This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft File: obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json) Hash identifier: WobyjSZH17eGSiekiMeNv4A/xmUQgfBFYXWdV3DwMpw= Subject key identifier: C9:74:6B:EC:8C:33:19:0E:EC:04:7D:3D:83:8F:EA:7D:8C:7C:64:98 Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A Certificate issuer: /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a Certificate serial: 019B31C385408304453D218C6287E542A5EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft Manifest number: 0797 Signing time: Thu 18 Dec 2025 14:00:55 +0000 Manifest this update: Thu 18 Dec 2025 14:00:55 +0000 Manifest next update: Fri 19 Dec 2025 14:00:55 +0000 Files and hashes: 1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: 6WleqrwNorSvWACrDann87z9ekbX4KH5Cku1L4p4ifo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 14:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:c3:85:40:83:04:45:3d:21:8c:62:87:e5:42:a5:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a Validity Not Before: Dec 18 14:00:55 2025 GMT Not After : Dec 19 14:00:55 2025 GMT Subject: CN=c9746bec8c33190eec047d3d838fea7d8c7c6498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:83:20:2f:ae:15:8c:49:71:43:c1:15:cf:32: 87:86:87:b0:70:af:c5:f7:3b:a6:62:bd:f8:5f:5d: 65:54:cd:88:70:57:1b:6c:06:41:50:79:8a:09:77: 7a:92:5d:20:c8:45:6f:8c:28:ae:24:a9:59:a6:38: be:27:75:c9:7d:ab:27:b2:56:94:36:f4:94:e3:5c: 4b:fe:30:7a:1f:27:8b:31:52:62:67:2a:b3:09:e5: 77:84:0d:44:c7:33:d5:c1:d5:7f:3a:1a:66:f7:eb: 66:28:e8:8a:91:c2:cf:01:e3:61:24:91:2a:da:bb: 6a:6f:6a:ba:0a:25:4d:72:47:01:6c:7f:94:3c:ca: 2a:06:39:4f:70:b8:c2:3d:d9:16:21:48:95:8e:e1: 73:d8:33:f5:29:71:e5:f5:25:ec:8f:c7:28:dc:b6: 16:a3:c8:33:a9:1c:21:4a:88:60:bc:6e:d8:fe:89: 2a:61:4a:4d:1f:d8:51:58:71:d1:86:aa:58:4d:88: 6e:62:f2:f2:3b:89:f1:1f:41:39:e3:96:81:47:e8: fb:23:88:fe:4e:8f:43:25:85:90:5b:85:c8:fb:e4: 03:fe:20:ce:75:08:e5:d2:84:b7:15:7f:27:71:16: ec:1e:ae:80:e7:df:b4:fc:fa:ee:04:cc:d6:f5:47: 0e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:74:6B:EC:8C:33:19:0E:EC:04:7D:3D:83:8F:EA:7D:8C:7C:64:98 X509v3 Authority Key Identifier: keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:7f:7f:71:df:9e:ee:82:ac:e6:a3:13:06:23:06:ca:c3:a4: d9:92:92:93:30:22:3a:1e:60:f9:6d:d7:86:aa:b6:b1:ae:b4: c7:a9:c2:4a:a3:b1:6b:ed:af:49:ca:18:24:29:d0:44:42:05: 14:0e:d5:c2:e2:ce:ea:26:66:64:dc:df:6c:08:7f:7f:65:7a: 1a:79:ba:fd:db:20:2d:34:75:4a:65:1b:59:19:5d:be:75:7f: 02:54:a4:1b:e0:85:1f:df:f2:04:52:7c:bd:2a:8e:dd:f0:34: b7:56:a7:9c:1b:7b:98:33:de:eb:c8:57:f8:24:bb:79:6c:ca: e6:fe:2d:15:74:0c:02:a0:7f:95:66:99:14:1f:41:e4:76:ee: a2:c6:a9:78:fa:aa:3b:31:0f:32:9b:21:27:2f:fd:35:76:20: 6e:c1:6c:d9:3d:6d:eb:a5:2b:3e:6e:db:78:00:3b:ba:d8:a5: cd:06:fa:22:39:9c:53:13:56:3f:c7:d2:07:ca:a3:b6:6a:75: 6b:97:b6:65:da:78:17:55:fd:65:5a:84:96:21:25:d2:4f:a8: f9:81:e8:d4:3e:89:51:bc:74:16:7c:e0:c9:0e:83:06:45:0b: ab:18:41:b7:d3:94:a9:35:5c:03:08:f5:21:1f:94:41:48:67: 50:0a:6f:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxw4VAgwRFPSGMYoflQqXvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExYmI1MDU0YTE3Y2M5NGZmZmMyYmMyOTVhMTViZmVmOGE5 MDQzMGEwHhcNMjUxMjE4MTQwMDU1WhcNMjUxMjE5MTQwMDU1WjAzMTEwLwYDVQQD EyhjOTc0NmJlYzhjMzMxOTBlZWMwNDdkM2Q4MzhmZWE3ZDhjN2M2NDk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIMgL64VjElxQ8EVzzKHhoewcK/F 9zumYr34X11lVM2IcFcbbAZBUHmKCXd6kl0gyEVvjCiuJKlZpji+J3XJfasnslaU NvSU41xL/jB6HyeLMVJiZyqzCeV3hA1ExzPVwdV/Ohpm9+tmKOiKkcLPAeNhJJEq 2rtqb2q6CiVNckcBbH+UPMoqBjlPcLjCPdkWIUiVjuFz2DP1KXHl9SXsj8co3LYW o8gzqRwhSohgvG7Y/okqYUpNH9hRWHHRhqpYTYhuYvLyO4nxH0E545aBR+j7I4j+ To9DJYWQW4XI++QD/iDOdQjl0oS3FX8ncRbsHq6A59+0/PruBMzW9UcOkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMl0a+yMMxkO7AR9PYOP6n2MfGSYMB8GA1UdIwQY MBaAFKG7UFShfMlP/8K8KVoVv++KkEMKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgt NzIyNTVkMjQ5YzVkLzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgtNzIyNTVkMjQ5YzVk LzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI39/cd+e 7oKs5qMTBiMGysOk2ZKSkzAiOh5g+W3Xhqq2sa60x6nCSqOxa+2vScoYJCnQREIF FA7VwuLO6iZmZNzfbAh/f2V6Gnm6/dsgLTR1SmUbWRldvnV/AlSkG+CFH9/yBFJ8 vSqO3fA0t1annBt7mDPe68hX+CS7eWzK5v4tFXQMAqB/lWaZFB9B5HbuosapePqq OzEPMpshJy/9NXYgbsFs2T1t66UrPm7beAA7utilzQb6IjmcUxNWP8fSB8qjtmp1 a5e2Zdp4F1X9ZVqEliEl0k+o+YHo1D6JUbx0FnzgyQ6DBkULqxhBt9OUqTVcAwj1 IR+UQUhnUApv2w== -----END CERTIFICATE-----Generated at Thu Dec 18 23:29:14 2025 by rpki-client