This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json) Hash identifier: JnhBcFm+RAj2Luuww/OWQd2mlwWcyDGWinpPKMoDnX0= Subject key identifier: DA:98:0E:47:E7:D2:5B:C0:F4:67:D6:E7:BD:1D:56:9C:24:A9:EE:84 Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88 Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988 Certificate serial: 019B7335A068DEEF1C49CFC2600C7F9BE294 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft Manifest number: 0A1B Signing time: Wed 31 Dec 2025 07:00:52 +0000 Manifest this update: Wed 31 Dec 2025 07:00:52 +0000 Manifest next update: Thu 01 Jan 2026 07:00:52 +0000 Files and hashes: 1: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: alV/9vS13xFmWdaaYiPQsldo5gRH+7TQ+BIAHhdGbIU=) 2: IAritswAhqNQe77s1GDg_ezpHck.roa (hash: ILdWDEHhnQvuxpeMgx2XCbjW7CQm2ybVgtMQih2P4NU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 07:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:73:35:a0:68:de:ef:1c:49:cf:c2:60:0c:7f:9b:e2:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988 Validity Not Before: Dec 31 07:00:52 2025 GMT Not After : Jan 1 07:00:52 2026 GMT Subject: CN=da980e47e7d25bc0f467d6e7bd1d569c24a9ee84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:90:ac:23:4c:38:0e:6f:f2:22:30:52:75:5f: 77:0a:a9:70:5c:fd:dc:6a:41:c8:b4:f9:44:74:1b: 50:e2:b5:36:f9:2e:df:bd:31:2c:32:2f:30:74:86: c2:4b:93:ae:9b:0b:a2:a9:77:6b:20:cd:a2:e6:3e: 7a:18:85:33:ef:d1:4c:0d:b4:ad:3e:b3:7d:0c:b9: d9:f5:b1:52:8b:d1:01:74:c3:bb:27:39:d7:5b:3e: ac:2a:29:5e:a2:0e:52:3e:66:61:53:eb:b6:8d:37: da:61:55:3b:c5:f8:e3:94:6f:34:c4:72:b5:97:c7: 6f:37:7f:d7:52:b1:e1:a4:28:ad:d1:08:6d:ce:c7: fc:40:fc:3b:56:7c:7e:9f:ab:41:44:9e:f0:e7:b7: 52:24:59:25:f1:77:a9:3d:2e:9b:ec:20:b5:cf:fa: 3d:32:fd:0b:4b:d7:ad:4f:3a:dc:49:11:df:a3:fd: 41:9d:65:4e:8d:23:4d:3a:47:0b:c2:ea:02:2c:dd: 4d:ea:bf:b3:05:38:33:d1:ed:6d:b1:cb:dc:2b:03: 8d:e1:59:8f:d2:69:fd:a0:36:f2:d1:d3:eb:61:a0: 0c:85:d9:19:ce:3d:37:91:78:ff:e2:2b:71:c0:4f: 36:76:d5:00:f2:c8:32:fa:6a:97:c2:0e:bd:ea:3d: 44:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:98:0E:47:E7:D2:5B:C0:F4:67:D6:E7:BD:1D:56:9C:24:A9:EE:84 X509v3 Authority Key Identifier: keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:56:30:3c:08:df:8b:ef:b6:a1:76:b5:91:82:9a:e0:b7:4f: 30:b9:62:15:c6:a2:6a:aa:d2:1b:51:dc:57:3b:cf:b4:9f:59: 9d:a2:87:b5:d4:7e:55:18:7a:c5:47:e4:bd:39:a1:7d:9d:a3: 2d:8c:a5:37:19:0a:5e:e3:cd:9b:06:1f:b7:00:17:58:6c:97: 50:98:d5:b5:26:e7:4a:cb:bb:56:ce:e1:97:49:b6:83:a8:55: 4c:f0:75:d7:ff:b6:47:c1:f8:e4:27:a7:25:e6:9e:36:15:45: 8d:d3:e9:b6:25:aa:06:4a:3c:d7:ec:aa:6f:2a:d6:3a:7c:de: 54:bd:6a:cd:f9:92:3c:07:cc:bf:17:02:e7:47:26:24:98:d0: ea:6a:98:21:35:32:c2:88:10:80:4d:e2:6f:d8:5f:35:28:ae: 4b:36:57:ab:da:7f:ee:c4:8e:1b:cc:b6:bf:28:35:36:26:9d: 53:1f:f5:62:27:31:44:9d:c8:d7:fb:27:de:87:3e:b0:4e:bf: f0:59:60:dc:70:ff:c3:47:a1:39:1b:c4:84:a6:85:a1:9b:b1: e4:25:0f:a5:41:97:a2:20:e5:e7:0d:15:17:fc:1b:60:25:1a: f7:2e:82:fc:8b:b4:a1:af:cc:76:76:bd:4a:f5:82:51:0e:c4: 54:27:4b:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtzNaBo3u8cSc/CYAx/m+KUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmMTgzMjZlMDAxYWE3ZmM1NmY4MzUzMTMxNTM3NmY5ZWFh ZTA5ODgwHhcNMjUxMjMxMDcwMDUyWhcNMjYwMTAxMDcwMDUyWjAzMTEwLwYDVQQD EyhkYTk4MGU0N2U3ZDI1YmMwZjQ2N2Q2ZTdiZDFkNTY5YzI0YTllZTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpCsI0w4Dm/yIjBSdV93CqlwXP3c akHItPlEdBtQ4rU2+S7fvTEsMi8wdIbCS5OumwuiqXdrIM2i5j56GIUz79FMDbSt PrN9DLnZ9bFSi9EBdMO7JznXWz6sKileog5SPmZhU+u2jTfaYVU7xfjjlG80xHK1 l8dvN3/XUrHhpCit0Qhtzsf8QPw7Vnx+n6tBRJ7w57dSJFkl8XepPS6b7CC1z/o9 Mv0LS9etTzrcSRHfo/1BnWVOjSNNOkcLwuoCLN1N6r+zBTgz0e1tscvcKwON4VmP 0mn9oDby0dPrYaAMhdkZzj03kXj/4itxwE82dtUA8sgy+mqXwg696j1ENQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNqYDkfn0lvA9GfW570dVpwkqe6EMB8GA1UdIwQY MBaAFA8YMm4AGqf8Vvg1MTFTdvnqrgmIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYt NmI4MTM2OTNiYzhjLzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYtNmI4MTM2OTNiYzhj LzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOFYwPAjf i++2oXa1kYKa4LdPMLliFcaiaqrSG1HcVzvPtJ9ZnaKHtdR+VRh6xUfkvTmhfZ2j LYylNxkKXuPNmwYftwAXWGyXUJjVtSbnSsu7Vs7hl0m2g6hVTPB11/+2R8H45Cen JeaeNhVFjdPptiWqBko81+yqbyrWOnzeVL1qzfmSPAfMvxcC50cmJJjQ6mqYITUy wogQgE3ib9hfNSiuSzZXq9p/7sSOG8y2vyg1NiadUx/1YicxRJ3I1/sn3oc+sE6/ 8Flg3HD/w0ehORvEhKaFoZux5CUPpUGXoiDl5w0VF/wbYCUa9y6C/Iu0oa/Mdna9 SvWCUQ7EVCdLGQ== -----END CERTIFICATE-----Generated at Wed Dec 31 10:48:43 2025 by rpki-client