This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft File: dHyzZv9uI99sCX9grcf6gHVZgZE.mft (raw, json) Hash identifier: NwEl1ZPGk4nkSaAlz/N8ZEtYn28Ynh/Ubbnf+nzfWfQ= Subject key identifier: 21:C1:72:CF:93:8B:D3:40:DA:BF:6F:98:A1:73:CD:D3:17:23:CA:D8 Authority key identifier: 74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91 Certificate issuer: /CN=747cb366ff6e23df6c097f60adc7fa8075598191 Certificate serial: 019B69C502F090D8020A54F93D1D0ED83587 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft Manifest number: 0B67 Signing time: Mon 29 Dec 2025 11:01:17 +0000 Manifest this update: Mon 29 Dec 2025 11:01:17 +0000 Manifest next update: Tue 30 Dec 2025 11:01:17 +0000 Files and hashes: 1: _yLmchLwIYVTnPdJc9fw9h7BqNI.roa (hash: jQg4aqJLhfqC2o9cWdzjV4aGpmH8JtaZPWEi/oExAo8=) 2: dHyzZv9uI99sCX9grcf6gHVZgZE.crl (hash: EQ7BKd0Thory0Fn6CDg6ZwMknufETh9V3H9pM0VQwMY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 11:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:69:c5:02:f0:90:d8:02:0a:54:f9:3d:1d:0e:d8:35:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=747cb366ff6e23df6c097f60adc7fa8075598191 Validity Not Before: Dec 29 11:01:17 2025 GMT Not After : Dec 30 11:01:17 2025 GMT Subject: CN=21c172cf938bd340dabf6f98a173cdd31723cad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fe:00:4e:3f:03:89:96:55:ea:c1:05:45:2c: 60:09:54:20:b8:4d:ca:e7:bd:b3:23:73:79:cd:88: 1a:dc:8b:1e:86:75:d0:fa:5b:88:cf:10:ed:f0:1b: 14:4d:37:7b:e2:d7:59:72:f8:75:c0:05:de:03:25: 78:2c:77:77:46:c6:1a:05:e1:b3:8f:3a:01:07:a5: 41:9b:28:35:c6:79:d0:a6:f3:42:31:9b:40:5c:2a: 3f:dc:b4:9a:18:51:8f:df:fc:83:44:eb:54:4e:ba: 22:a0:1a:bd:75:bb:0f:7d:a1:71:4d:42:eb:ee:be: b2:42:38:c6:43:44:86:a3:0b:d9:2a:20:c4:2f:90: ef:96:5d:2f:b9:3f:60:39:e0:d2:28:70:41:ac:35: 40:44:e6:e2:d4:e3:36:21:d4:92:ec:65:c8:3f:18: 67:37:ce:9b:2d:87:3b:68:56:18:b1:73:6f:45:bb: 1c:99:30:5b:a0:2a:e6:03:3e:5f:34:1d:41:1a:fd: 09:f6:a0:ce:59:de:ae:a1:f6:6b:a4:85:05:36:3c: eb:04:e7:d0:ed:53:07:76:d1:49:59:4e:3e:07:b7: 21:ee:b3:3f:9b:d7:b4:8c:96:76:25:a1:fd:c9:81: e1:ef:c5:47:d9:82:f5:27:1c:5d:6a:66:cf:b6:af: d8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C1:72:CF:93:8B:D3:40:DA:BF:6F:98:A1:73:CD:D3:17:23:CA:D8 X509v3 Authority Key Identifier: keyid:74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:b5:c7:5d:5d:87:60:bd:6a:08:bb:37:7f:93:8f:1a:76:b2: 5f:50:f0:24:dd:57:45:3b:db:b6:77:02:61:5d:c7:70:cb:d6: b5:2b:f4:5a:9c:05:b8:6a:6d:b4:f9:a3:da:2b:5f:0e:42:ce: 98:06:69:76:bd:57:5f:6f:c4:e3:f7:49:d0:67:b0:38:19:59: c0:7a:a2:fb:6a:c5:84:8a:3a:cd:38:df:f0:34:35:51:5d:13: 4a:ac:00:bd:0c:6e:8d:9c:f5:50:47:71:d3:1a:3f:a9:cd:bb: e7:31:55:5b:16:be:fd:0e:e0:9b:05:1e:d9:19:d5:5f:4c:11: 16:b5:84:c3:b3:60:3b:03:21:61:fb:d0:32:41:17:15:f1:fc: cc:9e:eb:05:4d:2f:cf:a8:48:5a:85:bd:05:c9:f3:7b:79:b6: e6:95:12:d3:b8:84:14:73:1c:1f:a2:e4:15:97:21:f7:78:19: 4e:50:4e:29:10:3f:a8:0c:c7:f2:de:72:73:42:7d:51:b1:6b: 17:1c:68:86:80:e4:02:ec:c7:fd:a7:ac:1a:aa:36:9c:9c:47: 04:87:b3:49:05:e8:7d:4e:9e:df:54:8d:38:5d:27:f3:34:ee: 6b:1c:14:4f:95:4d:3a:4b:2a:0a:14:69:61:47:5a:bf:42:5c: a8:56:4a:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtpxQLwkNgCClT5PR0O2DWHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0N2NiMzY2ZmY2ZTIzZGY2YzA5N2Y2MGFkYzdmYTgwNzU1 OTgxOTEwHhcNMjUxMjI5MTEwMTE3WhcNMjUxMjMwMTEwMTE3WjAzMTEwLwYDVQQD EygyMWMxNzJjZjkzOGJkMzQwZGFiZjZmOThhMTczY2RkMzE3MjNjYWQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/4ATj8DiZZV6sEFRSxgCVQguE3K 572zI3N5zYga3IsehnXQ+luIzxDt8BsUTTd74tdZcvh1wAXeAyV4LHd3RsYaBeGz jzoBB6VBmyg1xnnQpvNCMZtAXCo/3LSaGFGP3/yDROtUTroioBq9dbsPfaFxTULr 7r6yQjjGQ0SGowvZKiDEL5Dvll0vuT9gOeDSKHBBrDVARObi1OM2IdSS7GXIPxhn N86bLYc7aFYYsXNvRbscmTBboCrmAz5fNB1BGv0J9qDOWd6uofZrpIUFNjzrBOfQ 7VMHdtFJWU4+B7ch7rM/m9e0jJZ2JaH9yYHh78VH2YL1JxxdambPtq/YdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCHBcs+Ti9NA2r9vmKFzzdMXI8rYMB8GA1UdIwQY MBaAFHR8s2b/biPfbAl/YK3H+oB1WYGRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEh5elp2OXVJOTlzQ1g5Z3JjZjZnSFZaZ1pFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8zYWI1NWQtODUyZi00OTViLWIyYjMt ZTAyZDczMGZlODRlLzEvZEh5elp2OXVJOTlzQ1g5Z3JjZjZnSFZaZ1pFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8zYWI1NWQtODUyZi00OTViLWIyYjMtZTAyZDczMGZlODRl LzEvZEh5elp2OXVJOTlzQ1g5Z3JjZjZnSFZaZ1pFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKbXHXV2H YL1qCLs3f5OPGnayX1DwJN1XRTvbtncCYV3HcMvWtSv0WpwFuGpttPmj2itfDkLO mAZpdr1XX2/E4/dJ0GewOBlZwHqi+2rFhIo6zTjf8DQ1UV0TSqwAvQxujZz1UEdx 0xo/qc275zFVWxa+/Q7gmwUe2RnVX0wRFrWEw7NgOwMhYfvQMkEXFfH8zJ7rBU0v z6hIWoW9Bcnze3m25pUS07iEFHMcH6LkFZch93gZTlBOKRA/qAzH8t5yc0J9UbFr FxxohoDkAuzH/aesGqo2nJxHBIezSQXofU6e31SNOF0n8zTuaxwUT5VNOksqChRp YUdav0JcqFZK1Q== -----END CERTIFICATE-----Generated at Mon Dec 29 18:00:30 2025 by rpki-client