This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft File: K6OJMzWM9mz_O2zj97wlF_3UdCE.mft (raw, json) Hash identifier: qS8dauyhBu9kJwA1d87c7fDVQVEoSuPTp+br3qFseqA= Subject key identifier: 52:16:B4:8B:E9:66:FF:AE:79:56:FA:41:C2:FE:4B:D1:F1:E7:9E:24 Authority key identifier: 2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21 Certificate issuer: /CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421 Certificate serial: 019B5CAE147488C39F17B176D2F224697F7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft Manifest number: 090E Signing time: Fri 26 Dec 2025 22:01:10 +0000 Manifest this update: Fri 26 Dec 2025 22:01:10 +0000 Manifest next update: Sat 27 Dec 2025 22:01:10 +0000 Files and hashes: 1: K6OJMzWM9mz_O2zj97wlF_3UdCE.crl (hash: mMJ5D49/dszXbhhKFSrKRvlPC67VHls5x0yTozfgtzU=) 2: P79z5YTtoWEv9LCPfIAUkH_6t6o.roa (hash: bkjECat6qqt16K0V047quWng6+v1DMCdWPWmzkArqVU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:ae:14:74:88:c3:9f:17:b1:76:d2:f2:24:69:7f:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421 Validity Not Before: Dec 26 22:01:10 2025 GMT Not After : Dec 27 22:01:10 2025 GMT Subject: CN=5216b48be966ffae7956fa41c2fe4bd1f1e79e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:81:16:34:f5:d3:f2:98:82:9e:fd:a0:40:8c: ee:55:06:91:7c:50:6e:45:6d:27:56:c2:b2:5d:00: 12:e9:97:94:72:92:8d:17:34:5f:19:fd:34:8d:9f: 0a:4b:68:25:1e:be:77:69:1d:d3:a2:fb:70:af:45: 6b:c3:b2:ca:87:9f:2f:5b:a9:57:31:88:2a:65:20: 18:3c:e9:db:79:91:b5:df:0b:03:3f:b1:04:9f:cf: 79:16:e7:c5:72:ff:83:58:88:fc:e0:93:1c:41:46: 09:21:ba:40:72:63:e2:d7:6f:3f:5a:c1:b1:4d:ec: 8d:65:42:86:df:82:8e:ac:69:e8:b0:8b:46:fc:62: 5c:a7:c4:52:37:48:a4:2d:34:35:e3:9a:5d:79:34: 11:a7:25:d8:4e:15:8d:a0:e8:79:cd:33:9a:ae:80: 29:77:1c:19:e0:c0:73:9d:b8:dc:d8:32:c6:32:36: 4d:3c:c8:4d:cb:3c:d8:5f:95:55:04:0c:f2:91:f7: b0:f8:89:dc:e7:0a:a6:c7:9c:56:d7:91:d4:f8:ce: 3c:8f:38:cb:93:64:42:73:68:49:f5:28:ff:d2:0f: 7b:ad:97:68:4f:3f:06:87:fa:9d:ab:a8:ce:c7:20: 56:e4:6f:71:19:af:67:59:aa:32:cc:5d:69:14:69: 8b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:16:B4:8B:E9:66:FF:AE:79:56:FA:41:C2:FE:4B:D1:F1:E7:9E:24 X509v3 Authority Key Identifier: keyid:2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:f8:57:7f:ea:c9:d3:e8:5e:0a:af:3f:8f:62:b2:f0:e8:f8: 5f:8a:cc:23:08:d0:b4:a3:3f:50:f8:35:eb:32:85:4f:b7:d9: 0f:be:19:42:4c:6c:22:27:ea:ed:86:20:8d:a1:f7:67:73:cd: 1f:f7:56:20:63:9c:4e:c3:0c:40:0c:3f:69:4b:46:1f:d6:08: d9:95:40:fb:83:f6:9a:39:aa:ee:bd:27:b9:f7:e2:62:16:6a: 59:18:43:b0:97:94:a6:9f:ac:a3:82:35:87:c3:f8:84:59:5f: a8:16:50:ec:7c:d4:26:a2:da:c3:d7:f4:9b:9a:a5:c2:d7:c5: 13:ea:2a:47:1e:32:e4:cc:5b:9e:b1:a0:56:c7:e2:99:6f:83: 43:0b:05:81:94:dd:9f:7c:1c:20:d5:50:20:b2:b6:fc:06:00: a4:0b:8a:8b:3f:1b:11:e0:98:f7:87:8e:66:aa:33:cd:4a:f9: 7d:a2:61:d7:ce:c3:52:6c:f2:56:e8:40:b7:3d:ff:df:b8:9e: 74:f8:aa:66:d3:89:1a:f9:78:b6:27:6d:30:80:82:26:90:62: e5:4f:3d:84:ee:7d:dc:80:32:71:fa:0f:f9:c2:63:85:ce:1a: 35:9d:52:a6:89:6a:b8:7d:3e:5a:54:d8:6f:ad:5b:51:14:11: e7:82:c1:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcrhR0iMOfF7F20vIkaX9+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYTM4OTMzMzU4Y2Y2NmNmZjNiNmNlM2Y3YmMyNTE3ZmRk NDc0MjEwHhcNMjUxMjI2MjIwMTEwWhcNMjUxMjI3MjIwMTEwWjAzMTEwLwYDVQQD Eyg1MjE2YjQ4YmU5NjZmZmFlNzk1NmZhNDFjMmZlNGJkMWYxZTc5ZTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIEWNPXT8piCnv2gQIzuVQaRfFBu RW0nVsKyXQAS6ZeUcpKNFzRfGf00jZ8KS2glHr53aR3Tovtwr0Vrw7LKh58vW6lX MYgqZSAYPOnbeZG13wsDP7EEn895FufFcv+DWIj84JMcQUYJIbpAcmPi128/WsGx TeyNZUKG34KOrGnosItG/GJcp8RSN0ikLTQ145pdeTQRpyXYThWNoOh5zTOaroAp dxwZ4MBznbjc2DLGMjZNPMhNyzzYX5VVBAzykfew+Inc5wqmx5xW15HU+M48jzjL k2RCc2hJ9Sj/0g97rZdoTz8Gh/qdq6jOxyBW5G9xGa9nWaoyzF1pFGmLqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFIWtIvpZv+ueVb6QcL+S9Hx554kMB8GA1UdIwQY MBaAFCujiTM1jPZs/zts4/e8JRf91HQhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzZPSk16V005bXpfTzJ6ajk3d2xGXzNVZENFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC85ODU2ZWUtNjk5Zi00ZmVkLWJiOTgt ZTA2ZmQwY2QzYjc3LzEvSzZPSk16V005bXpfTzJ6ajk3d2xGXzNVZENFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC85ODU2ZWUtNjk5Zi00ZmVkLWJiOTgtZTA2ZmQwY2QzYjc3 LzEvSzZPSk16V005bXpfTzJ6ajk3d2xGXzNVZENFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMPhXf+rJ 0+heCq8/j2Ky8Oj4X4rMIwjQtKM/UPg16zKFT7fZD74ZQkxsIifq7YYgjaH3Z3PN H/dWIGOcTsMMQAw/aUtGH9YI2ZVA+4P2mjmq7r0nuffiYhZqWRhDsJeUpp+so4I1 h8P4hFlfqBZQ7HzUJqLaw9f0m5qlwtfFE+oqRx4y5MxbnrGgVsfimW+DQwsFgZTd n3wcINVQILK2/AYApAuKiz8bEeCY94eOZqozzUr5faJh187DUmzyVuhAtz3/37ie dPiqZtOJGvl4tidtMICCJpBi5U89hO593IAycfoP+cJjhc4aNZ1SpolquH0+WlTY b61bURQR54LBrA== -----END CERTIFICATE-----Generated at Sat Dec 27 00:52:50 2025 by rpki-client