This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft File: dy9i9-iZgXRBGAk19CuCo5mAotw.mft (raw, json) Hash identifier: Odi3pk04vJKOAKbl7Syk+0FYxdhR3K+urQiAbTBSCrk= Subject key identifier: D3:20:F3:FB:86:07:82:84:4D:21:D6:AD:E7:6D:A0:64:E6:B4:D3:C0 Authority key identifier: 77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC Certificate issuer: /CN=772f62f7e899817441180935f42b82a39980a2dc Certificate serial: 019B330CEFE1F472F65511903BC1A6878FFA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft Manifest number: 062D Signing time: Thu 18 Dec 2025 20:00:44 +0000 Manifest this update: Thu 18 Dec 2025 20:00:44 +0000 Manifest next update: Fri 19 Dec 2025 20:00:44 +0000 Files and hashes: 1: dy9i9-iZgXRBGAk19CuCo5mAotw.crl (hash: OFgeRk3dovIXPf7waT02h2izzaYUMFMcc/iUw31vqiw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0c:ef:e1:f4:72:f6:55:11:90:3b:c1:a6:87:8f:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=772f62f7e899817441180935f42b82a39980a2dc Validity Not Before: Dec 18 20:00:44 2025 GMT Not After : Dec 19 20:00:44 2025 GMT Subject: CN=d320f3fb860782844d21d6ade76da064e6b4d3c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3b:73:d6:2e:7a:37:be:d9:d4:55:c9:e9:4e: 0b:c3:93:d7:8e:26:16:be:cf:bd:1e:e8:02:8e:21: 51:e0:8f:d2:0b:88:e6:d3:37:08:0b:cf:00:c9:ba: 03:df:e5:61:be:47:99:32:ab:38:7e:b4:c3:98:f3: 17:a7:e2:60:61:d9:d5:a0:eb:15:22:78:96:4c:fc: af:5b:13:2d:c9:2e:00:91:a2:14:84:86:37:80:15: f2:19:f3:17:53:e3:e1:16:d7:74:c6:43:65:a5:1b: 7b:fb:18:21:9c:17:4e:ed:0e:35:0c:ea:a5:a9:f3: b1:05:e0:a5:07:29:60:3f:f7:b7:e0:42:5f:db:bf: 1c:86:72:22:d9:03:99:29:aa:c5:d9:ef:5d:6b:e2: 3b:5e:42:ae:bb:2f:1e:a7:a9:94:85:67:1b:10:62: 8e:81:17:32:4b:d6:22:1e:d4:3d:ec:dc:68:e5:0e: e1:65:78:90:22:aa:81:18:dd:b3:e0:3a:37:d0:4e: 5e:08:1f:63:6c:9d:5f:2f:78:aa:60:44:8c:49:99: 08:e7:2b:36:63:37:66:36:5d:7e:8a:e4:ae:fa:6c: 3c:1d:d2:1f:a4:c2:5e:26:7b:a4:78:53:aa:0c:58: d2:d7:67:b4:73:74:83:c9:7a:b3:e4:cd:53:a2:bb: 92:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:20:F3:FB:86:07:82:84:4D:21:D6:AD:E7:6D:A0:64:E6:B4:D3:C0 X509v3 Authority Key Identifier: keyid:77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:d9:8e:b1:a7:45:b6:f4:df:94:a7:33:d4:cf:fa:fe:2b:bf: f0:ad:df:87:43:b0:96:d6:91:6e:d3:6d:5f:10:e0:2e:85:e7: 6e:13:ad:84:c2:36:a9:f8:e2:21:67:32:8c:c0:6f:8f:62:21: dd:f4:91:82:e6:ff:07:4e:f7:e5:b4:5f:c3:36:37:87:ba:f9: ef:dd:68:77:0c:f2:cc:7f:2d:c1:4b:43:c7:c0:45:4d:ef:3a: e9:56:dd:82:11:97:39:c6:39:6b:7d:6d:d3:12:fc:61:ea:14: 51:35:67:ab:65:15:3c:b0:0f:2a:28:dd:b9:00:b8:e0:a9:44: c6:e2:bd:0c:98:da:8c:57:df:f9:53:f5:ba:8c:93:9d:a3:f3: 89:7f:8b:a8:9b:0a:e0:57:52:f4:80:84:78:d3:6c:e5:3c:d7: 31:55:f4:e1:d0:7e:c9:b2:5b:1d:8b:77:27:61:46:a0:95:97: 60:a6:9b:9e:4c:a8:4c:e1:74:00:b5:52:ef:cd:ff:12:5b:7a: ea:9e:b4:66:25:5a:36:ff:97:46:94:6d:f6:0c:f1:6f:b1:08: 98:23:20:3f:72:76:77:92:2c:ba:38:e3:95:f1:dc:c4:5f:c8: 1a:64:fe:9c:2d:94:8a:44:b6:ce:0f:f4:20:56:f2:5a:9d:ba: a6:cb:e7:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDO/h9HL2VRGQO8Gmh4/6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MmY2MmY3ZTg5OTgxNzQ0MTE4MDkzNWY0MmI4MmEzOTk4 MGEyZGMwHhcNMjUxMjE4MjAwMDQ0WhcNMjUxMjE5MjAwMDQ0WjAzMTEwLwYDVQQD EyhkMzIwZjNmYjg2MDc4Mjg0NGQyMWQ2YWRlNzZkYTA2NGU2YjRkM2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Dtz1i56N77Z1FXJ6U4Lw5PXjiYW vs+9HugCjiFR4I/SC4jm0zcIC88AyboD3+VhvkeZMqs4frTDmPMXp+JgYdnVoOsV IniWTPyvWxMtyS4AkaIUhIY3gBXyGfMXU+PhFtd0xkNlpRt7+xghnBdO7Q41DOql qfOxBeClBylgP/e34EJf278chnIi2QOZKarF2e9da+I7XkKuuy8ep6mUhWcbEGKO gRcyS9YiHtQ97Nxo5Q7hZXiQIqqBGN2z4Do30E5eCB9jbJ1fL3iqYESMSZkI5ys2 YzdmNl1+iuSu+mw8HdIfpMJeJnukeFOqDFjS12e0c3SDyXqz5M1ToruSEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNMg8/uGB4KETSHWredtoGTmtNPAMB8GA1UdIwQY MBaAFHcvYvfomYF0QRgJNfQrgqOZgKLcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHk5aTktaVpnWFJCR0FrMTlDdUNvNW1Bb3R3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8xNTBkMmItYTA4OC00MDFkLWI1NTkt YTA2MWE4Yzc3ZjE2LzEvZHk5aTktaVpnWFJCR0FrMTlDdUNvNW1Bb3R3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8xNTBkMmItYTA4OC00MDFkLWI1NTktYTA2MWE4Yzc3ZjE2 LzEvZHk5aTktaVpnWFJCR0FrMTlDdUNvNW1Bb3R3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABNmOsadF tvTflKcz1M/6/iu/8K3fh0OwltaRbtNtXxDgLoXnbhOthMI2qfjiIWcyjMBvj2Ih 3fSRgub/B0735bRfwzY3h7r5791odwzyzH8twUtDx8BFTe866VbdghGXOcY5a31t 0xL8YeoUUTVnq2UVPLAPKijduQC44KlExuK9DJjajFff+VP1uoyTnaPziX+LqJsK 4FdS9ICEeNNs5TzXMVX04dB+ybJbHYt3J2FGoJWXYKabnkyoTOF0ALVS783/Elt6 6p60ZiVaNv+XRpRt9gzxb7EImCMgP3J2d5IsujjjlfHcxF/IGmT+nC2UikS2zg/0 IFbyWp26psvnNQ== -----END CERTIFICATE-----Generated at Fri Dec 19 01:24:33 2025 by rpki-client