This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft File: PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json) Hash identifier: wjXQtJXhgXIHjsmaSaYOVU8PzGcdAC+26mPU8CMZ2hY= Subject key identifier: 05:83:E3:B2:95:23:37:9F:28:C8:83:B8:9C:AF:2C:F2:A7:CE:F9:DB Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24 Certificate issuer: /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224 Certificate serial: 019B5418784276AE56568DEF0A76C7CC468F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft Manifest number: 15B5 Signing time: Thu 25 Dec 2025 06:00:48 +0000 Manifest this update: Thu 25 Dec 2025 06:00:48 +0000 Manifest next update: Fri 26 Dec 2025 06:00:48 +0000 Files and hashes: 1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: ObzgDRsLsY+FmI7cT6cGUOO0OmKFMharddypTM34DNI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 01:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:18:78:42:76:ae:56:56:8d:ef:0a:76:c7:cc:46:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224 Validity Not Before: Dec 25 06:00:48 2025 GMT Not After : Dec 26 06:00:48 2025 GMT Subject: CN=0583e3b29523379f28c883b89caf2cf2a7cef9db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2e:40:bc:b6:07:c5:15:81:9a:58:ff:a7:0b: 3e:86:ea:7f:45:fe:5c:0d:13:40:71:66:1b:15:89: 44:d9:44:63:44:99:d7:c9:37:0f:c9:41:e5:75:f0: 12:4e:cb:86:63:4f:7b:86:87:29:d0:e6:1f:20:2e: 16:15:3b:98:59:26:34:d3:68:30:6d:c5:85:82:d8: 42:93:8e:f4:38:5f:04:38:bf:42:3a:68:e9:cc:a1: 05:b1:c5:ac:55:e8:84:ad:96:3a:d9:97:d9:09:09: d8:95:91:d2:38:81:9a:2b:53:0e:d3:18:de:de:85: d8:30:45:65:81:5c:5d:4d:fd:8b:f0:7c:fe:83:74: a4:aa:ee:b6:f9:54:7a:dc:14:1a:89:27:67:ec:0b: 02:68:6c:4c:eb:15:4c:a1:23:5f:9d:ac:3f:d9:69: ac:aa:10:66:ab:75:2f:13:f2:df:ee:81:f2:84:44: 03:fe:d5:8a:f7:9b:a5:75:d6:22:ad:fd:e9:64:9a: 37:62:b7:dd:c3:e7:c2:15:56:e8:6d:48:a3:82:5a: b3:db:fd:1b:0a:22:fb:06:a9:b7:c7:64:cf:1c:61: 33:6f:5e:6d:43:93:03:ce:16:f1:4a:6e:b5:b2:77: a3:13:10:4c:69:3e:b2:7a:4d:10:ee:56:06:ec:67: a3:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:83:E3:B2:95:23:37:9F:28:C8:83:B8:9C:AF:2C:F2:A7:CE:F9:DB X509v3 Authority Key Identifier: keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:37:fc:4f:d2:75:46:91:a9:8a:56:ff:2d:25:fa:42:b3:12: 3d:a7:2d:20:93:36:7c:52:ba:fa:44:18:14:6a:69:59:76:a8: 7d:1c:ec:c2:7d:5f:03:89:38:d6:88:1e:d8:b8:3c:88:98:47: 0f:f2:71:36:b5:91:b6:88:b2:2e:85:b3:ad:93:a0:45:ae:7d: 65:69:dd:fd:af:e9:23:3e:16:d7:83:a3:1a:44:12:ae:92:64: 68:7d:9f:2b:5c:35:79:7c:72:a7:73:ab:1d:d4:27:b9:c5:f8: 4e:47:f5:03:d9:d6:d8:6b:4b:e8:ac:b7:f6:5f:78:57:42:dc: a9:da:c4:33:8e:3d:fa:58:c0:f8:09:31:07:38:f1:a4:dd:2b: 9b:d5:7d:b8:42:f6:fe:ed:74:0f:bf:39:c0:70:9f:be:1d:f0: 8e:59:fa:cd:8a:e0:2d:77:12:67:e9:54:59:bd:58:74:d6:43: 7d:42:91:94:10:5a:e1:56:c2:9c:19:05:52:94:fa:68:a8:3f: 2f:dc:ee:80:5e:d7:c1:47:07:aa:e1:ed:f7:7f:95:6f:da:9d: 0e:f8:92:03:f1:04:69:60:f8:7b:52:bc:ca:0a:a0:93:30:78: df:9b:f6:64:91:93:40:d2:9f:72:6c:b0:8d:f8:2b:3b:c4:99: 15:45:99:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUGHhCdq5WVo3vCnbHzEaPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjMzdhZDhiM2EyNjkwZTBjZjQ3MmRiMjZlOGZlMmIxNjgw MTkyMjQwHhcNMjUxMjI1MDYwMDQ4WhcNMjUxMjI2MDYwMDQ4WjAzMTEwLwYDVQQD EygwNTgzZTNiMjk1MjMzNzlmMjhjODgzYjg5Y2FmMmNmMmE3Y2VmOWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqS5AvLYHxRWBmlj/pws+hup/Rf5c DRNAcWYbFYlE2URjRJnXyTcPyUHldfASTsuGY097hocp0OYfIC4WFTuYWSY002gw bcWFgthCk470OF8EOL9COmjpzKEFscWsVeiErZY62ZfZCQnYlZHSOIGaK1MO0xje 3oXYMEVlgVxdTf2L8Hz+g3Skqu62+VR63BQaiSdn7AsCaGxM6xVMoSNfnaw/2Wms qhBmq3UvE/Lf7oHyhEQD/tWK95ulddYirf3pZJo3Yrfdw+fCFVbobUijglqz2/0b CiL7Bqm3x2TPHGEzb15tQ5MDzhbxSm61snejExBMaT6yek0Q7lYG7GejUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAWD47KVIzefKMiDuJyvLPKnzvnbMB8GA1UdIwQY MBaAFDw3rYs6JpDgz0ctsm6P4rFoAZIkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2Njct MmUyYjU2YjQxNWMxLzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2NjctMmUyYjU2YjQxNWMx LzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHDf8T9J1 RpGpilb/LSX6QrMSPactIJM2fFK6+kQYFGppWXaofRzswn1fA4k41oge2Lg8iJhH D/JxNrWRtoiyLoWzrZOgRa59ZWnd/a/pIz4W14OjGkQSrpJkaH2fK1w1eXxyp3Or HdQnucX4Tkf1A9nW2GtL6Ky39l94V0LcqdrEM449+ljA+AkxBzjxpN0rm9V9uEL2 /u10D785wHCfvh3wjln6zYrgLXcSZ+lUWb1YdNZDfUKRlBBa4VbCnBkFUpT6aKg/ L9zugF7XwUcHquHt93+Vb9qdDviSA/EEaWD4e1K8ygqgkzB435v2ZJGTQNKfcmyw jfgrO8SZFUWZBA== -----END CERTIFICATE-----Generated at Thu Dec 25 07:23:00 2025 by rpki-client