This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft File: DpXDrONm20G83CVsXVs75JCk92E.mft (raw, json) Hash identifier: LzkqG5GOln6BVD3ZsvlxHAarjl0/Dag7A2bMlAqbyAc= Subject key identifier: 66:E3:C6:D6:85:F9:2F:ED:BD:A9:DD:14:FF:53:C9:79:B0:A4:25:63 Authority key identifier: 0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61 Certificate issuer: /CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761 Certificate serial: 019B51BC0160E2E9D7CE13E311AC37A151A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft Manifest number: 0BEB Signing time: Wed 24 Dec 2025 19:00:34 +0000 Manifest this update: Wed 24 Dec 2025 19:00:34 +0000 Manifest next update: Thu 25 Dec 2025 19:00:34 +0000 Files and hashes: 1: 1ILl-_jBl8vTjilNwWyLb_6kN84.roa (hash: ecF4kJW8L9z29VWA5l2Xp4iuCOJ3lYvBbDFUMxXyKfo=) 2: DpXDrONm20G83CVsXVs75JCk92E.crl (hash: /+On1ThTFD/ffo2+aY+/OLn5sh7K+pnWoUmMZ6uSqk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:bc:01:60:e2:e9:d7:ce:13:e3:11:ac:37:a1:51:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761 Validity Not Before: Dec 24 19:00:34 2025 GMT Not After : Dec 25 19:00:34 2025 GMT Subject: CN=66e3c6d685f92fedbda9dd14ff53c979b0a42563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e3:98:28:76:f2:b4:b0:75:2c:6c:5c:cb:f0: a0:a1:6e:16:30:12:41:28:7b:c2:7f:18:ce:9a:ab: 45:55:52:6b:ff:8c:9b:a4:f0:fe:f8:ef:4b:0e:05: 19:86:3a:2e:6c:c0:08:b2:ec:af:85:92:6d:23:d3: f5:c0:29:e5:00:56:55:75:e1:13:d9:82:e3:8a:99: f4:d2:4c:c8:00:bd:d8:f9:93:a5:fc:5b:44:cc:58: 3a:7a:ea:ae:73:1f:25:01:ee:7c:02:8b:d7:93:dd: 2a:e3:14:5d:a0:04:15:a3:31:8b:f6:0a:e3:41:f7: 97:f8:29:ae:4c:55:f9:dc:3c:41:1b:7a:b5:bf:25: fc:11:10:a9:42:b2:96:0f:29:03:39:07:7b:4d:89: 67:c6:98:7a:df:46:fc:d4:52:73:27:6d:08:7d:1f: 5a:2e:bb:de:6f:ac:14:bc:cc:0b:b1:70:d3:b9:5f: b8:0b:2c:1f:70:35:ae:fe:bf:7d:71:09:f9:c9:58: ef:3e:e9:a5:95:87:67:02:ed:21:cd:de:f1:48:95: c1:be:d1:65:21:ce:1c:4a:3a:e1:d8:05:73:e3:07: d1:48:cb:ec:9d:1a:10:38:c7:f0:be:01:41:27:86: de:f1:18:41:ba:3c:45:4a:50:b0:bf:a3:67:61:66: 88:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E3:C6:D6:85:F9:2F:ED:BD:A9:DD:14:FF:53:C9:79:B0:A4:25:63 X509v3 Authority Key Identifier: keyid:0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:12:89:24:42:63:41:86:e9:44:e1:7f:06:89:71:bf:55:af: fd:fb:77:c9:21:e0:13:0b:6c:02:81:a9:d2:7a:29:d8:a8:20: ff:91:42:fe:8d:c8:6c:4d:62:9d:59:1b:d0:0d:34:65:c4:b8: fc:58:16:d6:9e:dd:eb:18:09:b7:5e:9a:07:53:76:2f:1b:43: 07:b3:75:58:df:df:06:eb:90:64:d7:29:54:39:e5:17:54:a4: 51:4f:5b:6f:81:15:df:6a:88:ac:47:f3:95:87:56:df:97:8d: e8:1a:3b:7c:39:72:53:f1:29:d0:ce:f5:e7:df:01:4d:48:9b: 7b:65:e2:f4:2e:f7:f6:da:e4:5d:19:50:02:64:25:bb:54:57: 56:72:c4:2a:e1:63:c2:4a:20:92:dc:e8:b1:06:8d:ab:fb:98: 58:2e:09:1b:dd:b7:64:29:61:5e:0b:e2:b8:5d:4b:54:b2:03: ff:09:97:98:32:17:27:0f:2a:0a:82:88:3d:c2:f4:4a:58:15: 22:8b:a7:bc:6b:31:7e:0b:38:0d:8e:a7:d8:7f:5a:d8:47:6f: f4:4d:10:bf:75:48:ac:ed:27:59:5d:7e:2f:82:bf:26:76:9d: d6:a8:82:43:7c:cd:d2:44:ed:72:77:3b:56:3e:1d:e3:ed:10: 1b:56:d1:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvAFg4unXzhPjEaw3oVGpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlOTVjM2FjZTM2NmRiNDFiY2RjMjU2YzVkNWIzYmU0OTBh NGY3NjEwHhcNMjUxMjI0MTkwMDM0WhcNMjUxMjI1MTkwMDM0WjAzMTEwLwYDVQQD Eyg2NmUzYzZkNjg1ZjkyZmVkYmRhOWRkMTRmZjUzYzk3OWIwYTQyNTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOOYKHbytLB1LGxcy/CgoW4WMBJB KHvCfxjOmqtFVVJr/4ybpPD++O9LDgUZhjoubMAIsuyvhZJtI9P1wCnlAFZVdeET 2YLjipn00kzIAL3Y+ZOl/FtEzFg6euqucx8lAe58AovXk90q4xRdoAQVozGL9grj QfeX+CmuTFX53DxBG3q1vyX8ERCpQrKWDykDOQd7TYlnxph630b81FJzJ20IfR9a Lrveb6wUvMwLsXDTuV+4CywfcDWu/r99cQn5yVjvPumllYdnAu0hzd7xSJXBvtFl Ic4cSjrh2AVz4wfRSMvsnRoQOMfwvgFBJ4be8RhBujxFSlCwv6NnYWaI4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGbjxtaF+S/tvandFP9TyXmwpCVjMB8GA1UdIwQY MBaAFA6Vw6zjZttBvNwlbF1bO+SQpPdhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHBYRHJPTm0yMEc4M0NWc1hWczc1SkNrOTJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8xY2Q5MDctNDRkMi00NmIxLThiZWMt ZjUzZTUxYzA5NzRmLzEvRHBYRHJPTm0yMEc4M0NWc1hWczc1SkNrOTJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8xY2Q5MDctNDRkMi00NmIxLThiZWMtZjUzZTUxYzA5NzRm LzEvRHBYRHJPTm0yMEc4M0NWc1hWczc1SkNrOTJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADBKJJEJj QYbpROF/Bolxv1Wv/ft3ySHgEwtsAoGp0nop2Kgg/5FC/o3IbE1inVkb0A00ZcS4 /FgW1p7d6xgJt16aB1N2LxtDB7N1WN/fBuuQZNcpVDnlF1SkUU9bb4EV32qIrEfz lYdW35eN6Bo7fDlyU/Ep0M71598BTUibe2Xi9C739trkXRlQAmQlu1RXVnLEKuFj wkogktzosQaNq/uYWC4JG923ZClhXgviuF1LVLID/wmXmDIXJw8qCoKIPcL0SlgV IounvGsxfgs4DY6n2H9a2Edv9E0Qv3VIrO0nWV1+L4K/Jnad1qiCQ3zN0kTtcnc7 Vj4d4+0QG1bRYw== -----END CERTIFICATE-----Generated at Thu Dec 25 04:35:46 2025 by rpki-client