This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json) Hash identifier: 52HgI2JARHdcWp306fOgV5lQvibdM+pM5fGeXJIZWwo= Subject key identifier: 45:8E:B2:DD:94:71:23:6B:4E:2C:B8:44:0C:D8:D5:B3:2E:AB:E5:8B Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07 Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907 Certificate serial: 019B3EDA9C91B29A9DF63699F409F16DB61D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft Manifest number: 1787 Signing time: Sun 21 Dec 2025 03:01:12 +0000 Manifest this update: Sun 21 Dec 2025 03:01:12 +0000 Manifest next update: Mon 22 Dec 2025 03:01:12 +0000 Files and hashes: 1: dFMSfN7MRHvmo2z77TleB1icwq8.roa (hash: /EIF28RJEmpawXw8Jts26G5tvzRqBblkps3qt2KKi+I=) 2: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: Enmr8D/5B0u5fvDYXBOyxsZHo2ySZKehyNBlc4Aj+TE=) 3: f859ZdSNJcfJKStuw77yAkHe9lU.roa (hash: kyLklvM7jagtw4zC+hzmwKGnI3XjZWGfhg7ojPBYscg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:da:9c:91:b2:9a:9d:f6:36:99:f4:09:f1:6d:b6:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907 Validity Not Before: Dec 21 03:01:12 2025 GMT Not After : Dec 22 03:01:12 2025 GMT Subject: CN=458eb2dd9471236b4e2cb8440cd8d5b32eabe58b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b0:2b:7b:7e:38:ee:0e:1f:e2:b3:8d:db:b8: 2c:39:e2:cf:36:17:da:e9:53:6e:32:d1:71:25:16: 82:60:ca:8a:79:be:e4:f5:7b:14:bb:91:a3:f4:1d: 37:ee:68:30:44:33:38:2f:a9:a4:2f:c9:5f:1b:4f: 06:7c:4a:03:58:4a:6d:b0:a7:fe:a2:c9:30:7e:b0: 64:9d:4d:97:de:6b:5c:f5:96:5d:c8:7f:d0:50:46: 68:19:f4:e9:4e:ac:bb:52:14:53:0b:a9:e4:c8:e0: c0:fc:a2:21:55:11:d7:24:3d:cf:20:38:25:92:30: 6f:ba:05:de:89:5c:99:54:40:54:56:4d:d1:7b:67: 9d:74:33:53:7e:7e:21:af:1e:bd:69:fe:52:e9:99: f8:e0:b7:fe:fe:15:6f:af:67:8d:e0:aa:30:7b:8e: 0d:03:64:fb:72:07:d9:84:b9:c5:37:3c:51:e9:f2: e8:b7:fd:01:c8:6a:1f:97:c5:31:2d:f5:52:41:e8: 00:2c:ba:a9:bc:ac:3d:b4:9e:d8:2e:89:89:88:68: 7b:08:70:16:14:df:ad:b3:4c:6b:0f:a6:41:39:73: 2d:be:6d:97:a9:a2:04:50:cd:03:aa:8a:6d:89:6d: 1c:ad:e7:73:64:e0:6a:88:9b:f8:78:6a:c0:6f:25: cc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:8E:B2:DD:94:71:23:6B:4E:2C:B8:44:0C:D8:D5:B3:2E:AB:E5:8B X509v3 Authority Key Identifier: keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:33:a6:24:26:84:99:b7:bd:23:3a:c7:9d:77:bf:d6:2e:9e: 11:dc:49:c6:7e:76:da:fe:cc:54:75:a2:8f:bc:ee:2e:b4:fb: ec:4a:8b:df:fa:90:97:2b:eb:2d:80:04:e9:d3:b1:c8:8b:b9: c9:1a:3a:56:ab:fc:11:3c:de:42:4f:4f:2d:a3:ac:91:c1:79: 37:9f:d9:a9:12:32:49:5f:c2:78:06:f5:4c:1e:ff:d9:20:1b: 84:f0:a0:53:a2:22:a7:7d:7b:32:21:3a:ef:a1:a9:3b:5f:93: ce:31:ad:5d:82:d1:03:44:3e:a7:65:b2:40:6f:3b:b8:0c:df: 75:1f:68:61:fd:2c:0c:5b:d0:30:21:d6:ff:34:df:5b:6c:21: 60:9e:e8:76:03:53:15:f0:66:ef:56:2f:3d:7a:4a:d9:9d:76: bc:2c:71:0b:73:fc:a7:fb:0a:77:28:35:ce:85:61:2c:db:6a: 5b:c0:39:5a:fb:d3:73:e2:b6:2a:d9:f3:93:14:81:79:81:9d: 14:d2:2c:8a:39:04:9c:48:a3:73:45:17:a3:6c:b8:47:ea:26: d7:cd:22:dd:70:a2:cd:2d:da:60:a3:52:84:dc:14:82:f6:a7: 5d:94:aa:66:a1:3d:ed:b1:b0:ae:2c:97:90:6c:7a:97:53:7c: cd:1f:0c:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+2pyRspqd9jaZ9AnxbbYdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTQzZjllNWFlM2Y2ZWFmYjUwNjhhZTg4ZjE4YzI5ZTQ0 MzU5MDcwHhcNMjUxMjIxMDMwMTEyWhcNMjUxMjIyMDMwMTEyWjAzMTEwLwYDVQQD Eyg0NThlYjJkZDk0NzEyMzZiNGUyY2I4NDQwY2Q4ZDViMzJlYWJlNThiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0LAre3447g4f4rON27gsOeLPNhfa 6VNuMtFxJRaCYMqKeb7k9XsUu5Gj9B037mgwRDM4L6mkL8lfG08GfEoDWEptsKf+ oskwfrBknU2X3mtc9ZZdyH/QUEZoGfTpTqy7UhRTC6nkyODA/KIhVRHXJD3PIDgl kjBvugXeiVyZVEBUVk3Re2eddDNTfn4hrx69af5S6Zn44Lf+/hVvr2eN4Kowe44N A2T7cgfZhLnFNzxR6fLot/0ByGofl8UxLfVSQegALLqpvKw9tJ7YLomJiGh7CHAW FN+ts0xrD6ZBOXMtvm2XqaIEUM0DqoptiW0credzZOBqiJv4eGrAbyXMKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEWOst2UcSNrTiy4RAzY1bMuq+WLMB8GA1UdIwQY MBaAFHTkP55a4/bq+1BorojxjCnkQ1kHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9RX25scmo5dXI3VUdpdWlQR01LZVJEV1FjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9kYTMzYWUtMTZjYy00YzlhLWJmOWMt NzE3OTk4YWEzY2ZmLzEvZE9RX25scmo5dXI3VUdpdWlQR01LZVJEV1FjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS9kYTMzYWUtMTZjYy00YzlhLWJmOWMtNzE3OTk4YWEzY2Zm LzEvZE9RX25scmo5dXI3VUdpdWlQR01LZVJEV1FjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGzOmJCaE mbe9IzrHnXe/1i6eEdxJxn522v7MVHWij7zuLrT77EqL3/qQlyvrLYAE6dOxyIu5 yRo6Vqv8ETzeQk9PLaOskcF5N5/ZqRIySV/CeAb1TB7/2SAbhPCgU6Iip317MiE6 76GpO1+TzjGtXYLRA0Q+p2WyQG87uAzfdR9oYf0sDFvQMCHW/zTfW2whYJ7odgNT FfBm71YvPXpK2Z12vCxxC3P8p/sKdyg1zoVhLNtqW8A5WvvTc+K2KtnzkxSBeYGd FNIsijkEnEijc0UXo2y4R+om180i3XCizS3aYKNShNwUgvanXZSqZqE97bGwriyX kGx6l1N8zR8MRw== -----END CERTIFICATE-----Generated at Sun Dec 21 07:43:57 2025 by rpki-client