This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft File: CtBt0nvZOjgNpMddGovwdoKP1ko.mft (raw, json) Hash identifier: clyxal/QLmR/HtW5visEW7sXJLZGDtzLlMIK1T58c7w= Subject key identifier: F1:6C:30:77:72:E8:47:9F:E0:08:20:0D:5F:1F:6F:94:30:17:A8:73 Authority key identifier: 0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A Certificate issuer: /CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a Certificate serial: 019B0F6E86D91BEA8670D08AC9E394369192 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft Manifest number: 0A69 Signing time: Thu 11 Dec 2025 22:01:00 +0000 Manifest this update: Thu 11 Dec 2025 22:01:00 +0000 Manifest next update: Fri 12 Dec 2025 22:01:00 +0000 Files and hashes: 1: 24PmMpD-bHbUV8mxF_RlzuSRjLU.roa (hash: ohLVMvfqoqKO1xPsU0QfK7dKJZtv+ZBmQ14II/YiXms=) 2: CtBt0nvZOjgNpMddGovwdoKP1ko.crl (hash: RCMsNGK+4XETjnIonad6OK5eWzZ+zi/rzyx2nVFrr34=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:6e:86:d9:1b:ea:86:70:d0:8a:c9:e3:94:36:91:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a Validity Not Before: Dec 11 22:01:00 2025 GMT Not After : Dec 12 22:01:00 2025 GMT Subject: CN=f16c307772e8479fe008200d5f1f6f943017a873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f0:51:71:1b:9b:2e:d6:a6:3d:31:4b:c0:13: 5a:2f:6e:14:fe:89:47:2f:b3:0d:16:b2:2e:c3:9a: 41:be:9e:cc:f4:3b:66:97:44:c1:8c:7a:0c:77:ac: ce:8b:02:67:0f:c5:39:43:2a:62:94:b9:31:64:ac: 09:58:e9:38:55:59:76:11:23:d7:a2:73:68:07:4a: 4d:1e:cb:10:62:79:43:90:71:a2:6a:dc:4d:28:3c: 5c:18:63:4e:12:a9:02:20:26:4d:13:0e:bc:92:86: f9:aa:6b:03:8b:8b:a1:ee:49:d2:49:20:f3:45:b3: 01:27:46:1e:f6:7e:20:68:e9:fc:bc:aa:9f:fa:27: 0d:68:12:db:68:23:e0:3e:5f:9f:7f:a3:38:36:a4: b4:95:af:64:5e:ea:91:3f:3a:2b:c7:9b:e3:94:47: c7:61:25:6a:0a:5e:51:ff:d9:61:cc:f3:79:9d:65: bf:88:e7:77:e5:90:86:d2:79:e2:45:45:95:c3:51: 7a:9c:fc:dc:b3:35:f1:3a:46:30:29:6e:b7:e9:ba: 75:f9:8a:5f:ee:5e:8a:fa:5c:7c:21:f7:85:0d:a9: ae:88:29:e5:eb:8a:c8:80:e9:c4:35:2f:3a:fb:c6: af:a1:1c:f7:9c:fe:71:c3:6a:31:3b:84:66:74:7e: 04:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6C:30:77:72:E8:47:9F:E0:08:20:0D:5F:1F:6F:94:30:17:A8:73 X509v3 Authority Key Identifier: keyid:0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:93:8b:4d:d7:8e:99:ea:ee:cb:49:52:89:9a:0c:25:8e:02: 02:52:ec:0f:06:bd:f6:1a:eb:c8:3f:8a:55:67:f8:11:ee:01: 70:c6:fe:b8:b1:0e:69:eb:9d:fb:5d:8c:bf:bf:9e:a5:4e:c3: 67:dc:00:ab:bf:a1:ce:26:bf:dc:84:79:ee:1a:4a:27:18:51: ee:fb:c2:23:9c:87:38:aa:9f:eb:f0:06:4d:a3:ce:2c:d7:3e: 97:00:4c:50:b8:a2:56:16:73:e6:b5:79:cb:25:b5:3a:5b:e0: b6:25:3a:a6:47:21:37:f5:d7:23:b6:b5:d3:3f:63:25:3c:a2: ce:bd:3c:31:6e:55:32:60:1e:99:e1:1d:22:98:e6:7d:76:b4: c4:a5:44:d4:15:da:ff:d3:0f:76:0d:d7:6c:73:db:e2:88:f4: ff:86:fe:fd:63:df:5e:39:45:12:b8:52:2c:fe:46:7d:94:a9: 9d:fc:2f:97:6e:dc:03:84:ee:75:45:25:9f:8d:cd:83:3f:aa: 4b:d9:e4:fc:3d:85:41:b0:1c:53:82:19:4c:08:c1:79:3a:bc: c3:b4:26:56:69:22:49:72:c8:3b:de:0e:e0:bd:50:52:ed:41: 1c:4e:fe:71:22:df:16:51:ae:b9:cf:13:01:bb:c1:81:17:a7: cf:cb:20:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPbobZG+qGcNCKyeOUNpGSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhZDA2ZGQyN2JkOTNhMzgwZGE0Yzc1ZDFhOGJmMDc2ODI4 ZmQ2NGEwHhcNMjUxMjExMjIwMTAwWhcNMjUxMjEyMjIwMTAwWjAzMTEwLwYDVQQD EyhmMTZjMzA3NzcyZTg0NzlmZTAwODIwMGQ1ZjFmNmY5NDMwMTdhODczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6fBRcRubLtamPTFLwBNaL24U/olH L7MNFrIuw5pBvp7M9Dtml0TBjHoMd6zOiwJnD8U5QypilLkxZKwJWOk4VVl2ESPX onNoB0pNHssQYnlDkHGiatxNKDxcGGNOEqkCICZNEw68kob5qmsDi4uh7knSSSDz RbMBJ0Ye9n4gaOn8vKqf+icNaBLbaCPgPl+ff6M4NqS0la9kXuqRPzorx5vjlEfH YSVqCl5R/9lhzPN5nWW/iOd35ZCG0nniRUWVw1F6nPzcszXxOkYwKW636bp1+Ypf 7l6K+lx8IfeFDamuiCnl64rIgOnENS86+8avoRz3nP5xw2oxO4RmdH4E0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPFsMHdy6Eef4AggDV8fb5QwF6hzMB8GA1UdIwQY MBaAFArQbdJ72To4DaTHXRqL8HaCj9ZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ3RCdDBudlpPamdOcE1kZEdvdndkb0tQMWtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kYjc1ZGItMjViMi00M2RjLWFhMTIt ZWQwMDFhMjg4OWFkLzEvQ3RCdDBudlpPamdOcE1kZEdvdndkb0tQMWtvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kYjc1ZGItMjViMi00M2RjLWFhMTItZWQwMDFhMjg4OWFk LzEvQ3RCdDBudlpPamdOcE1kZEdvdndkb0tQMWtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOZOLTdeO meruy0lSiZoMJY4CAlLsDwa99hrryD+KVWf4Ee4BcMb+uLEOaeud+12Mv7+epU7D Z9wAq7+hzia/3IR57hpKJxhR7vvCI5yHOKqf6/AGTaPOLNc+lwBMULiiVhZz5rV5 yyW1OlvgtiU6pkchN/XXI7a10z9jJTyizr08MW5VMmAemeEdIpjmfXa0xKVE1BXa /9MPdg3XbHPb4oj0/4b+/WPfXjlFErhSLP5GfZSpnfwvl27cA4TudUUln43Ngz+q S9nk/D2FQbAcU4IZTAjBeTq8w7QmVmkiSXLIO94O4L1QUu1BHE7+cSLfFlGuuc8T AbvBgRenz8sg3w== -----END CERTIFICATE-----Generated at Fri Dec 12 01:47:14 2025 by rpki-client