This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft File: dIisPOfpHiQMr_IZy-OPzwI78rY.mft (raw, json) Hash identifier: 0LpxywxHYR4GTGHTvh0Y7Qc7Aw6yvrF37BGF0x/lCk0= Subject key identifier: 6F:93:6D:5E:BD:F5:7E:10:D1:0F:48:9B:E8:C6:11:61:73:81:44:39 Authority key identifier: 74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6 Certificate issuer: /CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6 Certificate serial: 019B54BD3C23089B4C0BDBBEB0F4FF7F1B3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft Manifest number: 0CB1 Signing time: Thu 25 Dec 2025 09:00:46 +0000 Manifest this update: Thu 25 Dec 2025 09:00:46 +0000 Manifest next update: Fri 26 Dec 2025 09:00:46 +0000 Files and hashes: 1: WUxc8OaDvlLuIRaGhHw99-2pQV8.roa (hash: pHL2ka3zZ/EpxZTpD28h5nmQm9ygfk2G3CW5wJONDzE=) 2: dIisPOfpHiQMr_IZy-OPzwI78rY.crl (hash: ervMLcHYbLe1MNKgpTQG09lKIAI4JOMH+bDAt7YUM3E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.crl rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 09:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:bd:3c:23:08:9b:4c:0b:db:be:b0:f4:ff:7f:1b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6 Validity Not Before: Dec 25 09:00:46 2025 GMT Not After : Dec 26 09:00:46 2025 GMT Subject: CN=6f936d5ebdf57e10d10f489be8c6116173814439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:01:6c:34:e9:04:fb:7e:f2:7b:cb:ae:56:db: 90:58:34:a2:30:52:e6:a2:e0:46:55:a8:e5:b2:03: b9:d1:a4:d5:45:8d:37:c7:ed:8d:1d:19:7b:2c:a2: ca:95:11:c3:ba:95:ca:af:78:66:c5:46:06:39:1f: 58:2a:5e:e9:e6:b3:67:d0:38:30:77:8d:af:9e:55: 42:af:cc:03:e9:3f:3d:20:fc:ac:9b:67:f2:7d:6e: 5e:04:46:2a:c9:bb:fa:af:87:47:75:3b:31:2d:9c: 4b:7e:0e:c7:32:0d:11:ee:c6:4f:63:9c:f5:8a:ab: df:98:0b:fc:87:72:2b:fb:f9:26:4c:25:a9:b5:d1: df:a8:07:b6:0f:3a:52:37:c2:3c:00:1a:26:e8:ab: 97:7b:05:9c:12:1c:55:12:b1:4e:7a:32:db:d8:38: 29:51:ef:b2:ed:0c:3b:30:93:f2:0f:9e:03:4d:88: d4:87:f7:6e:95:96:30:cf:62:4e:4f:53:22:5c:b4: da:a8:a5:45:b3:6c:86:ec:df:37:d3:63:f7:7b:a9: 05:4a:a2:9f:00:1b:8e:14:d7:51:b2:d1:4d:b0:b7: 54:25:0b:be:50:33:58:63:f5:11:6e:2b:4d:1e:4e: 66:95:5f:7f:60:9e:be:73:90:6c:3e:0e:2e:a3:69: a0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:93:6D:5E:BD:F5:7E:10:D1:0F:48:9B:E8:C6:11:61:73:81:44:39 X509v3 Authority Key Identifier: keyid:74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:4e:17:29:c2:c0:b6:64:be:99:10:37:ad:54:fa:0a:b3:1c: 0f:11:5e:c5:9a:67:e1:92:4f:0f:a3:5a:e5:d8:14:a8:cc:df: 0c:2c:da:b5:54:df:4a:70:27:ce:77:04:46:af:0c:2f:09:93: b6:b0:be:dd:29:b8:33:c4:e0:5e:63:56:d4:4e:b6:5d:84:2a: ad:17:c2:97:9a:b4:db:7e:e5:48:a4:09:42:cb:a0:29:22:fd: 50:ff:d8:69:04:5f:25:b7:5b:34:87:73:58:86:95:c6:62:74: e7:33:51:a0:b0:fd:d8:5f:86:3d:e3:55:b4:0b:e0:69:e3:a0: 5b:bf:0f:7e:cb:92:e4:28:a6:05:a6:49:6b:e8:f6:5c:7e:ea: 29:ec:74:4f:5d:88:8b:4d:f6:c8:d2:35:62:47:e7:1f:a7:19: 1b:d8:bf:6f:66:5e:ca:b1:03:9e:0d:20:4e:bf:97:2d:ea:b3: 15:ec:28:bd:7c:19:8b:d1:5a:1a:68:88:11:24:25:65:bf:89: 8f:5c:28:82:e3:80:13:ba:5b:c4:55:38:39:d2:25:62:c5:4e: 98:d1:7a:94:04:6a:ac:dd:83:22:a1:e0:65:73:ce:f0:97:98: fc:fa:36:7a:a2:2b:e7:91:f2:9f:34:d3:f3:76:03:b4:74:0b: 9a:c6:b6:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUvTwjCJtMC9u+sPT/fxs7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ODhhYzNjZTdlOTFlMjQwY2FmZjIxOWNiZTM4ZmNmMDIz YmYyYjYwHhcNMjUxMjI1MDkwMDQ2WhcNMjUxMjI2MDkwMDQ2WjAzMTEwLwYDVQQD Eyg2ZjkzNmQ1ZWJkZjU3ZTEwZDEwZjQ4OWJlOGM2MTE2MTczODE0NDM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQFsNOkE+37ye8uuVtuQWDSiMFLm ouBGVajlsgO50aTVRY03x+2NHRl7LKLKlRHDupXKr3hmxUYGOR9YKl7p5rNn0Dgw d42vnlVCr8wD6T89IPysm2fyfW5eBEYqybv6r4dHdTsxLZxLfg7HMg0R7sZPY5z1 iqvfmAv8h3Ir+/kmTCWptdHfqAe2DzpSN8I8ABom6KuXewWcEhxVErFOejLb2Dgp Ue+y7Qw7MJPyD54DTYjUh/dulZYwz2JOT1MiXLTaqKVFs2yG7N8302P3e6kFSqKf ABuOFNdRstFNsLdUJQu+UDNYY/URbitNHk5mlV9/YJ6+c5BsPg4uo2mgewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG+TbV699X4Q0Q9Im+jGEWFzgUQ5MB8GA1UdIwQY MBaAFHSIrDzn6R4kDK/yGcvjj88CO/K2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZElpc1BPZnBIaVFNcl9JWnktT1B6d0k3OHJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMmUzZDYtZjIyNi00YTdlLTg0MGQt ZDU3NjNmZWNkNjA1LzEvZElpc1BPZnBIaVFNcl9JWnktT1B6d0k3OHJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9lMmUzZDYtZjIyNi00YTdlLTg0MGQtZDU3NjNmZWNkNjA1 LzEvZElpc1BPZnBIaVFNcl9JWnktT1B6d0k3OHJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArU4XKcLA tmS+mRA3rVT6CrMcDxFexZpn4ZJPD6Na5dgUqMzfDCzatVTfSnAnzncERq8MLwmT trC+3Sm4M8TgXmNW1E62XYQqrRfCl5q0237lSKQJQsugKSL9UP/YaQRfJbdbNIdz WIaVxmJ05zNRoLD92F+GPeNVtAvgaeOgW78PfsuS5CimBaZJa+j2XH7qKex0T12I i032yNI1YkfnH6cZG9i/b2ZeyrEDng0gTr+XLeqzFewovXwZi9FaGmiIESQlZb+J j1woguOAE7pbxFU4OdIlYsVOmNF6lARqrN2DIqHgZXPO8JeY/Po2eqIr55HynzTT 83YDtHQLmsa2bw== -----END CERTIFICATE-----Generated at Thu Dec 25 15:42:08 2025 by rpki-client