025 06:01:03 +0000 Manifest next update: Mon 22 Dec 2025 06:01:03 +0000 Files and hashes: 1: 9O9duhAKkrJETz5RLQGlksAZUcI.crl (hash: E4TzNT1btbBpD6hATAmABczET++V5J6VAtHsvZDlweA=) 2: AmSXBHT3ckJxS__llRle1pOg_Gk.roa (hash: NGUzsrMFkYpqygz3V48C568ROl1XZloZCRkdB8fnGRs=) 3: RqMgMpdcD54HUHiiovgo2_7eo94.roa (hash: eRUbOt1afNalKvV81WeaR6eAgifd6J7LvG2r3czI9hc=) 4: gzBqFqX-GOiBCBUlEgTsEnHuXvM.roa (hash: d9Lvaxwm2cOVNLGx1WtIoyEgpf/MLPQzSYnTj875od0=) 5: wdTC4RawEs-5fFZUa4R_HIRxO2U.roa (hash: Rtc4DEopTsErPd8Vo2cqobz/fHQCAfYf819UnyzhAlA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7f:43:be:7e:88:df:4c:7e:99:dc:0f:f8:cb:10:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4ef5dba100a92b2444f3e512d01a592c01951c2 Validity Not Before: Dec 21 06:01:03 2025 GMT Not After : Dec 22 06:01:03 2025 GMT Subject: CN=2bdf65cb7fa61c1f2e9d04f1abec6e5c67c50f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5c:e1:cf:05:39:0f:d1:fe:5e:5c:ed:ea:ab: 99:2d:87:bc:7a:36:7e:51:06:63:f7:4b:34:8f:11: 71:5b:e1:35:6c:23:a2:18:d9:d0:7e:bb:83:a1:65: d9:61:51:05:9e:d3:91:75:d3:71:68:dd:be:f7:14: d1:59:47:bc:c9:13:7e:ef:99:00:0c:51:7f:73:04: ff:b3:d1:f0:19:5f:62:7e:4e:0e:68:50:90:3e:32: 87:a4:0f:da:b4:f7:6f:a6:8e:3e:f7:fa:6b:ea:66: 49:8e:45:80:75:11:30:9f:b4:5c:49:47:d4:cf:8b: 15:42:1b:c3:63:2b:bd:cd:db:5e:b2:83:a4:68:b3: e8:ba:77:ab:7f:0f:54:04:25:72:24:cd:01:c0:74: 16:b4:93:0d:8e:b4:c6:c4:ca:72:50:b0:24:b2:76: 37:36:f0:61:17:cc:40:0b:42:64:5e:f2:58:31:26: bb:1f:97:b9:0c:73:2f:d7:99:d5:cd:5e:46:0c:46: 92:5f:e0:24:68:f2:78:67:47:32:94:f5:55:ed:b6: f6:24:0c:3b:d1:0e:01:8a:d4:42:ed:29:b0:50:12: d7:aa:d3:8c:9e:cb:0b:6c:22:92:ef:05:22:d6:43: b0:15:92:c1:1d:e6:81:00:52:83:1a:09:75:b9:08: c9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:DF:65:CB:7F:A6:1C:1F:2E:9D:04:F1:AB:EC:6E:5C:67:C5:0F:4E X509v3 Authority Key Identifier: keyid:F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:4f:9d:a4:77:88:b4:54:8c:0a:bb:bf:b1:0a:43:ad:88:7f: 00:ad:ec:c6:d7:c9:24:02:56:45:16:e1:5f:a1:a6:36:90:4b: 00:9b:d5:c1:0d:4d:62:a1:75:3d:c9:65:40:d8:44:46:ca:b9: f0:4b:5f:f7:39:3e:34:58:2e:f9:c4:e2:a1:ce:0b:85:90:d5: a3:14:c6:03:da:e4:cc:2d:68:0e:cb:63:d2:68:7c:d5:f3:7d: 54:6f:1f:30:bd:c6:de:8e:d7:fc:e4:8f:2b:a8:3f:f8:98:f6: f3:70:cc:a9:89:f3:4a:1c:5a:82:40:b7:b4:59:42:e1:70:ab: a4:fb:a5:53:7e:b6:e6:14:48:dc:7e:cf:3c:0c:f0:47:18:86: ab:fc:65:cb:03:f9:73:ed:1f:ac:b8:b9:fa:97:06:39:95:51: d4:99:9c:cd:02:2b:cc:c5:31:5a:32:e1:12:12:86:07:5c:c5: 6e:e1:ee:20:c3:59:ae:aa:5b:f9:bd:c5:b7:cc:28:b5:41:17: d1:32:1d:0b:be:51:c2:4a:f6:b4:5e:17:7c:99:fb:91:48:2f: e4:b3:a2:42:54:b1:a0:86:2e:58:f9:67:15:d8:7e:50:a1:10: b2:dd:a6:ea:34:0b:d8:d2:b0:40:2c:87:1d:ac:c6:c7:10:f0: 31:ce:02:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/f0O+fojfTH6Z3A/4yxAxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0ZWY1ZGJhMTAwYTkyYjI0NDRmM2U1MTJkMDFhNTkyYzAx OTUxYzIwHhcNMjUxMjIxMDYwMTAzWhcNMjUxMjIyMDYwMTAzWjAzMTEwLwYDVQQD EygyYmRmNjVjYjdmYTYxYzFmMmU5ZDA0ZjFhYmVjNmU1YzY3YzUwZjRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5FzhzwU5D9H+Xlzt6quZLYe8ejZ+ UQZj90s0jxFxW+E1bCOiGNnQfruDoWXZYVEFntORddNxaN2+9xTRWUe8yRN+75kA DFF/cwT/s9HwGV9ifk4OaFCQPjKHpA/atPdvpo4+9/pr6mZJjkWAdREwn7RcSUfU z4sVQhvDYyu9zdtesoOkaLPounerfw9UBCVyJM0BwHQWtJMNjrTGxMpyULAksnY3 NvBhF8xAC0JkXvJYMSa7H5e5DHMv15nVzV5GDEaSX+AkaPJ4Z0cylPVV7bb2JAw7 0Q4BitRC7SmwUBLXqtOMnssLbCKS7wUi1kOwFZLBHeaBAFKDGgl1uQjJiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCvfZct/phwfLp0E8avsblxnxQ9OMB8GA1UdIwQY MBaAFPTvXboQCpKyRE8+US0BpZLAGVHCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iMzViZTEtNjY3My00ODExLWE3MDct YWQwMjdlOTVjNWM3LzEvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9iMzViZTEtNjY3My00ODExLWE3MDctYWQwMjdlOTVjNWM3 LzEvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfk+dpHeI tFSMCru/sQpDrYh/AK3sxtfJJAJWRRbhX6GmNpBLAJvVwQ1NYqF1PcllQNhERsq5 8Etf9zk+NFgu+cTioc4LhZDVoxTGA9rkzC1oDstj0mh81fN9VG8fML3G3o7X/OSP K6g/+Jj283DMqYnzShxagkC3tFlC4XCrpPulU3625hRI3H7PPAzwRxiGq/xlywP5 c+0frLi5+pcGOZVR1JmczQIrzMUxWjLhEhKGB1zFbuHuIMNZrqpb+b3Ft8wotUEX 0TIdC75Rwkr2tF4XfJn7kUgv5LOiQlSxoIYuWPlnFdh+UKEQst2m6jQL2NKwQCyH HazGxxDwMc4ChA== -----END CERTIFICATE-----Generated at Sun Dec 21 13:42:32 2025 by rpki-client