This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json) Hash identifier: zPMH+T7hGvYH7WXD637uxkuGNIqcLNYLHC1ab29lido= Subject key identifier: D8:D1:1D:AD:8A:24:AB:4E:28:23:D4:44:1C:52:68:27:E7:C5:EC:65 Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5 Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5 Certificate serial: 019B27AE5AD4B2AB09C161B4B3F712C148DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft Manifest number: 155B Signing time: Tue 16 Dec 2025 15:01:36 +0000 Manifest this update: Tue 16 Dec 2025 15:01:36 +0000 Manifest next update: Wed 17 Dec 2025 15:01:36 +0000 Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: 7x4CHaoF83LLTwrFJEtDLZJhBoRSVqThw7Zh2uL7+BU=) 2: O_uEU5a5hFxcQ9cF5vOgcBailtI.roa (hash: am+LoRbwPcUWGmyLF541pRdLLSbuzmsIRCZ85z19J6M=) 3: _MZl5mAk0VStSl6-Iutzl1XZEmc.roa (hash: GAxNehsNlSM4VBui+WLkl0ufFvlsHnC2diPLD2P3m8s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:ae:5a:d4:b2:ab:09:c1:61:b4:b3:f7:12:c1:48:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5 Validity Not Before: Dec 16 15:01:36 2025 GMT Not After : Dec 17 15:01:36 2025 GMT Subject: CN=d8d11dad8a24ab4e2823d4441c526827e7c5ec65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:44:91:4e:5f:40:5c:da:ad:48:0b:41:fa:76: 35:b4:c2:5a:7f:2e:b4:2a:19:35:b0:4d:da:95:49: 77:e1:68:c7:0f:76:d9:27:34:c8:42:da:8a:57:d8: d7:bc:1b:f8:39:f3:e9:67:bf:a6:5e:44:a1:19:70: df:36:e0:c8:fe:22:21:bc:a4:ef:b2:28:0e:b9:49: 41:0f:59:1b:c1:1d:68:cb:16:45:de:2c:3e:fe:19: a2:d4:a6:40:fc:ce:be:4e:41:1a:08:f8:99:b6:be: 3d:5a:14:78:58:2d:54:b4:4c:73:21:b4:2c:1f:c2: b3:17:e5:44:71:2e:d1:21:fb:1d:33:9d:d6:9b:c3: 79:b3:99:00:a0:1a:45:da:56:7f:f5:c7:ed:17:51: 52:00:cd:60:03:71:b5:87:f8:13:04:0f:0e:f7:aa: 13:d3:30:07:45:f8:93:ef:5a:2f:27:12:d2:57:6b: c6:9d:07:43:eb:75:79:f9:89:20:5d:95:86:41:d5: 42:ed:60:23:9c:5b:d7:c9:2f:c4:98:1c:4a:29:aa: 22:1b:11:19:18:63:98:ff:0d:e0:e5:68:e5:97:fc: 3d:fd:ce:23:89:b9:a6:b0:30:10:91:9b:c4:00:f0: 80:de:50:3d:15:aa:5c:e3:9f:79:a4:1d:27:b6:75: 5b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D1:1D:AD:8A:24:AB:4E:28:23:D4:44:1C:52:68:27:E7:C5:EC:65 X509v3 Authority Key Identifier: keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:a3:f9:cd:6b:7a:5c:ea:9e:1c:d1:d4:a6:ca:b9:79:b0:15: e1:f9:ae:e7:5e:39:ac:86:29:11:01:d0:96:71:8b:94:35:a5: a5:35:7f:31:bb:66:51:41:37:ab:94:47:22:4d:a7:b3:94:29: 59:bb:f9:09:5a:0c:e4:93:35:72:f6:f3:2e:c9:32:2d:cb:e2: b5:78:93:29:39:68:62:ce:c3:cb:49:82:d4:88:56:97:85:42: 8c:7f:bd:ff:e3:f4:0a:ba:e0:ca:2b:23:07:d3:cd:d3:5c:4b: b6:ed:c8:5a:87:af:3f:4f:14:bc:b4:cb:f2:9f:42:0e:ba:00: ae:ea:4d:a2:7b:95:47:dd:1e:11:08:70:bf:4b:b6:f1:0c:68: f9:1c:16:7a:72:04:8d:40:6d:6f:fc:7e:cf:3d:44:ed:a9:ee: 96:60:d1:81:b3:08:52:d9:ba:7d:85:76:ce:dc:af:dc:83:10: ed:b8:fb:a4:17:24:59:89:07:4e:7a:24:5f:43:00:1f:1a:23: f9:61:7a:7e:b4:58:2a:d4:52:12:0d:c6:a2:34:a5:eb:0c:e2: 55:67:4a:af:30:84:dd:e5:24:e0:39:22:28:87:5b:5d:c6:50: b1:25:d8:7d:4e:f3:90:34:3f:6c:37:de:0c:a6:9a:57:b1:11: 7b:de:91:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnrlrUsqsJwWG0s/cSwUjfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNjViZDIxYzY4MzIwN2RhMGMzOWZiMzc5ODUzNWFmNDll MGJmZjUwHhcNMjUxMjE2MTUwMTM2WhcNMjUxMjE3MTUwMTM2WjAzMTEwLwYDVQQD EyhkOGQxMWRhZDhhMjRhYjRlMjgyM2Q0NDQxYzUyNjgyN2U3YzVlYzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkSRTl9AXNqtSAtB+nY1tMJafy60 Khk1sE3alUl34WjHD3bZJzTIQtqKV9jXvBv4OfPpZ7+mXkShGXDfNuDI/iIhvKTv sigOuUlBD1kbwR1oyxZF3iw+/hmi1KZA/M6+TkEaCPiZtr49WhR4WC1UtExzIbQs H8KzF+VEcS7RIfsdM53Wm8N5s5kAoBpF2lZ/9cftF1FSAM1gA3G1h/gTBA8O96oT 0zAHRfiT71ovJxLSV2vGnQdD63V5+YkgXZWGQdVC7WAjnFvXyS/EmBxKKaoiGxEZ GGOY/w3g5Wjll/w9/c4jibmmsDAQkZvEAPCA3lA9Fapc4595pB0ntnVb7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNjRHa2KJKtOKCPURBxSaCfnxexlMB8GA1UdIwQY MBaAFA9lvSHGgyB9oMOfs3mFNa9J4L/1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDJXOUljYURJSDJndzUtemVZVTFyMG5ndl9VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS80YTk5OWYtZDFmYS00ODg3LWJhZTgt ZTIzZjEwZTRiOTFjLzEvRDJXOUljYURJSDJndzUtemVZVTFyMG5ndl9VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS80YTk5OWYtZDFmYS00ODg3LWJhZTgtZTIzZjEwZTRiOTFj LzEvRDJXOUljYURJSDJndzUtemVZVTFyMG5ndl9VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWaP5zWt6 XOqeHNHUpsq5ebAV4fmu5145rIYpEQHQlnGLlDWlpTV/MbtmUUE3q5RHIk2ns5Qp Wbv5CVoM5JM1cvbzLskyLcvitXiTKTloYs7Dy0mC1IhWl4VCjH+9/+P0Crrgyisj B9PN01xLtu3IWoevP08UvLTL8p9CDroArupNonuVR90eEQhwv0u28Qxo+RwWenIE jUBtb/x+zz1E7anulmDRgbMIUtm6fYV2ztyv3IMQ7bj7pBckWYkHTnokX0MAHxoj +WF6frRYKtRSEg3GojSl6wziVWdKrzCE3eUk4DkiKIdbXcZQsSXYfU7zkDQ/bDfe DKaaV7ERe96R9A== -----END CERTIFICATE-----Generated at Tue Dec 16 21:50:49 2025 by rpki-client