This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft File: b2oouFuReYIHK59PQG1-sJmROjE.mft (raw, json) Hash identifier: 8MwJb0iSJIub9GiukgYme7cXHyzCmd3BgCZdg834rK8= Subject key identifier: 77:85:5C:90:AE:4E:B8:D4:33:C5:EB:6B:3F:16:4A:8F:F8:6C:58:BD Authority key identifier: 6F:6A:28:B8:5B:91:79:82:07:2B:9F:4F:40:6D:7E:B0:99:91:3A:31 Certificate issuer: /CN=6f6a28b85b917982072b9f4f406d7eb099913a31 Certificate serial: 019B23D0CA02B33492FF578223905100B62C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft Manifest number: 07AC Signing time: Mon 15 Dec 2025 21:00:44 +0000 Manifest this update: Mon 15 Dec 2025 21:00:44 +0000 Manifest next update: Tue 16 Dec 2025 21:00:44 +0000 Files and hashes: 1: ZwdlOhTaB9mfI0Lixy338yhL9bw.roa (hash: JhlKbHsGhRiWUq0ABUz1j/K5IY2i4ZC4XvyEDFpDUMk=) 2: b2oouFuReYIHK59PQG1-sJmROjE.crl (hash: XH0Vcwy0K2XeOSQk9PrUPGvLLBQL2lxj/x2kH+S2kBY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.crl rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 21:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:d0:ca:02:b3:34:92:ff:57:82:23:90:51:00:b6:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f6a28b85b917982072b9f4f406d7eb099913a31 Validity Not Before: Dec 15 21:00:44 2025 GMT Not After : Dec 16 21:00:44 2025 GMT Subject: CN=77855c90ae4eb8d433c5eb6b3f164a8ff86c58bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bd:f7:9e:d8:b4:3a:48:ca:fb:b6:51:68:d3: 4a:f8:e6:d5:cd:8c:fd:09:42:ed:e2:ca:1f:30:5a: 9e:e7:da:ea:a4:62:7e:25:f7:e9:58:4b:e6:da:92: 4a:6f:f0:32:5d:e2:a1:f8:40:4e:24:5f:da:21:33: 68:e4:5e:e9:0c:9e:18:a7:8d:51:95:5d:eb:40:2e: 87:19:8d:cc:66:17:c0:d8:e6:70:d9:ed:6f:75:42: d6:cc:35:19:5d:7f:d7:ca:a3:ed:61:83:d4:1b:b4: 22:82:83:c2:42:bf:32:33:d4:dc:21:d8:27:4d:20: c9:32:38:2f:bd:60:d5:09:fb:98:25:c9:df:35:87: 02:7e:bf:d3:6e:11:f9:8e:bb:eb:cd:9f:2f:24:c0: 6e:f5:c1:5e:81:44:12:1f:34:e7:ec:17:e1:14:42: d2:0e:c7:28:20:4e:67:e8:ca:09:44:47:a0:be:a4: f3:c8:f3:e6:e3:38:3a:85:4d:a3:f0:0a:3f:e8:c1: e9:6a:5d:2f:23:22:b6:e0:24:f3:65:3d:d1:57:ef: 0a:8c:db:c7:99:a5:df:5c:f3:4e:68:dc:9b:90:37: 37:9b:b0:c1:9c:fe:59:47:1c:50:35:58:e3:c5:72: 29:35:9b:94:5a:7e:37:7a:39:88:da:ff:c8:11:75: 50:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:85:5C:90:AE:4E:B8:D4:33:C5:EB:6B:3F:16:4A:8F:F8:6C:58:BD X509v3 Authority Key Identifier: keyid:6F:6A:28:B8:5B:91:79:82:07:2B:9F:4F:40:6D:7E:B0:99:91:3A:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:33:bb:cd:f7:78:99:1e:c1:3b:00:89:57:d5:04:c7:4f:a9: 32:78:cd:f7:f0:e1:db:78:45:7f:82:c1:0d:5d:83:8c:11:32: b7:0e:3b:b1:6d:c5:cd:8f:0b:89:2b:30:09:cc:96:ee:91:36: 5a:1d:ad:f3:8b:0e:a8:28:c9:8a:97:6b:10:b6:84:54:e2:e7: b4:c0:f9:48:50:16:56:37:a9:f7:aa:73:bc:ab:5e:c4:33:59: 0c:9b:63:7a:04:ac:1d:bb:71:41:6f:53:00:80:0d:25:6d:0b: 2a:02:cf:55:4d:e9:2c:b5:ae:25:75:99:c6:15:1e:67:e1:47: 87:f0:40:0a:9d:f9:39:4d:ec:ef:a9:0f:05:e2:57:c0:44:27: 4d:20:26:0f:07:e2:fd:30:47:43:63:33:53:0f:98:54:c5:5d: be:0e:40:fc:22:31:f7:bc:ec:ff:39:19:48:a2:9a:a0:dd:e4: 61:81:e0:88:16:33:6b:70:83:fd:2d:6e:c2:d7:c4:38:8d:f1: 35:cb:44:d5:82:e0:a3:d4:47:3f:ec:95:0a:e9:19:2c:a1:4f: 8b:67:b3:e7:32:4a:fb:e1:5b:38:38:f7:67:09:4e:79:50:f2: 26:40:16:9e:89:c7:51:9b:42:83:18:93:93:2c:58:d7:8b:77: 92:10:47:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsj0MoCszSS/1eCI5BRALYsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmNmEyOGI4NWI5MTc5ODIwNzJiOWY0ZjQwNmQ3ZWIwOTk5 MTNhMzEwHhcNMjUxMjE1MjEwMDQ0WhcNMjUxMjE2MjEwMDQ0WjAzMTEwLwYDVQQD Eyg3Nzg1NWM5MGFlNGViOGQ0MzNjNWViNmIzZjE2NGE4ZmY4NmM1OGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtL33nti0OkjK+7ZRaNNK+ObVzYz9 CULt4sofMFqe59rqpGJ+JffpWEvm2pJKb/AyXeKh+EBOJF/aITNo5F7pDJ4Yp41R lV3rQC6HGY3MZhfA2OZw2e1vdULWzDUZXX/XyqPtYYPUG7QigoPCQr8yM9TcIdgn TSDJMjgvvWDVCfuYJcnfNYcCfr/TbhH5jrvrzZ8vJMBu9cFegUQSHzTn7BfhFELS DscoIE5n6MoJREegvqTzyPPm4zg6hU2j8Ao/6MHpal0vIyK24CTzZT3RV+8KjNvH maXfXPNOaNybkDc3m7DBnP5ZRxxQNVjjxXIpNZuUWn43ejmI2v/IEXVQhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHeFXJCuTrjUM8Xraz8WSo/4bFi9MB8GA1UdIwQY MBaAFG9qKLhbkXmCByufT0BtfrCZkToxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjJvb3VGdVJlWUlISzU5UFFHMS1zSm1ST2pFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC81MjU1NGMtMzg5ZC00YWVhLWEwMGMt NzQxZDA4OThkYTRlLzEvYjJvb3VGdVJlWUlISzU5UFFHMS1zSm1ST2pFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC81MjU1NGMtMzg5ZC00YWVhLWEwMGMtNzQxZDA4OThkYTRl LzEvYjJvb3VGdVJlWUlISzU5UFFHMS1zSm1ST2pFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIjO7zfd4 mR7BOwCJV9UEx0+pMnjN9/Dh23hFf4LBDV2DjBEytw47sW3FzY8LiSswCcyW7pE2 Wh2t84sOqCjJipdrELaEVOLntMD5SFAWVjep96pzvKtexDNZDJtjegSsHbtxQW9T AIANJW0LKgLPVU3pLLWuJXWZxhUeZ+FHh/BACp35OU3s76kPBeJXwEQnTSAmDwfi /TBHQ2MzUw+YVMVdvg5A/CIx97zs/zkZSKKaoN3kYYHgiBYza3CD/S1uwtfEOI3x NctE1YLgo9RHP+yVCukZLKFPi2ez5zJK++FbODj3ZwlOeVDyJkAWnonHUZtCgxiT kyxY14t3khBHQg== -----END CERTIFICATE-----Generated at Tue Dec 16 06:22:13 2025 by rpki-client