This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft File: o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft (raw, json) Hash identifier: a6b3w+ZpAHyHvOJXI0+FkEajcjDr5VrJRGrCxx1BYLw= Subject key identifier: AF:CA:87:42:25:A4:B7:21:56:0E:9C:42:F6:F3:5E:85:AF:02:17:D3 Authority key identifier: A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38 Certificate issuer: /CN=a3a82ee9aa1106ed720d63c3844e666440e34438 Certificate serial: 019B243F7CC99156BC330C32C03FB1DF428A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft Manifest number: 0CB0 Signing time: Mon 15 Dec 2025 23:01:39 +0000 Manifest this update: Mon 15 Dec 2025 23:01:39 +0000 Manifest next update: Tue 16 Dec 2025 23:01:39 +0000 Files and hashes: 1: c6Nj79I3Har3nGytaNZUrH4rLp8.roa (hash: pFirwTzGIzOGXK1Oft6HDqGlSVO899FoeQfzjWxGxFc=) 2: o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl (hash: tDMY9tPly/e9BJe/oyE/VLTFMGOSFipIKKT+hz/I+Nw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 23:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:3f:7c:c9:91:56:bc:33:0c:32:c0:3f:b1:df:42:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3a82ee9aa1106ed720d63c3844e666440e34438 Validity Not Before: Dec 15 23:01:39 2025 GMT Not After : Dec 16 23:01:39 2025 GMT Subject: CN=afca874225a4b721560e9c42f6f35e85af0217d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e1:eb:5e:7c:25:7f:5a:68:52:e0:19:a7:9f: 16:70:1a:bf:ca:e2:e1:a5:10:9e:a9:1f:a3:97:1f: 62:fd:fd:ba:d3:2d:cc:80:c4:4c:b0:2c:27:85:4b: 1f:8d:d1:b9:97:87:67:03:a7:98:d4:f8:5c:d0:0d: 17:85:6c:e6:5a:4e:49:3d:bd:04:a5:58:b2:f8:3a: ff:fa:f6:f6:90:20:b7:c4:60:c4:b5:34:cf:e3:6e: 09:c0:13:10:02:dd:37:f0:98:d4:e5:db:03:c9:5c: 17:75:74:49:b4:e2:27:f8:79:4f:d6:2b:13:88:4b: 7f:7c:b7:db:3f:a8:bd:23:49:50:a4:a8:5e:24:dd: fc:ea:8a:0a:45:09:07:e6:29:79:33:1e:70:d4:b9: 41:54:cc:b9:88:eb:02:e3:58:93:7f:a0:17:59:09: 5f:e4:d9:e3:b0:3b:66:4c:12:ae:5d:2b:8c:8a:0a: 7c:d3:8f:52:99:92:22:d9:2b:a5:98:29:bb:e8:0b: ed:2f:c9:c6:86:a7:75:74:56:8a:be:07:0e:cf:4e: 69:f8:49:8d:e5:b9:fe:f9:93:bc:2f:fe:05:93:b5: 14:45:a8:ee:63:95:fe:90:4d:bc:54:a4:88:a8:22: 72:66:6e:7f:11:f4:42:8e:04:96:ce:cf:a6:ec:a7: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:CA:87:42:25:A4:B7:21:56:0E:9C:42:F6:F3:5E:85:AF:02:17:D3 X509v3 Authority Key Identifier: keyid:A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:1c:9e:d4:07:a5:94:90:09:5a:8d:88:28:18:8b:d6:dc:7f: e2:90:6a:e4:39:c9:ae:de:e0:14:8a:dc:71:e5:35:ec:2e:56: 35:d7:18:8c:cd:1d:44:57:3e:11:e7:43:60:10:3d:e5:45:ea: a1:36:33:a8:1f:e4:f8:a3:0e:74:64:d3:c3:56:49:40:ce:12: 07:09:c9:ea:c0:c1:ee:68:7f:67:16:3c:69:29:98:e3:55:11: 07:e4:26:27:89:9f:1d:24:31:22:f7:a6:e3:f8:54:9e:63:ed: d5:19:e0:d2:97:82:80:d5:42:2f:01:02:d5:76:97:6a:ab:77: d4:e0:9c:6d:4a:7d:0a:2f:1d:4e:64:48:76:00:04:46:38:9f: 9a:fd:f2:fe:ef:ad:c1:26:db:37:6a:20:a7:8d:c8:6f:c6:16: ef:8b:61:26:c0:9d:ac:fa:10:ae:f4:0d:56:58:b5:06:18:84: ea:b2:28:b8:fc:b8:d0:c3:be:e5:1d:8a:ac:ca:da:f1:69:0a: 6a:e9:91:8d:35:07:f3:c6:45:48:a1:15:ec:ad:f5:ef:e5:1f: 37:5b:ef:e8:c7:e6:6f:48:a3:1c:3b:b8:b2:4c:15:db:f2:50: af:d1:bf:fc:4c:ed:dc:c2:7e:09:ed:d8:c4:b0:8b:c5:9f:39: ff:73:1a:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskP3zJkVa8MwwywD+x30KKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzYTgyZWU5YWExMTA2ZWQ3MjBkNjNjMzg0NGU2NjY0NDBl MzQ0MzgwHhcNMjUxMjE1MjMwMTM5WhcNMjUxMjE2MjMwMTM5WjAzMTEwLwYDVQQD EyhhZmNhODc0MjI1YTRiNzIxNTYwZTljNDJmNmYzNWU4NWFmMDIxN2QzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0uHrXnwlf1poUuAZp58WcBq/yuLh pRCeqR+jlx9i/f260y3MgMRMsCwnhUsfjdG5l4dnA6eY1Phc0A0XhWzmWk5JPb0E pViy+Dr/+vb2kCC3xGDEtTTP424JwBMQAt038JjU5dsDyVwXdXRJtOIn+HlP1isT iEt/fLfbP6i9I0lQpKheJN386ooKRQkH5il5Mx5w1LlBVMy5iOsC41iTf6AXWQlf 5NnjsDtmTBKuXSuMigp8049SmZIi2SulmCm76AvtL8nGhqd1dFaKvgcOz05p+EmN 5bn++ZO8L/4Fk7UURajuY5X+kE28VKSIqCJyZm5/EfRCjgSWzs+m7KcZuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK/Kh0IlpLchVg6cQvbzXoWvAhfTMB8GA1UdIwQY MBaAFKOoLumqEQbtcg1jw4ROZmRA40Q4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzZndTZhb1JCdTF5RFdQRGhFNW1aRURqUkRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9jNzIwYjQtMWFjYi00NzAzLWJjMjQt NDY3ZTAwOWRhZWQwLzEvbzZndTZhb1JCdTF5RFdQRGhFNW1aRURqUkRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9jNzIwYjQtMWFjYi00NzAzLWJjMjQtNDY3ZTAwOWRhZWQw LzEvbzZndTZhb1JCdTF5RFdQRGhFNW1aRURqUkRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABBye1Ael lJAJWo2IKBiL1tx/4pBq5DnJrt7gFIrcceU17C5WNdcYjM0dRFc+EedDYBA95UXq oTYzqB/k+KMOdGTTw1ZJQM4SBwnJ6sDB7mh/ZxY8aSmY41URB+QmJ4mfHSQxIvem 4/hUnmPt1Rng0peCgNVCLwEC1XaXaqt31OCcbUp9Ci8dTmRIdgAERjifmv3y/u+t wSbbN2ogp43Ib8YW74thJsCdrPoQrvQNVli1BhiE6rIouPy40MO+5R2KrMra8WkK aumRjTUH88ZFSKEV7K317+UfN1vv6Mfmb0ijHDu4skwV2/JQr9G//Ezt3MJ+Ce3Y xLCLxZ85/3MaqQ== -----END CERTIFICATE-----Generated at Tue Dec 16 07:05:15 2025 by rpki-client