This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft File: cpnOZKDxYk17stKWnlwRrbqlSFw.mft (raw, json) Hash identifier: 2rQ3feMcGdfvfEB+/QHo96hhAiw0uURBKbL7HvsSo6E= Subject key identifier: ED:1E:66:CB:23:C5:8F:A5:FA:DF:A8:B0:29:B4:62:35:1E:46:BB:D1 Authority key identifier: 72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C Certificate issuer: /CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c Certificate serial: 019B1871B1964E32DD144D6B3937AA0575E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft Manifest number: 0B9D Signing time: Sat 13 Dec 2025 16:01:02 +0000 Manifest this update: Sat 13 Dec 2025 16:01:02 +0000 Manifest next update: Sun 14 Dec 2025 16:01:02 +0000 Files and hashes: 1: cpnOZKDxYk17stKWnlwRrbqlSFw.crl (hash: wYdFjFWudvWqQaS4oS2VyfDrDjA3ybd1131kZGY4UKI=) 2: hGLXMAJyrLLUknw2I4rIa47GY5A.roa (hash: 2PfIq+E4/YZaE6ygL6f+ygB4E8ocD+aiVc7FkOqVsVA=) 3: vbTBxrwzB75awQdnuHxvUmGSxrI.roa (hash: BNvntPsh9Cs3tqn2zXlS+7ZhQF3J782Zk6D2d5jtV8U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 16:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:18:71:b1:96:4e:32:dd:14:4d:6b:39:37:aa:05:75:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c Validity Not Before: Dec 13 16:01:02 2025 GMT Not After : Dec 14 16:01:02 2025 GMT Subject: CN=ed1e66cb23c58fa5fadfa8b029b462351e46bbd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ab:b6:90:d4:18:ef:2e:4f:58:bb:a8:c9:78: 11:bc:19:d0:72:89:2e:40:25:1a:1c:cf:b6:16:9e: 96:32:b6:62:80:5e:43:e4:41:73:ec:37:3e:02:75: 05:fe:3f:94:eb:6a:c7:bc:58:09:00:94:f7:21:a9: e2:6e:80:ac:41:2f:99:ab:4f:b9:e1:ac:e9:f3:9a: da:05:3e:71:c3:19:7a:56:1e:2d:f0:bc:cd:f2:66: 67:9e:a6:11:74:67:2a:7f:a5:da:c6:96:0f:9d:95: b5:f0:e7:d1:ca:9c:a0:29:6f:88:3d:36:66:80:8e: 98:be:c0:27:dc:e2:b2:9d:0b:a9:71:a6:9f:08:cb: 91:f6:6b:ba:0f:3e:8d:d7:68:a1:66:e6:e6:b9:f7: 2d:61:7b:c7:d5:79:22:09:eb:de:d2:95:f4:59:58: 85:89:60:28:87:2f:d6:dd:e7:10:87:6d:ff:b3:d4: ba:69:73:6a:36:22:10:0c:39:58:54:83:4f:de:4e: 79:dd:58:b6:9b:a0:82:0f:87:95:98:0b:49:c5:b9: cc:51:c7:17:a1:d5:fe:e6:a0:89:f8:e7:f8:84:27: a6:7d:86:11:c8:4f:02:fc:0b:3c:52:22:90:b7:e5: 74:c5:b2:50:4f:45:69:03:87:55:64:30:bc:f2:45: dc:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:1E:66:CB:23:C5:8F:A5:FA:DF:A8:B0:29:B4:62:35:1E:46:BB:D1 X509v3 Authority Key Identifier: keyid:72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:de:90:45:5a:5e:d3:68:d2:f4:0d:54:05:db:4c:7f:7d:bd: d0:41:da:d1:8f:8b:3b:75:a3:92:5c:5e:e0:ce:aa:ef:f5:dc: 08:61:15:db:6d:fa:65:7f:6e:b0:2c:b8:30:3c:7d:38:ef:b6: 27:06:22:fb:9a:1b:1a:51:d0:fc:fa:51:d7:dd:61:4a:20:c0: 38:08:71:a1:52:92:47:ad:d2:34:00:00:0c:74:7d:78:b4:5e: 1a:4e:8f:54:be:28:ec:0a:2e:92:24:d1:38:79:f7:36:ca:bd: 55:44:e8:08:19:73:31:66:6f:70:7f:8c:ee:5b:82:2d:26:e0: f0:46:bc:68:e8:3b:df:24:aa:8f:9c:b3:fb:cf:5c:00:b4:13: 3c:7b:8b:ba:7e:2d:da:ae:03:56:a5:7c:18:d5:9c:45:a4:95: 7e:24:a2:eb:78:85:f5:2d:fa:d3:da:be:10:04:80:14:09:82: 0c:df:9d:07:0a:21:73:9c:d0:d1:bf:18:f0:85:ad:c3:c8:c5: 40:0c:9d:5d:df:da:5d:5f:e9:7b:59:27:15:0a:22:a0:ef:90: a0:37:0c:1a:3d:d4:ad:c7:e0:7b:c5:1f:53:06:b0:0d:41:a6: 68:b1:1b:63:a6:5d:1b:ef:09:9d:03:58:b8:3d:3b:f6:89:52: d1:5f:c1:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsYcbGWTjLdFE1rOTeqBXXmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyOTljZTY0YTBmMTYyNGQ3YmIyZDI5NjllNWMxMWFkYmFh NTQ4NWMwHhcNMjUxMjEzMTYwMTAyWhcNMjUxMjE0MTYwMTAyWjAzMTEwLwYDVQQD EyhlZDFlNjZjYjIzYzU4ZmE1ZmFkZmE4YjAyOWI0NjIzNTFlNDZiYmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA86u2kNQY7y5PWLuoyXgRvBnQcoku QCUaHM+2Fp6WMrZigF5D5EFz7Dc+AnUF/j+U62rHvFgJAJT3IaniboCsQS+Zq0+5 4azp85raBT5xwxl6Vh4t8LzN8mZnnqYRdGcqf6XaxpYPnZW18OfRypygKW+IPTZm gI6YvsAn3OKynQupcaafCMuR9mu6Dz6N12ihZubmufctYXvH1XkiCeve0pX0WViF iWAohy/W3ecQh23/s9S6aXNqNiIQDDlYVINP3k553Vi2m6CCD4eVmAtJxbnMUccX odX+5qCJ+Of4hCemfYYRyE8C/As8UiKQt+V0xbJQT0VpA4dVZDC88kXc8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO0eZssjxY+l+t+osCm0YjUeRrvRMB8GA1UdIwQY MBaAFHKZzmSg8WJNe7LSlp5cEa26pUhcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3BuT1pLRHhZazE3c3RLV25sd1JyYnFsU0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9jMjBmYmEtNWI2Ny00MzhjLWFiMDAt YzdlYjM0ZTJkY2E2LzEvY3BuT1pLRHhZazE3c3RLV25sd1JyYnFsU0Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9jMjBmYmEtNWI2Ny00MzhjLWFiMDAtYzdlYjM0ZTJkY2E2 LzEvY3BuT1pLRHhZazE3c3RLV25sd1JyYnFsU0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB96QRVpe 02jS9A1UBdtMf3290EHa0Y+LO3Wjklxe4M6q7/XcCGEV2236ZX9usCy4MDx9OO+2 JwYi+5obGlHQ/PpR191hSiDAOAhxoVKSR63SNAAADHR9eLReGk6PVL4o7AoukiTR OHn3Nsq9VUToCBlzMWZvcH+M7luCLSbg8Ea8aOg73ySqj5yz+89cALQTPHuLun4t 2q4DVqV8GNWcRaSVfiSi63iF9S3609q+EASAFAmCDN+dBwohc5zQ0b8Y8IWtw8jF QAydXd/aXV/pe1knFQoioO+QoDcMGj3Urcfge8UfUwawDUGmaLEbY6ZdG+8JnQNY uD079olS0V/B+Q== -----END CERTIFICATE-----Generated at Sun Dec 14 01:53:21 2025 by rpki-client