This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft File: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft (raw, json) Hash identifier: plq2BmDOXkjen6JUOap7uSB1CbZrXWFMLf6ygL65hmE= Subject key identifier: BB:FA:E3:03:35:50:C5:18:D1:5B:8D:05:31:C8:6A:47:EE:62:62:1E Authority key identifier: 68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2 Certificate issuer: /CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2 Certificate serial: 019B32D7BEC340CC0F8C756E992A20D7A7B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft Manifest number: 1767 Signing time: Thu 18 Dec 2025 19:02:38 +0000 Manifest this update: Thu 18 Dec 2025 19:02:38 +0000 Manifest next update: Fri 19 Dec 2025 19:02:38 +0000 Files and hashes: 1: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl (hash: 6qn+d8WWi+Nppfvm4R11O9VzNfinE9v8M+VHG3c0QGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d7:be:c3:40:cc:0f:8c:75:6e:99:2a:20:d7:a7:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2 Validity Not Before: Dec 18 19:02:38 2025 GMT Not After : Dec 19 19:02:38 2025 GMT Subject: CN=bbfae3033550c518d15b8d0531c86a47ee62621e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c0:9c:b7:ba:4d:e9:ad:60:e6:7e:e6:d0:d2: a4:32:36:f2:02:f0:2b:ae:4d:f3:0d:5e:90:77:1d: 7c:23:bf:c9:71:56:ca:b0:3a:25:7c:ec:1d:de:85: 91:f7:9f:b8:9a:e8:8a:b9:da:48:99:49:95:f0:2b: a2:78:56:4e:b8:e4:b3:7d:f2:65:de:0a:f5:d9:c8: a6:36:24:34:6a:75:63:d8:a4:f2:00:a9:62:30:ae: 58:77:2d:c1:b7:cd:c7:f2:dc:24:0d:fe:33:bf:1c: b6:d3:17:cd:6e:2d:da:d7:4a:b7:b6:a1:fd:6f:9b: 35:a2:fe:b8:08:50:17:e2:52:68:b0:c1:32:c7:d5: 29:71:ba:fe:27:bb:a0:9c:94:15:ce:77:39:64:76: 9d:8f:8b:1c:80:4e:cf:82:14:66:38:8b:36:97:85: 72:d4:37:c5:da:65:18:c0:89:15:de:ba:13:b1:84: fc:8f:69:f8:d5:21:d9:f4:52:be:68:ca:15:57:20: 93:f9:88:14:31:a8:23:4e:c1:9b:d2:49:6a:6d:8e: 90:e4:76:ed:52:e6:a8:26:a2:48:6e:37:ff:f5:25: 96:97:70:e0:3b:f3:92:3f:fa:33:97:b7:b6:f9:29: 8e:a8:97:59:80:10:ea:37:9b:20:57:01:a6:cd:70: ba:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:FA:E3:03:35:50:C5:18:D1:5B:8D:05:31:C8:6A:47:EE:62:62:1E X509v3 Authority Key Identifier: keyid:68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:18:8f:07:ac:49:ff:c8:70:5d:f2:fb:e0:03:fd:3e:a3:de: 66:7d:b3:45:63:32:9a:a2:49:6a:67:9a:a4:f3:83:ea:58:74: ee:70:36:1d:81:f5:64:b7:a3:df:c4:2a:ed:db:bc:88:0f:fe: 17:f9:fc:ad:46:2a:cb:f4:d9:47:bd:37:b5:bd:a4:8e:bf:f5: 73:6d:9e:60:53:8f:e9:99:95:5b:73:da:95:46:7b:7d:44:83: 13:b2:b5:79:6f:b6:e4:d3:b5:6d:eb:5a:99:01:dc:33:3f:93: dc:15:6f:26:23:b9:f6:80:74:46:94:75:4d:b0:7f:97:13:bc: 07:85:71:7c:d3:9c:08:3d:3a:8a:60:9c:4c:37:d3:b3:2d:c1: c8:64:bb:67:83:ee:1d:b3:8d:18:9a:c8:2c:91:82:d1:e3:d8: e3:a9:e7:65:88:19:a8:56:89:04:2d:47:c3:54:63:a8:7c:ab: 3b:ba:5a:6b:e5:48:3e:25:20:80:87:8b:ae:15:fd:78:83:e5: 30:72:75:fd:43:7d:b8:48:22:f6:ba:10:45:b3:88:6a:9c:87: 5c:b2:03:c6:23:90:73:aa:21:41:d5:08:ef:48:5d:ff:a3:3a: 7e:ed:da:74:e4:4a:66:e5:71:3a:73:ad:43:71:38:88:d8:48: 8d:3b:8d:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy177DQMwPjHVumSog16e3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZTFlNmVhNTI3ZGMzODVhNzlhM2UwODgyN2RiZjY5MGM5 MWM0YzIwHhcNMjUxMjE4MTkwMjM4WhcNMjUxMjE5MTkwMjM4WjAzMTEwLwYDVQQD EyhiYmZhZTMwMzM1NTBjNTE4ZDE1YjhkMDUzMWM4NmE0N2VlNjI2MjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMCct7pN6a1g5n7m0NKkMjbyAvAr rk3zDV6Qdx18I7/JcVbKsDolfOwd3oWR95+4muiKudpImUmV8CuieFZOuOSzffJl 3gr12cimNiQ0anVj2KTyAKliMK5Ydy3Bt83H8twkDf4zvxy20xfNbi3a10q3tqH9 b5s1ov64CFAX4lJosMEyx9Upcbr+J7ugnJQVznc5ZHadj4scgE7PghRmOIs2l4Vy 1DfF2mUYwIkV3roTsYT8j2n41SHZ9FK+aMoVVyCT+YgUMagjTsGb0klqbY6Q5Hbt UuaoJqJIbjf/9SWWl3DgO/OSP/ozl7e2+SmOqJdZgBDqN5sgVwGmzXC6wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLv64wM1UMUY0VuNBTHIakfuYmIeMB8GA1UdIwQY MBaAFGjh5upSfcOFp5o+CIJ9v2kMkcTCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU9IbTZsSjl3NFdubWo0SWduMl9hUXlSeE1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS85MzMxYzktZTE2NC00ZDJlLWI4Mzkt MTdkMDk3ZmY4OWMyLzEvYU9IbTZsSjl3NFdubWo0SWduMl9hUXlSeE1JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS85MzMxYzktZTE2NC00ZDJlLWI4MzktMTdkMDk3ZmY4OWMy LzEvYU9IbTZsSjl3NFdubWo0SWduMl9hUXlSeE1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjhiPB6xJ /8hwXfL74AP9PqPeZn2zRWMymqJJameapPOD6lh07nA2HYH1ZLej38Qq7du8iA/+ F/n8rUYqy/TZR703tb2kjr/1c22eYFOP6ZmVW3PalUZ7fUSDE7K1eW+25NO1beta mQHcMz+T3BVvJiO59oB0RpR1TbB/lxO8B4VxfNOcCD06imCcTDfTsy3ByGS7Z4Pu HbONGJrILJGC0ePY46nnZYgZqFaJBC1Hw1RjqHyrO7paa+VIPiUggIeLrhX9eIPl MHJ1/UN9uEgi9roQRbOIapyHXLIDxiOQc6ohQdUI70hd/6M6fu3adORKZuVxOnOt Q3E4iNhIjTuNAQ== -----END CERTIFICATE-----Generated at Fri Dec 19 00:51:27 2025 by rpki-client