This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft File: 6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft (raw, json) Hash identifier: 0o4nyIi4FE2RIK4RN8dNEo17rqOUpbEOK7O5WXlaA1k= Subject key identifier: F0:56:9A:C1:A9:BA:6B:5D:BE:28:8C:B1:7E:A0:C0:7E:85:EA:74:8E Authority key identifier: E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8 Certificate issuer: /CN=e8d878aa53081893ba528524ef143ea9271392b8 Certificate serial: 019B48EFEE18F03217B043A327880678BA7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft Manifest number: 178D Signing time: Tue 23 Dec 2025 02:00:42 +0000 Manifest this update: Tue 23 Dec 2025 02:00:42 +0000 Manifest next update: Wed 24 Dec 2025 02:00:42 +0000 Files and hashes: 1: 5sx0qR-B9y6mGDgRbtSLnw5KGsw.roa (hash: Nyr6wmMl755m5pBB7dzD6+3NgxbHjvOEn2wkeXz+Yqw=) 2: 6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl (hash: lYo26wb/QJJZwTSMDHkHzmf/iiFfSIRFxbe0l6Ms2A8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:ef:ee:18:f0:32:17:b0:43:a3:27:88:06:78:ba:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8d878aa53081893ba528524ef143ea9271392b8 Validity Not Before: Dec 23 02:00:42 2025 GMT Not After : Dec 24 02:00:42 2025 GMT Subject: CN=f0569ac1a9ba6b5dbe288cb17ea0c07e85ea748e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:05:d0:12:f7:14:2a:ca:5b:5c:5e:03:66:ec: a1:3f:fd:10:45:05:32:40:88:4a:b2:98:b9:e6:ff: e1:57:0a:54:70:79:93:44:11:28:af:f2:db:29:88: 92:76:ff:14:2f:1f:bf:28:9e:96:1b:f6:10:7e:26: f4:f9:d1:fc:7f:a3:7a:4a:a3:5b:8a:bc:56:4d:76: 6f:93:42:64:93:d4:a8:a1:6a:95:0d:8c:72:f6:ef: 21:d8:08:8e:e5:41:f8:cc:13:8f:6b:1c:df:c2:10: 8f:f7:94:8a:a8:f5:fd:fb:1e:56:0d:99:24:49:9e: 8f:be:95:25:8b:07:f7:ef:f0:4a:63:5a:c6:b2:0b: d2:e6:73:35:9e:17:8a:eb:a8:fc:97:0b:90:40:6f: 6a:ce:0e:ef:46:29:63:2d:97:a2:10:1c:7b:38:e4: 8c:1c:74:5d:b9:ce:a9:c5:75:f2:1b:99:d2:25:79: 5e:0f:6f:d0:fb:27:8e:68:5e:16:c8:bd:c0:be:96: 51:7c:23:98:46:5c:13:14:54:44:6e:69:8d:59:11: f0:2c:06:76:b9:23:36:c6:9c:89:6a:c8:5f:9a:4d: 51:16:e2:06:15:0f:97:e0:dc:d5:5d:ed:f5:a7:4d: 87:4c:c9:41:65:16:f7:2f:e1:dd:c0:a3:18:82:b9: e8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:56:9A:C1:A9:BA:6B:5D:BE:28:8C:B1:7E:A0:C0:7E:85:EA:74:8E X509v3 Authority Key Identifier: keyid:E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:37:e3:a9:ef:9a:83:db:f4:de:e8:a9:de:90:2f:4a:9c:bc: cb:63:3c:bb:18:db:87:28:49:47:d5:c7:65:c2:16:c1:68:14: f3:08:11:74:10:1f:a9:46:30:7c:2a:de:61:bf:23:83:eb:b6: 6d:c3:58:3e:e4:88:6c:87:85:1c:94:e1:a2:ef:dc:55:76:68: 66:9b:1c:b9:f2:fa:70:ec:c7:6d:e1:9d:b8:47:64:d1:45:f3: 49:a4:42:1c:6a:b6:6a:9d:c4:09:13:50:e8:17:5a:64:0e:22: 26:69:04:bb:96:a4:9a:3a:07:b3:0a:ac:42:c2:51:97:e2:63: e0:b6:8a:f4:e5:80:85:1d:73:c7:58:7f:2f:e9:fb:66:2a:56: 93:5d:4b:fe:1d:97:53:93:fb:06:e8:b2:26:19:92:74:97:3b: 4c:f5:29:36:77:33:f6:39:fc:94:2f:fd:79:32:25:5c:27:d3: 13:8b:41:b6:1f:85:0e:af:d2:58:d7:dc:68:eb:30:81:1e:67: 7d:fa:a4:92:c1:e4:b5:1b:98:ee:0f:44:0d:62:45:c4:72:7c: 0f:3a:8a:3b:8a:73:c7:50:fa:31:7f:f6:b0:5e:5b:c0:d7:86: 9e:06:f6:0d:07:36:5c:51:a4:3d:cd:7b:77:2a:fa:2a:c5:26: 3b:08:c6:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtI7+4Y8DIXsEOjJ4gGeLp7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4ZDg3OGFhNTMwODE4OTNiYTUyODUyNGVmMTQzZWE5Mjcx MzkyYjgwHhcNMjUxMjIzMDIwMDQyWhcNMjUxMjI0MDIwMDQyWjAzMTEwLwYDVQQD EyhmMDU2OWFjMWE5YmE2YjVkYmUyODhjYjE3ZWEwYzA3ZTg1ZWE3NDhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgXQEvcUKspbXF4DZuyhP/0QRQUy QIhKspi55v/hVwpUcHmTRBEor/LbKYiSdv8ULx+/KJ6WG/YQfib0+dH8f6N6SqNb irxWTXZvk0Jkk9SooWqVDYxy9u8h2AiO5UH4zBOPaxzfwhCP95SKqPX9+x5WDZkk SZ6PvpUliwf37/BKY1rGsgvS5nM1nheK66j8lwuQQG9qzg7vRiljLZeiEBx7OOSM HHRduc6pxXXyG5nSJXleD2/Q+yeOaF4WyL3AvpZRfCOYRlwTFFREbmmNWRHwLAZ2 uSM2xpyJashfmk1RFuIGFQ+X4NzVXe31p02HTMlBZRb3L+HdwKMYgrnoEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPBWmsGpumtdviiMsX6gwH6F6nSOMB8GA1UdIwQY MBaAFOjYeKpTCBiTulKFJO8UPqknE5K4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNk5oNHFsTUlHSk82VW9Vazd4US1xU2NUa3JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9hZDY0YmItZDUzOS00YThlLWIwZTYt NWY4OWI4ODVmNzI5LzEvNk5oNHFsTUlHSk82VW9Vazd4US1xU2NUa3JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC9hZDY0YmItZDUzOS00YThlLWIwZTYtNWY4OWI4ODVmNzI5 LzEvNk5oNHFsTUlHSk82VW9Vazd4US1xU2NUa3JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADDfjqe+a g9v03uip3pAvSpy8y2M8uxjbhyhJR9XHZcIWwWgU8wgRdBAfqUYwfCreYb8jg+u2 bcNYPuSIbIeFHJThou/cVXZoZpscufL6cOzHbeGduEdk0UXzSaRCHGq2ap3ECRNQ 6BdaZA4iJmkEu5akmjoHswqsQsJRl+Jj4LaK9OWAhR1zx1h/L+n7ZipWk11L/h2X U5P7BuiyJhmSdJc7TPUpNncz9jn8lC/9eTIlXCfTE4tBth+FDq/SWNfcaOswgR5n ffqkksHktRuY7g9EDWJFxHJ8DzqKO4pzx1D6MX/2sF5bwNeGngb2DQc2XFGkPc17 dyr6KsUmOwjGAA== -----END CERTIFICATE-----Generated at Tue Dec 23 03:48:26 2025 by rpki-client