This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft File: cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft (raw, json) Hash identifier: VohlZDjtmRmDXuw93o3kQI039Rl3ICJ1i7wk1KtkKQY= Subject key identifier: B0:0E:AA:B6:7F:2F:0B:62:37:EB:5F:99:D1:4B:85:57:F7:82:8A:AF Authority key identifier: 70:EA:97:D1:62:6B:12:6F:59:1C:6F:B3:1E:8E:CB:89:39:DB:42:2A Certificate issuer: /CN=70ea97d1626b126f591c6fb31e8ecb8939db422a Certificate serial: 019B59E3601FFDD38236D907DC2B3722372F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft Manifest number: C1 Signing time: Fri 26 Dec 2025 09:00:31 +0000 Manifest this update: Fri 26 Dec 2025 09:00:31 +0000 Manifest next update: Sat 27 Dec 2025 09:00:31 +0000 Files and hashes: 1: cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl (hash: MvdIy79Xv/8+OBQ9vbfGGZo5rIz1NTki8wU3y+kwqss=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:60:1f:fd:d3:82:36:d9:07:dc:2b:37:22:37:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70ea97d1626b126f591c6fb31e8ecb8939db422a Validity Not Before: Dec 26 09:00:31 2025 GMT Not After : Dec 27 09:00:31 2025 GMT Subject: CN=b00eaab67f2f0b6237eb5f99d14b8557f7828aaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:95:1f:22:f4:43:d4:47:3f:6b:23:8f:3f:4c: 38:d1:09:d5:6c:3b:d5:6f:49:4f:49:da:70:0d:0c: 5d:e6:7b:b1:cc:31:48:8a:c1:38:2d:3c:64:62:67: d1:fe:49:05:54:e2:ee:0a:78:7f:bb:71:f5:06:52: a2:a8:a0:74:c8:43:f4:8d:50:a1:86:77:8f:b3:b2: ec:e4:5e:aa:43:57:78:bf:16:01:61:09:2f:1a:d9: d0:aa:09:f9:73:71:b3:29:b5:8a:80:21:bc:14:85: 9f:01:72:b0:4e:9b:b5:e6:03:e3:5e:6e:81:0a:d2: 98:e9:10:bd:5c:63:95:9f:cf:69:bc:77:3e:79:23: 50:26:b3:c2:f6:75:27:1a:dc:d1:77:53:e1:c8:7e: 3c:c4:2f:51:b9:de:fc:5d:77:ee:00:65:47:c9:88: 65:a4:77:71:82:7a:6a:7d:80:40:9d:94:a0:5a:7b: a1:5a:0e:39:52:c0:85:b6:d7:68:a5:34:0f:ec:9f: f8:ac:dd:60:98:39:74:d6:ce:ac:30:4f:fc:26:8c: 54:48:2a:41:ca:21:46:1e:a4:02:39:73:f1:b6:51: 37:12:8e:bb:0d:fd:ce:8f:f2:fa:e5:d3:82:3c:36: 12:8b:8d:b6:b4:88:64:46:99:57:b4:58:83:1f:b4: 6c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:0E:AA:B6:7F:2F:0B:62:37:EB:5F:99:D1:4B:85:57:F7:82:8A:AF X509v3 Authority Key Identifier: keyid:70:EA:97:D1:62:6B:12:6F:59:1C:6F:B3:1E:8E:CB:89:39:DB:42:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:2e:58:24:e4:be:ac:b9:ea:cf:62:d1:a3:96:81:c7:22:dd: 5c:71:fc:85:a4:67:88:44:62:9a:2c:4b:ef:32:27:1f:ac:11: de:84:7b:bb:0a:43:93:3e:23:07:2d:ef:38:23:25:fb:71:cf: 93:7d:26:f6:e9:dd:10:0c:57:f3:c2:57:4c:39:6b:1f:1c:87: 1f:eb:7b:d4:b1:ab:cf:9b:f1:4b:16:3f:ae:47:74:2f:24:52: d3:a4:50:1a:df:7d:24:e3:84:d3:a0:33:59:7a:a8:33:0c:bf: 50:ec:e8:54:be:2f:26:d4:85:f6:f2:d7:f3:08:70:8a:99:3e: 81:1f:16:1a:ea:6b:c5:11:5e:e2:74:9c:4a:9e:49:9c:27:5d: 82:14:c7:09:64:c7:fe:73:ab:45:0c:a3:8a:e3:92:d8:0e:0e: b7:2a:f0:04:a1:6f:8a:4a:8b:ae:ec:d7:cf:81:ea:8e:6e:d3: ee:21:a7:0d:e3:f1:17:73:49:fa:ef:f5:3b:41:05:8c:70:b7: 8b:02:39:4b:87:0c:10:5f:b6:54:c7:03:ec:1e:4d:6c:3d:c5: bd:6d:4a:e2:22:2f:98:86:f3:92:99:73:47:d1:11:d4:bf:24: f0:d2:a3:56:24:d5:56:45:bb:bc:b2:45:c8:c3:d0:8f:63:15: dc:28:9c:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ42Af/dOCNtkH3Cs3IjcvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZWE5N2QxNjI2YjEyNmY1OTFjNmZiMzFlOGVjYjg5Mzlk YjQyMmEwHhcNMjUxMjI2MDkwMDMxWhcNMjUxMjI3MDkwMDMxWjAzMTEwLwYDVQQD EyhiMDBlYWFiNjdmMmYwYjYyMzdlYjVmOTlkMTRiODU1N2Y3ODI4YWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypUfIvRD1Ec/ayOPP0w40QnVbDvV b0lPSdpwDQxd5nuxzDFIisE4LTxkYmfR/kkFVOLuCnh/u3H1BlKiqKB0yEP0jVCh hnePs7Ls5F6qQ1d4vxYBYQkvGtnQqgn5c3GzKbWKgCG8FIWfAXKwTpu15gPjXm6B CtKY6RC9XGOVn89pvHc+eSNQJrPC9nUnGtzRd1PhyH48xC9Rud78XXfuAGVHyYhl pHdxgnpqfYBAnZSgWnuhWg45UsCFttdopTQP7J/4rN1gmDl01s6sME/8JoxUSCpB yiFGHqQCOXPxtlE3Eo67Df3Oj/L65dOCPDYSi422tIhkRplXtFiDH7RssQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLAOqrZ/LwtiN+tfmdFLhVf3goqvMB8GA1UdIwQY MBaAFHDql9FiaxJvWRxvsx6Oy4k520IqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY09xWDBXSnJFbTlaSEctekhvN0xpVG5iUWlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9iNjM1NjktYTI2Ny00MTQ0LWFkMzAt ZWM5YTdkMWJkZjViLzEvY09xWDBXSnJFbTlaSEctekhvN0xpVG5iUWlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9iNjM1NjktYTI2Ny00MTQ0LWFkMzAtZWM5YTdkMWJkZjVi LzEvY09xWDBXSnJFbTlaSEctekhvN0xpVG5iUWlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAci5YJOS+ rLnqz2LRo5aBxyLdXHH8haRniERimixL7zInH6wR3oR7uwpDkz4jBy3vOCMl+3HP k30m9undEAxX88JXTDlrHxyHH+t71LGrz5vxSxY/rkd0LyRS06RQGt99JOOE06Az WXqoMwy/UOzoVL4vJtSF9vLX8whwipk+gR8WGuprxRFe4nScSp5JnCddghTHCWTH /nOrRQyjiuOS2A4OtyrwBKFvikqLruzXz4Hqjm7T7iGnDePxF3NJ+u/1O0EFjHC3 iwI5S4cMEF+2VMcD7B5NbD3FvW1K4iIvmIbzkplzR9ER1L8k8NKjViTVVkW7vLJF yMPQj2MV3Cic1A== -----END CERTIFICATE-----Generated at Fri Dec 26 15:57:16 2025 by rpki-client