This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft File: 6gYhpKcsclr8dUFej4rPdTPUIH0.mft (raw, json) Hash identifier: 7xJ5vzVwZ9BeE1/QqF+imFRec0lUch+PxLDzaJQTStE= Subject key identifier: 60:B1:C7:23:03:4E:CA:03:79:CF:A5:A6:5B:5A:03:D7:52:CD:B4:C0 Authority key identifier: EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D Certificate issuer: /CN=ea0621a4a72c725afc75415e8f8acf7533d4207d Certificate serial: 019B5977D72F6BE04AEBC1477F8B7A7A36D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft Manifest number: 15E2 Signing time: Fri 26 Dec 2025 07:03:04 +0000 Manifest this update: Fri 26 Dec 2025 07:03:04 +0000 Manifest next update: Sat 27 Dec 2025 07:03:04 +0000 Files and hashes: 1: 6gYhpKcsclr8dUFej4rPdTPUIH0.crl (hash: MBZtHYnuWwKbQgc9XIusKOrt0+Nt2ambP4LFtP6q8os=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 07:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:d7:2f:6b:e0:4a:eb:c1:47:7f:8b:7a:7a:36:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea0621a4a72c725afc75415e8f8acf7533d4207d Validity Not Before: Dec 26 07:03:04 2025 GMT Not After : Dec 27 07:03:04 2025 GMT Subject: CN=60b1c723034eca0379cfa5a65b5a03d752cdb4c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:52:d1:0a:5b:e5:9c:1f:94:10:72:06:3d:49: 91:31:5f:33:5d:6f:20:54:d0:49:6a:1e:b2:7c:9c: 37:ce:98:bd:fe:94:e4:98:fb:53:25:c5:bb:9a:7a: e5:46:bf:25:c5:c9:5e:b8:98:ee:5f:4b:7f:a4:ab: 8e:32:69:d6:a5:26:35:5f:b8:ca:b4:75:b6:46:b4: 67:d3:f3:84:c7:66:d2:fa:17:bf:92:d9:9c:95:c3: 2a:ef:31:6e:3e:cc:df:53:0f:7c:09:97:0f:fa:12: d0:c8:43:28:ac:13:52:9d:16:54:03:4a:fc:5a:8a: ca:a2:6d:e0:6f:7e:a3:9a:40:6c:af:c6:9b:d8:68: 39:72:8b:c4:b3:48:7b:1b:57:6a:44:4a:02:10:f0: d7:26:59:59:1b:32:01:7c:ed:04:c7:e5:81:23:5f: 46:fe:08:ea:48:4c:32:d6:98:a3:7a:73:57:ee:89: 8d:34:55:a9:87:df:f6:72:41:90:94:69:d4:bd:20: c6:9d:e4:3e:cf:07:d9:23:a4:8b:c3:ae:41:47:07: 40:01:67:b0:52:18:37:72:c6:6b:b7:61:26:f8:62: 66:dc:b6:d7:10:65:4d:0e:8b:f5:ae:2f:5e:f3:26: 31:ab:de:35:7c:b8:94:04:22:ca:72:e9:be:b4:f9: 1f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B1:C7:23:03:4E:CA:03:79:CF:A5:A6:5B:5A:03:D7:52:CD:B4:C0 X509v3 Authority Key Identifier: keyid:EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cd:76:30:8a:59:b9:9f:03:ba:da:44:c5:23:3f:0c:ca:28:36: 0e:ac:2d:bf:0a:67:de:3b:f4:c9:fd:b4:25:91:f2:e7:1a:da: 88:f2:69:cc:b6:a0:1e:64:cd:41:4d:15:fb:99:82:84:a4:39: d3:60:6b:59:d9:e2:4a:eb:c7:58:47:3e:9a:b4:97:cc:36:6e: 16:e2:6a:f5:26:a3:26:3a:30:e9:f3:e2:6d:2c:13:3a:51:6a: fe:ef:5d:e1:45:06:30:a7:1d:64:2d:d4:3e:17:fd:23:bb:36: ba:a3:d6:d5:03:f5:b9:12:e1:a5:9b:79:e1:d1:a3:b7:2e:4d: 78:34:90:5d:c9:a8:c1:26:aa:47:61:3a:5f:6d:59:5d:1b:c2: 66:60:68:ed:71:5d:c1:c0:05:a9:e1:93:e6:36:d4:de:98:90: 64:b4:60:76:9c:ec:73:9a:80:a4:f3:27:81:70:4e:fd:f4:a3: 97:13:56:5a:bb:21:4e:ad:fa:f2:79:42:e0:de:96:66:ee:7e: 7c:87:6f:06:6c:ec:03:24:f6:d0:cb:75:44:8e:c8:bc:53:fc: 73:68:76:e9:c3:d4:42:dc:8c:f6:9d:72:3e:1a:64:a0:13:37: c9:29:4a:a0:ce:35:39:9a:bf:c3:d5:5b:df:83:f8:b5:b7:b0: 7c:55:79:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd9cva+BK68FHf4t6ejbXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhMDYyMWE0YTcyYzcyNWFmYzc1NDE1ZThmOGFjZjc1MzNk NDIwN2QwHhcNMjUxMjI2MDcwMzA0WhcNMjUxMjI3MDcwMzA0WjAzMTEwLwYDVQQD Eyg2MGIxYzcyMzAzNGVjYTAzNzljZmE1YTY1YjVhMDNkNzUyY2RiNGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1LRClvlnB+UEHIGPUmRMV8zXW8g VNBJah6yfJw3zpi9/pTkmPtTJcW7mnrlRr8lxcleuJjuX0t/pKuOMmnWpSY1X7jK tHW2RrRn0/OEx2bS+he/ktmclcMq7zFuPszfUw98CZcP+hLQyEMorBNSnRZUA0r8 WorKom3gb36jmkBsr8ab2Gg5covEs0h7G1dqREoCEPDXJllZGzIBfO0Ex+WBI19G /gjqSEwy1pijenNX7omNNFWph9/2ckGQlGnUvSDGneQ+zwfZI6SLw65BRwdAAWew Uhg3csZrt2Em+GJm3LbXEGVNDov1ri9e8yYxq941fLiUBCLKcum+tPkfnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGCxxyMDTsoDec+lpltaA9dSzbTAMB8GA1UdIwQY MBaAFOoGIaSnLHJa/HVBXo+Kz3Uz1CB9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmdZaHBLY3NjbHI4ZFVGZWo0clBkVFBVSUgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8zMTE1OGUtOWNhNi00NGUzLTk4NTMt YzM4NGQ4YmMzYmVmLzEvNmdZaHBLY3NjbHI4ZFVGZWo0clBkVFBVSUgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8zMTE1OGUtOWNhNi00NGUzLTk4NTMtYzM4NGQ4YmMzYmVm LzEvNmdZaHBLY3NjbHI4ZFVGZWo0clBkVFBVSUgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzXYwilm5 nwO62kTFIz8Myig2Dqwtvwpn3jv0yf20JZHy5xraiPJpzLagHmTNQU0V+5mChKQ5 02BrWdniSuvHWEc+mrSXzDZuFuJq9SajJjow6fPibSwTOlFq/u9d4UUGMKcdZC3U Phf9I7s2uqPW1QP1uRLhpZt54dGjty5NeDSQXcmowSaqR2E6X21ZXRvCZmBo7XFd wcAFqeGT5jbU3piQZLRgdpzsc5qApPMngXBO/fSjlxNWWrshTq368nlC4N6WZu5+ fIdvBmzsAyT20Mt1RI7IvFP8c2h26cPUQtyM9p1yPhpkoBM3ySlKoM41OZq/w9Vb 34P4tbewfFV5GA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:25 2025 by rpki-client