This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json) Hash identifier: hqS5cXSPL2b8Ex3jb5O6cIyAU4uihEIldjq3Dod5eWE= Subject key identifier: 44:01:72:E4:1A:28:30:5A:24:FB:F5:E2:B4:C9:C7:F6:0E:95:DA:A3 Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a Certificate serial: 019B59E403383688CA5AC9C864527B4EB51B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft Manifest number: 12DA Signing time: Fri 26 Dec 2025 09:01:13 +0000 Manifest this update: Fri 26 Dec 2025 09:01:13 +0000 Manifest next update: Sat 27 Dec 2025 09:01:13 +0000 Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: SBo7I1Mp/BfaJCLOjOnuoDVE4BBdOKsIxC7e58daPWE=) 2: cm9pm1Y4fh7VmcKkQuyOuu9QXgE.roa (hash: T9xnzREMcoc526+ebS5GUXWxlrjNz60+DOHB2xM8pA4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e4:03:38:36:88:ca:5a:c9:c8:64:52:7b:4e:b5:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a Validity Not Before: Dec 26 09:01:13 2025 GMT Not After : Dec 27 09:01:13 2025 GMT Subject: CN=440172e41a28305a24fbf5e2b4c9c7f60e95daa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c6:02:7b:4f:0a:27:c8:48:ec:2a:cb:b5:5c: 86:80:6d:d8:ef:44:2c:be:6b:e4:2e:6f:56:5f:47: b8:95:5c:6d:2b:ae:d4:7f:7e:f4:8d:d9:bd:c2:fa: e3:dc:d7:e5:fc:69:99:bc:3d:86:d3:6a:1b:5d:14: 56:d6:85:69:86:53:0a:75:71:27:31:94:27:de:2e: 05:c4:c6:fa:7f:3b:6d:df:9e:55:7e:af:31:84:93: 83:c8:54:a4:53:25:eb:36:14:fd:1c:15:a1:68:cd: 1e:42:1f:21:26:c1:62:20:3a:a1:75:21:2d:fb:82: 1c:c9:81:e0:c5:6f:e5:47:03:a2:a8:97:a3:e3:f7: 0a:6b:9c:5e:d7:e6:08:bb:73:b9:26:f9:fb:9b:60: bf:66:06:05:38:89:63:d0:71:af:a0:cb:33:ec:84: ec:40:94:64:4c:2b:1c:9b:be:e8:7b:03:0c:ae:8e: c4:35:f9:09:03:65:18:e5:9a:ca:6e:35:ab:f0:54: 8c:94:8e:33:20:77:b3:2d:40:5b:6c:0e:57:e0:cc: c8:7d:93:fe:24:ad:0e:eb:f2:13:d5:c9:87:da:52: de:d1:44:46:a6:89:dc:fe:96:32:ee:d0:96:23:de: 69:0b:0f:8f:f7:78:51:88:64:67:a1:e7:61:9c:f4: 6d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:01:72:E4:1A:28:30:5A:24:FB:F5:E2:B4:C9:C7:F6:0E:95:DA:A3 X509v3 Authority Key Identifier: keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:34:ca:4a:3f:ff:91:03:f5:ed:2f:d4:19:47:02:3b:48:65: 52:fe:07:da:18:06:eb:8a:15:8c:a5:6d:ea:5e:38:4a:47:e9: 59:51:71:bb:6a:17:b6:c0:d5:75:e7:f1:8c:8a:2b:a9:4d:81: 8e:b8:f7:ff:bb:89:a3:11:bd:4f:e5:c2:43:e8:82:99:63:3d: c6:3c:b2:d5:44:17:f0:95:f8:80:65:fc:ff:55:8b:df:fe:24: 75:58:9d:89:4b:e1:d4:b4:2e:28:0f:21:49:a2:ff:cc:ce:74: c9:14:0a:c2:7a:4a:75:8e:de:61:9e:d6:f5:bb:10:14:23:cd: 31:f5:48:87:a9:22:a3:be:32:5e:66:e3:92:b5:f6:00:9d:5f: 46:28:be:a9:44:4e:bb:4e:7c:5c:7d:06:8d:d1:6f:cc:c2:a5: 70:cd:ea:20:fd:b2:bc:c4:63:0e:69:a8:80:67:91:b4:e9:90: c0:44:f1:ae:af:0f:32:50:89:16:23:f2:96:d4:70:36:57:9e: 7f:4c:99:39:10:7f:df:bc:93:6c:17:15:90:26:34:78:49:a1: 34:19:9c:e2:a2:c8:35:ee:49:51:26:45:e6:0e:24:42:97:3c: 49:8c:c7:b4:45:88:00:23:c6:f9:e2:ab:82:20:0c:da:bf:49: 8c:d4:e1:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ5AM4NojKWsnIZFJ7TrUbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZTJlZTg0Y2NmNTZjZGMwMGZjMmNhYTU5MjkyNzlkYWUx NDg4OGEwHhcNMjUxMjI2MDkwMTEzWhcNMjUxMjI3MDkwMTEzWjAzMTEwLwYDVQQD Eyg0NDAxNzJlNDFhMjgzMDVhMjRmYmY1ZTJiNGM5YzdmNjBlOTVkYWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1sYCe08KJ8hI7CrLtVyGgG3Y70Qs vmvkLm9WX0e4lVxtK67Uf370jdm9wvrj3Nfl/GmZvD2G02obXRRW1oVphlMKdXEn MZQn3i4FxMb6fztt355Vfq8xhJODyFSkUyXrNhT9HBWhaM0eQh8hJsFiIDqhdSEt +4IcyYHgxW/lRwOiqJej4/cKa5xe1+YIu3O5Jvn7m2C/ZgYFOIlj0HGvoMsz7ITs QJRkTCscm77oewMMro7ENfkJA2UY5ZrKbjWr8FSMlI4zIHezLUBbbA5X4MzIfZP+ JK0O6/IT1cmH2lLe0URGponc/pYy7tCWI95pCw+P93hRiGRnoedhnPRt7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEQBcuQaKDBaJPv14rTJx/YOldqjMB8GA1UdIwQY MBaAFGzi7oTM9WzcAPwsqlkpJ52uFIiKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83ZDZmMmYtOTg0ZC00OTYxLWE2M2It NDk1YzZmMmM1MTczLzEvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC83ZDZmMmYtOTg0ZC00OTYxLWE2M2ItNDk1YzZmMmM1MTcz LzEvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMjTKSj// kQP17S/UGUcCO0hlUv4H2hgG64oVjKVt6l44SkfpWVFxu2oXtsDVdefxjIorqU2B jrj3/7uJoxG9T+XCQ+iCmWM9xjyy1UQX8JX4gGX8/1WL3/4kdVidiUvh1LQuKA8h SaL/zM50yRQKwnpKdY7eYZ7W9bsQFCPNMfVIh6kio74yXmbjkrX2AJ1fRii+qURO u058XH0GjdFvzMKlcM3qIP2yvMRjDmmogGeRtOmQwETxrq8PMlCJFiPyltRwNlee f0yZORB/37yTbBcVkCY0eEmhNBmc4qLINe5JUSZF5g4kQpc8SYzHtEWIACPG+eKr giAM2r9JjNThSg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:43 2025 by rpki-client