This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft File: 9OcXTG90-poisK3uJRqNZDEjE_I.mft (raw, json) Hash identifier: oLaVw05fGprnG1sucEk3bG4Xj7bjz8mAU7VYeMtpayc= Subject key identifier: 05:CC:3D:9B:84:9B:42:9D:C3:A6:13:81:4E:7B:76:C4:7D:70:53:B9 Authority key identifier: F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2 Certificate issuer: /CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2 Certificate serial: 019B6CC5DD645604D4022E6A0AA11073AAA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft Manifest number: 1732 Signing time: Tue 30 Dec 2025 01:01:05 +0000 Manifest this update: Tue 30 Dec 2025 01:01:05 +0000 Manifest next update: Wed 31 Dec 2025 01:01:05 +0000 Files and hashes: 1: 9OcXTG90-poisK3uJRqNZDEjE_I.crl (hash: 9c/v/+a7jUdUYs0W7J6AcoRMef4VnXKODY31hidoQ0A=) 2: DSwyNAuAz2bJdfrLonxlYBob04I.roa (hash: 3+/CvQ/0iqsF5SqvqkyipksHlcWBh/rqDJFf0zM3tC8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:c5:dd:64:56:04:d4:02:2e:6a:0a:a1:10:73:aa:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2 Validity Not Before: Dec 30 01:01:05 2025 GMT Not After : Dec 31 01:01:05 2025 GMT Subject: CN=05cc3d9b849b429dc3a613814e7b76c47d7053b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:46:3e:be:ac:93:b2:1d:41:7d:ec:46:05:6e: 36:2c:32:f3:4c:0b:8b:50:8a:db:a1:b5:ee:1a:b3: bb:7e:cd:ee:16:32:39:58:a3:d0:3f:fd:4d:31:3b: af:f6:8a:32:0e:fc:7a:98:f7:15:e5:1f:19:90:31: ee:72:43:e4:61:bb:34:6f:2c:1d:6b:d1:4c:71:e3: 47:ce:2c:ce:14:cc:35:19:c1:d6:ff:47:93:80:c2: f0:71:b9:0e:45:0f:33:1e:b3:29:5d:26:81:08:89: c2:c0:c5:5a:80:82:d3:06:1c:ff:97:9e:b2:54:48: 00:56:a1:97:fa:62:9e:7b:82:39:48:39:cd:7f:66: 23:5b:ee:e6:84:72:ac:e9:b6:18:de:2d:26:11:87: d8:ec:9e:c5:63:98:f5:8b:2c:13:f9:28:90:4b:a2: 51:8a:63:ea:89:29:cb:f3:12:55:e5:56:80:e0:64: 97:9d:12:21:b7:e8:58:9d:8b:62:cd:b3:7d:c9:d6: e5:6a:a6:5a:f7:79:2e:ea:e0:f4:dd:b7:a5:84:5a: 75:41:03:1f:f3:e5:3d:30:d9:b6:33:d7:58:fc:66: 83:74:93:c0:cb:b2:1e:1c:a3:1c:7c:ba:0d:0c:74: cb:7c:1d:61:b2:dc:9f:66:a3:d8:f4:04:81:73:04: 68:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CC:3D:9B:84:9B:42:9D:C3:A6:13:81:4E:7B:76:C4:7D:70:53:B9 X509v3 Authority Key Identifier: keyid:F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:83:bd:65:f9:e0:4b:75:87:28:36:e6:3d:3b:8e:be:36:29: f1:48:09:88:2c:95:e1:d7:5b:fd:6f:4c:1f:6d:1d:43:da:ed: d2:ff:aa:91:39:11:7a:a6:22:4a:5a:1f:bd:27:dc:f4:e7:e2: 65:7d:ac:0b:d3:73:04:8c:e2:82:38:68:0f:7f:94:bc:fc:4a: a6:4f:40:da:82:70:15:14:c6:2d:7d:71:03:30:89:82:29:b4: 26:5e:f2:34:fa:78:5d:9c:a9:8d:08:3b:2a:5e:5f:39:ac:70: fd:36:cc:62:11:0e:bc:2c:03:63:75:76:fb:d2:94:14:20:06: 52:67:05:f3:88:76:6f:f6:de:a4:ca:56:e1:04:87:9b:f8:49: 23:76:42:13:a0:14:2e:04:6b:a3:48:da:e4:ad:af:c4:78:22: 86:77:e7:90:b8:9e:7e:91:2c:7a:a9:19:11:a7:13:85:90:41: a0:63:f1:60:93:fa:86:55:3f:7b:6d:c5:86:c3:98:bf:f6:65: 88:a8:3f:4b:0a:27:35:20:1c:6f:1a:ea:9a:a5:36:fb:d7:2e: 1c:3a:78:70:df:af:99:3e:9d:9e:ca:d8:53:f9:a0:d3:5c:6c: 8a:5d:b4:80:a3:6c:4c:74:57:1a:b2:4e:c4:02:a1:34:e7:9b: 4e:0b:7d:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsxd1kVgTUAi5qCqEQc6qoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0ZTcxNzRjNmY3NGZhOWEyMmIwYWRlZTI1MWE4ZDY0MzEy MzEzZjIwHhcNMjUxMjMwMDEwMTA1WhcNMjUxMjMxMDEwMTA1WjAzMTEwLwYDVQQD EygwNWNjM2Q5Yjg0OWI0MjlkYzNhNjEzODE0ZTdiNzZjNDdkNzA1M2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1kY+vqyTsh1BfexGBW42LDLzTAuL UIrbobXuGrO7fs3uFjI5WKPQP/1NMTuv9ooyDvx6mPcV5R8ZkDHuckPkYbs0bywd a9FMceNHzizOFMw1GcHW/0eTgMLwcbkORQ8zHrMpXSaBCInCwMVagILTBhz/l56y VEgAVqGX+mKee4I5SDnNf2YjW+7mhHKs6bYY3i0mEYfY7J7FY5j1iywT+SiQS6JR imPqiSnL8xJV5VaA4GSXnRIht+hYnYtizbN9ydblaqZa93ku6uD03belhFp1QQMf 8+U9MNm2M9dY/GaDdJPAy7IeHKMcfLoNDHTLfB1hstyfZqPY9ASBcwRoEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAXMPZuEm0Kdw6YTgU57dsR9cFO5MB8GA1UdIwQY MBaAFPTnF0xvdPqaIrCt7iUajWQxIxPyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU9jWFRHOTAtcG9pc0szdUpScU5aREVqRV9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi84NmVmYjMtZWYxZS00NjljLWFlYjQt Mjg5NzhjM2M3ZWM1LzEvOU9jWFRHOTAtcG9pc0szdUpScU5aREVqRV9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi84NmVmYjMtZWYxZS00NjljLWFlYjQtMjg5NzhjM2M3ZWM1 LzEvOU9jWFRHOTAtcG9pc0szdUpScU5aREVqRV9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN4O9Zfng S3WHKDbmPTuOvjYp8UgJiCyV4ddb/W9MH20dQ9rt0v+qkTkReqYiSlofvSfc9Ofi ZX2sC9NzBIzigjhoD3+UvPxKpk9A2oJwFRTGLX1xAzCJgim0Jl7yNPp4XZypjQg7 Kl5fOaxw/TbMYhEOvCwDY3V2+9KUFCAGUmcF84h2b/bepMpW4QSHm/hJI3ZCE6AU LgRro0ja5K2vxHgihnfnkLiefpEseqkZEacThZBBoGPxYJP6hlU/e23FhsOYv/Zl iKg/SwonNSAcbxrqmqU2+9cuHDp4cN+vmT6dnsrYU/mg01xsil20gKNsTHRXGrJO xAKhNOebTgt97g== -----END CERTIFICATE-----Generated at Tue Dec 30 10:34:28 2025 by rpki-client