This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.mft File: oLNzv45HcndefI_F-9Mpze5Eoyw.mft (raw, json) Hash identifier: jrcACd3wW7K2xZ1/ieLryiWzrCAKDuBpPPjvbv4RTDA= Subject key identifier: CC:C1:A0:3E:C3:7E:60:C2:7A:B3:71:1D:C7:8D:67:7A:1C:79:AE:B0 Authority key identifier: A0:B3:73:BF:8E:47:72:77:5E:7C:8F:C5:FB:D3:29:CD:EE:44:A3:2C Certificate issuer: /CN=a0b373bf8e4772775e7c8fc5fbd329cdee44a32c Certificate serial: 019B679F8F55590A3A19024C103934014F99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLNzv45HcndefI_F-9Mpze5Eoyw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.mft Manifest number: 179B Signing time: Mon 29 Dec 2025 01:01:08 +0000 Manifest this update: Mon 29 Dec 2025 01:01:08 +0000 Manifest next update: Tue 30 Dec 2025 01:01:08 +0000 Files and hashes: 1: oLNzv45HcndefI_F-9Mpze5Eoyw.crl (hash: 8aV3pJtui4Js/zWX8oGs08SXxLZ+Btu325Ctk+U4XOc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.mft rsync://rpki.ripe.net/repository/DEFAULT/oLNzv45HcndefI_F-9Mpze5Eoyw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 01:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:67:9f:8f:55:59:0a:3a:19:02:4c:10:39:34:01:4f:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0b373bf8e4772775e7c8fc5fbd329cdee44a32c Validity Not Before: Dec 29 01:01:08 2025 GMT Not After : Dec 30 01:01:08 2025 GMT Subject: CN=ccc1a03ec37e60c27ab3711dc78d677a1c79aeb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:74:c4:08:13:b4:45:66:06:e8:bc:73:4d:df: de:52:d6:e0:9c:de:c6:75:27:29:a1:78:c4:56:5b: d1:49:28:32:80:05:17:6a:d5:a0:b4:a4:8d:96:be: 2d:48:54:a2:0b:38:ef:79:66:13:75:4d:e5:69:d5: 1d:3a:93:e9:fb:13:02:77:32:2d:76:64:e5:cc:6d: 15:64:68:71:f0:47:f6:09:d7:4e:3e:e2:a0:6c:ec: 55:d4:61:c0:05:de:b6:7d:42:22:88:a5:e4:f3:fd: 48:ec:66:4f:5f:4f:81:93:e0:64:34:3a:16:78:08: 83:ee:8d:4c:97:11:ea:ee:65:49:aa:83:37:ec:db: fe:b2:3a:c4:a4:5c:dd:5c:2a:2e:f8:6c:66:a6:6c: 09:b2:2e:c6:3d:4e:5b:29:5d:ab:ba:bb:76:e7:dd: e5:54:b9:48:46:39:1d:19:92:be:97:c0:3f:ea:c3: cc:f8:66:68:85:c6:6a:5a:5a:76:f0:ef:9d:7a:52: 2f:c1:99:60:8a:9b:db:46:ed:59:a0:b9:71:de:73: dd:d7:e8:10:6f:b1:f0:c7:0b:cb:2d:18:fe:22:4b: bf:f5:12:a8:cf:95:ad:ba:72:2a:d5:5c:aa:dd:26: f6:ad:24:99:f7:90:92:fb:24:2c:81:94:54:e3:09: 23:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C1:A0:3E:C3:7E:60:C2:7A:B3:71:1D:C7:8D:67:7A:1C:79:AE:B0 X509v3 Authority Key Identifier: keyid:A0:B3:73:BF:8E:47:72:77:5E:7C:8F:C5:FB:D3:29:CD:EE:44:A3:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLNzv45HcndefI_F-9Mpze5Eoyw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:a0:c9:f4:d5:b6:9d:41:bd:de:78:a9:7c:a9:a0:90:89:e0: 92:26:37:7d:26:70:51:00:3b:62:65:78:3d:fc:97:db:0b:02: f8:d0:ae:eb:f7:0c:91:35:ff:0e:8f:6b:0b:a6:43:e7:a8:5c: 29:5f:0a:f0:ec:97:b1:e0:6c:e2:97:ce:58:40:cf:5e:15:f0: f4:03:5e:91:a2:f5:17:bc:8d:d1:c7:c6:79:20:34:c4:3a:5d: 39:bd:fb:4d:f7:67:01:2c:79:74:5e:b4:94:4c:e6:74:ef:81: cf:dc:d9:92:da:fa:48:b3:10:72:f8:4c:a4:be:d5:01:78:0c: 23:84:e7:87:78:05:ee:58:d2:51:0d:99:2e:c9:ae:ac:14:60: 8f:db:c6:ed:c0:af:e1:62:ad:49:1a:08:a9:62:94:d8:f4:df: 10:31:64:a8:37:ec:0f:61:53:f3:33:d1:b7:4c:ee:40:85:e3: 9a:9d:0f:6b:bd:e2:be:ab:99:1a:f8:1b:ea:c4:bf:71:f6:94: 91:a1:85:13:eb:ca:16:5e:3b:ab:18:ee:e2:e2:82:20:bb:09: 79:2d:b1:d7:55:be:20:88:b1:76:7c:65:a5:79:2c:80:b7:0d: 40:a9:05:5b:99:bf:e7:57:b7:30:b3:0f:2a:3e:50:d4:e5:48: a2:28:8e:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtnn49VWQo6GQJMEDk0AU+ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYjM3M2JmOGU0NzcyNzc1ZTdjOGZjNWZiZDMyOWNkZWU0 NGEzMmMwHhcNMjUxMjI5MDEwMTA4WhcNMjUxMjMwMDEwMTA4WjAzMTEwLwYDVQQD EyhjY2MxYTAzZWMzN2U2MGMyN2FiMzcxMWRjNzhkNjc3YTFjNzlhZWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXTECBO0RWYG6LxzTd/eUtbgnN7G dScpoXjEVlvRSSgygAUXatWgtKSNlr4tSFSiCzjveWYTdU3ladUdOpPp+xMCdzIt dmTlzG0VZGhx8Ef2CddOPuKgbOxV1GHABd62fUIiiKXk8/1I7GZPX0+Bk+BkNDoW eAiD7o1MlxHq7mVJqoM37Nv+sjrEpFzdXCou+GxmpmwJsi7GPU5bKV2rurt2593l VLlIRjkdGZK+l8A/6sPM+GZohcZqWlp28O+delIvwZlgipvbRu1ZoLlx3nPd1+gQ b7HwxwvLLRj+Iku/9RKoz5WtunIq1Vyq3Sb2rSSZ95CS+yQsgZRU4wkj2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMzBoD7DfmDCerNxHceNZ3ocea6wMB8GA1UdIwQY MBaAFKCzc7+OR3J3XnyPxfvTKc3uRKMsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0xOenY0NUhjbmRlZklfRi05TXB6ZTVFb3l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi80MDcyMTMtYjI2NC00ODUzLTkzNDMt ZWU1NTg1YWUxM2I3LzEvb0xOenY0NUhjbmRlZklfRi05TXB6ZTVFb3l3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi80MDcyMTMtYjI2NC00ODUzLTkzNDMtZWU1NTg1YWUxM2I3 LzEvb0xOenY0NUhjbmRlZklfRi05TXB6ZTVFb3l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjaDJ9NW2 nUG93nipfKmgkIngkiY3fSZwUQA7YmV4PfyX2wsC+NCu6/cMkTX/Do9rC6ZD56hc KV8K8OyXseBs4pfOWEDPXhXw9ANekaL1F7yN0cfGeSA0xDpdOb37TfdnASx5dF60 lEzmdO+Bz9zZktr6SLMQcvhMpL7VAXgMI4Tnh3gF7ljSUQ2ZLsmurBRgj9vG7cCv 4WKtSRoIqWKU2PTfEDFkqDfsD2FT8zPRt0zuQIXjmp0Pa73ivquZGvgb6sS/cfaU kaGFE+vKFl47qxju4uKCILsJeS2x11W+IIixdnxlpXksgLcNQKkFW5m/51e3MLMP Kj5Q1OVIoiiONA== -----END CERTIFICATE-----Generated at Mon Dec 29 10:14:40 2025 by rpki-client