This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft File: PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json) Hash identifier: HvoOE8JASgaqqkyljgOZ/+yufedd1JZ0W94d38DVTl0= Subject key identifier: 06:EE:47:1C:EF:A2:86:8E:30:D2:FE:67:BC:3B:FD:B3:4D:A4:C6:01 Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24 Certificate issuer: /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224 Certificate serial: 019B33444EC6FE85680E1A3B6500E06B7559 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft Manifest number: 15A4 Signing time: Thu 18 Dec 2025 21:01:13 +0000 Manifest this update: Thu 18 Dec 2025 21:01:13 +0000 Manifest next update: Fri 19 Dec 2025 21:01:13 +0000 Files and hashes: 1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: iTuYPFj8XkEfq8XUx+MV3qsGgdDBs5QEEIv90i6XBr0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:44:4e:c6:fe:85:68:0e:1a:3b:65:00:e0:6b:75:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224 Validity Not Before: Dec 18 21:01:13 2025 GMT Not After : Dec 19 21:01:13 2025 GMT Subject: CN=06ee471cefa2868e30d2fe67bc3bfdb34da4c601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4b:d3:2b:4a:24:e1:47:f5:b7:a6:9d:28:df: 86:4d:87:ec:b2:88:ce:35:ab:84:91:f2:43:e6:e8: c6:d4:b4:d1:53:97:a0:1e:bc:79:c5:f0:b4:a2:dc: 3e:72:51:e3:bf:97:81:b5:a3:ab:36:90:9e:af:fd: ea:94:dd:86:4b:64:03:d5:a3:67:b2:d5:ce:20:69: c9:7e:f2:fd:d7:4d:d9:e6:2e:dd:2a:86:15:05:ce: d2:4b:6a:ff:64:43:5b:d4:d0:f1:30:30:04:37:7e: ba:02:71:f2:ff:b3:aa:4f:af:87:2f:69:e9:01:97: c3:34:ca:da:7f:ac:d2:d2:9c:04:ee:1e:f0:84:a7: b4:40:c3:85:03:3b:6b:af:6d:68:e2:ed:4d:89:3a: 1c:93:22:9c:b9:db:92:b6:6b:3f:34:6f:b8:60:97: c1:5c:e9:71:34:7b:a5:30:c1:e2:6e:1b:8a:82:67: d0:1a:14:66:c6:38:52:70:ae:ec:8d:cc:b4:bc:07: a4:14:a1:47:6e:f2:1b:14:25:a0:a1:0b:97:39:41: ff:2e:d9:26:33:c6:eb:6e:7f:d3:9f:64:5f:b1:d9: ec:12:4f:01:96:b2:a0:ba:06:4a:c9:f5:48:91:73: 77:29:b4:84:a6:c1:0a:5a:91:17:25:d9:a4:81:20: e6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:EE:47:1C:EF:A2:86:8E:30:D2:FE:67:BC:3B:FD:B3:4D:A4:C6:01 X509v3 Authority Key Identifier: keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:59:97:97:2e:ef:38:50:47:a8:b5:7e:76:b4:ed:58:7c:a7: 6d:02:35:d6:3a:fa:13:df:99:24:bc:27:b0:ca:b0:bb:4e:ce: 6a:19:b2:c9:11:03:1b:80:ee:44:a5:8e:77:9c:38:04:ab:46: 86:27:fa:6c:61:17:36:e0:cc:ee:62:e1:b4:5d:e0:77:17:af: 39:1b:b4:d4:cf:ce:59:31:e0:92:42:15:7e:29:a5:62:52:d9: f9:3e:a8:64:2e:12:fb:06:42:13:eb:44:df:1b:f5:9a:b7:99: af:e8:06:9b:67:a1:1c:9b:f7:34:eb:3e:2c:86:64:6d:36:c6: fb:44:f9:d3:d1:fc:50:af:ff:9d:10:a5:9c:25:b4:4e:e1:d0: 77:2f:4c:8a:fe:43:ab:7e:3c:56:83:12:b4:1f:3d:92:6e:c9: 5f:31:76:fa:2f:a0:b9:60:f2:ff:8f:18:a4:cb:fb:64:83:ac: 9d:ad:ee:28:9a:f3:44:a0:a0:ca:72:1d:ae:22:fc:51:79:4f: 77:d4:c4:92:60:12:ae:47:c1:93:f1:27:2e:4c:c9:31:69:44: 6e:ba:9d:16:66:de:3e:01:da:fe:b0:85:6f:f6:46:97:44:90: f8:20:cf:cd:71:5d:c9:c7:ec:33:b8:b3:7f:ca:bb:ea:90:63: fa:58:83:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszRE7G/oVoDho7ZQDga3VZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjMzdhZDhiM2EyNjkwZTBjZjQ3MmRiMjZlOGZlMmIxNjgw MTkyMjQwHhcNMjUxMjE4MjEwMTEzWhcNMjUxMjE5MjEwMTEzWjAzMTEwLwYDVQQD EygwNmVlNDcxY2VmYTI4NjhlMzBkMmZlNjdiYzNiZmRiMzRkYTRjNjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3kvTK0ok4Uf1t6adKN+GTYfssojO NauEkfJD5ujG1LTRU5egHrx5xfC0otw+clHjv5eBtaOrNpCer/3qlN2GS2QD1aNn stXOIGnJfvL9103Z5i7dKoYVBc7SS2r/ZENb1NDxMDAEN366AnHy/7OqT6+HL2np AZfDNMraf6zS0pwE7h7whKe0QMOFAztrr21o4u1NiTockyKcuduStms/NG+4YJfB XOlxNHulMMHibhuKgmfQGhRmxjhScK7sjcy0vAekFKFHbvIbFCWgoQuXOUH/Ltkm M8brbn/Tn2RfsdnsEk8BlrKgugZKyfVIkXN3KbSEpsEKWpEXJdmkgSDmBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAbuRxzvooaOMNL+Z7w7/bNNpMYBMB8GA1UdIwQY MBaAFDw3rYs6JpDgz0ctsm6P4rFoAZIkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2Njct MmUyYjU2YjQxNWMxLzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2NjctMmUyYjU2YjQxNWMx LzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALVmXly7v OFBHqLV+drTtWHynbQI11jr6E9+ZJLwnsMqwu07OahmyyREDG4DuRKWOd5w4BKtG hif6bGEXNuDM7mLhtF3gdxevORu01M/OWTHgkkIVfimlYlLZ+T6oZC4S+wZCE+tE 3xv1mreZr+gGm2ehHJv3NOs+LIZkbTbG+0T509H8UK//nRClnCW0TuHQdy9Miv5D q348VoMStB89km7JXzF2+i+guWDy/48YpMv7ZIOsna3uKJrzRKCgynIdriL8UXlP d9TEkmASrkfBk/EnLkzJMWlEbrqdFmbePgHa/rCFb/ZGl0SQ+CDPzXFdycfsM7iz f8q76pBj+liDug== -----END CERTIFICATE-----Generated at Fri Dec 19 00:53:09 2025 by rpki-client