This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json) Hash identifier: Qzn7PRMykzGEK6xgoiv8t5kUR4rQph0L9Y9SfiAVK/M= Subject key identifier: 51:EF:1A:96:69:DC:AB:BD:57:F1:17:8E:C6:19:8C:38:B2:6D:CF:1D Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d Certificate serial: 019B1A603CB6A2FB5993A0AE24EB2D421D84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft Manifest number: 0370 Signing time: Sun 14 Dec 2025 01:01:13 +0000 Manifest this update: Sun 14 Dec 2025 01:01:13 +0000 Manifest next update: Mon 15 Dec 2025 01:01:13 +0000 Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: vIVrsH86ba8AgatCxswPyrqPg7q02RMQIN0S/F1QEVg=) 2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:60:3c:b6:a2:fb:59:93:a0:ae:24:eb:2d:42:1d:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d Validity Not Before: Dec 14 01:01:13 2025 GMT Not After : Dec 15 01:01:13 2025 GMT Subject: CN=51ef1a9669dcabbd57f1178ec6198c38b26dcf1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e7:a3:34:e8:9f:94:e7:99:e4:5f:7b:00:b6: ee:8a:ba:ed:c1:4b:d8:f3:20:ad:8c:a2:2b:c1:4a: 69:bd:78:01:50:4a:7d:81:81:dc:d0:86:ab:a0:28: 29:a9:97:34:f8:7c:0e:cc:7a:32:f7:c7:3c:c4:69: b8:cf:2e:e0:a5:10:31:8a:e5:88:ae:0e:bf:f1:3e: d5:69:94:4d:19:56:21:ad:d8:19:7c:1e:71:36:54: ca:2f:e3:43:c9:e8:02:66:a9:36:99:9d:fd:da:a4: 1a:dc:21:8f:4d:28:85:c0:61:fe:7e:46:27:b2:5b: 24:b3:7e:1f:aa:48:25:d6:ef:c9:61:bf:22:6d:5d: 15:a0:7a:f7:30:5f:89:d0:fc:a4:89:76:24:4a:6e: 95:04:83:cb:be:8a:79:cd:fb:b5:c4:e4:18:18:d1: 82:43:81:f9:ee:db:27:b8:8a:73:7b:e6:e8:57:5d: c2:81:79:2f:6d:9a:50:ac:c7:36:ca:47:06:19:c7: 8e:34:96:ce:07:90:64:22:f7:f0:34:b6:e1:41:1c: 9f:de:95:75:79:62:e5:22:7f:0d:2e:4a:e9:91:51: 7a:5d:52:11:8f:8c:5d:fc:40:a8:8b:2e:e4:8a:cb: e8:1c:e2:85:e8:bd:60:56:60:e2:4f:58:5c:cd:2e: 73:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:EF:1A:96:69:DC:AB:BD:57:F1:17:8E:C6:19:8C:38:B2:6D:CF:1D X509v3 Authority Key Identifier: keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c5:e0:f6:d6:b4:20:de:9c:f6:c5:d5:6b:d1:6e:df:56:fa: c3:2f:b5:23:22:5b:26:b2:b2:f1:ee:59:a1:bc:31:67:28:0d: 88:14:e4:d7:bd:35:85:b1:aa:4a:a5:aa:e0:a7:0c:09:c4:4d: 58:66:bb:ec:95:c4:de:b6:70:d4:5c:0f:23:40:e6:91:12:cb: 3c:a3:ee:ff:f2:19:95:ab:8d:6c:10:85:9a:f9:a5:73:86:98: cb:c4:42:54:63:8c:a1:44:18:97:d4:1f:93:23:76:60:d8:bf: 69:48:df:e1:14:7b:30:1f:cf:c4:a9:42:a1:0d:1c:b0:81:97: 31:f1:d6:66:cb:c4:0d:f6:a8:21:6d:71:6b:2c:d9:a5:18:f4: 12:ea:f6:1f:74:1f:91:ca:be:3f:43:5e:bb:65:6f:e2:d8:2f: a0:28:9d:02:c9:b2:aa:6c:a4:fb:2e:f3:34:8c:57:d1:1e:48: 6b:4d:26:2c:e5:27:5e:76:d2:8a:59:7f:5a:0a:7c:fc:48:96: d2:91:2f:0e:eb:9a:8e:bc:23:40:20:65:fe:22:f9:f8:dc:b1: 2e:96:85:aa:dc:85:dd:cf:04:0d:e2:2e:86:35:d8:a6:a2:88: 26:2c:38:51:42:b1:96:d6:5a:5c:3e:a3:ce:6c:c9:09:4c:4c: 92:2f:6b:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaYDy2ovtZk6CuJOstQh2EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhMmY2NzFmMTA4MzRkYWU0OGVhOGQ5ODczNDJjMzc1Y2Fi MzMxNmQwHhcNMjUxMjE0MDEwMTEzWhcNMjUxMjE1MDEwMTEzWjAzMTEwLwYDVQQD Eyg1MWVmMWE5NjY5ZGNhYmJkNTdmMTE3OGVjNjE5OGMzOGIyNmRjZjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6OejNOiflOeZ5F97ALbuirrtwUvY 8yCtjKIrwUppvXgBUEp9gYHc0IaroCgpqZc0+HwOzHoy98c8xGm4zy7gpRAxiuWI rg6/8T7VaZRNGVYhrdgZfB5xNlTKL+NDyegCZqk2mZ392qQa3CGPTSiFwGH+fkYn slsks34fqkgl1u/JYb8ibV0VoHr3MF+J0PykiXYkSm6VBIPLvop5zfu1xOQYGNGC Q4H57tsnuIpze+boV13CgXkvbZpQrMc2ykcGGceONJbOB5BkIvfwNLbhQRyf3pV1 eWLlIn8NLkrpkVF6XVIRj4xd/ECoiy7kisvoHOKF6L1gVmDiT1hczS5z4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFHvGpZp3Ku9V/EXjsYZjDiybc8dMB8GA1UdIwQY MBaAFOovZx8Qg02uSOqNmHNCw3XKszFtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMt MWM0MjBmMDU1NzlmLzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMtMWM0MjBmMDU1Nzlm LzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX8Xg9ta0 IN6c9sXVa9Fu31b6wy+1IyJbJrKy8e5ZobwxZygNiBTk1701hbGqSqWq4KcMCcRN WGa77JXE3rZw1FwPI0DmkRLLPKPu//IZlauNbBCFmvmlc4aYy8RCVGOMoUQYl9Qf kyN2YNi/aUjf4RR7MB/PxKlCoQ0csIGXMfHWZsvEDfaoIW1xayzZpRj0Eur2H3Qf kcq+P0Neu2Vv4tgvoCidAsmyqmyk+y7zNIxX0R5Ia00mLOUnXnbSill/Wgp8/EiW 0pEvDuuajrwjQCBl/iL5+NyxLpaFqtyF3c8EDeIuhjXYpqKIJiw4UUKxltZaXD6j zmzJCUxMki9rKQ== -----END CERTIFICATE-----Generated at Sun Dec 14 05:12:50 2025 by rpki-client