This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft File: CBg0SlIKOZknm7gkfheeiEBuNXg.mft (raw, json) Hash identifier: Nx8RXFkkASEYpsnX8X4aBcTbJZgsCzaoqTaGEKOif7s= Subject key identifier: C7:96:8E:64:99:1C:44:36:D9:21:17:A0:10:CE:6D:63:3A:C9:CE:CC Authority key identifier: 08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78 Certificate issuer: /CN=0818344a520a3999279bb8247e179e88406e3578 Certificate serial: 019B5908189424EA69BDE8EC14117B621BF0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft Manifest number: 0A64 Signing time: Fri 26 Dec 2025 05:01:01 +0000 Manifest this update: Fri 26 Dec 2025 05:01:01 +0000 Manifest next update: Sat 27 Dec 2025 05:01:01 +0000 Files and hashes: 1: B-j6lkFyqvjbC_PQncwIGbX8TJo.roa (hash: UphQUvnVM6eEU6Z6D8ssHUSQvyAzogcc5pnYk33x3jA=) 2: CBg0SlIKOZknm7gkfheeiEBuNXg.crl (hash: X5zXStIH7QTGcrkJsoUYfu8zrBrp5t0S1YDWTb8rxNY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 05:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:08:18:94:24:ea:69:bd:e8:ec:14:11:7b:62:1b:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0818344a520a3999279bb8247e179e88406e3578 Validity Not Before: Dec 26 05:01:01 2025 GMT Not After : Dec 27 05:01:01 2025 GMT Subject: CN=c7968e64991c4436d92117a010ce6d633ac9cecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:69:5d:1d:39:66:b8:0f:8d:aa:3f:e3:41:54: e6:6a:72:54:7d:59:f3:a3:d3:86:4f:43:13:04:96: ed:6c:5a:0e:69:b5:94:8a:41:2a:34:b7:5c:19:6d: 6f:db:c7:20:9f:ee:3c:73:f4:c4:bc:e7:44:ce:a3: 7b:93:9e:c8:da:4b:05:91:89:b6:f4:c3:8f:54:c6: 92:c5:42:61:f1:ec:35:2b:a9:49:59:41:2f:0a:57: 0b:45:3c:01:8b:cc:12:31:7f:19:ab:44:e3:86:4b: 27:38:68:53:08:ab:1f:96:77:14:77:80:f2:cb:bf: a3:a3:66:93:0b:3a:87:f8:a0:0e:b3:de:db:a8:99: ee:2e:e3:65:28:a1:2f:a6:33:7d:c9:5b:8c:8a:0d: 38:5f:e2:4b:9f:23:57:da:ee:95:b4:c9:96:13:4b: fe:dc:35:0b:d1:d3:a1:b2:b2:37:84:62:d9:54:60: bf:39:95:9d:2b:4b:a2:60:45:ab:f9:98:fe:3a:57: a3:1a:da:1b:31:a1:2b:6f:86:cb:a5:05:06:33:c3: 6f:52:d7:a2:88:14:05:f9:70:3d:2b:4a:1f:29:46: 2b:7d:6d:06:20:87:70:84:31:e3:be:90:1f:8d:6d: 4e:7c:10:bd:24:b8:d4:2b:a4:4a:3a:58:8e:b8:97: 14:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:96:8E:64:99:1C:44:36:D9:21:17:A0:10:CE:6D:63:3A:C9:CE:CC X509v3 Authority Key Identifier: keyid:08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:07:3e:de:85:af:0c:3b:e0:93:72:32:11:a0:c8:25:a5:1c: a5:32:f9:8c:5d:1c:0a:3f:e1:db:8e:c9:6f:6d:81:0d:d4:b6: 24:bf:dc:14:ac:f2:52:8c:30:bd:9b:49:06:ff:94:ec:88:2a: c8:9a:d1:25:26:2b:cb:3b:f6:ef:f7:9a:b0:39:c2:6a:4e:6e: 58:25:50:65:4a:be:d3:dc:f9:77:bd:97:69:23:2a:12:3d:fb: e0:0d:c2:6c:cb:e2:b7:9e:e3:26:b7:e0:65:3b:c8:a1:4f:10: 23:ae:02:3d:49:7d:db:21:30:37:6c:67:26:47:70:18:86:9d: b0:f4:81:d2:da:02:4b:7d:4d:12:8e:46:83:31:d1:53:27:78: 8d:20:d0:5f:eb:cf:0f:12:b6:09:b8:34:5b:59:d4:8c:e7:ba: 50:30:bf:70:e2:16:f1:4e:da:7a:4a:17:c3:16:46:b1:0e:de: d9:b2:e4:36:4a:43:2e:ad:fc:06:10:56:a4:72:c6:e4:ed:dd: 42:10:fa:e0:c9:78:e9:29:70:4c:4f:73:33:68:8d:5d:cb:25: 01:e5:9d:38:5b:23:32:ba:07:41:f1:e5:34:08:9d:04:ca:a0: e6:79:ca:8d:56:5c:67:b3:20:48:19:ea:9d:9c:c4:02:c3:02: 52:5b:a0:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZCBiUJOppvejsFBF7YhvwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MTgzNDRhNTIwYTM5OTkyNzliYjgyNDdlMTc5ZTg4NDA2 ZTM1NzgwHhcNMjUxMjI2MDUwMTAxWhcNMjUxMjI3MDUwMTAxWjAzMTEwLwYDVQQD EyhjNzk2OGU2NDk5MWM0NDM2ZDkyMTE3YTAxMGNlNmQ2MzNhYzljZWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymldHTlmuA+Nqj/jQVTmanJUfVnz o9OGT0MTBJbtbFoOabWUikEqNLdcGW1v28cgn+48c/TEvOdEzqN7k57I2ksFkYm2 9MOPVMaSxUJh8ew1K6lJWUEvClcLRTwBi8wSMX8Zq0TjhksnOGhTCKsflncUd4Dy y7+jo2aTCzqH+KAOs97bqJnuLuNlKKEvpjN9yVuMig04X+JLnyNX2u6VtMmWE0v+ 3DUL0dOhsrI3hGLZVGC/OZWdK0uiYEWr+Zj+OlejGtobMaErb4bLpQUGM8NvUtei iBQF+XA9K0ofKUYrfW0GIIdwhDHjvpAfjW1OfBC9JLjUK6RKOliOuJcUJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMeWjmSZHEQ22SEXoBDObWM6yc7MMB8GA1UdIwQY MBaAFAgYNEpSCjmZJ5u4JH4XnohAbjV4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0JnMFNsSUtPWmtubTdna2ZoZWVpRUJ1TlhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS81NmI4MTgtOWVlMS00YTA2LWE4ZWMt ODUxZWE2NWNiOThiLzEvQ0JnMFNsSUtPWmtubTdna2ZoZWVpRUJ1TlhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS81NmI4MTgtOWVlMS00YTA2LWE4ZWMtODUxZWE2NWNiOThi LzEvQ0JnMFNsSUtPWmtubTdna2ZoZWVpRUJ1TlhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiwc+3oWv DDvgk3IyEaDIJaUcpTL5jF0cCj/h247Jb22BDdS2JL/cFKzyUowwvZtJBv+U7Igq yJrRJSYryzv27/easDnCak5uWCVQZUq+09z5d72XaSMqEj374A3CbMvit57jJrfg ZTvIoU8QI64CPUl92yEwN2xnJkdwGIadsPSB0toCS31NEo5GgzHRUyd4jSDQX+vP DxK2Cbg0W1nUjOe6UDC/cOIW8U7aekoXwxZGsQ7e2bLkNkpDLq38BhBWpHLG5O3d QhD64Ml46SlwTE9zM2iNXcslAeWdOFsjMroHQfHlNAidBMqg5nnKjVZcZ7MgSBnq nZzEAsMCUlugiw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:48 2025 by rpki-client