This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft File: K6OJMzWM9mz_O2zj97wlF_3UdCE.mft (raw, json) Hash identifier: 9ziz0SIFpza9KiGkK50YbhRXgqUknVv33IMZQ+3VgkI= Subject key identifier: 67:9F:34:54:09:56:32:2B:A5:69:E8:1F:A0:96:B5:4D:51:0E:B8:DD Authority key identifier: 2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21 Certificate issuer: /CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421 Certificate serial: 019B51178EA3ADE990670A3B6FA4B54F9AAF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft Manifest number: 0908 Signing time: Wed 24 Dec 2025 16:00:56 +0000 Manifest this update: Wed 24 Dec 2025 16:00:56 +0000 Manifest next update: Thu 25 Dec 2025 16:00:56 +0000 Files and hashes: 1: K6OJMzWM9mz_O2zj97wlF_3UdCE.crl (hash: LY8Tn76v9dtXKQj741xQS1+OFeSxEGpy6tbh8+StbEw=) 2: P79z5YTtoWEv9LCPfIAUkH_6t6o.roa (hash: bkjECat6qqt16K0V047quWng6+v1DMCdWPWmzkArqVU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:17:8e:a3:ad:e9:90:67:0a:3b:6f:a4:b5:4f:9a:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421 Validity Not Before: Dec 24 16:00:56 2025 GMT Not After : Dec 25 16:00:56 2025 GMT Subject: CN=679f34540956322ba569e81fa096b54d510eb8dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1a:02:4e:12:69:c6:61:c8:37:aa:68:23:cf: 4f:f4:d9:5c:33:82:3a:94:6f:ea:35:2d:45:e9:cc: 28:da:49:b6:a1:fd:c9:82:93:4e:f9:c9:3c:46:ed: 21:07:9b:74:23:7f:9b:0a:c8:2d:3d:59:27:aa:55: 2e:10:e7:28:65:a9:4b:4f:a9:8c:79:1e:55:92:cf: fd:87:a1:b2:2a:50:d3:04:08:d2:fb:7d:c1:29:fa: 63:0f:7b:6e:b7:b1:83:4b:b9:2c:94:c6:c0:27:1e: 70:b9:52:a8:8b:be:6b:2d:3e:a1:0c:7d:8b:a1:71: 79:61:11:16:56:78:8f:79:17:1c:b0:54:e7:5a:1f: 03:18:46:10:bb:42:24:76:8b:85:1b:f9:ae:f1:67: f5:b6:b6:3b:17:72:12:42:ab:54:2c:db:32:d9:2f: dd:fb:99:39:0f:e2:b9:b9:14:49:0e:c2:3a:86:df: e8:21:55:4a:e6:52:a0:f8:df:c8:9f:3e:2f:aa:df: 47:ef:eb:e2:ac:8d:e6:92:a7:0b:3b:4e:81:4b:8d: 1f:9a:10:01:a8:b4:39:93:8a:f8:b6:c8:6b:41:61: 26:e8:97:2a:6b:7b:50:81:95:95:72:80:15:d7:da: a4:c8:31:5a:ea:32:e5:28:a2:bb:02:2e:66:f4:3f: 20:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:9F:34:54:09:56:32:2B:A5:69:E8:1F:A0:96:B5:4D:51:0E:B8:DD X509v3 Authority Key Identifier: keyid:2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:75:d4:5e:a0:11:04:33:cf:da:4e:f2:b9:69:ab:c6:1e:e7: 61:94:55:a6:3a:ed:7a:9e:cf:bb:01:0b:7b:70:f1:e8:0d:53: d0:6e:d3:21:26:74:d3:e2:d3:12:3a:a4:34:f9:96:0c:38:a9: de:2e:9f:ab:88:d4:60:34:4a:8d:1e:79:48:07:bd:61:9e:4b: e0:e1:d8:fd:69:aa:c3:1a:03:b5:ee:44:af:ca:45:eb:e9:aa: 5b:2d:05:dd:1d:1a:e8:12:c7:83:7b:89:d9:b1:2c:63:8a:5a: 67:ca:65:68:e4:a6:e6:65:ea:0f:8b:6f:e1:9d:46:64:1c:a4: 65:d2:f0:9a:fb:94:6b:35:e9:a8:eb:d0:b2:51:a2:e6:2f:46: 9f:47:d8:ab:e4:2c:53:5d:5f:d5:6d:85:1f:ec:96:a6:a4:61: 73:f3:2c:2a:13:9a:23:5e:01:55:8c:3f:36:fc:7f:66:9c:92: db:9a:2e:cf:65:44:fe:40:ef:56:5a:55:c6:15:5f:5f:80:fd: 98:ca:b6:74:38:39:77:99:02:ea:70:74:29:0d:45:3f:ab:8d: a0:4f:a5:dd:5f:f2:39:e5:1e:a3:cd:3b:7f:7a:07:34:56:65: 7f:83:38:01:c7:a8:0d:5c:cd:ef:a6:fe:d1:e6:dd:e9:29:be: 79:fb:97:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRF46jremQZwo7b6S1T5qvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYTM4OTMzMzU4Y2Y2NmNmZjNiNmNlM2Y3YmMyNTE3ZmRk NDc0MjEwHhcNMjUxMjI0MTYwMDU2WhcNMjUxMjI1MTYwMDU2WjAzMTEwLwYDVQQD Eyg2NzlmMzQ1NDA5NTYzMjJiYTU2OWU4MWZhMDk2YjU0ZDUxMGViOGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3xoCThJpxmHIN6poI89P9NlcM4I6 lG/qNS1F6cwo2km2of3JgpNO+ck8Ru0hB5t0I3+bCsgtPVknqlUuEOcoZalLT6mM eR5Vks/9h6GyKlDTBAjS+33BKfpjD3tut7GDS7kslMbAJx5wuVKoi75rLT6hDH2L oXF5YREWVniPeRccsFTnWh8DGEYQu0IkdouFG/mu8Wf1trY7F3ISQqtULNsy2S/d +5k5D+K5uRRJDsI6ht/oIVVK5lKg+N/Inz4vqt9H7+virI3mkqcLO06BS40fmhAB qLQ5k4r4tshrQWEm6Jcqa3tQgZWVcoAV19qkyDFa6jLlKKK7Ai5m9D8gEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGefNFQJVjIrpWnoH6CWtU1RDrjdMB8GA1UdIwQY MBaAFCujiTM1jPZs/zts4/e8JRf91HQhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzZPSk16V005bXpfTzJ6ajk3d2xGXzNVZENFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC85ODU2ZWUtNjk5Zi00ZmVkLWJiOTgt ZTA2ZmQwY2QzYjc3LzEvSzZPSk16V005bXpfTzJ6ajk3d2xGXzNVZENFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC85ODU2ZWUtNjk5Zi00ZmVkLWJiOTgtZTA2ZmQwY2QzYjc3 LzEvSzZPSk16V005bXpfTzJ6ajk3d2xGXzNVZENFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQHXUXqAR BDPP2k7yuWmrxh7nYZRVpjrtep7PuwELe3Dx6A1T0G7TISZ00+LTEjqkNPmWDDip 3i6fq4jUYDRKjR55SAe9YZ5L4OHY/WmqwxoDte5Er8pF6+mqWy0F3R0a6BLHg3uJ 2bEsY4paZ8plaOSm5mXqD4tv4Z1GZBykZdLwmvuUazXpqOvQslGi5i9Gn0fYq+Qs U11f1W2FH+yWpqRhc/MsKhOaI14BVYw/Nvx/ZpyS25ouz2VE/kDvVlpVxhVfX4D9 mMq2dDg5d5kC6nB0KQ1FP6uNoE+l3V/yOeUeo807f3oHNFZlf4M4AceoDVzN76b+ 0ebd6Sm+efuXSQ== -----END CERTIFICATE-----Generated at Wed Dec 24 20:06:11 2025 by rpki-client