This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.mft File: _oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.mft (raw, json) Hash identifier: 1pu3Zx/b4Y0WRVBPJKwJkxV/T9OjqUYMPflhK98n+/0= Subject key identifier: 6E:DF:21:44:EE:80:20:51:67:51:84:C4:15:FA:5E:AE:F7:1B:FD:81 Authority key identifier: FE:81:99:E8:34:55:67:D8:51:6B:78:8F:E2:E1:D3:97:E2:7C:73:A4 Certificate issuer: /CN=fe8199e8345567d8516b788fe2e1d397e27c73a4 Certificate serial: 019B1201E6602A8A73A3EE04CDAF984FC464 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.mft Manifest number: 0D49 Signing time: Fri 12 Dec 2025 10:01:12 +0000 Manifest this update: Fri 12 Dec 2025 10:01:12 +0000 Manifest next update: Sat 13 Dec 2025 10:01:12 +0000 Files and hashes: 1: MKb9wXtbqGWtE_ve_s7Ybrn63Fw.roa (hash: 70yTR5hwY1yOvZbE5DDGYInarTbe9F4DtBLzW3EAThU=) 2: OqtJcNmb1J50tLIWF6D7y01VxA4.roa (hash: 1ov/KhQ3AFXvHLspCojYHQyYdAVdY1WazSh2AhXG8Y8=) 3: RFaEpCIQ7DiA3iF7lwwQ29jefIA.roa (hash: GOJnWj8oflUm6VfGwYR1lKiwH9eNwUJaLP/8I/2Ya6I=) 4: _oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.crl (hash: R0ogk8kajMZNGlB6Ntplz1IIcfaa6T8+LTGVXqiixR0=) 5: _tDDtYeC4guX6wO-zUHsidoSz_E.roa (hash: 8nbY0JFVrWrDRZsP3hnIFWTN85PCkZ4W8FZDcNxDifM=) 6: knqD2Ha_mIK6TeaUs6rdEtXjm7Y.roa (hash: IG4vqFBPbvWgHsxQujBWqMW5v3cVtaifoxJ+vZ5e8BU=) 7: t9sNc0uQI6gHaHDMTUeW7X8c5pI.roa (hash: I2z+OvE8dHq8WvzVKbss4tbH6KggeV9GWqIKnOXdtk4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:01:e6:60:2a:8a:73:a3:ee:04:cd:af:98:4f:c4:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe8199e8345567d8516b788fe2e1d397e27c73a4 Validity Not Before: Dec 12 10:01:12 2025 GMT Not After : Dec 13 10:01:12 2025 GMT Subject: CN=6edf2144ee802051675184c415fa5eaef71bfd81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:eb:d6:0e:fe:e3:e8:e1:b5:cd:a4:b3:f3:c5: 36:08:b6:8d:e9:0c:8a:18:8f:8e:98:29:2b:bb:42: 9b:1f:52:c3:7b:f2:ec:9f:db:bc:af:de:b5:6d:a4: 03:95:fc:1b:53:4e:9c:29:0a:13:b6:9c:0c:51:2d: 0a:27:d7:16:8f:dd:df:61:6b:dc:da:be:1d:76:af: 2d:6d:4d:67:c4:76:86:be:3f:00:03:3f:d4:19:9b: 9f:cf:82:2f:32:db:6c:c4:36:d8:6a:21:1f:a6:34: 74:dc:15:52:6f:89:2d:9c:0b:a3:f7:ec:28:3a:39: 34:84:f5:cc:b0:8f:6c:d6:4f:90:bf:1e:43:9f:96: 61:34:86:f1:c1:d5:d7:b9:6f:09:16:f4:7b:54:83: bd:10:0f:27:54:83:2f:0a:ac:db:aa:1a:60:aa:52: 0c:d7:12:14:73:94:b2:de:88:09:90:59:b9:e1:5e: 0b:24:3b:4d:c5:9d:98:a5:c0:22:ee:fb:74:2b:0b: c5:dc:1f:b8:2e:05:dc:5a:b7:95:69:e0:cb:4c:4e: 32:aa:40:45:8c:fd:9e:02:9e:7a:06:e9:e5:c4:16: e3:f2:57:06:20:ef:d9:b5:ec:d9:1f:03:22:48:ea: 02:02:32:08:6f:42:db:ad:92:e5:15:1b:fe:27:c1: ce:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DF:21:44:EE:80:20:51:67:51:84:C4:15:FA:5E:AE:F7:1B:FD:81 X509v3 Authority Key Identifier: keyid:FE:81:99:E8:34:55:67:D8:51:6B:78:8F:E2:E1:D3:97:E2:7C:73:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:98:2a:06:ec:31:96:15:91:49:08:92:ab:41:b1:7f:6d:82: ef:cc:3c:78:53:72:1e:73:df:f6:78:8d:97:5e:93:bb:72:63: 31:33:4f:fc:93:ac:71:66:ec:0f:4e:86:28:69:33:68:d0:cf: 94:ee:02:0d:9b:7b:b1:04:d4:02:80:c8:04:dc:5c:e3:a7:ea: 7d:19:00:2a:8c:6a:35:d1:d8:ec:44:89:00:0b:62:ba:2a:cb: f5:d9:39:e4:72:a4:4f:5a:6a:0c:7c:e2:24:5b:9e:be:d3:63: 0e:2f:0a:0f:55:00:57:bb:0f:5b:18:0f:d6:39:f8:d7:11:3e: 91:59:00:59:b9:b5:55:56:c8:56:21:7c:b3:15:8e:37:f6:ef: 79:93:cd:98:b5:96:72:a2:1b:55:27:36:11:b8:9e:e7:28:e5: 45:69:61:1f:76:81:5d:8e:8b:47:d6:a7:58:ff:e8:64:11:a5: 7f:b8:21:bd:f7:29:9b:21:c4:a8:0b:01:3a:7e:41:da:b4:74: a8:5f:05:ca:d7:21:f6:62:9d:ac:4f:ed:a3:67:aa:5b:a6:7b: 48:fe:e2:fe:e5:0f:b6:f8:7c:28:46:63:8c:12:56:74:25:49: 7d:0f:b6:a1:8a:71:7d:63:ff:a1:f7:41:86:e6:03:ae:39:95: 9e:f9:f8:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSAeZgKopzo+4Eza+YT8RkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlODE5OWU4MzQ1NTY3ZDg1MTZiNzg4ZmUyZTFkMzk3ZTI3 YzczYTQwHhcNMjUxMjEyMTAwMTEyWhcNMjUxMjEzMTAwMTEyWjAzMTEwLwYDVQQD Eyg2ZWRmMjE0NGVlODAyMDUxNjc1MTg0YzQxNWZhNWVhZWY3MWJmZDgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+vWDv7j6OG1zaSz88U2CLaN6QyK GI+OmCkru0KbH1LDe/Lsn9u8r961baQDlfwbU06cKQoTtpwMUS0KJ9cWj93fYWvc 2r4ddq8tbU1nxHaGvj8AAz/UGZufz4IvMttsxDbYaiEfpjR03BVSb4ktnAuj9+wo Ojk0hPXMsI9s1k+Qvx5Dn5ZhNIbxwdXXuW8JFvR7VIO9EA8nVIMvCqzbqhpgqlIM 1xIUc5Sy3ogJkFm54V4LJDtNxZ2YpcAi7vt0KwvF3B+4LgXcWreVaeDLTE4yqkBF jP2eAp56BunlxBbj8lcGIO/ZtezZHwMiSOoCAjIIb0LbrZLlFRv+J8HOBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG7fIUTugCBRZ1GExBX6Xq73G/2BMB8GA1UdIwQY MBaAFP6Bmeg0VWfYUWt4j+Lh05fifHOkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX29HWjZEUlZaOWhSYTNpUDR1SFRsLUo4YzZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMDllMzQtY2MxMS00Mzk0LTkwNGQt ODQwY2NiMzRiM2Y1LzEvX29HWjZEUlZaOWhSYTNpUDR1SFRsLUo4YzZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9kMDllMzQtY2MxMS00Mzk0LTkwNGQtODQwY2NiMzRiM2Y1 LzEvX29HWjZEUlZaOWhSYTNpUDR1SFRsLUo4YzZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMpgqBuwx lhWRSQiSq0Gxf22C78w8eFNyHnPf9niNl16Tu3JjMTNP/JOscWbsD06GKGkzaNDP lO4CDZt7sQTUAoDIBNxc46fqfRkAKoxqNdHY7ESJAAtiuirL9dk55HKkT1pqDHzi JFuevtNjDi8KD1UAV7sPWxgP1jn41xE+kVkAWbm1VVbIViF8sxWON/bveZPNmLWW cqIbVSc2Ebie5yjlRWlhH3aBXY6LR9anWP/oZBGlf7ghvfcpmyHEqAsBOn5B2rR0 qF8Fytch9mKdrE/to2eqW6Z7SP7i/uUPtvh8KEZjjBJWdCVJfQ+2oYpxfWP/ofdB huYDrjmVnvn4IQ== -----END CERTIFICATE-----Generated at Fri Dec 12 13:03:22 2025 by rpki-client