This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft File: Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft (raw, json) Hash identifier: QIHmPksoGRIQnfOHtAsjivhbwaBtoWFmwJ4pICkHmv0= Subject key identifier: FC:B7:3B:F5:51:D5:6D:61:58:D4:AB:BE:AC:3E:9A:34:D3:79:2D:F0 Authority key identifier: 0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C Certificate issuer: /CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c Certificate serial: 019B4248E79D0F0AAB846773AFBAB4EED446 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft Manifest number: 178A Signing time: Sun 21 Dec 2025 19:00:32 +0000 Manifest this update: Sun 21 Dec 2025 19:00:32 +0000 Manifest next update: Mon 22 Dec 2025 19:00:32 +0000 Files and hashes: 1: 8GPy1nq-d8qyd5DzcEoD7_wmnRk.roa (hash: VU25KKsH1DHg8pytMPBtSMEdGMuo9BZsAecAtygfZnk=) 2: Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl (hash: B9t9DEua12f7Uqlaqqwcb9bED4J5XwgV31gxU4Z8eOg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 19:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:48:e7:9d:0f:0a:ab:84:67:73:af:ba:b4:ee:d4:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c Validity Not Before: Dec 21 19:00:32 2025 GMT Not After : Dec 22 19:00:32 2025 GMT Subject: CN=fcb73bf551d56d6158d4abbeac3e9a34d3792df0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:70:bf:fb:c2:5c:8f:4c:02:94:f4:aa:59:c7: 8a:c7:bf:11:1d:38:30:8f:39:37:17:4e:14:38:45: d5:d4:83:55:c9:39:4c:7e:14:49:fb:ca:96:f3:24: ea:4b:ff:0a:ff:39:31:77:9b:b9:ff:45:54:a9:32: 6c:1e:02:47:bb:3d:5a:67:fc:3c:cc:9f:aa:67:4a: c1:10:3d:fc:0e:0d:84:2c:54:6d:33:32:33:dc:3c: a7:c8:38:ae:7a:b5:ba:e7:60:11:e9:29:28:cd:49: 37:8e:db:53:bc:95:13:66:06:9d:42:04:15:b9:75: 4f:0b:b3:5b:ed:5f:eb:ae:10:d4:5e:00:f4:8c:4a: c0:b7:35:19:48:de:ac:5f:e5:23:24:68:05:53:51: 4f:d7:10:cc:dc:06:c4:fc:96:c9:9a:7f:db:80:df: fa:ba:f4:c9:d6:9d:a5:53:12:86:8d:63:9e:d5:1c: 18:21:eb:42:23:0b:a5:c5:07:47:76:a9:38:6b:b8: a0:ab:ee:48:8d:d3:f9:b9:ed:cd:19:22:10:21:79: 2e:df:35:ea:8e:32:db:5b:98:8c:4e:f2:f9:95:0d: da:aa:6b:fb:8d:eb:b0:f8:d7:da:07:6c:7d:9e:d7: 65:73:99:eb:f5:f6:9c:db:7e:49:b2:a4:6a:c2:3e: 77:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B7:3B:F5:51:D5:6D:61:58:D4:AB:BE:AC:3E:9A:34:D3:79:2D:F0 X509v3 Authority Key Identifier: keyid:0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:98:41:3b:a7:49:e0:92:26:3b:b9:d9:33:76:b3:77:ca:b6: df:0b:88:ea:93:a5:75:b1:7c:a9:f0:32:fe:e6:b0:69:e2:06: cb:7c:8c:7d:f0:8d:d8:04:dc:c1:1c:0f:56:3f:ad:cd:26:f9: dc:38:fe:92:53:55:97:ae:a1:35:7e:f0:8f:81:6e:03:b5:e0: f1:58:63:de:ad:81:26:f9:e4:47:a7:72:16:db:54:21:fc:12: 38:93:9d:5d:e6:8e:cf:d8:e1:9a:7e:b9:19:3a:f7:e5:2f:da: c0:53:70:2e:ac:f5:09:18:41:b9:e3:75:69:1f:42:73:85:fd: 2f:70:30:39:a0:50:4b:c3:b9:21:96:ab:cd:06:1a:36:45:43: ab:3f:cb:e6:ba:d6:d3:2e:89:fc:0b:a5:99:78:64:87:7c:b9: 08:99:ac:a7:b7:14:d3:7d:fd:15:f5:f9:6f:2c:a3:bd:fb:8b: c1:a4:13:e2:03:4b:f9:98:6a:71:07:77:e0:1a:36:20:bf:ec: 02:1c:63:37:51:46:52:c2:bf:b3:1f:5e:9b:3a:1e:08:8f:73: 0d:4d:33:b8:12:1f:c4:f2:4c:67:a5:d0:04:28:92:7f:91:01: 75:3b:29:a0:d6:e8:8d:1c:94:12:42:76:75:bf:78:7c:8e:44: 91:ec:30:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCSOedDwqrhGdzr7q07tRGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmM2YxMzMyY2ZmMDViMjJhM2E2NmE2ZDRjMzQ4ZmJjMDFk ZTExNWMwHhcNMjUxMjIxMTkwMDMyWhcNMjUxMjIyMTkwMDMyWjAzMTEwLwYDVQQD EyhmY2I3M2JmNTUxZDU2ZDYxNThkNGFiYmVhYzNlOWEzNGQzNzkyZGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03C/+8Jcj0wClPSqWceKx78RHTgw jzk3F04UOEXV1INVyTlMfhRJ+8qW8yTqS/8K/zkxd5u5/0VUqTJsHgJHuz1aZ/w8 zJ+qZ0rBED38Dg2ELFRtMzIz3DynyDiuerW652AR6SkozUk3jttTvJUTZgadQgQV uXVPC7Nb7V/rrhDUXgD0jErAtzUZSN6sX+UjJGgFU1FP1xDM3AbE/JbJmn/bgN/6 uvTJ1p2lUxKGjWOe1RwYIetCIwulxQdHdqk4a7igq+5IjdP5ue3NGSIQIXku3zXq jjLbW5iMTvL5lQ3aqmv7jeuw+NfaB2x9ntdlc5nr9fac235JsqRqwj53BQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPy3O/VR1W1hWNSrvqw+mjTTeS3wMB8GA1UdIwQY MBaAFA8/EzLP8Fsio6ZqbUw0j7wB3hFcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHo4VE1zX3dXeUtqcG1wdFREU1B2QUhlRVZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi81MjNiOTUtM2RkYy00ODE4LTkyNjUt ZGFhZjI5MjExOTQ5LzEvRHo4VE1zX3dXeUtqcG1wdFREU1B2QUhlRVZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi81MjNiOTUtM2RkYy00ODE4LTkyNjUtZGFhZjI5MjExOTQ5 LzEvRHo4VE1zX3dXeUtqcG1wdFREU1B2QUhlRVZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjphBO6dJ 4JImO7nZM3azd8q23wuI6pOldbF8qfAy/uawaeIGy3yMffCN2ATcwRwPVj+tzSb5 3Dj+klNVl66hNX7wj4FuA7Xg8Vhj3q2BJvnkR6dyFttUIfwSOJOdXeaOz9jhmn65 GTr35S/awFNwLqz1CRhBueN1aR9Cc4X9L3AwOaBQS8O5IZarzQYaNkVDqz/L5rrW 0y6J/AulmXhkh3y5CJmsp7cU0339FfX5byyjvfuLwaQT4gNL+ZhqcQd34Bo2IL/s AhxjN1FGUsK/sx9emzoeCI9zDU0zuBIfxPJMZ6XQBCiSf5EBdTspoNbojRyUEkJ2 db94fI5Ekeww1g== -----END CERTIFICATE-----Generated at Mon Dec 22 01:29:17 2025 by rpki-client