This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft File: dHnfUKMVAp6AqhlHr-EtselIYos.mft (raw, json) Hash identifier: 4jpyt0XEojyGU0wpxgp7Cxj9RfFvDE0WpJWqqrynvYA= Subject key identifier: 49:E9:F1:F8:38:DD:01:E2:F2:28:89:58:47:17:C4:11:E7:08:37:79 Authority key identifier: 74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B Certificate issuer: /CN=7479df50a315029e80aa1947afe12db1e948628b Certificate serial: 019B66560E9A380D7205AC26E0AA670903F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft Manifest number: 10A1 Signing time: Sun 28 Dec 2025 19:01:14 +0000 Manifest this update: Sun 28 Dec 2025 19:01:14 +0000 Manifest next update: Mon 29 Dec 2025 19:01:14 +0000 Files and hashes: 1: KvOchdw6AYfLt261W6RR4KIthYY.roa (hash: WXdEqSkBC/gQsasA/7q/ZdUFdpwAbrzjieJX5Z97f4U=) 2: dHnfUKMVAp6AqhlHr-EtselIYos.crl (hash: DzVFxQogzALO43VqSl9SLjsZl8kruSfNqbylZYlQl/E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 19:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:66:56:0e:9a:38:0d:72:05:ac:26:e0:aa:67:09:03:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7479df50a315029e80aa1947afe12db1e948628b Validity Not Before: Dec 28 19:01:14 2025 GMT Not After : Dec 29 19:01:14 2025 GMT Subject: CN=49e9f1f838dd01e2f22889584717c411e7083779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7d:2c:90:b8:f0:81:aa:65:e0:20:a5:ca:a4: 17:c8:72:a2:4e:30:f6:c9:e5:fc:b2:c0:ab:fd:2a: 78:2b:a4:fb:82:23:d8:62:43:5d:40:fd:53:8d:4f: 45:76:71:7a:1d:91:ae:83:25:f2:57:52:1f:c2:74: 0c:ce:58:9c:ee:30:11:c6:19:4b:6f:13:81:c3:ff: 3c:c9:7a:4b:71:cb:51:00:f2:fb:b8:8e:d2:c9:ce: 4a:20:d1:05:99:aa:3a:3e:19:35:2c:f2:27:26:05: 7e:41:23:c2:7f:20:d7:9d:1a:7e:57:2b:94:d0:ef: 36:1f:ac:53:09:b6:95:6f:cd:5b:fe:62:02:01:97: 61:1b:26:59:cd:5d:00:a2:6e:de:36:fb:69:78:71: e1:a5:2f:a5:bb:18:a1:e0:2d:4d:38:8b:8f:a1:99: c8:f9:18:7b:53:e9:3e:bd:d1:4b:c8:ea:e7:dc:02: 39:e8:43:93:d9:cf:9a:31:44:44:d7:aa:7e:bc:e1: 86:c9:07:9c:d4:d6:72:50:60:07:46:31:93:7a:0b: 0f:b3:77:f9:20:a0:57:9f:82:ce:ca:c5:0b:c6:82: 16:40:fd:e1:a6:90:08:a6:25:a0:2e:8b:2c:98:88: 59:5d:ac:12:8e:6c:c1:34:c0:a4:40:d3:88:55:b2: 52:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E9:F1:F8:38:DD:01:E2:F2:28:89:58:47:17:C4:11:E7:08:37:79 X509v3 Authority Key Identifier: keyid:74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:61:7c:ff:3e:9a:85:9b:f6:f8:a7:d0:d9:ba:cc:7e:a5:19: 94:6b:3a:73:78:3e:5b:9b:ec:39:4a:5b:bb:1e:2a:1c:49:87: 83:d8:c2:20:25:f2:33:00:ac:77:b5:41:7b:47:6e:d3:df:d5: e9:d8:53:66:18:71:48:5e:b3:10:d6:28:ed:18:4d:f0:76:29: c3:6b:fd:a9:3e:10:16:98:25:7c:48:f5:c3:10:06:cb:06:4f: 77:dd:d9:00:da:51:de:0c:d4:1b:b8:e6:0c:55:3e:14:55:de: c6:55:20:49:fb:90:39:25:19:05:8b:73:26:5a:ac:9a:d7:4b: e6:ee:24:60:9f:10:b3:35:a2:8b:f4:c3:1c:17:5b:7a:42:85: d0:b3:65:f8:2e:bf:c3:e5:38:13:62:35:85:cc:fa:d6:a6:31: 07:d6:75:d0:11:ad:42:40:ea:fc:3c:dd:42:d1:d8:a9:6a:5a: 79:ad:97:97:a0:5e:9d:e5:e0:b7:29:28:8e:e4:d3:a8:a4:67: d4:bd:d3:98:1b:e5:d4:43:72:08:cb:f7:4a:a0:9e:2d:ed:ef: e3:94:89:8b:3f:ea:24:f0:b5:f9:e2:eb:f1:6e:97:b1:0f:cb: e9:36:a9:98:68:d6:b6:b2:0c:d3:b4:fe:03:3d:13:24:ca:a0: 55:ba:86:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtmVg6aOA1yBawm4KpnCQP4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0NzlkZjUwYTMxNTAyOWU4MGFhMTk0N2FmZTEyZGIxZTk0 ODYyOGIwHhcNMjUxMjI4MTkwMTE0WhcNMjUxMjI5MTkwMTE0WjAzMTEwLwYDVQQD Eyg0OWU5ZjFmODM4ZGQwMWUyZjIyODg5NTg0NzE3YzQxMWU3MDgzNzc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsX0skLjwgapl4CClyqQXyHKiTjD2 yeX8ssCr/Sp4K6T7giPYYkNdQP1TjU9FdnF6HZGugyXyV1IfwnQMzlic7jARxhlL bxOBw/88yXpLcctRAPL7uI7Syc5KINEFmao6Phk1LPInJgV+QSPCfyDXnRp+VyuU 0O82H6xTCbaVb81b/mICAZdhGyZZzV0Aom7eNvtpeHHhpS+luxih4C1NOIuPoZnI +Rh7U+k+vdFLyOrn3AI56EOT2c+aMURE16p+vOGGyQec1NZyUGAHRjGTegsPs3f5 IKBXn4LOysULxoIWQP3hppAIpiWgLossmIhZXawSjmzBNMCkQNOIVbJS/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEnp8fg43QHi8iiJWEcXxBHnCDd5MB8GA1UdIwQY MBaAFHR531CjFQKegKoZR6/hLbHpSGKLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEhuZlVLTVZBcDZBcWhsSHItRXRzZWxJWW9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8xNjczNWQtNjY1OC00YjZmLWEyNjEt OTdiYTM3MzQ1YWE4LzEvZEhuZlVLTVZBcDZBcWhsSHItRXRzZWxJWW9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy8xNjczNWQtNjY1OC00YjZmLWEyNjEtOTdiYTM3MzQ1YWE4 LzEvZEhuZlVLTVZBcDZBcWhsSHItRXRzZWxJWW9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdWF8/z6a hZv2+KfQ2brMfqUZlGs6c3g+W5vsOUpbux4qHEmHg9jCICXyMwCsd7VBe0du09/V 6dhTZhhxSF6zENYo7RhN8HYpw2v9qT4QFpglfEj1wxAGywZPd93ZANpR3gzUG7jm DFU+FFXexlUgSfuQOSUZBYtzJlqsmtdL5u4kYJ8QszWii/TDHBdbekKF0LNl+C6/ w+U4E2I1hcz61qYxB9Z10BGtQkDq/DzdQtHYqWpaea2Xl6BeneXgtykojuTTqKRn 1L3TmBvl1ENyCMv3SqCeLe3v45SJiz/qJPC1+eLr8W6XsQ/L6TapmGjWtrIM07T+ Az0TJMqgVbqGXA== -----END CERTIFICATE-----Generated at Mon Dec 29 02:52:08 2025 by rpki-client