This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft File: a0I7KaGCk2si34-YJt1YOgBZE0o.mft (raw, json) Hash identifier: 168Wo/y91+yT5s4839Y9BtYDkX055QOj/dv9Fx2Mpng= Subject key identifier: E1:E0:0A:15:FD:5F:DF:2D:95:DB:6C:3B:37:61:9D:60:62:9F:4D:AA Authority key identifier: 6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A Certificate issuer: /CN=6b423b29a182936b22df8f9826dd583a0059134a Certificate serial: 019B4DE0EBC977440A7654F2992D86474CCB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft Manifest number: 08B6 Signing time: Wed 24 Dec 2025 01:02:24 +0000 Manifest this update: Wed 24 Dec 2025 01:02:24 +0000 Manifest next update: Thu 25 Dec 2025 01:02:24 +0000 Files and hashes: 1: U_Lbl4dQRImqSP6zV_MXvnCzVro.roa (hash: k+fOfvjUjOj8hU8vOKkhlBwBO0V4NXX3JC8vdkG/viY=) 2: a0I7KaGCk2si34-YJt1YOgBZE0o.crl (hash: YckUHgKA5miSylTLUv07y5SjNsx0Xwdj5AcdIGl4Cbg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 01:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4d:e0:eb:c9:77:44:0a:76:54:f2:99:2d:86:47:4c:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b423b29a182936b22df8f9826dd583a0059134a Validity Not Before: Dec 24 01:02:24 2025 GMT Not After : Dec 25 01:02:24 2025 GMT Subject: CN=e1e00a15fd5fdf2d95db6c3b37619d60629f4daa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:80:d0:cc:dd:0d:de:ee:ae:75:cb:46:69:76: 94:b9:c2:8f:af:0f:70:80:a6:83:6b:74:b4:ea:a5: cd:4d:c8:c2:a2:20:03:fa:41:30:71:a2:e7:32:2d: c8:e5:a2:99:db:01:6a:14:7f:97:11:8c:9c:cd:2f: 4c:25:05:70:ea:03:66:c8:02:6e:53:9c:10:da:91: f0:0f:a4:b4:47:dd:51:3d:56:54:9a:4c:16:8c:ec: 9f:10:ba:57:be:5a:6b:9f:ed:8f:fc:ba:87:d0:4c: 64:28:2b:7d:b5:01:7c:0b:78:ab:f5:f5:a9:5c:5c: e2:2b:5f:88:c2:31:a8:be:48:41:5c:78:8b:15:fe: da:7f:ef:41:ec:c5:76:16:c9:0a:af:11:6f:d9:c8: 5d:75:25:31:19:f3:fb:b3:6c:ce:81:dd:a2:04:84: 4b:2d:bb:e1:84:d3:ff:17:c2:e7:92:5f:cc:95:38: a3:52:db:f0:5f:7b:eb:fb:82:79:de:f2:9c:cb:ea: 9f:c7:f2:b6:31:4c:37:96:1a:20:d1:4c:ed:b1:78: 89:5e:62:99:b9:4a:c8:b8:6d:53:40:28:5e:aa:9c: 25:4d:ce:53:32:a4:12:5b:f7:ed:62:f2:f5:12:b2: 42:95:19:79:ed:55:84:56:f2:75:23:b9:99:53:72: f1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E0:0A:15:FD:5F:DF:2D:95:DB:6C:3B:37:61:9D:60:62:9F:4D:AA X509v3 Authority Key Identifier: keyid:6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:61:00:3a:53:0e:a6:16:9e:30:e8:55:08:14:d6:57:49:5e: 9a:b5:74:d0:9b:c6:b0:89:7d:2f:65:0b:d9:1a:3d:78:81:77: bf:2f:38:43:44:8a:34:68:c0:90:40:ce:1d:86:e6:4d:a1:94: 81:9a:7b:bf:5f:8a:0f:f5:75:b0:e6:3a:9a:b0:73:c5:1c:c8: 09:e8:74:16:d1:7c:7f:db:29:81:4f:e7:e5:c5:00:e6:b4:b8: 9c:89:5e:6f:2b:a2:04:57:e6:e7:d2:dd:5f:18:2f:3f:f9:e7: 48:9a:22:56:bb:f3:d4:fd:9c:b9:a5:45:f4:7d:25:37:a1:f0: 31:9f:a6:e2:52:79:54:55:0e:62:9e:43:fa:bb:87:d8:6a:15: 89:5e:1b:18:26:cb:fe:15:2c:5f:47:89:49:81:84:5c:1a:ed: 3f:9f:f3:fe:0e:40:1c:f2:d5:1c:a2:cf:9a:fa:34:00:f4:d4: 4e:61:8e:2e:31:eb:de:29:1b:30:ad:e0:6c:f7:29:80:65:ef: 51:74:45:a3:f6:8f:2f:85:fc:a5:3f:9c:41:70:98:ce:c5:ef: bd:b5:6c:d8:24:81:63:3d:dd:04:25:3d:24:9d:c4:32:84:4c: 03:d2:47:36:a7:83:4d:d1:07:e2:9c:f2:62:78:f3:f1:66:ad: c8:9f:11:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtN4OvJd0QKdlTymS2GR0zLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiNDIzYjI5YTE4MjkzNmIyMmRmOGY5ODI2ZGQ1ODNhMDA1 OTEzNGEwHhcNMjUxMjI0MDEwMjI0WhcNMjUxMjI1MDEwMjI0WjAzMTEwLwYDVQQD EyhlMWUwMGExNWZkNWZkZjJkOTVkYjZjM2IzNzYxOWQ2MDYyOWY0ZGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYDQzN0N3u6udctGaXaUucKPrw9w gKaDa3S06qXNTcjCoiAD+kEwcaLnMi3I5aKZ2wFqFH+XEYyczS9MJQVw6gNmyAJu U5wQ2pHwD6S0R91RPVZUmkwWjOyfELpXvlprn+2P/LqH0ExkKCt9tQF8C3ir9fWp XFziK1+IwjGovkhBXHiLFf7af+9B7MV2FskKrxFv2chddSUxGfP7s2zOgd2iBIRL LbvhhNP/F8Lnkl/MlTijUtvwX3vr+4J53vKcy+qfx/K2MUw3lhog0UztsXiJXmKZ uUrIuG1TQCheqpwlTc5TMqQSW/ftYvL1ErJClRl57VWEVvJ1I7mZU3LxDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOHgChX9X98tldtsOzdhnWBin02qMB8GA1UdIwQY MBaAFGtCOymhgpNrIt+PmCbdWDoAWRNKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iYTBmZjAtMmJlMi00Mjg2LWEyZDct NThhOGEzM2Q1NGE2LzEvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9iYTBmZjAtMmJlMi00Mjg2LWEyZDctNThhOGEzM2Q1NGE2 LzEvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALWEAOlMO phaeMOhVCBTWV0lemrV00JvGsIl9L2UL2Ro9eIF3vy84Q0SKNGjAkEDOHYbmTaGU gZp7v1+KD/V1sOY6mrBzxRzICeh0FtF8f9spgU/n5cUA5rS4nIlebyuiBFfm59Ld XxgvP/nnSJoiVrvz1P2cuaVF9H0lN6HwMZ+m4lJ5VFUOYp5D+ruH2GoViV4bGCbL /hUsX0eJSYGEXBrtP5/z/g5AHPLVHKLPmvo0APTUTmGOLjHr3ikbMK3gbPcpgGXv UXRFo/aPL4X8pT+cQXCYzsXvvbVs2CSBYz3dBCU9JJ3EMoRMA9JHNqeDTdEH4pzy Ynjz8WatyJ8Rtw== -----END CERTIFICATE-----Generated at Wed Dec 24 11:11:07 2025 by rpki-client