This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft File: _D39VAG24EhxYrQuBDdnosKTGnc.mft (raw, json) Hash identifier: ygoISzsFXvUnJS5mIaUVEip4Qc9GktwGfmtqGNvYFAY= Subject key identifier: 61:09:4C:10:FA:7F:A0:2C:0A:17:A1:59:BF:9E:7A:44:D8:D9:DC:0E Authority key identifier: FC:3D:FD:54:01:B6:E0:48:71:62:B4:2E:04:37:67:A2:C2:93:1A:77 Certificate issuer: /CN=fc3dfd5401b6e0487162b42e043767a2c2931a77 Certificate serial: 019B32D694F077D32B569276EE5BCE576C44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_D39VAG24EhxYrQuBDdnosKTGnc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft Manifest number: 0B05 Signing time: Thu 18 Dec 2025 19:01:22 +0000 Manifest this update: Thu 18 Dec 2025 19:01:22 +0000 Manifest next update: Fri 19 Dec 2025 19:01:22 +0000 Files and hashes: 1: _D39VAG24EhxYrQuBDdnosKTGnc.crl (hash: 3Mr1loGf3bNt+o1tnGlhfM+PdnOXd0PP//GErow+9iw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft rsync://rpki.ripe.net/repository/DEFAULT/_D39VAG24EhxYrQuBDdnosKTGnc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:94:f0:77:d3:2b:56:92:76:ee:5b:ce:57:6c:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc3dfd5401b6e0487162b42e043767a2c2931a77 Validity Not Before: Dec 18 19:01:22 2025 GMT Not After : Dec 19 19:01:22 2025 GMT Subject: CN=61094c10fa7fa02c0a17a159bf9e7a44d8d9dc0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:77:5b:f2:4c:f9:8f:a7:7c:3c:66:f2:ef:63: c4:7d:4a:77:57:03:f0:45:52:fd:ae:c2:1f:00:5a: 63:42:ae:4c:46:97:0e:08:01:85:18:90:fa:8b:10: e1:7b:2c:7f:31:a3:b7:3d:06:98:5e:df:78:fd:ce: 47:ca:df:bd:6f:c4:1b:fa:8e:99:fe:c7:22:a0:2b: 03:ad:44:dc:8b:e1:65:74:a7:69:9d:41:78:46:d6: 4c:cc:8f:c9:24:c6:f9:e3:f8:d3:9c:47:b4:0e:db: b2:15:05:63:6f:71:44:4c:49:6e:c4:dd:69:3d:6e: 00:a0:59:e7:97:d3:68:9e:5e:1e:af:e0:b6:4d:4d: 06:38:af:1a:b7:73:9f:3e:71:b1:2a:db:66:25:e4: 40:dc:98:1f:b0:4d:1c:f1:b7:bd:bf:f8:52:bc:8b: 9d:19:b5:80:d7:5d:49:0d:85:0a:8e:f3:6a:46:39: 3f:3e:2e:1e:69:ec:12:c3:16:d6:8d:5e:86:f9:07: ad:93:37:71:3b:d0:ae:8e:4f:c2:17:ec:92:49:d6: 29:f9:6a:9c:c3:a9:41:e6:9d:30:ec:68:10:d8:dd: 51:20:86:59:79:81:fb:93:86:ec:3a:9c:7f:f0:8c: 31:15:1b:5f:5a:f5:18:b7:71:73:35:d9:39:a4:6b: 6e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:09:4C:10:FA:7F:A0:2C:0A:17:A1:59:BF:9E:7A:44:D8:D9:DC:0E X509v3 Authority Key Identifier: keyid:FC:3D:FD:54:01:B6:E0:48:71:62:B4:2E:04:37:67:A2:C2:93:1A:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_D39VAG24EhxYrQuBDdnosKTGnc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:f3:67:b0:00:bf:7a:a9:79:35:c9:cb:e8:88:1e:bf:c6:ca: f1:d0:ae:61:8b:cd:74:c6:03:33:80:af:1c:68:d8:c7:d5:a7: 07:37:54:4f:41:dd:a1:ec:4c:bf:fa:da:19:9e:1a:ce:2c:b1: f8:78:97:51:40:c4:90:67:2e:c1:22:b2:b5:f1:6a:da:0f:8c: 87:83:9c:56:7e:f8:a9:0a:e0:49:24:60:ed:26:5b:12:8c:b4: 59:2c:af:8f:03:fa:f3:ad:04:79:34:30:38:b4:dd:0e:a6:d0: 8f:85:99:74:c3:4d:3d:19:fd:07:23:bb:a2:f1:8c:da:4f:96: 39:8a:93:e0:03:de:86:4a:2b:69:2b:eb:d5:41:f5:16:06:b6: 0a:72:e4:30:bb:36:38:05:9c:2a:9a:b3:af:0c:7c:af:a8:fe: 8d:c1:3b:2b:12:99:b1:14:de:48:d1:20:38:99:0a:f9:b0:b4: d0:56:cc:ef:a1:a9:a9:3d:17:18:80:a3:1f:d6:5a:c2:ff:67: 2d:ee:10:ec:7b:9e:95:6a:1f:51:52:45:b1:d4:89:9d:29:19: 6b:ac:de:42:6f:1f:2d:9a:5f:d7:09:ad:dd:64:57:59:3e:bf: 0e:25:b8:b6:68:30:f8:5c:9f:d4:a2:b2:bf:20:92:f8:48:b8: d3:0e:27:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1pTwd9MrVpJ27lvOV2xEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjM2RmZDU0MDFiNmUwNDg3MTYyYjQyZTA0Mzc2N2EyYzI5 MzFhNzcwHhcNMjUxMjE4MTkwMTIyWhcNMjUxMjE5MTkwMTIyWjAzMTEwLwYDVQQD Eyg2MTA5NGMxMGZhN2ZhMDJjMGExN2ExNTliZjllN2E0NGQ4ZDlkYzBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHdb8kz5j6d8PGby72PEfUp3VwPw RVL9rsIfAFpjQq5MRpcOCAGFGJD6ixDheyx/MaO3PQaYXt94/c5Hyt+9b8Qb+o6Z /scioCsDrUTci+FldKdpnUF4RtZMzI/JJMb54/jTnEe0DtuyFQVjb3FETEluxN1p PW4AoFnnl9Nonl4er+C2TU0GOK8at3OfPnGxKttmJeRA3JgfsE0c8be9v/hSvIud GbWA111JDYUKjvNqRjk/Pi4eaewSwxbWjV6G+QetkzdxO9Cujk/CF+ySSdYp+Wqc w6lB5p0w7GgQ2N1RIIZZeYH7k4bsOpx/8IwxFRtfWvUYt3FzNdk5pGtuUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGEJTBD6f6AsChehWb+eekTY2dwOMB8GA1UdIwQY MBaAFPw9/VQBtuBIcWK0LgQ3Z6LCkxp3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0QzOVZBRzI0RWh4WXJRdUJEZG5vc0tUR25jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8zMzVlOTgtOGIzNi00MDE3LTkyOGEt ZGRhZGUzZDM0MWM3LzEvX0QzOVZBRzI0RWh4WXJRdUJEZG5vc0tUR25jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8zMzVlOTgtOGIzNi00MDE3LTkyOGEtZGRhZGUzZDM0MWM3 LzEvX0QzOVZBRzI0RWh4WXJRdUJEZG5vc0tUR25jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB/NnsAC/ eql5NcnL6Igev8bK8dCuYYvNdMYDM4CvHGjYx9WnBzdUT0HdoexMv/raGZ4aziyx +HiXUUDEkGcuwSKytfFq2g+Mh4OcVn74qQrgSSRg7SZbEoy0WSyvjwP6860EeTQw OLTdDqbQj4WZdMNNPRn9ByO7ovGM2k+WOYqT4APehkoraSvr1UH1Fga2CnLkMLs2 OAWcKpqzrwx8r6j+jcE7KxKZsRTeSNEgOJkK+bC00FbM76GpqT0XGICjH9Zawv9n Le4Q7HuelWofUVJFsdSJnSkZa6zeQm8fLZpf1wmt3WRXWT6/DiW4tmgw+Fyf1KKy vyCS+Ei40w4nKQ== -----END CERTIFICATE-----Generated at Fri Dec 19 00:11:31 2025 by rpki-client