This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json) Hash identifier: RNbmThw0iaeQGlT+rLbM8yfPFjjuun8rvFTWvifm/E4= Subject key identifier: 7B:6A:6E:B1:2E:82:F9:4B:AB:A0:8C:95:E1:39:59:79:C5:52:83:73 Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48 Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48 Certificate serial: 019B405A8C9FC77FF59EDBF2412582F2CC06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft Manifest number: 04AC Signing time: Sun 21 Dec 2025 10:00:34 +0000 Manifest this update: Sun 21 Dec 2025 10:00:34 +0000 Manifest next update: Mon 22 Dec 2025 10:00:34 +0000 Files and hashes: 1: 1vvIkvJGRy621vVPsoLS7KLp9WQ.roa (hash: AaLmkGEE5WFi/MsCmNoVGVjYg2GotUKYwJ8yvjW+a60=) 2: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: Lj0RFM7dT3XOLbKQip4BsiSKwvNWVSptOPeGef5cyEs=) 3: KLjjQzFk9GYkvqPEoe40SA-mXbg.roa (hash: 2jEymy+mMO9pWyCpodUhIwEZFiuwLfDEfoelvtg+xqA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 10:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5a:8c:9f:c7:7f:f5:9e:db:f2:41:25:82:f2:cc:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48 Validity Not Before: Dec 21 10:00:34 2025 GMT Not After : Dec 22 10:00:34 2025 GMT Subject: CN=7b6a6eb12e82f94baba08c95e1395979c5528373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:79:d3:02:e5:98:30:6d:66:d7:22:1c:52:f2: 38:8f:f2:d3:02:ce:78:31:ff:c3:4a:9a:5c:10:ff: c0:fb:3d:31:fe:a5:34:d2:12:ed:f4:13:16:b0:6d: 81:c9:4b:ab:45:9f:7f:56:ff:64:df:ae:aa:5c:3b: 00:3b:00:2b:71:e2:36:d9:2a:15:57:9b:26:b9:25: 12:ab:ce:58:b7:48:43:91:3b:f8:ca:2a:02:1c:dd: e6:12:4b:5c:8b:18:12:bd:cb:c9:43:a1:1e:70:af: da:ff:9e:0c:cc:99:ec:80:25:a5:e2:73:c6:16:8e: 7d:b9:8c:96:32:c2:7e:e8:21:45:9c:cf:3d:bd:99: 1a:35:cf:47:b1:9b:7b:71:ee:f5:70:f9:57:4a:93: e6:7e:d6:06:06:f1:1a:64:ea:85:53:4c:ce:1c:e9: 8b:60:7e:50:f2:5a:a5:d7:4c:c4:98:c2:af:7c:a8: ae:95:dd:44:45:48:47:66:90:15:f1:94:b3:f3:1a: 54:3f:76:30:22:fc:68:c8:6f:9f:64:2e:07:2d:34: e8:87:80:06:9b:8b:09:a9:41:05:52:b0:73:be:a2: f4:d0:5b:b5:3d:ae:8e:be:7a:16:18:b7:2b:09:f6: 14:29:94:a0:da:ec:ed:64:bc:ee:7d:5e:3f:04:82: 4e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:6A:6E:B1:2E:82:F9:4B:AB:A0:8C:95:E1:39:59:79:C5:52:83:73 X509v3 Authority Key Identifier: keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:b4:b5:f2:da:b0:6a:0d:bc:93:13:8f:0b:e9:ad:0d:c3:50: ca:fe:2c:11:29:f4:19:54:88:14:f2:0c:77:b8:9b:5a:4c:52: 68:17:cc:fb:6a:6f:14:0d:00:28:00:2b:9a:c3:7a:17:49:e8: 63:96:cf:4c:eb:f8:8d:95:be:e2:72:49:36:9a:cd:c6:78:cc: b6:30:bd:09:a3:0a:bf:7b:21:fd:c6:9f:a2:99:7d:4a:a4:51: ec:30:81:74:4b:81:4f:1c:3e:7d:b6:1b:6b:3c:54:68:5c:21: 8c:4d:36:d3:02:0d:30:56:78:6a:db:b4:c5:c1:1c:05:fe:23: f0:23:86:e7:43:e9:15:e0:b7:a7:6d:fe:99:ee:26:9a:7c:dd: 5c:96:3d:41:f1:f9:a7:d0:bd:51:b6:0c:67:aa:50:47:68:a5: 08:f4:a9:5f:e0:65:e6:41:d4:b2:84:c9:f0:00:8d:cb:d5:1d: 38:e2:96:c3:f2:48:b6:ea:f3:2d:94:aa:c2:79:49:fb:8c:ea: b1:ea:0e:d5:18:bd:97:1a:69:88:89:2c:01:dd:1d:25:6c:6e: 97:f4:8a:65:85:2c:dd:a0:5e:4b:83:c2:fa:ea:9b:00:0e:95: 6b:28:61:49:ea:87:1a:88:32:08:0c:6a:4b:38:a2:2b:7c:7e: f1:97:a9:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAWoyfx3/1ntvyQSWC8swGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZWU5MGQzNDJkODY1ZWE2N2YyYjBkMmZiNzRjMDM5Zjgz ZTRhNDgwHhcNMjUxMjIxMTAwMDM0WhcNMjUxMjIyMTAwMDM0WjAzMTEwLwYDVQQD Eyg3YjZhNmViMTJlODJmOTRiYWJhMDhjOTVlMTM5NTk3OWM1NTI4MzczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHnTAuWYMG1m1yIcUvI4j/LTAs54 Mf/DSppcEP/A+z0x/qU00hLt9BMWsG2ByUurRZ9/Vv9k366qXDsAOwArceI22SoV V5smuSUSq85Yt0hDkTv4yioCHN3mEktcixgSvcvJQ6EecK/a/54MzJnsgCWl4nPG Fo59uYyWMsJ+6CFFnM89vZkaNc9HsZt7ce71cPlXSpPmftYGBvEaZOqFU0zOHOmL YH5Q8lql10zEmMKvfKiuld1ERUhHZpAV8ZSz8xpUP3YwIvxoyG+fZC4HLTToh4AG m4sJqUEFUrBzvqL00Fu1Pa6OvnoWGLcrCfYUKZSg2uztZLzufV4/BIJOUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHtqbrEugvlLq6CMleE5WXnFUoNzMB8GA1UdIwQY MBaAFNjukNNC2GXqZ/Kw0vt0wDn4PkpIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk82UTAwTFlaZXBuOHJEUy0zVEFPZmctU2tnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9jZjVjMTAtMjEzMS00MTE2LWI2Zjkt NTEwNTI1YzQ3NDRjLzEvMk82UTAwTFlaZXBuOHJEUy0zVEFPZmctU2tnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9jZjVjMTAtMjEzMS00MTE2LWI2ZjktNTEwNTI1YzQ3NDRj LzEvMk82UTAwTFlaZXBuOHJEUy0zVEFPZmctU2tnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY7S18tqw ag28kxOPC+mtDcNQyv4sESn0GVSIFPIMd7ibWkxSaBfM+2pvFA0AKAArmsN6F0no Y5bPTOv4jZW+4nJJNprNxnjMtjC9CaMKv3sh/cafopl9SqRR7DCBdEuBTxw+fbYb azxUaFwhjE020wINMFZ4atu0xcEcBf4j8COG50PpFeC3p23+me4mmnzdXJY9QfH5 p9C9UbYMZ6pQR2ilCPSpX+Bl5kHUsoTJ8ACNy9UdOOKWw/JIturzLZSqwnlJ+4zq seoO1Ri9lxppiIksAd0dJWxul/SKZYUs3aBeS4PC+uqbAA6VayhhSeqHGogyCAxq SziiK3x+8Zep/Q== -----END CERTIFICATE-----Generated at Sun Dec 21 15:38:30 2025 by rpki-client