This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft File: o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft (raw, json) Hash identifier: Gxr+TXez8tK/ETkaAw8lVK5KNfN7MEckRp9eBgFKKys= Subject key identifier: 70:D9:E0:70:FB:F7:C5:19:E5:C3:80:18:6A:1A:D3:7F:7B:3E:1D:B1 Authority key identifier: A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64 Certificate issuer: /CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864 Certificate serial: 019B4815B0694B94F70CD4F9B96285F99AD3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft Manifest number: 178B Signing time: Mon 22 Dec 2025 22:02:19 +0000 Manifest this update: Mon 22 Dec 2025 22:02:19 +0000 Manifest next update: Tue 23 Dec 2025 22:02:19 +0000 Files and hashes: 1: o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl (hash: Hi55pJZFOyITMn2irfFGP3T+ffHT1bvNOQd8L8oOPII=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 22:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:15:b0:69:4b:94:f7:0c:d4:f9:b9:62:85:f9:9a:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864 Validity Not Before: Dec 22 22:02:19 2025 GMT Not After : Dec 23 22:02:19 2025 GMT Subject: CN=70d9e070fbf7c519e5c380186a1ad37f7b3e1db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:e7:78:7d:b7:b3:27:f2:33:e7:62:3d:25: 53:ef:cc:48:30:25:47:79:4c:7d:0d:c2:9a:39:4a: ac:ff:78:f8:30:cb:7b:bc:97:9a:1a:92:6e:d6:94: 98:59:14:5a:b7:10:fd:dc:72:c9:6e:6c:0c:07:d1: 8e:14:70:b9:80:a4:3f:4d:82:d7:35:6b:e1:49:e0: 4b:ee:c2:9e:8f:d1:d0:2f:92:b3:c9:ad:df:61:d6: ba:4a:0b:b3:e7:e3:4b:0f:17:72:60:f3:0a:5a:76: b1:24:34:be:ea:24:22:c9:96:fe:f0:a1:8a:3a:8f: 7a:c6:a5:d2:90:82:ca:ba:21:20:0d:1d:b9:d1:e4: f1:17:c5:fa:90:39:27:00:d6:9f:e7:ca:5e:1d:7d: 25:b1:6c:63:ac:34:ca:8b:61:f8:dc:d7:3f:3a:30: 3f:42:38:a6:ee:24:9e:07:e1:be:8e:c5:95:43:b5: 57:f2:67:e9:a5:b7:e6:39:ca:f5:9c:f8:f7:53:2b: e0:e1:0c:97:fc:29:7e:a1:56:47:d1:76:60:5f:e2: 62:34:7e:d0:11:8a:d1:86:8f:55:6c:57:be:0a:89: 14:1d:a4:82:dc:a9:3d:8e:c0:7b:ec:e0:9c:81:c6: 0a:f0:e9:25:90:56:b0:72:9f:b1:4c:a0:d2:93:da: 88:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D9:E0:70:FB:F7:C5:19:E5:C3:80:18:6A:1A:D3:7F:7B:3E:1D:B1 X509v3 Authority Key Identifier: keyid:A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:ef:ba:15:49:ad:67:20:16:c5:70:d6:bf:9e:9e:6c:33:dc: cf:32:31:01:9d:fc:ab:c9:86:92:fa:60:72:06:fb:0b:81:95: 4f:f7:0c:6d:ad:c0:f1:a6:d1:0b:e4:47:00:55:6e:20:a3:ab: 81:ab:54:35:b7:37:dd:87:48:70:72:60:67:ed:fa:bf:1c:9b: 31:39:f9:07:3f:bd:39:20:b5:f4:bb:19:a5:8f:73:03:13:25: d1:70:d1:47:e9:20:ff:93:68:fa:d5:fd:92:86:2b:38:66:ff: 7e:28:1c:e3:f6:a6:7f:8d:9d:37:eb:31:33:17:e1:64:72:2b: 4b:2a:63:40:5f:d3:d6:c5:5a:cb:ca:42:17:fa:b6:c6:10:0d: 99:74:b9:0f:d3:df:fe:7a:63:16:0d:f0:1c:6e:c7:b9:c1:78: f4:42:7d:90:65:f6:82:ef:3a:3f:b9:56:4c:c2:a1:ff:ed:47: 44:8d:57:7a:d9:af:3a:3f:79:a4:29:32:db:15:87:54:b0:cb: 38:79:de:f3:38:bc:01:06:2b:99:52:3e:7b:4c:be:e0:88:94: 1e:a3:9d:41:f2:40:64:f1:51:24:3e:c9:e0:b2:d9:1b:66:a5: 33:cb:d3:f3:93:fe:bb:28:6f:6f:16:e9:25:27:30:f8:1d:2d: 31:a6:bf:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIFbBpS5T3DNT5uWKF+ZrTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzYThjYWY2MjE3Y2ViMTBkZDhjMTQ2Zjk2YjlkNzczZWRk ODg4NjQwHhcNMjUxMjIyMjIwMjE5WhcNMjUxMjIzMjIwMjE5WjAzMTEwLwYDVQQD Eyg3MGQ5ZTA3MGZiZjdjNTE5ZTVjMzgwMTg2YTFhZDM3ZjdiM2UxZGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0rPneH23syfyM+diPSVT78xIMCVH eUx9DcKaOUqs/3j4MMt7vJeaGpJu1pSYWRRatxD93HLJbmwMB9GOFHC5gKQ/TYLX NWvhSeBL7sKej9HQL5Kzya3fYda6Sguz5+NLDxdyYPMKWnaxJDS+6iQiyZb+8KGK Oo96xqXSkILKuiEgDR250eTxF8X6kDknANaf58peHX0lsWxjrDTKi2H43Nc/OjA/ Qjim7iSeB+G+jsWVQ7VX8mfppbfmOcr1nPj3Uyvg4QyX/Cl+oVZH0XZgX+JiNH7Q EYrRho9VbFe+CokUHaSC3Kk9jsB77OCcgcYK8OklkFawcp+xTKDSk9qIOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHDZ4HD798UZ5cOAGGoa0397Ph2xMB8GA1UdIwQY MBaAFKOoyvYhfOsQ3YwUb5a513Pt2IhkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzZqSzlpRjg2eERkakJSdmxyblhjLTNZaUdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi81ZmQwMjMtOTJlYS00YTYzLWI3ZDAt ZTVjYmEyMTM3MzA4LzEvbzZqSzlpRjg2eERkakJSdmxyblhjLTNZaUdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi81ZmQwMjMtOTJlYS00YTYzLWI3ZDAtZTVjYmEyMTM3MzA4 LzEvbzZqSzlpRjg2eERkakJSdmxyblhjLTNZaUdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEu+6FUmt ZyAWxXDWv56ebDPczzIxAZ38q8mGkvpgcgb7C4GVT/cMba3A8abRC+RHAFVuIKOr gatUNbc33YdIcHJgZ+36vxybMTn5Bz+9OSC19LsZpY9zAxMl0XDRR+kg/5No+tX9 koYrOGb/figc4/amf42dN+sxMxfhZHIrSypjQF/T1sVay8pCF/q2xhANmXS5D9Pf /npjFg3wHG7HucF49EJ9kGX2gu86P7lWTMKh/+1HRI1XetmvOj95pCky2xWHVLDL OHne8zi8AQYrmVI+e0y+4IiUHqOdQfJAZPFRJD7J4LLZG2alM8vT85P+uyhvbxbp JScw+B0tMaa/fQ== -----END CERTIFICATE-----Generated at Tue Dec 23 06:53:39 2025 by rpki-client