This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft File: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft (raw, json) Hash identifier: bR5RDomCgtuB33jjLlOyUrYFmUaAg74WGskiMhYSFqE= Subject key identifier: 03:67:63:7D:89:7C:C2:93:F0:EF:BA:06:21:79:93:3B:BF:CC:DB:86 Authority key identifier: 0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66 Certificate issuer: /CN=0e1dd539525a39d847014e8fea3c641d973cc866 Certificate serial: 019B9BC407CF996B7C441895514815D7A43E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft Manifest number: 073D Signing time: Thu 08 Jan 2026 04:01:14 +0000 Manifest this update: Thu 08 Jan 2026 04:01:14 +0000 Manifest next update: Fri 09 Jan 2026 04:01:14 +0000 Files and hashes: 1: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl (hash: WvqDaky5sJLZUxQDmhHUfIslsjk7twOukmQ7BVdmoZU=) 2: wWu-RpwUyxS5-QEBD4scp9HUjmY.roa (hash: Vz+DIxi0X/mIEqFNyd8Fjt4ub221xLszyBI1vupEUnQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 04:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9b:c4:07:cf:99:6b:7c:44:18:95:51:48:15:d7:a4:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e1dd539525a39d847014e8fea3c641d973cc866 Validity Not Before: Jan 8 04:01:14 2026 GMT Not After : Jan 9 04:01:14 2026 GMT Subject: CN=0367637d897cc293f0efba062179933bbfccdb86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f5:6e:f6:e3:41:ca:d8:6e:11:4b:1c:b4:e3: 8f:49:12:63:9d:1d:73:73:a7:57:48:c3:5c:43:15: 2b:01:0e:51:fe:b3:e7:0d:99:7c:7d:74:c6:c9:46: 50:28:a9:8a:f2:95:9c:cc:29:f5:3c:35:e8:fd:b1: fe:56:a3:a7:02:db:1a:8d:45:d3:53:c1:5c:68:80: 6e:03:ea:1e:cb:55:6d:52:d1:7e:0a:43:c0:6b:1a: eb:8d:97:c6:a4:b6:10:4f:2d:40:b6:5a:2d:3a:81: 38:45:50:62:e9:8e:8d:5f:60:94:c3:5b:7f:b8:6c: a4:04:ca:6c:2b:d6:97:49:2e:12:85:60:6f:1b:7a: a5:05:5f:dd:2b:ad:2b:38:99:6c:fd:d7:93:6c:d4: b4:68:10:9c:f2:ec:fe:10:2c:f5:06:00:28:d1:16: b8:67:4b:8e:f4:ad:75:89:07:fc:1a:57:b3:d7:e1: d8:a6:76:3e:a1:2a:26:ed:a9:c9:f9:62:2d:67:e4: ae:21:56:ae:08:21:09:fc:a9:fd:68:13:8b:05:ca: 2f:02:27:c6:83:d5:8e:de:04:75:0a:05:59:f4:66: ae:6b:36:b1:21:09:d8:86:c9:fe:a8:15:4f:ca:c4: ae:dd:40:53:96:b0:ff:6e:6b:18:5e:fa:3d:6a:28: f2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:67:63:7D:89:7C:C2:93:F0:EF:BA:06:21:79:93:3B:BF:CC:DB:86 X509v3 Authority Key Identifier: keyid:0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:99:da:04:05:93:12:5d:91:91:28:a7:2c:55:2a:2b:b6:d8: 97:e8:a4:a5:0c:a2:06:bb:57:6f:6f:b9:8f:8f:71:ad:e7:c4: 3e:64:22:77:12:b7:33:60:1c:65:b2:69:c8:52:5a:b6:9e:5a: 84:4d:1b:aa:d5:46:30:15:38:df:50:4a:43:30:62:73:2e:22: 37:7c:c5:bd:1f:be:4f:1c:c2:ad:56:f3:aa:7e:78:2d:d9:a9: b2:e4:01:18:ca:4a:6f:84:9a:ab:5d:c4:f9:77:40:2e:68:d3: 3e:c3:a1:4a:f5:0e:15:67:5e:3d:9e:c3:71:26:39:86:b2:38: 4e:8a:c0:d5:44:5a:78:c3:fb:22:21:28:2d:95:0f:01:9c:ea: a8:2d:65:e3:dd:12:ad:4f:c7:a8:4a:ce:b3:98:62:3a:52:f1: 4d:ea:9d:f9:93:d6:a0:0a:4b:0c:00:df:21:6b:28:4b:72:1e: 67:5b:d2:44:7a:d9:1e:8e:9f:32:f7:ce:ab:7f:82:8c:57:dc: 47:92:8a:b6:55:63:d6:6d:bc:2e:8c:2c:2a:32:23:70:b7:1b: 56:c0:bb:b8:e5:2a:16:89:41:0d:1a:0f:bb:10:97:1f:c9:5b: 7e:a8:63:d8:95:be:97:04:ed:92:ca:19:62:1b:6e:c4:9c:1f: 9b:98:e8:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZubxAfPmWt8RBiVUUgV16Q+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMWRkNTM5NTI1YTM5ZDg0NzAxNGU4ZmVhM2M2NDFkOTcz Y2M4NjYwHhcNMjYwMTA4MDQwMTE0WhcNMjYwMTA5MDQwMTE0WjAzMTEwLwYDVQQD EygwMzY3NjM3ZDg5N2NjMjkzZjBlZmJhMDYyMTc5OTMzYmJmY2NkYjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/Vu9uNBythuEUsctOOPSRJjnR1z c6dXSMNcQxUrAQ5R/rPnDZl8fXTGyUZQKKmK8pWczCn1PDXo/bH+VqOnAtsajUXT U8FcaIBuA+oey1VtUtF+CkPAaxrrjZfGpLYQTy1AtlotOoE4RVBi6Y6NX2CUw1t/ uGykBMpsK9aXSS4ShWBvG3qlBV/dK60rOJls/deTbNS0aBCc8uz+ECz1BgAo0Ra4 Z0uO9K11iQf8Glez1+HYpnY+oSom7anJ+WItZ+SuIVauCCEJ/Kn9aBOLBcovAifG g9WO3gR1CgVZ9GauazaxIQnYhsn+qBVPysSu3UBTlrD/bmsYXvo9aijylwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFANnY32JfMKT8O+6BiF5kzu/zNuGMB8GA1UdIwQY MBaAFA4d1TlSWjnYRwFOj+o8ZB2XPMhmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGgzVk9WSmFPZGhIQVU2UDZqeGtIWmM4eUdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS80NTBiMjktNDBkNi00ZGEzLTkwYjAt OTI5ODkzMDgxODY2LzEvRGgzVk9WSmFPZGhIQVU2UDZqeGtIWmM4eUdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS80NTBiMjktNDBkNi00ZGEzLTkwYjAtOTI5ODkzMDgxODY2 LzEvRGgzVk9WSmFPZGhIQVU2UDZqeGtIWmM4eUdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpnaBAWT El2RkSinLFUqK7bYl+ikpQyiBrtXb2+5j49xrefEPmQidxK3M2AcZbJpyFJatp5a hE0bqtVGMBU431BKQzBicy4iN3zFvR++TxzCrVbzqn54LdmpsuQBGMpKb4Saq13E +XdALmjTPsOhSvUOFWdePZ7DcSY5hrI4TorA1URaeMP7IiEoLZUPAZzqqC1l490S rU/HqErOs5hiOlLxTeqd+ZPWoApLDADfIWsoS3IeZ1vSRHrZHo6fMvfOq3+CjFfc R5KKtlVj1m28LowsKjIjcLcbVsC7uOUqFolBDRoPuxCXH8lbfqhj2JW+lwTtksoZ YhtuxJwfm5joVg== -----END CERTIFICATE-----Generated at Thu Jan 8 13:36:18 2026 by rpki-client