This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft File: 0ccPHzPFgdt4oUm8htc5zcfOJqc.mft (raw, json) Hash identifier: VgVAMwvrechPvpfW5mp4oWV++Ruej/5DS/Y6UrTa2F4= Subject key identifier: 1D:0B:1D:00:A6:96:90:9A:BA:1D:47:FF:8E:D8:EA:18:33:06:47:C0 Authority key identifier: D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7 Certificate issuer: /CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7 Certificate serial: 019B5975853D204B02FE1EBBE70DED6E93FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft Manifest number: 062D Signing time: Fri 26 Dec 2025 07:00:32 +0000 Manifest this update: Fri 26 Dec 2025 07:00:32 +0000 Manifest next update: Sat 27 Dec 2025 07:00:32 +0000 Files and hashes: 1: 00FQiMdjUQle4zFwKcr67i8rD5o.roa (hash: vAwK94aBbQ1WLXSLlow/JuiTreizX+JgqV5lHzwa2Js=) 2: 0ccPHzPFgdt4oUm8htc5zcfOJqc.crl (hash: LE/kMuZdMKTPlzdLpXZ5a+aav/5NHg+5alhvlZtW8Tw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:85:3d:20:4b:02:fe:1e:bb:e7:0d:ed:6e:93:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7 Validity Not Before: Dec 26 07:00:32 2025 GMT Not After : Dec 27 07:00:32 2025 GMT Subject: CN=1d0b1d00a696909aba1d47ff8ed8ea18330647c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f0:29:49:19:fd:a6:2b:a3:3b:40:3a:8b:a9: 5e:cc:39:c2:d9:fc:a0:ff:1c:b7:a3:dd:db:c1:bf: 74:96:74:d6:17:b8:74:b4:25:df:88:b5:0e:8c:9e: d9:d2:4e:83:ff:1f:89:44:b8:ad:fb:a8:80:5a:33: fc:2c:8e:03:00:a1:55:fc:77:05:55:72:46:1f:31: dd:84:c1:bf:08:03:69:36:cf:7e:b4:62:c3:50:ce: 70:6e:3b:9e:76:a2:f4:bf:df:4f:21:05:db:aa:be: f8:68:cb:5a:41:96:a6:e1:6e:97:42:94:71:54:b5: 2f:f6:21:e1:c9:06:ed:2f:1b:67:ae:43:b2:15:1d: 33:66:1b:99:21:b4:61:4b:50:91:0c:fa:49:5b:63: b9:93:31:0f:80:df:5c:16:c6:07:db:ec:4e:61:0a: 98:f1:81:b4:c1:90:cf:38:8a:d1:20:a8:f2:43:ef: e3:74:5f:a0:58:be:ba:da:1c:1d:96:c2:89:1c:d1: 6d:72:17:5b:72:74:01:f5:a3:ef:a4:0d:71:79:c8: e4:9e:d4:01:5d:f4:bc:3b:18:41:c3:dd:a2:4c:40: 0f:0c:a9:50:27:d3:16:3a:90:22:3b:19:66:71:2c: 65:a2:ae:fc:16:0c:04:3b:6d:6d:47:0d:74:62:ac: 90:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:0B:1D:00:A6:96:90:9A:BA:1D:47:FF:8E:D8:EA:18:33:06:47:C0 X509v3 Authority Key Identifier: keyid:D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ec:7e:54:0b:45:55:ea:b4:51:50:d1:42:0e:c9:f6:b2:c3:c6: 79:4d:1e:1b:f3:f7:99:10:aa:33:22:9a:12:5b:6c:d3:fc:1a: 37:7f:77:47:8f:b7:1f:b3:ff:88:12:0a:c9:10:6e:76:e4:57: 5e:d6:2d:09:b8:a4:76:85:e6:86:64:d5:46:30:81:9e:2f:b7: a6:08:20:fb:99:bf:09:94:23:f2:b8:ce:e0:40:c5:a7:78:54: 93:e6:fe:02:4b:06:e2:ef:71:d2:7c:68:7f:fa:07:f6:84:a0: c4:ba:67:42:ab:92:e8:bb:61:48:8a:3f:0e:98:fc:4a:75:22: ed:f5:be:b8:05:8d:9c:f1:cd:fe:41:a9:df:13:d5:9e:54:3a: e0:80:ed:55:c6:9e:dd:76:c4:3a:34:cc:73:bb:33:69:cb:3e: 2f:9c:b4:9d:40:45:7b:03:fa:69:0f:64:5e:82:51:35:fc:b9: 18:4a:2a:45:40:3b:76:86:f0:36:02:5e:b5:14:86:7a:18:75: c9:23:45:44:fc:ec:6e:5a:36:c1:a2:9e:85:3c:1d:18:7b:1c: 03:16:15:49:2d:bc:8e:3a:2f:bc:d0:0f:cf:57:fc:0a:06:38: 1a:2f:28:d1:79:ab:e1:44:68:12:77:62:a7:71:ea:a7:0a:07: 67:e4:1d:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdYU9IEsC/h675w3tbpP8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxYzcwZjFmMzNjNTgxZGI3OGExNDliYzg2ZDczOWNkYzdj ZTI2YTcwHhcNMjUxMjI2MDcwMDMyWhcNMjUxMjI3MDcwMDMyWjAzMTEwLwYDVQQD EygxZDBiMWQwMGE2OTY5MDlhYmExZDQ3ZmY4ZWQ4ZWExODMzMDY0N2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfApSRn9piujO0A6i6lezDnC2fyg /xy3o93bwb90lnTWF7h0tCXfiLUOjJ7Z0k6D/x+JRLit+6iAWjP8LI4DAKFV/HcF VXJGHzHdhMG/CANpNs9+tGLDUM5wbjuedqL0v99PIQXbqr74aMtaQZam4W6XQpRx VLUv9iHhyQbtLxtnrkOyFR0zZhuZIbRhS1CRDPpJW2O5kzEPgN9cFsYH2+xOYQqY 8YG0wZDPOIrRIKjyQ+/jdF+gWL662hwdlsKJHNFtchdbcnQB9aPvpA1xecjkntQB XfS8OxhBw92iTEAPDKlQJ9MWOpAiOxlmcSxloq78FgwEO21tRw10YqyQ3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB0LHQCmlpCauh1H/47Y6hgzBkfAMB8GA1UdIwQY MBaAFNHHDx8zxYHbeKFJvIbXOc3HzianMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGNjUEh6UEZnZHQ0b1VtOGh0YzV6Y2ZPSnFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9kM2QyNTctNmU0Yy00ZDYwLTljOTMt ZGZjYWUzNmEzZWY4LzEvMGNjUEh6UEZnZHQ0b1VtOGh0YzV6Y2ZPSnFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9kM2QyNTctNmU0Yy00ZDYwLTljOTMtZGZjYWUzNmEzZWY4 LzEvMGNjUEh6UEZnZHQ0b1VtOGh0YzV6Y2ZPSnFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA7H5UC0VV 6rRRUNFCDsn2ssPGeU0eG/P3mRCqMyKaElts0/waN393R4+3H7P/iBIKyRBuduRX XtYtCbikdoXmhmTVRjCBni+3pggg+5m/CZQj8rjO4EDFp3hUk+b+AksG4u9x0nxo f/oH9oSgxLpnQquS6LthSIo/Dpj8SnUi7fW+uAWNnPHN/kGp3xPVnlQ64IDtVcae 3XbEOjTMc7szacs+L5y0nUBFewP6aQ9kXoJRNfy5GEoqRUA7dobwNgJetRSGehh1 ySNFRPzsblo2waKehTwdGHscAxYVSS28jjovvNAPz1f8CgY4Gi8o0Xmr4URoEndi p3HqpwoHZ+QdVw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:04 2025 by rpki-client