This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft File: 0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft (raw, json) Hash identifier: crah6GCA/zDHkpVD52TdreSCxYLS7TycKGrpEfo5SXs= Subject key identifier: 19:F7:7B:C8:8C:FD:2B:53:0C:4C:1D:A3:7C:52:2F:07:8D:23:62:D0 Authority key identifier: D1:0C:88:D8:2D:2F:AC:82:20:3D:42:A2:42:D6:EB:76:3D:13:BB:F8 Certificate issuer: /CN=d10c88d82d2fac82203d42a242d6eb763d13bbf8 Certificate serial: 019B1CF3292F32F998DEFBC793EC73DE6FC2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft Manifest number: 1778 Signing time: Sun 14 Dec 2025 13:00:56 +0000 Manifest this update: Sun 14 Dec 2025 13:00:56 +0000 Manifest next update: Mon 15 Dec 2025 13:00:56 +0000 Files and hashes: 1: 0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl (hash: YoOJd/tOyVdJCCBwhPtD+GR4sRGbQDwTC1cT7ZdbiOw=) 2: OCcJDhB4OQ1X-MIeEHbwYqPSbys.roa (hash: bYb4Alf329H7/hgxf3+yXtwxwALKiQ1xJi7nvHZupTk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:f3:29:2f:32:f9:98:de:fb:c7:93:ec:73:de:6f:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d10c88d82d2fac82203d42a242d6eb763d13bbf8 Validity Not Before: Dec 14 13:00:56 2025 GMT Not After : Dec 15 13:00:56 2025 GMT Subject: CN=19f77bc88cfd2b530c4c1da37c522f078d2362d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2e:a3:2f:60:26:ea:70:9e:54:3b:a2:0d:ab: 37:92:c8:f0:8b:e5:15:37:a9:b8:36:9b:3a:30:3f: bb:26:b1:73:2b:0e:43:54:17:03:bf:a0:ca:e4:c2: 7d:85:2b:24:d6:9b:22:c5:d1:88:6a:d6:c0:e1:88: 43:7b:a0:af:e9:63:fc:e6:49:35:6a:06:85:6e:0f: f6:3b:a6:00:aa:bc:74:d3:a2:54:4f:ab:65:4d:3a: 36:a4:6e:c4:f3:35:71:2f:83:83:3e:a8:e1:fa:ba: 76:64:3a:0f:1c:2b:15:e8:ca:44:e8:0a:4c:a1:b0: 2a:53:27:e7:25:69:b4:f1:54:a1:5e:58:02:1b:9d: 7a:d2:85:3d:06:2c:5a:a2:4c:aa:65:e7:c5:c4:9e: 09:b3:f1:b1:60:85:82:b8:70:1a:8b:1b:dd:cc:8b: 9b:8e:2c:0f:98:73:fd:6b:09:d0:42:d1:75:62:6a: 48:35:5f:3c:2f:b9:09:57:bf:f7:31:4d:e3:8e:53: ed:be:6e:7e:91:66:f1:e3:eb:a4:98:34:97:c3:e4: cf:aa:66:07:bd:96:41:bd:78:ed:82:95:f7:1a:4f: db:cf:af:ae:67:e3:e9:ba:e3:06:09:48:59:e0:0c: 16:c3:d5:61:8e:35:a5:b8:dd:67:2b:05:86:62:ea: d7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F7:7B:C8:8C:FD:2B:53:0C:4C:1D:A3:7C:52:2F:07:8D:23:62:D0 X509v3 Authority Key Identifier: keyid:D1:0C:88:D8:2D:2F:AC:82:20:3D:42:A2:42:D6:EB:76:3D:13:BB:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:07:d0:a8:3d:5a:7b:81:13:c6:c7:48:8a:17:3c:ed:9d:be: 75:60:4a:1a:f6:d1:aa:65:b1:1d:e1:3e:d1:c8:27:bc:07:ae: 57:85:e1:75:cf:b5:64:25:cf:2f:46:20:2c:34:68:61:55:0f: 77:31:1f:a0:b4:26:df:f7:5c:d0:d5:3f:0d:7f:a8:89:ad:0b: 16:1b:fe:56:ca:8c:69:82:78:44:c4:81:7b:9f:72:1a:69:62: a7:2c:09:e2:42:3f:2a:7c:ed:11:42:b4:74:be:9c:3a:2f:c4: b0:02:86:19:4f:15:ac:17:48:aa:35:0c:df:76:37:c1:ac:3c: c9:6f:d2:4b:67:5f:93:07:fb:4a:73:39:2f:d3:e1:e1:58:0a: bf:d2:3a:12:53:33:30:f1:1d:05:70:23:43:ba:2f:b9:78:67: 2e:57:b5:70:74:0d:e0:66:5e:24:59:1f:4e:ed:e5:08:f1:26: 75:e2:25:c0:0e:bf:51:22:b2:a0:ef:8e:0e:f7:c5:a0:6c:54: bd:22:34:3d:f2:53:f0:bc:e1:74:cb:51:63:f9:6d:b2:f2:ee: 43:51:67:e3:5a:00:5d:5a:c8:ed:8c:93:3f:59:79:64:13:e9: 0e:ec:5e:35:eb:0a:fa:37:69:4e:65:17:cf:e5:42:ae:0d:65: e2:3e:c0:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsc8ykvMvmY3vvHk+xz3m/CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxMGM4OGQ4MmQyZmFjODIyMDNkNDJhMjQyZDZlYjc2M2Qx M2JiZjgwHhcNMjUxMjE0MTMwMDU2WhcNMjUxMjE1MTMwMDU2WjAzMTEwLwYDVQQD EygxOWY3N2JjODhjZmQyYjUzMGM0YzFkYTM3YzUyMmYwNzhkMjM2MmQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzC6jL2Am6nCeVDuiDas3ksjwi+UV N6m4Nps6MD+7JrFzKw5DVBcDv6DK5MJ9hSsk1psixdGIatbA4YhDe6Cv6WP85kk1 agaFbg/2O6YAqrx006JUT6tlTTo2pG7E8zVxL4ODPqjh+rp2ZDoPHCsV6MpE6ApM obAqUyfnJWm08VShXlgCG5160oU9BixaokyqZefFxJ4Js/GxYIWCuHAaixvdzIub jiwPmHP9awnQQtF1YmpINV88L7kJV7/3MU3jjlPtvm5+kWbx4+ukmDSXw+TPqmYH vZZBvXjtgpX3Gk/bz6+uZ+PpuuMGCUhZ4AwWw9VhjjWluN1nKwWGYurXhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBn3e8iM/StTDEwdo3xSLweNI2LQMB8GA1UdIwQY MBaAFNEMiNgtL6yCID1CokLW63Y9E7v4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFF5STJDMHZySUlnUFVLaVF0YnJkajBUdV9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS84ZWQwMTgtMDhmMy00Nzc3LTlkZDQt ZGUyNDVhZjRmYWNiLzEvMFF5STJDMHZySUlnUFVLaVF0YnJkajBUdV9nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS84ZWQwMTgtMDhmMy00Nzc3LTlkZDQtZGUyNDVhZjRmYWNi LzEvMFF5STJDMHZySUlnUFVLaVF0YnJkajBUdV9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqAfQqD1a e4ETxsdIihc87Z2+dWBKGvbRqmWxHeE+0cgnvAeuV4Xhdc+1ZCXPL0YgLDRoYVUP dzEfoLQm3/dc0NU/DX+oia0LFhv+VsqMaYJ4RMSBe59yGmlipywJ4kI/KnztEUK0 dL6cOi/EsAKGGU8VrBdIqjUM33Y3waw8yW/SS2dfkwf7SnM5L9Ph4VgKv9I6ElMz MPEdBXAjQ7ovuXhnLle1cHQN4GZeJFkfTu3lCPEmdeIlwA6/USKyoO+ODvfFoGxU vSI0PfJT8LzhdMtRY/ltsvLuQ1Fn41oAXVrI7YyTP1l5ZBPpDuxeNesK+jdpTmUX z+VCrg1l4j7AKw== -----END CERTIFICATE-----Generated at Sun Dec 14 14:42:01 2025 by rpki-client