This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft File: 02vm8HVADTBaFt3mkOJcvZRkXL4.mft (raw, json) Hash identifier: z/fE3mXmGb7oeQgeWjjH1098kEmFXY+ZA+qMecv0LUc= Subject key identifier: 9A:A9:45:0F:48:3C:2A:46:19:82:3C:CA:D9:E1:97:75:1E:C1:AD:83 Authority key identifier: D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE Certificate issuer: /CN=d36be6f075400d305a16dde690e25cbd94645cbe Certificate serial: 019B19BBD3D8B53EE70B957B6C900CD274D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft Manifest number: 16C7 Signing time: Sat 13 Dec 2025 22:01:38 +0000 Manifest this update: Sat 13 Dec 2025 22:01:38 +0000 Manifest next update: Sun 14 Dec 2025 22:01:38 +0000 Files and hashes: 1: 02vm8HVADTBaFt3mkOJcvZRkXL4.crl (hash: H5s8rcZB15UhycAiKPYzPMZfpifgjxRQlcxJVOazbzA=) 2: bTRllN3rhV7rnjQJp0rvDHo40Gs.roa (hash: Bx0kFO6OMs0rFfJ2IZkuiIUT2mg/0ptdVSDBzsrl1H8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bb:d3:d8:b5:3e:e7:0b:95:7b:6c:90:0c:d2:74:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d36be6f075400d305a16dde690e25cbd94645cbe Validity Not Before: Dec 13 22:01:38 2025 GMT Not After : Dec 14 22:01:38 2025 GMT Subject: CN=9aa9450f483c2a4619823ccad9e197751ec1ad83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:1c:b5:dd:da:f9:f6:d4:04:6d:e9:d3:2b:74: 5d:6c:78:e5:9b:dc:7c:d7:20:fc:ec:f3:d9:71:b2: 38:0c:f8:71:46:32:ff:eb:bd:1f:78:81:73:d7:bc: 94:a2:24:4d:88:ca:0d:b1:22:9a:4f:40:bb:ac:f7: 24:08:48:f0:f6:f5:ff:8b:5c:24:e1:0d:c8:a7:d0: d6:8c:a8:c2:6c:c4:cd:d4:9f:6b:d0:a3:8a:df:eb: ca:28:cc:1a:a8:6f:69:0f:e3:53:1f:83:7f:75:7e: 80:44:d6:e3:8f:26:ca:7a:e1:c4:be:fb:e8:37:ce: d6:a3:88:11:b2:cd:fc:d7:9d:1d:6a:67:5d:4e:34: 98:cf:94:11:61:6a:90:b0:17:75:96:bc:45:a2:ac: 2a:87:65:f5:55:bb:2b:fe:41:a1:ce:56:9d:e3:00: 1c:fe:fa:53:99:63:40:de:1d:0b:35:52:98:d0:60: e3:5d:57:25:1f:30:25:fe:3b:d1:e0:0c:aa:98:62: 6a:0b:3b:28:7e:ed:b1:07:94:ce:75:54:31:c8:3f: 78:4d:95:de:98:ea:f5:0b:6f:68:74:ed:6d:f3:ba: 5e:51:4f:df:11:4b:1d:89:a9:c4:e7:4c:9f:fe:30: fd:08:e9:be:e7:27:13:36:5a:4f:f4:f6:38:5f:f9: 1b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A9:45:0F:48:3C:2A:46:19:82:3C:CA:D9:E1:97:75:1E:C1:AD:83 X509v3 Authority Key Identifier: keyid:D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:a8:df:a7:db:c5:5d:c5:54:12:55:72:50:93:d4:76:0f:49: 46:29:89:c3:23:6f:bb:bd:68:c0:ca:81:73:1d:06:00:44:53: 8d:f3:18:65:df:f8:9f:e9:93:57:10:50:1f:c2:99:4f:6a:1a: d9:5a:34:5b:39:8f:aa:b4:9d:be:8c:99:6e:b0:99:9c:e0:1b: 58:78:c1:f0:0b:ff:0f:0f:13:d0:95:b7:48:5b:c5:e4:f7:b9: f8:e7:b1:7a:cc:ff:3c:11:d3:19:5d:46:fa:6e:52:60:da:3a: cc:7f:5e:40:0d:93:71:be:61:dd:cb:03:8e:bd:ac:13:6c:16: 2c:1f:c2:ea:f6:52:07:cb:b7:c0:6e:03:5a:65:b0:d6:d3:3c: c2:fc:e8:f9:d6:49:ea:3f:ea:00:ed:ad:86:d2:24:8a:9f:40: 39:2c:12:3c:78:82:ea:90:a2:fc:4d:8e:68:58:67:62:e7:d8: 22:02:aa:e0:1e:f4:fb:82:2e:ba:ef:23:62:96:50:6e:41:2f: d6:a9:b6:84:fa:79:9e:62:b2:88:bf:e3:66:1a:03:9e:09:69: 9a:91:5b:11:de:53:26:5d:ab:9f:8c:f7:90:59:dd:91:df:57: 32:56:51:82:fe:9b:75:68:91:e6:0d:96:05:f0:c6:2a:64:81: a9:46:b2:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZu9PYtT7nC5V7bJAM0nTWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzNmJlNmYwNzU0MDBkMzA1YTE2ZGRlNjkwZTI1Y2JkOTQ2 NDVjYmUwHhcNMjUxMjEzMjIwMTM4WhcNMjUxMjE0MjIwMTM4WjAzMTEwLwYDVQQD Eyg5YWE5NDUwZjQ4M2MyYTQ2MTk4MjNjY2FkOWUxOTc3NTFlYzFhZDgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9By13dr59tQEbenTK3RdbHjlm9x8 1yD87PPZcbI4DPhxRjL/670feIFz17yUoiRNiMoNsSKaT0C7rPckCEjw9vX/i1wk 4Q3Ip9DWjKjCbMTN1J9r0KOK3+vKKMwaqG9pD+NTH4N/dX6ARNbjjybKeuHEvvvo N87Wo4gRss38150damddTjSYz5QRYWqQsBd1lrxFoqwqh2X1Vbsr/kGhzlad4wAc /vpTmWNA3h0LNVKY0GDjXVclHzAl/jvR4AyqmGJqCzsofu2xB5TOdVQxyD94TZXe mOr1C29odO1t87peUU/fEUsdianE50yf/jD9COm+5ycTNlpP9PY4X/kb+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJqpRQ9IPCpGGYI8ytnhl3Uewa2DMB8GA1UdIwQY MBaAFNNr5vB1QA0wWhbd5pDiXL2UZFy+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDJ2bThIVkFEVEJhRnQzbWtPSmN2WlJrWEw0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8wZmRlMzgtZTliOS00YjY5LWI0MTQt MzBjMWM1YTA4MGQ5LzEvMDJ2bThIVkFEVEJhRnQzbWtPSmN2WlJrWEw0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy8wZmRlMzgtZTliOS00YjY5LWI0MTQtMzBjMWM1YTA4MGQ5 LzEvMDJ2bThIVkFEVEJhRnQzbWtPSmN2WlJrWEw0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVqjfp9vF XcVUElVyUJPUdg9JRimJwyNvu71owMqBcx0GAERTjfMYZd/4n+mTVxBQH8KZT2oa 2Vo0WzmPqrSdvoyZbrCZnOAbWHjB8Av/Dw8T0JW3SFvF5Pe5+Oexesz/PBHTGV1G +m5SYNo6zH9eQA2Tcb5h3csDjr2sE2wWLB/C6vZSB8u3wG4DWmWw1tM8wvzo+dZJ 6j/qAO2thtIkip9AOSwSPHiC6pCi/E2OaFhnYufYIgKq4B70+4Iuuu8jYpZQbkEv 1qm2hPp5nmKyiL/jZhoDnglpmpFbEd5TJl2rn4z3kFndkd9XMlZRgv6bdWiR5g2W BfDGKmSBqUaynA== -----END CERTIFICATE-----Generated at Sun Dec 14 01:51:19 2025 by rpki-client