This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft File: bIkO9qiKsz-logZ2B2jdMlHCOK8.mft (raw, json) Hash identifier: tHHRiQvgemrM10HolRoOC3ZNQB0xp8QniAiZ4FCcEnI= Subject key identifier: B1:6E:75:DA:7D:46:A8:B8:27:EF:C4:F5:AB:9E:AC:05:AD:D9:22:28 Authority key identifier: 6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF Certificate issuer: /CN=6c890ef6a88ab33fa5a206760768dd3251c238af Certificate serial: 019B1D60ADE0E261B0FA5F9058F639C923AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft Manifest number: 177B Signing time: Sun 14 Dec 2025 15:00:33 +0000 Manifest this update: Sun 14 Dec 2025 15:00:33 +0000 Manifest next update: Mon 15 Dec 2025 15:00:33 +0000 Files and hashes: 1: OCK0xPSUR6N0XAXrrNIoVZTtCb8.roa (hash: zJFIUz1mYifZofZ0Na7vRc0V1qQdfg8lAP69hFan3Gw=) 2: bIkO9qiKsz-logZ2B2jdMlHCOK8.crl (hash: bEz5R6Ryo9nDfa/U7JeewHOT+jLm/dMwsbaVCQqn5E8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:60:ad:e0:e2:61:b0:fa:5f:90:58:f6:39:c9:23:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c890ef6a88ab33fa5a206760768dd3251c238af Validity Not Before: Dec 14 15:00:33 2025 GMT Not After : Dec 15 15:00:33 2025 GMT Subject: CN=b16e75da7d46a8b827efc4f5ab9eac05add92228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:18:29:07:96:60:08:b9:aa:c2:60:78:c0:32: a8:79:fb:a3:9e:68:91:80:b1:ad:64:00:6f:08:33: e7:31:a2:37:3a:b5:88:03:f4:69:c3:85:c0:25:26: ed:a7:36:7c:ea:82:b9:01:ad:02:43:2f:f7:5a:39: 13:70:15:0a:98:34:7b:de:33:2e:5e:cb:ef:7c:2c: 0a:14:79:5b:1d:77:89:8e:32:f8:a1:9a:df:d9:0d: ba:c9:51:08:ce:30:18:14:36:d8:f9:3e:bf:de:c8: f0:37:61:15:3e:16:fb:62:03:2e:32:51:7e:3b:06: 45:37:b1:b9:68:ee:6f:82:43:43:4a:38:20:e5:63: da:e5:62:9a:dc:c0:1a:43:37:4d:99:c3:56:5f:98: b0:56:ae:d2:97:08:35:9b:d0:fd:f4:fd:ca:c9:61: fc:a0:8b:0a:11:c2:c5:50:ff:75:5b:d2:6b:de:41: 28:56:67:c4:e2:58:bc:b5:b0:44:8e:f8:f9:d7:ec: c6:a2:a7:8f:88:f3:d6:7a:f9:94:e7:48:72:e9:51: 13:6d:4a:3c:cd:80:fb:d6:cf:00:c5:a8:8c:56:02: ec:f8:43:0d:63:6f:db:ca:23:4e:60:db:61:01:14: 84:43:1a:ae:ef:a2:6e:cd:6c:b0:0e:0d:58:88:e6: 1b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6E:75:DA:7D:46:A8:B8:27:EF:C4:F5:AB:9E:AC:05:AD:D9:22:28 X509v3 Authority Key Identifier: keyid:6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e5:f6:47:80:dd:c7:75:06:66:32:9f:c5:74:80:d5:00:63: 65:5b:63:af:97:24:49:42:2e:6a:86:8b:cb:ae:d4:40:3e:6e: 2f:54:85:5d:f8:d7:5a:cc:09:27:e1:21:6e:91:ba:ae:3a:68: 81:52:fb:cd:60:cd:29:ed:cf:43:ef:3f:42:e1:39:01:ec:a0: df:49:39:ec:06:e8:69:6a:68:44:99:32:87:9c:3b:51:c1:1d: 7a:65:51:b6:c4:9c:f9:00:6e:be:07:1f:c1:fb:09:57:cf:34: 3c:9c:b6:49:90:c7:12:a6:5e:a9:ea:e2:f6:46:b7:19:0a:aa: 0f:85:ee:55:f4:63:2c:58:8e:5c:5c:5a:38:e8:f2:75:52:7e: f6:6a:75:51:19:98:53:41:cd:52:11:33:ae:77:b0:35:c7:6f: 44:23:cf:f6:ba:04:72:4c:61:e6:cd:7b:27:7c:ad:b3:ea:96: 2c:b9:aa:dc:aa:75:a1:26:17:1e:5a:07:f8:ce:c4:a7:4c:56: 70:40:35:9a:26:ca:36:1a:07:d5:60:60:3c:ec:98:14:df:e7: 35:a8:04:ae:be:46:79:f3:83:ab:89:ec:f3:39:46:90:fb:7c: 47:f4:58:71:b5:09:c4:b8:b1:ec:59:02:80:c7:c7:79:ae:f9: 40:79:85:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdYK3g4mGw+l+QWPY5ySOrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjODkwZWY2YTg4YWIzM2ZhNWEyMDY3NjA3NjhkZDMyNTFj MjM4YWYwHhcNMjUxMjE0MTUwMDMzWhcNMjUxMjE1MTUwMDMzWjAzMTEwLwYDVQQD EyhiMTZlNzVkYTdkNDZhOGI4MjdlZmM0ZjVhYjllYWMwNWFkZDkyMjI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRgpB5ZgCLmqwmB4wDKoefujnmiR gLGtZABvCDPnMaI3OrWIA/Rpw4XAJSbtpzZ86oK5Aa0CQy/3WjkTcBUKmDR73jMu XsvvfCwKFHlbHXeJjjL4oZrf2Q26yVEIzjAYFDbY+T6/3sjwN2EVPhb7YgMuMlF+ OwZFN7G5aO5vgkNDSjgg5WPa5WKa3MAaQzdNmcNWX5iwVq7Slwg1m9D99P3KyWH8 oIsKEcLFUP91W9Jr3kEoVmfE4li8tbBEjvj51+zGoqePiPPWevmU50hy6VETbUo8 zYD71s8AxaiMVgLs+EMNY2/byiNOYNthARSEQxqu76JuzWywDg1YiOYb0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLFuddp9Rqi4J+/E9auerAWt2SIoMB8GA1UdIwQY MBaAFGyJDvaoirM/paIGdgdo3TJRwjivMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklrTzlxaUtzei1sb2daMkIyamRNbEhDT0s4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8yYjdjZDEtNDliNi00OTIxLWE1ZTEt NjFmOTFlZGVkZjBhLzEvYklrTzlxaUtzei1sb2daMkIyamRNbEhDT0s4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8yYjdjZDEtNDliNi00OTIxLWE1ZTEtNjFmOTFlZGVkZjBh LzEvYklrTzlxaUtzei1sb2daMkIyamRNbEhDT0s4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+X2R4Dd x3UGZjKfxXSA1QBjZVtjr5ckSUIuaoaLy67UQD5uL1SFXfjXWswJJ+EhbpG6rjpo gVL7zWDNKe3PQ+8/QuE5Aeyg30k57AboaWpoRJkyh5w7UcEdemVRtsSc+QBuvgcf wfsJV880PJy2SZDHEqZeqeri9ka3GQqqD4XuVfRjLFiOXFxaOOjydVJ+9mp1URmY U0HNUhEzrnewNcdvRCPP9roEckxh5s17J3yts+qWLLmq3Kp1oSYXHloH+M7Ep0xW cEA1mibKNhoH1WBgPOyYFN/nNagErr5GefODq4ns8zlGkPt8R/RYcbUJxLix7FkC gMfHea75QHmFuQ== -----END CERTIFICATE-----Generated at Sun Dec 14 19:27:22 2025 by rpki-client