This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft File: 0dI-JBGcupM36DRmSFv7EGsuJLY.mft (raw, json) Hash identifier: nE/17udFzJlX6Kv1yigREiaDDs4owzAN/tOe05iATUE= Subject key identifier: B0:84:A7:0F:FD:B4:2C:5C:20:3E:C6:FE:F3:4A:14:E7:6D:7F:65:51 Authority key identifier: D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6 Certificate issuer: /CN=d1d23e24119cba9337e83466485bfb106b2e24b6 Certificate serial: 019B563DFB23860B9158C7528B325D502D27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft Manifest number: 01DD Signing time: Thu 25 Dec 2025 16:01:01 +0000 Manifest this update: Thu 25 Dec 2025 16:01:01 +0000 Manifest next update: Fri 26 Dec 2025 16:01:01 +0000 Files and hashes: 1: 0dI-JBGcupM36DRmSFv7EGsuJLY.crl (hash: dJFRw+iNPKxN4MabAb8NhnAe+rFedOazJ2lEEp0YlKw=) 2: M-IfQdJ5pbgcbSVbmMmO8aaPrAY.roa (hash: XwGRnAxf2Tdx5V01T06WDZvLLVmv2uRnErY5moi+5Gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 10:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:56:3d:fb:23:86:0b:91:58:c7:52:8b:32:5d:50:2d:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1d23e24119cba9337e83466485bfb106b2e24b6 Validity Not Before: Dec 25 16:01:01 2025 GMT Not After : Dec 26 16:01:01 2025 GMT Subject: CN=b084a70ffdb42c5c203ec6fef34a14e76d7f6551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f1:fc:78:07:fa:51:9c:cd:da:79:f9:40:01: 70:8c:80:ac:02:5a:56:a4:f1:4c:80:cc:3e:c7:db: 23:3a:8c:05:93:93:cd:c7:a9:c1:07:00:04:dc:23: 14:93:51:1b:93:8d:d5:ca:31:d4:f0:4e:ba:2a:aa: 8a:a1:4f:90:8e:45:88:63:ce:01:c1:8e:87:f9:ec: 48:28:45:ec:28:1b:89:20:f8:b1:b7:2a:93:b5:67: f5:9b:af:7e:14:d6:ce:7b:a6:df:50:7e:a7:1a:eb: 02:9c:d9:88:b3:b8:f5:05:33:47:43:74:a9:29:38: f3:68:51:a9:c0:51:eb:27:a3:fa:60:21:e6:5c:02: 44:c6:aa:c9:2e:8d:6b:4e:77:f0:94:d8:c6:73:40: f1:c3:b7:af:15:30:68:5e:bd:e5:71:ac:6d:1d:b9: d4:b1:44:01:99:35:0a:6d:e6:7c:28:4b:11:ac:9c: ae:96:39:59:88:c6:0a:b1:79:d0:65:21:99:92:03: c4:d2:b1:b0:0e:37:3f:87:09:96:12:85:cd:b3:7c: 11:9a:24:d2:cf:a8:eb:eb:2d:44:c6:7c:2c:62:da: eb:da:00:57:4d:e3:1d:4d:6d:d7:2b:02:d2:b4:57: 11:6f:b2:ce:6e:1f:70:ca:a9:f7:c9:64:0f:36:f9: 4e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:84:A7:0F:FD:B4:2C:5C:20:3E:C6:FE:F3:4A:14:E7:6D:7F:65:51 X509v3 Authority Key Identifier: keyid:D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:a7:c4:f3:6b:67:4b:51:7e:d2:d3:aa:af:69:88:1c:e9:a8: 4d:1e:04:12:3c:69:5b:a2:87:b8:50:7b:6c:c2:6a:29:4e:ad: 33:03:c3:b9:df:07:14:26:3c:83:c4:39:e3:56:09:d1:f0:b7: 26:1a:c2:58:04:5f:c8:0c:7f:e2:5f:ae:4e:2f:6a:e3:25:1f: 6c:43:5d:63:94:3b:08:45:70:b1:bb:6e:7f:f8:50:0c:da:04: bc:0c:7e:e8:1d:2c:97:aa:55:cf:c8:83:3e:e3:df:bb:a0:07: 10:55:2f:d0:93:14:c0:16:bf:ba:77:2d:fa:91:2f:2c:48:82: a1:ec:2b:f2:c6:6a:3f:6b:13:17:9d:f7:92:d2:ef:29:cf:00: 79:82:eb:91:0e:89:ee:43:02:ee:82:f0:35:0a:73:74:95:34: fd:d3:bc:bf:f4:ca:ec:ea:eb:68:0a:bd:3b:23:1e:8a:03:15: b5:33:18:3b:ce:90:14:e6:ad:eb:0b:87:40:2c:04:35:6c:0c: c7:22:2a:00:1b:2a:bc:65:f3:81:1e:71:37:6b:24:96:f5:4b: 24:cb:70:50:53:af:35:0b:6a:5c:44:d5:78:46:6b:d2:5e:f7: a0:54:a9:60:df:91:67:6b:a0:86:a3:b4:0b:f0:7a:00:8c:1e: 38:ed:d3:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtWPfsjhguRWMdSizJdUC0nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZDIzZTI0MTE5Y2JhOTMzN2U4MzQ2NjQ4NWJmYjEwNmIy ZTI0YjYwHhcNMjUxMjI1MTYwMTAxWhcNMjUxMjI2MTYwMTAxWjAzMTEwLwYDVQQD EyhiMDg0YTcwZmZkYjQyYzVjMjAzZWM2ZmVmMzRhMTRlNzZkN2Y2NTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2fH8eAf6UZzN2nn5QAFwjICsAlpW pPFMgMw+x9sjOowFk5PNx6nBBwAE3CMUk1Ebk43VyjHU8E66KqqKoU+QjkWIY84B wY6H+exIKEXsKBuJIPixtyqTtWf1m69+FNbOe6bfUH6nGusCnNmIs7j1BTNHQ3Sp KTjzaFGpwFHrJ6P6YCHmXAJExqrJLo1rTnfwlNjGc0Dxw7evFTBoXr3lcaxtHbnU sUQBmTUKbeZ8KEsRrJyuljlZiMYKsXnQZSGZkgPE0rGwDjc/hwmWEoXNs3wRmiTS z6jr6y1ExnwsYtrr2gBXTeMdTW3XKwLStFcRb7LObh9wyqn3yWQPNvlOAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLCEpw/9tCxcID7G/vNKFOdtf2VRMB8GA1UdIwQY MBaAFNHSPiQRnLqTN+g0Zkhb+xBrLiS2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGRJLUpCR2N1cE0zNkRSbVNGdjdFR3N1SkxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy82YzQwNjQtODUwMy00ZDE2LTkzNTQt NzRkNGU1YjAxYzM1LzEvMGRJLUpCR2N1cE0zNkRSbVNGdjdFR3N1SkxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy82YzQwNjQtODUwMy00ZDE2LTkzNTQtNzRkNGU1YjAxYzM1 LzEvMGRJLUpCR2N1cE0zNkRSbVNGdjdFR3N1SkxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF6fE82tn S1F+0tOqr2mIHOmoTR4EEjxpW6KHuFB7bMJqKU6tMwPDud8HFCY8g8Q541YJ0fC3 JhrCWARfyAx/4l+uTi9q4yUfbENdY5Q7CEVwsbtuf/hQDNoEvAx+6B0sl6pVz8iD PuPfu6AHEFUv0JMUwBa/unct+pEvLEiCoewr8sZqP2sTF533ktLvKc8AeYLrkQ6J 7kMC7oLwNQpzdJU0/dO8v/TK7OrraAq9OyMeigMVtTMYO86QFOat6wuHQCwENWwM xyIqABsqvGXzgR5xN2sklvVLJMtwUFOvNQtqXETVeEZr0l73oFSpYN+RZ2ughqO0 C/B6AIweOO3TPQ== -----END CERTIFICATE-----Generated at Thu Dec 25 18:03:01 2025 by rpki-client