This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft File: 1DNtXnTx-LfbEynwC7hXJBrnTRk.mft (raw, json) Hash identifier: qjtg1BH/Fuz/TV8tWASlyyNRiaF82r4RKiwt8NvXQg8= Subject key identifier: 32:C3:26:21:92:FB:7F:EE:8C:F0:B5:1A:E9:2C:86:FE:76:53:D7:56 Authority key identifier: D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19 Certificate issuer: /CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19 Certificate serial: 019B7110E45BA81556DA87B850DF68D5756C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft Manifest number: 052C Signing time: Tue 30 Dec 2025 21:01:30 +0000 Manifest this update: Tue 30 Dec 2025 21:01:30 +0000 Manifest next update: Wed 31 Dec 2025 21:01:30 +0000 Files and hashes: 1: 1DNtXnTx-LfbEynwC7hXJBrnTRk.crl (hash: oEYwmnPv1rBMFa8W85JcQwo/JvrdwXmISIbRctw6EmY=) 2: L86Czh-hgFnJfXYShvX9w1KKWEg.roa (hash: UlpXjqDOYfOCQf+VBo1cHNYWZUpj4u/uB6dnGVYlbBQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 21:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:71:10:e4:5b:a8:15:56:da:87:b8:50:df:68:d5:75:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19 Validity Not Before: Dec 30 21:01:30 2025 GMT Not After : Dec 31 21:01:30 2025 GMT Subject: CN=32c3262192fb7fee8cf0b51ae92c86fe7653d756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:2e:d6:ea:bd:75:92:9c:37:78:d9:2d:af:4b: d7:37:57:ef:d9:96:a2:a5:ba:df:4a:71:b6:e2:fa: 2e:20:da:75:e8:e2:be:68:99:b8:09:a9:fa:a9:27: cc:b4:49:5a:2b:20:67:7e:06:15:0e:d2:c2:96:13: dd:e1:0b:9c:bc:22:f5:17:7f:4a:5e:ff:76:1b:bf: af:89:ca:e4:2e:36:89:d2:86:6b:d8:ac:be:fd:7b: f8:61:50:73:22:c3:01:3c:7e:43:b8:42:fc:22:8a: 76:d5:60:08:f1:8e:4b:ea:16:07:e0:cc:2e:e9:31: a1:75:b7:a6:b7:31:4b:3a:63:22:11:06:ad:be:74: 86:76:1d:f2:03:fd:a0:72:23:e4:c2:87:a5:59:2d: 52:02:04:53:0d:7a:4f:81:7a:30:5e:e2:b7:f4:bc: d8:25:2c:65:d6:ba:4c:fb:54:b5:bf:67:ba:79:1e: e0:98:e0:21:26:44:a9:4b:e2:c3:71:31:52:f7:53: c1:bd:f0:22:b4:f1:d3:26:29:c0:a4:d6:1f:53:ff: 1f:48:19:a1:cd:ce:f1:fb:87:62:59:10:1d:9b:dd: d4:07:c3:49:3d:55:44:7f:da:a8:21:49:59:8e:6f: 4e:d9:34:72:18:30:69:7c:8e:5c:f7:1a:cd:1d:00: df:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:C3:26:21:92:FB:7F:EE:8C:F0:B5:1A:E9:2C:86:FE:76:53:D7:56 X509v3 Authority Key Identifier: keyid:D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:ca:bb:a4:79:3f:a1:98:eb:a7:ed:c7:91:51:fe:0e:54:31: 30:96:69:ec:1a:15:f0:eb:74:a0:d3:16:b3:0d:ce:22:fe:07: 60:f3:18:72:78:19:03:78:64:f6:e7:f1:75:79:e5:6d:54:03: f7:30:ac:9a:cb:22:12:e4:a7:71:7d:f7:ba:7e:40:82:31:36: 5c:53:61:be:2e:d6:b3:cf:c5:e0:ce:3f:fd:d8:26:31:be:67: 2d:4b:91:81:a9:e3:b5:d2:1c:c0:78:47:9e:a8:4d:df:2e:82: e6:b5:39:5e:02:50:ae:52:8e:48:72:dc:6f:4d:83:06:8c:77: c0:6c:f4:f2:01:f2:05:de:26:8f:c4:05:3b:55:ff:41:f3:e5: bd:f5:97:e9:28:b8:8d:aa:f6:08:69:f2:c6:e2:70:88:e6:7e: 91:11:7a:47:8c:8d:65:e3:1e:6c:57:7c:26:e5:8e:35:81:84: 1e:55:ef:9f:2d:29:9f:fc:f4:67:aa:10:b2:44:06:43:be:bb: 19:27:6f:f0:3e:e6:4d:cc:92:d8:ef:7e:bd:cb:1d:66:11:73: 2c:eb:d7:64:54:db:91:27:a4:f3:18:cd:72:bb:f8:d5:bc:5b: 01:1d:96:31:38:16:c1:6f:6e:5e:cf:77:24:d3:c1:0a:2a:54: ca:c9:ff:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtxEORbqBVW2oe4UN9o1XVsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MzM2ZDVlNzRmMWY4YjdkYjEzMjlmMDBiYjg1NzI0MWFl NzRkMTkwHhcNMjUxMjMwMjEwMTMwWhcNMjUxMjMxMjEwMTMwWjAzMTEwLwYDVQQD EygzMmMzMjYyMTkyZmI3ZmVlOGNmMGI1MWFlOTJjODZmZTc2NTNkNzU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8S7W6r11kpw3eNktr0vXN1fv2Zai pbrfSnG24vouINp16OK+aJm4Can6qSfMtElaKyBnfgYVDtLClhPd4QucvCL1F39K Xv92G7+vicrkLjaJ0oZr2Ky+/Xv4YVBzIsMBPH5DuEL8Iop21WAI8Y5L6hYH4Mwu 6TGhdbemtzFLOmMiEQatvnSGdh3yA/2gciPkwoelWS1SAgRTDXpPgXowXuK39LzY JSxl1rpM+1S1v2e6eR7gmOAhJkSpS+LDcTFS91PBvfAitPHTJinApNYfU/8fSBmh zc7x+4diWRAdm93UB8NJPVVEf9qoIUlZjm9O2TRyGDBpfI5c9xrNHQDfCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDLDJiGS+3/ujPC1Gukshv52U9dWMB8GA1UdIwQY MBaAFNQzbV508fi32xMp8Au4VyQa500ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUROdFhuVHgtTGZiRXlud0M3aFhKQnJuVFJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8zYTZiZGQtMGQzYy00YTBkLThkYjYt MmRkMjUxODRiMGQwLzEvMUROdFhuVHgtTGZiRXlud0M3aFhKQnJuVFJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS8zYTZiZGQtMGQzYy00YTBkLThkYjYtMmRkMjUxODRiMGQw LzEvMUROdFhuVHgtTGZiRXlud0M3aFhKQnJuVFJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOMq7pHk/ oZjrp+3HkVH+DlQxMJZp7BoV8Ot0oNMWsw3OIv4HYPMYcngZA3hk9ufxdXnlbVQD 9zCsmssiEuSncX33un5AgjE2XFNhvi7Ws8/F4M4//dgmMb5nLUuRganjtdIcwHhH nqhN3y6C5rU5XgJQrlKOSHLcb02DBox3wGz08gHyBd4mj8QFO1X/QfPlvfWX6Si4 jar2CGnyxuJwiOZ+kRF6R4yNZeMebFd8JuWONYGEHlXvny0pn/z0Z6oQskQGQ767 GSdv8D7mTcyS2O9+vcsdZhFzLOvXZFTbkSek8xjNcrv41bxbAR2WMTgWwW9uXs93 JNPBCipUysn/rw== -----END CERTIFICATE-----Generated at Wed Dec 31 02:24:57 2025 by rpki-client