This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json) Hash identifier: 2+r565RwVLqrbvDBh2a5YGu/oXsdrw901n+gQn8a27A= Subject key identifier: 5A:DD:43:24:FA:B1:7F:A2:94:76:4E:0B:91:E3:FC:6C:B0:D7:94:D6 Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2 Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2 Certificate serial: 019B3F48BEEF7666F3D4030FF720D6C3E7A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft Manifest number: 178B Signing time: Sun 21 Dec 2025 05:01:30 +0000 Manifest this update: Sun 21 Dec 2025 05:01:30 +0000 Manifest next update: Mon 22 Dec 2025 05:01:30 +0000 Files and hashes: 1: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: t97qFa/s4IrpOD12jGMWRjefGA0KOdIdi4Q2iR6M2dQ=) 2: meyQlZ2V2fFm7jP19tS1SnwZU8o.roa (hash: Rjzn7WIqlB0uqbC7++KFiY3Pm+Td1rmouk6fxkElj30=) 3: u8p2k1kowabt5V010HcHbUdny4A.roa (hash: +zIIZMzEVP0HgE88S7aeA3JokmowyYpTKNzs1+R3c2M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:48:be:ef:76:66:f3:d4:03:0f:f7:20:d6:c3:e7:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2 Validity Not Before: Dec 21 05:01:30 2025 GMT Not After : Dec 22 05:01:30 2025 GMT Subject: CN=5add4324fab17fa294764e0b91e3fc6cb0d794d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:96:bd:b5:81:12:bd:ab:7a:ba:38:98:87:56: 20:ee:e3:ef:7d:53:2b:42:95:43:ea:db:c2:48:f5: 6f:0d:b9:23:12:b1:ee:db:7e:19:b6:35:7f:49:eb: 8d:37:66:8e:b4:74:9e:94:f3:15:78:e2:52:2e:d8: 86:b1:a3:b7:e8:ec:77:d8:fa:be:6c:ec:6c:17:0b: 34:31:80:06:1d:d5:99:a5:2e:b9:fe:c5:32:d7:d5: 8b:cf:b3:2d:6a:9c:48:2e:7f:a5:34:e7:38:5f:a9: 8b:89:47:b5:5b:7e:0a:f3:91:05:59:42:47:b8:a7: 32:5d:d3:80:08:52:cc:16:4d:2f:a0:3d:15:2a:6d: 92:48:0d:88:c7:8c:0d:c5:96:d5:75:0e:00:9f:36: d4:1a:7d:90:54:24:ed:46:00:fd:0a:b5:bb:92:b9: b0:1a:2f:e9:fb:76:19:c2:ee:47:23:0b:61:32:b4: 8f:b3:f2:8c:8d:51:cd:c6:2f:6c:7c:6b:2a:be:b0: 1a:44:cd:8f:31:4e:58:cb:ed:7a:ac:1e:93:d3:06: 03:8d:66:cb:a7:04:1f:d5:e1:28:be:bf:21:ec:b0: 6e:d1:13:8d:e4:f3:27:88:8c:e1:01:c3:76:d4:4b: a9:f8:04:29:55:65:4b:d2:f8:e4:35:5a:5a:e4:6f: a9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DD:43:24:FA:B1:7F:A2:94:76:4E:0B:91:E3:FC:6C:B0:D7:94:D6 X509v3 Authority Key Identifier: keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:cc:a6:dc:b2:86:03:f5:ae:66:01:87:eb:32:00:f0:52:a2: a2:e5:aa:eb:30:f3:8b:c0:ea:2f:34:c3:ee:09:17:16:39:66: b9:dd:65:b2:5c:86:d7:d2:5a:0a:4f:cd:2d:2b:63:22:af:2a: af:61:22:16:2b:2a:1a:77:25:83:30:6b:f4:ec:82:04:97:31: 7b:23:dc:1c:d0:a1:69:12:97:56:2f:80:83:a5:cd:51:96:6c: 42:fd:33:56:82:01:7d:71:47:b1:ee:17:9e:ca:23:7b:01:ba: ad:38:d1:c8:33:ff:e0:c0:32:7e:ad:49:52:06:da:d9:e9:4e: 76:b0:5a:4e:76:ee:53:b0:ce:fc:43:8e:35:8f:27:3e:bc:02: 4c:4a:7c:a6:bc:28:ac:1a:fb:b8:ca:e9:30:6e:6e:11:a8:e3: 57:82:6b:ad:2e:5d:14:99:64:51:85:96:00:14:9e:34:29:87: c7:c3:84:a7:04:10:ab:41:60:29:55:ff:6b:92:19:55:ae:54: 6b:39:c7:08:18:04:5d:a4:6c:f3:e1:42:26:88:d9:93:ad:a8: c7:a6:14:07:f2:13:fc:bd:93:13:32:c2:b9:f9:e2:42:0e:f7: b0:ae:bb:5c:e0:0a:aa:5e:cd:d0:ec:55:0d:e8:c9:5f:dc:e2: 42:79:a3:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/SL7vdmbz1AMP9yDWw+egMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlNDNhMGRmMDU5YTUyNTFhNDAwYjVhMWYxMzIxYmEwMGQz MTIwZDIwHhcNMjUxMjIxMDUwMTMwWhcNMjUxMjIyMDUwMTMwWjAzMTEwLwYDVQQD Eyg1YWRkNDMyNGZhYjE3ZmEyOTQ3NjRlMGI5MWUzZmM2Y2IwZDc5NGQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJa9tYESvat6ujiYh1Yg7uPvfVMr QpVD6tvCSPVvDbkjErHu234ZtjV/SeuNN2aOtHSelPMVeOJSLtiGsaO36Ox32Pq+ bOxsFws0MYAGHdWZpS65/sUy19WLz7MtapxILn+lNOc4X6mLiUe1W34K85EFWUJH uKcyXdOACFLMFk0voD0VKm2SSA2Ix4wNxZbVdQ4AnzbUGn2QVCTtRgD9CrW7krmw Gi/p+3YZwu5HIwthMrSPs/KMjVHNxi9sfGsqvrAaRM2PMU5Yy+16rB6T0wYDjWbL pwQf1eEovr8h7LBu0RON5PMniIzhAcN21Eup+AQpVWVL0vjkNVpa5G+p+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFrdQyT6sX+ilHZOC5Hj/Gyw15TWMB8GA1UdIwQY MBaAFA5DoN8FmlJRpAC1ofEyG6ANMSDSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGtPZzN3V2FVbEdrQUxXaDhUSWJvQTB4SU5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wYmIzM2ItNjhmNy00NzQ4LTg0YWMt MDA0ZmU0MzNjN2M4LzEvRGtPZzN3V2FVbEdrQUxXaDhUSWJvQTB4SU5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8wYmIzM2ItNjhmNy00NzQ4LTg0YWMtMDA0ZmU0MzNjN2M4 LzEvRGtPZzN3V2FVbEdrQUxXaDhUSWJvQTB4SU5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYMym3LKG A/WuZgGH6zIA8FKiouWq6zDzi8DqLzTD7gkXFjlmud1lslyG19JaCk/NLStjIq8q r2EiFisqGnclgzBr9OyCBJcxeyPcHNChaRKXVi+Ag6XNUZZsQv0zVoIBfXFHse4X nsojewG6rTjRyDP/4MAyfq1JUgba2elOdrBaTnbuU7DO/EOONY8nPrwCTEp8prwo rBr7uMrpMG5uEajjV4JrrS5dFJlkUYWWABSeNCmHx8OEpwQQq0FgKVX/a5IZVa5U aznHCBgEXaRs8+FCJojZk62ox6YUB/IT/L2TEzLCufniQg73sK67XOAKql7N0OxV DejJX9ziQnmjGQ== -----END CERTIFICATE-----Generated at Sun Dec 21 07:02:09 2025 by rpki-client