This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft File: DIZmK3UsijvnLoVEOU_5JvaPv34.mft (raw, json) Hash identifier: PG59Y6HupX8oF0yI+NcbgV1aEsivC0IuN5neecn/7d0= Subject key identifier: 6A:9F:EA:21:0B:0B:08:45:C2:3C:05:44:D6:D8:8D:03:C5:D1:3D:E5 Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e Certificate serial: 019B61D401AA2748BF6F6F80E6384D1B1F48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft Manifest number: 172F Signing time: Sat 27 Dec 2025 22:00:42 +0000 Manifest this update: Sat 27 Dec 2025 22:00:42 +0000 Manifest next update: Sun 28 Dec 2025 22:00:42 +0000 Files and hashes: 1: DIZmK3UsijvnLoVEOU_5JvaPv34.crl (hash: de6+ZcfbHZwpT4LJMAS79npbkf+SbfrpYPF4f1W41kg=) 2: OKYG51ny4JzR_NLTt0NMC5jjs5w.roa (hash: q7wWYvvmDZVEwvT4mSRrL9j7EyJqRlFav3ZfehvFtAs=) 3: ZQQ0gAGZL_jGDDuR_dzAPHQgjqs.roa (hash: 1IkjnF/CrXtM+w2XOvbsVxbee7zsKOEnEqn8FcXAMF8=) 4: qLpskkGdWMp75uesslOqcJ0MWnE.roa (hash: X4MuNwdwba0DvT/WVM9tY1i1XGTLnQOuEconDao1Nw4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 22:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:61:d4:01:aa:27:48:bf:6f:6f:80:e6:38:4d:1b:1f:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e Validity Not Before: Dec 27 22:00:42 2025 GMT Not After : Dec 28 22:00:42 2025 GMT Subject: CN=6a9fea210b0b0845c23c0544d6d88d03c5d13de5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:fa:9c:13:de:c7:86:ba:9d:6a:38:f5:89:be: 0a:d1:f4:fb:a5:f1:af:29:bc:32:fd:0e:05:5e:1e: 44:14:cf:c6:2d:0e:6c:68:ee:b2:07:3f:96:a9:77: 9f:fe:e7:54:37:e6:b3:f8:5d:16:fc:6f:6b:80:92: 23:7b:27:55:ba:24:ab:2b:fd:9f:6e:44:32:7f:8d: 04:f1:b9:ea:71:31:17:9d:ec:15:f8:70:87:27:72: 5d:da:56:a7:6f:1c:22:b0:63:a1:5a:e9:80:1a:0b: 40:ad:90:20:a9:92:6b:00:18:af:61:e9:d7:39:9a: 76:13:07:8e:51:e7:2b:58:43:f4:50:af:9c:0e:6d: 0e:a4:c0:59:0b:6f:62:5c:f0:d2:5d:89:1c:8e:82: 5c:bf:50:49:d3:7f:91:e1:84:c3:da:84:68:ea:a1: f9:eb:89:31:80:e2:0f:57:ce:f0:2e:8c:3b:5f:5c: 48:d1:5c:d6:9b:0e:d7:5e:d4:fa:b4:df:45:43:e6: ec:d2:fd:02:e0:71:1a:0a:10:fe:61:15:85:da:04: 91:20:26:8b:b3:34:8e:31:76:e5:68:23:cd:1a:ca: e2:e3:28:8e:11:6c:6c:24:8b:87:ba:70:85:df:d0: 36:44:a0:47:ec:67:e9:8e:90:c6:63:75:b7:ba:4e: 08:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:9F:EA:21:0B:0B:08:45:C2:3C:05:44:D6:D8:8D:03:C5:D1:3D:E5 X509v3 Authority Key Identifier: keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:d6:73:31:54:bc:f1:2f:e4:93:ee:7a:5d:f3:cd:8f:72:ea: 28:06:a3:54:2d:3e:79:2e:98:63:b2:5c:59:3f:49:4c:60:f1: 6c:a1:b6:7f:b9:58:60:7d:71:4b:cd:4c:54:f1:e2:c3:b7:07: fa:33:6a:b6:ff:6b:5f:86:2f:75:73:62:76:85:21:4d:57:74: 2c:f5:f7:3b:a3:f9:63:81:cb:1e:aa:b5:05:ba:67:73:8b:3d: 31:bf:7b:c0:04:90:8a:82:59:8a:64:1c:37:b1:10:30:65:61: 22:14:77:1a:c3:8d:57:b5:1b:52:a2:81:3f:72:0d:72:e5:88: db:64:fb:1a:10:66:9b:85:87:c7:29:09:33:7f:b3:3a:0c:0d: 59:c2:12:6a:ba:5e:37:3a:4d:3e:3b:d6:30:6a:9a:1e:ee:aa: 4b:f7:a3:08:88:85:e7:ad:cf:b9:d1:e6:c9:15:02:a0:45:ce: a9:f0:cd:1a:ae:30:c2:a5:75:21:88:a6:74:71:42:d4:9c:44: 9d:09:96:fa:74:4c:b6:26:8d:79:ec:e6:94:b9:79:6a:da:f7: eb:1d:00:1c:73:73:96:c4:05:07:f6:fb:1b:d3:e4:79:6a:9d: a0:ee:19:b5:05:68:77:09:72:6d:84:d6:be:8d:c9:2b:d7:84: 6d:7d:c7:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZth1AGqJ0i/b2+A5jhNGx9IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjODY2NjJiNzUyYzhhM2JlNzJlODU0NDM5NGZmOTI2ZjY4 ZmJmN2UwHhcNMjUxMjI3MjIwMDQyWhcNMjUxMjI4MjIwMDQyWjAzMTEwLwYDVQQD Eyg2YTlmZWEyMTBiMGIwODQ1YzIzYzA1NDRkNmQ4OGQwM2M1ZDEzZGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9PqcE97Hhrqdajj1ib4K0fT7pfGv Kbwy/Q4FXh5EFM/GLQ5saO6yBz+WqXef/udUN+az+F0W/G9rgJIjeydVuiSrK/2f bkQyf40E8bnqcTEXnewV+HCHJ3Jd2lanbxwisGOhWumAGgtArZAgqZJrABivYenX OZp2EweOUecrWEP0UK+cDm0OpMBZC29iXPDSXYkcjoJcv1BJ03+R4YTD2oRo6qH5 64kxgOIPV87wLow7X1xI0VzWmw7XXtT6tN9FQ+bs0v0C4HEaChD+YRWF2gSRICaL szSOMXblaCPNGsri4yiOEWxsJIuHunCF39A2RKBH7GfpjpDGY3W3uk4IuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGqf6iELCwhFwjwFRNbYjQPF0T3lMB8GA1UdIwQY MBaAFAyGZit1LIo75y6FRDlP+Sb2j79+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRElabUszVXNpanZuTG9WRU9VXzVKdmFQdjM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8wOWM0YjItNDZhOS00Zjg4LTk5Yjgt MWNjYzljMjk1ZThlLzEvRElabUszVXNpanZuTG9WRU9VXzVKdmFQdjM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My8wOWM0YjItNDZhOS00Zjg4LTk5YjgtMWNjYzljMjk1ZThl LzEvRElabUszVXNpanZuTG9WRU9VXzVKdmFQdjM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABdZzMVS8 8S/kk+56XfPNj3LqKAajVC0+eS6YY7JcWT9JTGDxbKG2f7lYYH1xS81MVPHiw7cH +jNqtv9rX4YvdXNidoUhTVd0LPX3O6P5Y4HLHqq1Bbpnc4s9Mb97wASQioJZimQc N7EQMGVhIhR3GsONV7UbUqKBP3INcuWI22T7GhBmm4WHxykJM3+zOgwNWcISarpe NzpNPjvWMGqaHu6qS/ejCIiF563PudHmyRUCoEXOqfDNGq4wwqV1IYimdHFC1JxE nQmW+nRMtiaNeezmlLl5atr36x0AHHNzlsQFB/b7G9PkeWqdoO4ZtQVodwlybYTW vo3JK9eEbX3HEQ== -----END CERTIFICATE-----Generated at Sun Dec 28 04:59:30 2025 by rpki-client