This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json) Hash identifier: dAY+SBkAsO6XbdRi1fSVZWegFLpZVJtKwgPgvuel70c= Subject key identifier: 34:95:FF:8F:3B:2C:E0:8E:6D:D7:FC:C9:A2:8E:91:52:2D:25:50:05 Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07 Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907 Certificate serial: 019B657A2ECFB13A755980288CC4A96BF5E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft Manifest number: 179B Signing time: Sun 28 Dec 2025 15:01:04 +0000 Manifest this update: Sun 28 Dec 2025 15:01:04 +0000 Manifest next update: Mon 29 Dec 2025 15:01:04 +0000 Files and hashes: 1: dFMSfN7MRHvmo2z77TleB1icwq8.roa (hash: /EIF28RJEmpawXw8Jts26G5tvzRqBblkps3qt2KKi+I=) 2: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: SLtjRQKibIDIUYuXalD206wfunTdLO2/RoXijoPbMn8=) 3: f859ZdSNJcfJKStuw77yAkHe9lU.roa (hash: kyLklvM7jagtw4zC+hzmwKGnI3XjZWGfhg7ojPBYscg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 15:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:65:7a:2e:cf:b1:3a:75:59:80:28:8c:c4:a9:6b:f5:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907 Validity Not Before: Dec 28 15:01:04 2025 GMT Not After : Dec 29 15:01:04 2025 GMT Subject: CN=3495ff8f3b2ce08e6dd7fcc9a28e91522d255005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c5:12:06:dd:d7:f5:07:af:7e:92:b9:e5:4d: a0:3c:65:d7:93:b6:03:7f:68:ac:e4:6d:91:ee:dc: a4:08:c9:f1:08:b9:c8:d1:b5:7c:d2:a0:d7:8b:a8: 11:2b:b9:07:43:73:e7:c9:d4:be:00:51:57:03:ea: 7a:13:c3:7e:b4:f0:c3:d5:fd:ac:65:24:2c:ed:4e: b6:cc:c0:c6:a7:78:09:58:31:b8:f6:49:38:de:fb: 12:c9:6f:0c:47:49:7a:13:24:42:c2:e0:f5:27:0c: 37:49:61:1c:1f:20:b1:0e:fa:73:c2:8f:e9:72:7e: 21:9a:26:52:e7:d4:8f:5d:22:8c:ae:a3:05:63:ac: ca:18:57:68:f0:fd:76:b3:dd:f1:22:d9:11:90:11: d4:55:67:ff:2b:f5:05:58:04:25:13:d2:d8:78:20: e3:3c:d4:e9:6c:08:9f:5b:40:9e:4c:9e:95:1b:1f: 04:9d:a0:31:a2:a3:7c:71:55:64:c8:3b:79:b8:2e: 44:da:72:d9:3d:2e:07:21:7f:0b:6d:b1:16:90:1f: fb:1e:fc:f6:67:34:67:8a:9e:7f:c1:e3:d3:c0:ed: c0:c0:76:f3:07:06:1f:d4:d2:c2:42:d5:fe:76:59: f0:fc:93:b7:16:62:4e:6c:87:21:6f:77:97:8c:e5: 87:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:95:FF:8F:3B:2C:E0:8E:6D:D7:FC:C9:A2:8E:91:52:2D:25:50:05 X509v3 Authority Key Identifier: keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:fd:90:f9:9b:48:64:8a:32:eb:9c:ed:b0:bc:a1:15:11:e0: 3f:58:86:3e:10:24:fd:ea:fb:c4:c9:24:62:4a:96:bf:93:d6: bf:74:59:21:c8:f1:84:f5:ff:ad:1b:ce:3b:00:00:85:fe:21: 22:ef:98:c6:9a:a5:7c:97:d2:49:73:04:94:11:a8:52:aa:9b: 7a:f5:21:08:20:75:55:cf:2f:a2:52:50:f8:15:65:cb:16:50: 24:f9:1c:12:8e:26:cd:84:1a:d5:33:4a:5b:d1:95:1d:eb:92: 56:4b:67:60:c4:3f:a8:c8:63:84:f1:12:af:47:db:2c:7f:ff: 9f:91:2e:47:38:ec:15:cb:76:b0:5c:e7:2e:87:45:6d:26:37: 12:42:9e:a7:bd:e3:4b:aa:ea:45:c8:cb:4e:01:09:43:a0:15: d8:d0:9e:ae:6c:5b:b8:04:bd:cf:8e:ae:db:55:50:c7:34:77: 42:99:e8:09:92:8a:88:7d:ef:22:7e:f5:83:ac:91:d0:79:3c: 03:af:1c:06:c9:90:e9:b3:56:a8:e6:57:23:5e:5e:be:ad:b9: d4:4f:3f:0d:52:d6:4c:57:4e:0b:dd:b4:57:92:9c:3c:12:5d: 0e:39:a6:fc:82:4b:fe:02:56:5b:24:ec:b5:9c:1d:1d:31:ee: 02:55:a3:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtlei7PsTp1WYAojMSpa/XiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTQzZjllNWFlM2Y2ZWFmYjUwNjhhZTg4ZjE4YzI5ZTQ0 MzU5MDcwHhcNMjUxMjI4MTUwMTA0WhcNMjUxMjI5MTUwMTA0WjAzMTEwLwYDVQQD EygzNDk1ZmY4ZjNiMmNlMDhlNmRkN2ZjYzlhMjhlOTE1MjJkMjU1MDA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5sUSBt3X9QevfpK55U2gPGXXk7YD f2is5G2R7tykCMnxCLnI0bV80qDXi6gRK7kHQ3PnydS+AFFXA+p6E8N+tPDD1f2s ZSQs7U62zMDGp3gJWDG49kk43vsSyW8MR0l6EyRCwuD1Jww3SWEcHyCxDvpzwo/p cn4hmiZS59SPXSKMrqMFY6zKGFdo8P12s93xItkRkBHUVWf/K/UFWAQlE9LYeCDj PNTpbAifW0CeTJ6VGx8EnaAxoqN8cVVkyDt5uC5E2nLZPS4HIX8LbbEWkB/7Hvz2 ZzRnip5/wePTwO3AwHbzBwYf1NLCQtX+dlnw/JO3FmJObIchb3eXjOWH+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDSV/487LOCObdf8yaKOkVItJVAFMB8GA1UdIwQY MBaAFHTkP55a4/bq+1BorojxjCnkQ1kHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9RX25scmo5dXI3VUdpdWlQR01LZVJEV1FjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9kYTMzYWUtMTZjYy00YzlhLWJmOWMt NzE3OTk4YWEzY2ZmLzEvZE9RX25scmo5dXI3VUdpdWlQR01LZVJEV1FjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS9kYTMzYWUtMTZjYy00YzlhLWJmOWMtNzE3OTk4YWEzY2Zm LzEvZE9RX25scmo5dXI3VUdpdWlQR01LZVJEV1FjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ/2Q+ZtI ZIoy65ztsLyhFRHgP1iGPhAk/er7xMkkYkqWv5PWv3RZIcjxhPX/rRvOOwAAhf4h Iu+YxpqlfJfSSXMElBGoUqqbevUhCCB1Vc8volJQ+BVlyxZQJPkcEo4mzYQa1TNK W9GVHeuSVktnYMQ/qMhjhPESr0fbLH//n5EuRzjsFct2sFznLodFbSY3EkKep73j S6rqRcjLTgEJQ6AV2NCermxbuAS9z46u21VQxzR3QpnoCZKKiH3vIn71g6yR0Hk8 A68cBsmQ6bNWqOZXI15evq251E8/DVLWTFdOC920V5KcPBJdDjmm/IJL/gJWWyTs tZwdHTHuAlWjuw== -----END CERTIFICATE-----Generated at Sun Dec 28 23:22:43 2025 by rpki-client