This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json) Hash identifier: KkXaFlvxSiE5QTIoaWAN3HyGBffUQpfoHlo1NT1QBzY= Subject key identifier: E3:EB:E2:83:35:F7:C4:84:BB:07:94:8F:72:1A:41:09:3F:6F:C7:08 Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34 Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634 Certificate serial: 019B33E897209F0761D7ED53B9FD14832D67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft Manifest number: 1784 Signing time: Fri 19 Dec 2025 00:00:39 +0000 Manifest this update: Fri 19 Dec 2025 00:00:39 +0000 Manifest next update: Sat 20 Dec 2025 00:00:39 +0000 Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=) 2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: 12UKJFJK+xSlTaqULlfE2wtUq1T6cf6mhnisw/chEeI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e8:97:20:9f:07:61:d7:ed:53:b9:fd:14:83:2d:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634 Validity Not Before: Dec 19 00:00:39 2025 GMT Not After : Dec 20 00:00:39 2025 GMT Subject: CN=e3ebe28335f7c484bb07948f721a41093f6fc708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:89:c7:d8:85:b0:41:d1:7c:bc:5c:00:7d:22: 9d:dd:77:95:ad:23:8f:57:57:89:7c:64:95:fd:09: 5b:d2:a2:93:54:10:ff:09:a5:5e:c7:dc:44:4f:0a: 7e:f8:81:8e:28:63:5e:c4:fe:05:e7:1c:cc:96:0f: 17:58:0e:3e:bf:f1:e4:eb:15:ae:3c:27:7f:02:be: 55:90:c9:ec:5c:ac:a3:d8:95:42:0e:61:ef:e2:a1: 39:21:63:e7:c8:31:d6:c3:bd:ab:f5:03:a2:20:a4: f0:09:4f:38:d2:0a:f3:39:d4:1a:ad:36:eb:55:89: 8a:d4:4a:74:bb:5a:4c:48:d5:0a:c3:17:9a:45:a9: a0:f0:7c:46:9a:4a:62:f9:75:4b:ad:73:90:ba:d2: d0:24:bf:f6:6d:e8:cb:8b:0d:75:95:d0:c3:2f:b7: 12:d6:1d:f8:de:d4:e4:14:de:ac:4f:d8:91:69:6b: f4:d6:d8:02:b5:38:5e:e0:c8:8e:7e:11:c9:72:2e: 7e:ff:50:e5:80:94:0e:9a:f4:3c:f4:93:74:0c:8c: f3:e4:11:af:16:2c:89:6b:b7:16:f9:b6:23:9a:98: e3:0e:88:c1:7f:94:ee:51:23:3b:eb:dd:de:68:3b: 23:c7:6c:fa:34:0c:e1:e4:25:f3:61:e0:16:64:3e: 1b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:EB:E2:83:35:F7:C4:84:BB:07:94:8F:72:1A:41:09:3F:6F:C7:08 X509v3 Authority Key Identifier: keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:f2:c1:e8:49:96:f8:39:5f:21:1a:3a:ba:7b:fc:81:43:89: 95:88:60:1b:29:64:f1:47:45:25:a5:2e:e8:2a:ea:07:de:a5: b1:48:7c:f0:13:a8:d3:9e:45:7e:85:4e:9d:d8:10:7e:e6:31: 98:2b:a3:fa:3a:52:fe:eb:ef:5f:c1:b2:22:91:9d:4d:7b:d8: 33:14:99:60:3b:96:53:a8:01:51:90:ff:e3:06:07:8c:9a:c6: 9d:42:56:3d:46:1f:dc:36:01:36:f1:cb:09:c2:18:07:c5:eb: 43:15:29:d6:7b:04:88:bf:c8:dd:79:2a:ab:be:9e:10:b3:61: 9a:ed:6c:e5:2b:65:1f:49:2a:0a:14:2b:6f:e7:5b:c0:6b:e8: 39:4c:79:b8:64:09:d7:8b:25:33:3d:f0:24:14:a1:b0:60:96: b2:0b:e7:6f:a7:2b:5c:af:0b:2e:64:98:dc:cf:93:94:09:6f: 51:99:29:4a:5f:c0:05:7f:9d:46:9b:95:4e:4b:54:b8:e3:36: 50:2f:0d:cf:84:a6:58:f2:de:f5:ce:65:b6:b2:51:44:38:1a: c5:50:81:dc:a5:af:76:e9:d0:0b:96:56:31:a4:e1:7a:4f:fe: 03:c6:cf:bc:99:51:1e:c5:de:84:49:c1:f3:56:f5:b5:b0:b5: 89:c7:3c:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6Jcgnwdh1+1Tuf0Ugy1nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyOWEwMzgxNzZjNzk2ZWE0ZjI3NjlmNmJlM2NhY2UxYTM1 OTc2MzQwHhcNMjUxMjE5MDAwMDM5WhcNMjUxMjIwMDAwMDM5WjAzMTEwLwYDVQQD EyhlM2ViZTI4MzM1ZjdjNDg0YmIwNzk0OGY3MjFhNDEwOTNmNmZjNzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnonH2IWwQdF8vFwAfSKd3XeVrSOP V1eJfGSV/Qlb0qKTVBD/CaVex9xETwp++IGOKGNexP4F5xzMlg8XWA4+v/Hk6xWu PCd/Ar5VkMnsXKyj2JVCDmHv4qE5IWPnyDHWw72r9QOiIKTwCU840grzOdQarTbr VYmK1Ep0u1pMSNUKwxeaRamg8HxGmkpi+XVLrXOQutLQJL/2bejLiw11ldDDL7cS 1h343tTkFN6sT9iRaWv01tgCtThe4MiOfhHJci5+/1DlgJQOmvQ89JN0DIzz5BGv FiyJa7cW+bYjmpjjDojBf5TuUSM7693eaDsjx2z6NAzh5CXzYeAWZD4bJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOPr4oM198SEuweUj3IaQQk/b8cIMB8GA1UdIwQY MBaAFCKaA4F2x5bqTydp9r48rOGjWXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQt ZGMyMzAxZmJiYjdjLzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQtZGMyMzAxZmJiYjdj LzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABfLB6EmW +DlfIRo6unv8gUOJlYhgGylk8UdFJaUu6CrqB96lsUh88BOo055FfoVOndgQfuYx mCuj+jpS/uvvX8GyIpGdTXvYMxSZYDuWU6gBUZD/4wYHjJrGnUJWPUYf3DYBNvHL CcIYB8XrQxUp1nsEiL/I3Xkqq76eELNhmu1s5StlH0kqChQrb+dbwGvoOUx5uGQJ 14slMz3wJBShsGCWsgvnb6crXK8LLmSY3M+TlAlvUZkpSl/ABX+dRpuVTktUuOM2 UC8Nz4SmWPLe9c5ltrJRRDgaxVCB3KWvdunQC5ZWMaThek/+A8bPvJlRHsXehEnB 81b1tbC1icc8Sg== -----END CERTIFICATE-----Generated at Fri Dec 19 06:08:49 2025 by rpki-client