This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft File: b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft (raw, json) Hash identifier: WB25xDqR9qHLBj8w/VTxRswStYkPmx5l3MmX8vLTowk= Subject key identifier: 7B:F9:3B:62:0A:1F:2C:89:CC:F4:F8:0A:23:28:AA:A0:1A:53:1E:85 Authority key identifier: 6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77 Certificate issuer: /CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177 Certificate serial: 019B34200C85F26AEC98126302CE3817CCF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft Manifest number: 16C7 Signing time: Fri 19 Dec 2025 01:01:14 +0000 Manifest this update: Fri 19 Dec 2025 01:01:14 +0000 Manifest next update: Sat 20 Dec 2025 01:01:14 +0000 Files and hashes: 1: 9eMR4FNJDVauWkWIUPQVpbQ5CXg.roa (hash: u33y8H6nVy03TdakAVCKdnmWlusbHupRimP8Gevy98g=) 2: b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl (hash: XABdJw5cyMIKEDILPkd4QO8CxIeBk3HMMBsfqsBjfEc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:20:0c:85:f2:6a:ec:98:12:63:02:ce:38:17:cc:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177 Validity Not Before: Dec 19 01:01:14 2025 GMT Not After : Dec 20 01:01:14 2025 GMT Subject: CN=7bf93b620a1f2c89ccf4f80a2328aaa01a531e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c6:8e:4e:f5:a1:69:fa:40:85:60:f2:70:6b: c8:44:e8:c4:40:04:22:2d:99:5b:65:69:3d:63:61: fa:9a:c8:7c:94:f9:93:c4:90:b4:06:48:c4:2e:97: dd:93:2b:b9:1d:7c:22:79:20:03:40:de:72:44:49: 42:7e:5b:3e:51:26:cb:67:cb:b9:6e:20:43:fc:95: 9e:b4:52:b7:65:e7:08:87:7b:d0:9c:5a:a3:5b:31: 66:b3:85:dd:53:7a:04:23:66:25:3d:b6:4b:3c:f3: 35:5e:b6:76:03:10:2c:85:09:6a:64:e7:ff:fd:f6: 70:64:1b:f8:f3:24:bc:bd:f5:61:a2:e1:04:60:1c: fd:4b:c3:f5:2f:6d:55:af:36:98:0c:55:67:73:13: 0b:d0:2a:c3:0b:7d:4e:c7:48:8c:5d:4d:fd:bf:4f: 8a:38:c1:17:e9:ab:83:7d:18:45:31:f6:85:41:39: 6b:66:29:e7:3b:c4:3d:e5:fe:57:cc:fa:4c:79:33: 2c:5e:8f:ba:9b:b3:6f:7e:11:c6:07:68:43:61:a1: 78:2e:59:dd:88:35:21:b2:e4:e8:ed:f2:40:a1:94: 84:44:28:39:9d:d4:ed:8a:59:ac:3a:54:2c:eb:cb: cb:f5:88:d7:ad:f9:51:c2:65:e8:63:18:61:5b:45: f6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:F9:3B:62:0A:1F:2C:89:CC:F4:F8:0A:23:28:AA:A0:1A:53:1E:85 X509v3 Authority Key Identifier: keyid:6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:2c:dc:90:9f:e1:af:dc:d8:77:f3:ea:01:44:51:23:da:89: 75:de:84:b7:a2:52:46:42:b3:b8:ed:e3:9a:33:13:9f:69:57: 8f:45:5c:a8:d7:ec:1f:16:0d:88:df:6c:0c:4a:b4:35:cb:58: 65:ec:04:de:90:ea:9a:b8:83:05:6c:a0:1e:f2:39:49:93:3f: 32:79:07:b8:dc:9a:90:d3:91:70:d3:be:fa:bf:2d:4e:8d:91: 5e:57:30:02:c5:f2:dd:18:f1:ef:4e:74:63:6d:db:7f:81:eb: 18:db:08:77:f2:02:cd:df:3e:cc:5c:65:28:85:de:8a:d0:0b: 23:7a:f4:55:fa:a2:e4:81:dc:06:96:79:cf:4f:9d:ff:b7:6e: 11:7e:d4:b8:c9:3d:78:1a:a0:ef:e7:11:87:b2:7b:b2:7c:09: 9a:cc:af:96:90:c6:c8:cf:0b:20:bf:a3:cb:94:d8:1a:a8:a7: e5:bc:d5:d7:3e:cd:24:2e:6d:ab:33:39:5d:33:e5:82:59:e5: d9:62:a5:bb:62:f8:b2:be:8f:f3:95:29:ac:54:28:0f:6a:ac: e7:9a:65:0f:f8:d2:40:b9:99:19:5f:e0:86:e0:09:80:26:0c: 23:33:75:a4:be:b4:03:ec:64:47:db:a6:91:19:1e:55:f2:0e: 54:16:dc:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0IAyF8mrsmBJjAs44F8z0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmYTQ4ZTk2MTk3NDI2ZTRjNWVlYjQyM2UwZmQ5YzJlOTUy YzQxNzcwHhcNMjUxMjE5MDEwMTE0WhcNMjUxMjIwMDEwMTE0WjAzMTEwLwYDVQQD Eyg3YmY5M2I2MjBhMWYyYzg5Y2NmNGY4MGEyMzI4YWFhMDFhNTMxZTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycaOTvWhafpAhWDycGvIROjEQAQi LZlbZWk9Y2H6msh8lPmTxJC0BkjELpfdkyu5HXwieSADQN5yRElCfls+USbLZ8u5 biBD/JWetFK3ZecIh3vQnFqjWzFms4XdU3oEI2YlPbZLPPM1XrZ2AxAshQlqZOf/ /fZwZBv48yS8vfVhouEEYBz9S8P1L21VrzaYDFVncxML0CrDC31Ox0iMXU39v0+K OMEX6auDfRhFMfaFQTlrZinnO8Q95f5XzPpMeTMsXo+6m7NvfhHGB2hDYaF4Llnd iDUhsuTo7fJAoZSERCg5ndTtilmsOlQs68vL9YjXrflRwmXoYxhhW0X2MwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHv5O2IKHyyJzPT4CiMoqqAaUx6FMB8GA1UdIwQY MBaAFG+kjpYZdCbkxe60I+D9nC6VLEF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjZTT2xobDBKdVRGN3JRajRQMmNMcFVzUVhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC84YzViYzctNTVmYS00MDQ0LTg4ZGEt NjgxODVmZGI5MDAzLzEvYjZTT2xobDBKdVRGN3JRajRQMmNMcFVzUVhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC84YzViYzctNTVmYS00MDQ0LTg4ZGEtNjgxODVmZGI5MDAz LzEvYjZTT2xobDBKdVRGN3JRajRQMmNMcFVzUVhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANCzckJ/h r9zYd/PqAURRI9qJdd6Et6JSRkKzuO3jmjMTn2lXj0VcqNfsHxYNiN9sDEq0NctY ZewE3pDqmriDBWygHvI5SZM/MnkHuNyakNORcNO++r8tTo2RXlcwAsXy3Rjx7050 Y23bf4HrGNsId/ICzd8+zFxlKIXeitALI3r0Vfqi5IHcBpZ5z0+d/7duEX7UuMk9 eBqg7+cRh7J7snwJmsyvlpDGyM8LIL+jy5TYGqin5bzV1z7NJC5tqzM5XTPlglnl 2WKlu2L4sr6P85UprFQoD2qs55plD/jSQLmZGV/ghuAJgCYMIzN1pL60A+xkR9um kRkeVfIOVBbcRg== -----END CERTIFICATE-----Generated at Fri Dec 19 03:18:12 2025 by rpki-client