This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json) Hash identifier: detjRXMH0mwZ4p/cRJ2R7t+XujliCgM3xKP6YcfwZVU= Subject key identifier: 3F:A9:72:59:0C:75:15:B3:CB:36:5F:74:27:BF:69:57:F0:2E:53:58 Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5 Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5 Certificate serial: 019B2F6804BDF61D83AA6BB0BC8475FBA70D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft Manifest number: 155F Signing time: Thu 18 Dec 2025 03:01:44 +0000 Manifest this update: Thu 18 Dec 2025 03:01:44 +0000 Manifest next update: Fri 19 Dec 2025 03:01:44 +0000 Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: vTncg6nCWxA64w3GFTAJLQ1mL8SaEfWU3pkoaYZ0t0Y=) 2: O_uEU5a5hFxcQ9cF5vOgcBailtI.roa (hash: am+LoRbwPcUWGmyLF541pRdLLSbuzmsIRCZ85z19J6M=) 3: _MZl5mAk0VStSl6-Iutzl1XZEmc.roa (hash: GAxNehsNlSM4VBui+WLkl0ufFvlsHnC2diPLD2P3m8s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 03:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:68:04:bd:f6:1d:83:aa:6b:b0:bc:84:75:fb:a7:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5 Validity Not Before: Dec 18 03:01:44 2025 GMT Not After : Dec 19 03:01:44 2025 GMT Subject: CN=3fa972590c7515b3cb365f7427bf6957f02e5358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:be:52:26:d2:35:d2:e6:03:2e:5b:e9:7b:fd: 2b:49:b4:c1:af:be:c3:b7:08:af:1d:51:d7:03:1b: f0:41:3a:56:42:20:46:31:69:28:2c:71:fe:0d:67: 54:d4:26:e8:d4:30:ea:8e:25:98:76:99:14:d5:fd: 1b:e2:92:f8:fd:6d:d6:e5:06:1d:26:2e:f7:22:bb: a0:61:4a:e8:a9:e8:4a:a4:1f:95:eb:82:6e:cd:75: d0:0f:85:bf:e4:69:7d:31:6e:60:43:fb:97:a1:d7: e0:51:34:15:07:16:8b:07:86:cf:e2:d4:36:72:d0: f4:cb:be:5f:34:9a:43:01:89:a1:36:cf:4f:a1:11: 61:ae:ab:9e:33:b9:56:df:a8:1e:ca:08:f1:63:d1: c2:a2:ab:07:72:67:23:7d:3a:30:7d:e0:18:71:29: 28:f4:c3:6d:65:d2:32:63:9f:b0:8c:e2:ed:91:d8: 31:67:23:ce:18:df:91:36:33:86:ae:e9:28:dc:58: 8f:69:21:62:5f:65:2a:79:b6:01:20:0c:11:8c:67: f2:9d:00:95:4b:2c:15:df:ca:9d:78:a7:01:12:d1: 0e:78:cf:dd:9f:c4:fc:3c:cb:b2:c6:80:fa:5c:0e: 1d:0a:d2:f2:f3:44:6c:e1:63:b7:29:9e:65:09:aa: 49:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A9:72:59:0C:75:15:B3:CB:36:5F:74:27:BF:69:57:F0:2E:53:58 X509v3 Authority Key Identifier: keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:c7:cc:51:cb:44:ae:e7:d4:8a:b4:19:ed:6c:a7:56:42:0e: ca:45:07:46:49:f7:22:d5:15:38:fa:47:95:57:de:f2:37:98: 0a:2b:6c:0c:bf:52:42:30:a0:c0:92:51:6e:ed:dd:8f:81:f3: 29:fc:3f:e2:bb:eb:ff:9a:97:d7:fd:79:32:3b:b1:2a:b5:13: 71:b9:de:fb:ea:84:7a:d6:51:13:cb:3b:07:85:fb:f2:6b:64: fc:25:7e:28:82:a6:fa:08:e6:af:e1:cc:61:e8:5f:ec:8d:d7: 4d:1d:50:8c:9b:cd:23:cb:1b:8c:d4:84:31:3b:8f:39:d4:d8: 45:f8:e0:6b:2c:1f:13:ce:aa:4b:e3:49:f0:d3:2e:18:5b:ea: 54:65:d5:ea:fe:75:3e:bc:dd:e7:5b:15:ec:e7:ae:ec:9d:42: 79:df:39:1f:fe:21:3e:25:5b:51:45:6d:f8:99:f4:df:73:3d: b6:11:68:35:ec:83:6e:36:48:18:86:7d:59:59:36:e4:bb:13: e9:bf:33:2c:6f:c1:31:9a:65:57:c6:5e:7d:ae:8d:56:3c:8f: 39:51:b2:59:96:40:aa:40:0f:1e:9b:b1:af:04:1c:90:a1:aa: b1:f1:f5:ab:9c:78:c3:a7:22:5e:e3:86:c7:4d:d7:60:c3:ac: 85:66:af:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsvaAS99h2DqmuwvIR1+6cNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNjViZDIxYzY4MzIwN2RhMGMzOWZiMzc5ODUzNWFmNDll MGJmZjUwHhcNMjUxMjE4MDMwMTQ0WhcNMjUxMjE5MDMwMTQ0WjAzMTEwLwYDVQQD EygzZmE5NzI1OTBjNzUxNWIzY2IzNjVmNzQyN2JmNjk1N2YwMmU1MzU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqL5SJtI10uYDLlvpe/0rSbTBr77D twivHVHXAxvwQTpWQiBGMWkoLHH+DWdU1Cbo1DDqjiWYdpkU1f0b4pL4/W3W5QYd Ji73IrugYUroqehKpB+V64JuzXXQD4W/5Gl9MW5gQ/uXodfgUTQVBxaLB4bP4tQ2 ctD0y75fNJpDAYmhNs9PoRFhrqueM7lW36geygjxY9HCoqsHcmcjfTowfeAYcSko 9MNtZdIyY5+wjOLtkdgxZyPOGN+RNjOGruko3FiPaSFiX2UqebYBIAwRjGfynQCV SywV38qdeKcBEtEOeM/dn8T8PMuyxoD6XA4dCtLy80Rs4WO3KZ5lCapJ8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD+pclkMdRWzyzZfdCe/aVfwLlNYMB8GA1UdIwQY MBaAFA9lvSHGgyB9oMOfs3mFNa9J4L/1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDJXOUljYURJSDJndzUtemVZVTFyMG5ndl9VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS80YTk5OWYtZDFmYS00ODg3LWJhZTgt ZTIzZjEwZTRiOTFjLzEvRDJXOUljYURJSDJndzUtemVZVTFyMG5ndl9VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS80YTk5OWYtZDFmYS00ODg3LWJhZTgtZTIzZjEwZTRiOTFj LzEvRDJXOUljYURJSDJndzUtemVZVTFyMG5ndl9VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABcfMUctE rufUirQZ7WynVkIOykUHRkn3ItUVOPpHlVfe8jeYCitsDL9SQjCgwJJRbu3dj4Hz Kfw/4rvr/5qX1/15MjuxKrUTcbne++qEetZRE8s7B4X78mtk/CV+KIKm+gjmr+HM Yehf7I3XTR1QjJvNI8sbjNSEMTuPOdTYRfjgaywfE86qS+NJ8NMuGFvqVGXV6v51 Przd51sV7Oeu7J1Ced85H/4hPiVbUUVt+Jn033M9thFoNeyDbjZIGIZ9WVk25LsT 6b8zLG/BMZplV8Zefa6NVjyPOVGyWZZAqkAPHpuxrwQckKGqsfH1q5x4w6ciXuOG x03XYMOshWavtA== -----END CERTIFICATE-----Generated at Thu Dec 18 09:53:20 2025 by rpki-client