This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json) Hash identifier: L/FHkLncF5KNE4QelzqrI/bw9Rw9N/odU2Lw9BDAr3I= Subject key identifier: 9D:34:9D:BD:91:6C:5F:DF:08:8C:BF:41:6E:0A:6E:92:60:F8:7A:3D Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a Certificate serial: 019B638BDD1B02D3253B733636FA97189818 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft Manifest number: 12DF Signing time: Sun 28 Dec 2025 06:01:09 +0000 Manifest this update: Sun 28 Dec 2025 06:01:09 +0000 Manifest next update: Mon 29 Dec 2025 06:01:09 +0000 Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: z9u7IXjNz6MswvwJQQU0L13o+SyOOMw0IdzZ9sI0w8o=) 2: cm9pm1Y4fh7VmcKkQuyOuu9QXgE.roa (hash: T9xnzREMcoc526+ebS5GUXWxlrjNz60+DOHB2xM8pA4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:63:8b:dd:1b:02:d3:25:3b:73:36:36:fa:97:18:98:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a Validity Not Before: Dec 28 06:01:09 2025 GMT Not After : Dec 29 06:01:09 2025 GMT Subject: CN=9d349dbd916c5fdf088cbf416e0a6e9260f87a3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:7c:1d:89:c7:e3:9b:92:94:e5:61:f1:bd:19: 47:e9:02:eb:5a:13:d0:cb:5b:03:26:5c:93:48:e4: 3b:1c:80:c6:73:6c:6b:bc:ac:fd:b8:c4:90:df:f2: bb:44:34:b7:95:ce:97:70:28:54:03:29:79:bd:e7: 9c:05:5a:7b:0c:17:6e:15:1f:13:29:19:39:a7:63: e5:e8:f8:25:59:f1:b0:74:cd:26:8d:c7:79:57:65: 82:5f:ac:0c:73:b5:a6:42:c8:92:e4:71:16:f0:45: e6:da:ef:57:5c:fd:da:2c:ff:76:3a:b3:92:ce:17: bb:f3:fe:6e:1f:b1:9c:90:22:9f:4d:bf:94:9c:6a: f7:2c:e1:6c:c3:1e:c5:16:70:36:06:80:50:ab:b1: 20:a5:14:c5:e4:93:35:19:97:02:58:ec:4b:70:9b: c3:95:b1:99:9a:79:3c:7f:b9:a7:8f:e6:1a:4b:73: 3b:74:d0:92:40:de:02:dc:07:a5:a6:0f:14:75:68: 76:c8:29:fe:4f:79:76:e9:54:a8:91:d2:86:fd:03: 5c:12:57:b8:53:01:50:62:58:f9:36:dd:97:1f:05: 5c:b1:fc:cd:26:0c:57:ac:8d:6f:d1:1e:0a:63:6e: 7e:a6:c9:9f:0f:7c:6c:d3:52:c9:cf:85:29:03:1c: 0d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:34:9D:BD:91:6C:5F:DF:08:8C:BF:41:6E:0A:6E:92:60:F8:7A:3D X509v3 Authority Key Identifier: keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c4:ed:2e:d1:39:08:ad:6b:f3:7e:91:6e:b1:28:fa:5f:1a: c6:fa:3d:17:be:63:d7:50:a3:0d:9b:2e:41:30:9e:3e:34:f1: 8c:5e:99:af:1a:d4:38:c8:0c:75:2e:27:55:2e:4b:7a:dd:c2: e8:66:48:99:93:a8:4f:53:6c:e6:9d:06:16:8e:43:a1:96:b9: 57:4b:11:6a:fe:ba:e9:fe:9e:6e:38:20:d0:5d:ea:3d:2b:da: 8b:df:31:c8:e9:26:f4:9b:c7:ea:b7:73:89:c4:5a:6c:16:79: c8:58:a5:68:9e:08:f3:7a:db:b3:90:67:7c:c9:7b:03:de:e0: 9b:9a:4a:4c:4f:7a:71:8c:8a:71:26:cd:85:bb:40:f1:21:3c: 2f:61:de:cd:dc:b8:54:2c:e3:4b:3e:8e:ba:41:64:a0:51:d0: c1:80:ba:9f:6e:e5:f1:96:8a:1d:b3:3a:48:28:9e:8b:24:4b: 90:ec:35:45:81:73:da:71:ed:a3:54:2d:b1:9a:60:3c:69:60: b8:1a:f0:01:63:4e:35:ac:fe:03:77:6a:f3:15:6c:69:de:b5: 7b:ba:fc:fb:80:80:82:fb:01:dc:91:14:6e:13:fc:41:57:b3: 95:bf:fd:6c:d1:bf:fb:30:7b:08:36:5b:9d:8c:f8:9f:90:a2: e2:81:50:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtji90bAtMlO3M2NvqXGJgYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZTJlZTg0Y2NmNTZjZGMwMGZjMmNhYTU5MjkyNzlkYWUx NDg4OGEwHhcNMjUxMjI4MDYwMTA5WhcNMjUxMjI5MDYwMTA5WjAzMTEwLwYDVQQD Eyg5ZDM0OWRiZDkxNmM1ZmRmMDg4Y2JmNDE2ZTBhNmU5MjYwZjg3YTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAknwdicfjm5KU5WHxvRlH6QLrWhPQ y1sDJlyTSOQ7HIDGc2xrvKz9uMSQ3/K7RDS3lc6XcChUAyl5veecBVp7DBduFR8T KRk5p2Pl6PglWfGwdM0mjcd5V2WCX6wMc7WmQsiS5HEW8EXm2u9XXP3aLP92OrOS zhe78/5uH7GckCKfTb+UnGr3LOFswx7FFnA2BoBQq7EgpRTF5JM1GZcCWOxLcJvD lbGZmnk8f7mnj+YaS3M7dNCSQN4C3Aelpg8UdWh2yCn+T3l26VSokdKG/QNcEle4 UwFQYlj5Nt2XHwVcsfzNJgxXrI1v0R4KY25+psmfD3xs01LJz4UpAxwNUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ00nb2RbF/fCIy/QW4KbpJg+Ho9MB8GA1UdIwQY MBaAFGzi7oTM9WzcAPwsqlkpJ52uFIiKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83ZDZmMmYtOTg0ZC00OTYxLWE2M2It NDk1YzZmMmM1MTczLzEvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC83ZDZmMmYtOTg0ZC00OTYxLWE2M2ItNDk1YzZmMmM1MTcz LzEvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfMTtLtE5 CK1r836RbrEo+l8axvo9F75j11CjDZsuQTCePjTxjF6ZrxrUOMgMdS4nVS5Let3C 6GZImZOoT1Ns5p0GFo5DoZa5V0sRav666f6ebjgg0F3qPSvai98xyOkm9JvH6rdz icRabBZ5yFilaJ4I83rbs5BnfMl7A97gm5pKTE96cYyKcSbNhbtA8SE8L2Hezdy4 VCzjSz6OukFkoFHQwYC6n27l8ZaKHbM6SCieiyRLkOw1RYFz2nHto1QtsZpgPGlg uBrwAWNONaz+A3dq8xVsad61e7r8+4CAgvsB3JEUbhP8QVezlb/9bNG/+zB7CDZb nYz4n5Ci4oFQwA== -----END CERTIFICATE-----Generated at Sun Dec 28 09:06:34 2025 by rpki-client