This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft File: D3Tlry-nIVykabJ8EHnx_9X8rvg.mft (raw, json) Hash identifier: 0ZI3zAxzIk/kisoaW2j7+DCC2D5yh1kIdxGfgOml8qk= Subject key identifier: CA:56:EC:68:34:BF:A9:AC:0D:9C:31:79:5F:68:C4:94:19:F9:E6:30 Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8 Certificate issuer: /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8 Certificate serial: 019B23D0AF96FD6C7E25C0BC582E86D8A32F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft Manifest number: 060A Signing time: Mon 15 Dec 2025 21:00:37 +0000 Manifest this update: Mon 15 Dec 2025 21:00:37 +0000 Manifest next update: Tue 16 Dec 2025 21:00:37 +0000 Files and hashes: 1: D3Tlry-nIVykabJ8EHnx_9X8rvg.crl (hash: EQO+SaFQMEQVQqBV1/s0oauux6VojBCoB+ALc4dmblA=) 2: VDPfxaZNYgN6f0mgtDD2wmc6NUg.roa (hash: 0dxJ0L7unUdYddqR9bLGYECF59D15vEhelIex1V/ecQ=) 3: sllzpkHFh9mOLjlCML4tbQK0pwU.roa (hash: E6feljoCdpMR0hz/J2bpGEFeQDlLz1z/a780M0tQTGM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 21:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:d0:af:96:fd:6c:7e:25:c0:bc:58:2e:86:d8:a3:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8 Validity Not Before: Dec 15 21:00:37 2025 GMT Not After : Dec 16 21:00:37 2025 GMT Subject: CN=ca56ec6834bfa9ac0d9c31795f68c49419f9e630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:43:15:fa:88:d5:18:99:bc:e2:2b:4e:4e:ea: 4f:16:f5:0a:d4:1c:92:60:47:0b:1a:3e:7d:4f:07: 05:95:5f:67:07:38:e0:e6:2a:65:a4:e3:8d:9a:ed: 39:b7:e4:4a:e5:48:1b:89:f5:dc:e5:8c:3c:c3:a8: 76:5e:5b:86:a8:09:5d:ce:0d:79:49:f3:3e:0c:1c: 95:d4:5b:68:87:a5:59:3d:cc:c1:8d:88:52:a2:b3: 0f:68:ea:7f:83:a7:b9:d3:9b:68:89:21:9a:d7:11: fd:34:04:0b:16:67:a4:fb:24:88:dc:3e:18:5a:74: 2c:c5:37:d6:61:4f:8f:13:8d:33:be:27:13:3b:16: dd:2d:af:b8:f1:05:68:2c:ae:9b:25:4c:2a:7a:28: 98:ee:9e:68:31:5e:5d:51:77:89:d5:eb:86:5b:ec: 3c:6a:a7:31:e5:61:bb:10:75:4e:40:ad:00:de:ea: 80:44:1f:b2:bd:66:f3:3c:a5:fd:83:35:ae:13:d2: 1d:98:9a:b2:33:06:a8:cb:b5:13:3d:bc:69:eb:a8: 86:85:eb:04:ea:99:b4:91:36:0f:c4:04:92:d2:81: e7:33:af:34:03:42:bf:1b:78:e0:0b:11:1c:5e:0e: 93:a7:b0:61:0c:11:08:a3:5c:fc:fa:ed:68:b1:00: 26:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:56:EC:68:34:BF:A9:AC:0D:9C:31:79:5F:68:C4:94:19:F9:E6:30 X509v3 Authority Key Identifier: keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:3f:50:47:54:e4:25:54:ed:5c:de:7a:8e:11:33:71:e0:ab: 0e:89:f0:ac:e9:90:b8:a0:a6:f7:f5:c5:c2:d8:36:eb:53:14: c8:bf:b1:6d:23:46:a8:c2:25:3f:fc:05:f3:3e:41:65:d9:18: 17:99:3e:21:be:f5:c0:29:56:a9:bb:3a:8a:d1:2d:9d:89:2b: 76:4d:bc:66:5d:81:46:38:d8:c3:02:cb:f0:31:c9:95:bf:5c: fd:5c:df:71:ff:e4:02:a0:4e:5e:c1:4d:c6:ae:db:bb:df:9c: d5:3f:73:8c:33:95:a2:52:40:ea:ce:1d:39:f9:97:98:55:62: 92:35:7e:c5:a1:18:e8:ac:61:b5:69:0a:02:73:62:93:2b:2c: bf:62:e8:43:5b:b3:e9:d0:0f:cf:c8:e0:bf:9e:ef:06:76:dd: a6:67:e6:04:6b:ca:85:79:d5:91:1d:7b:0a:8b:2d:a8:aa:09: b5:b6:f1:b9:0c:71:e1:87:42:5f:74:07:8d:99:fb:b5:96:96: 65:5f:9d:88:91:a7:a5:98:c5:17:df:0e:98:e6:e6:51:4c:53: 34:a8:c8:15:86:0f:c9:17:b5:11:5b:2e:63:de:7d:2d:99:b9: d6:83:06:90:16:1e:b7:75:30:d1:04:55:e8:bf:63:72:4e:d8: 01:ba:15:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsj0K+W/Wx+JcC8WC6G2KMvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNzRlNWFmMmZhNzIxNWNhNDY5YjI3YzEwNzlmMWZmZDVm Y2FlZjgwHhcNMjUxMjE1MjEwMDM3WhcNMjUxMjE2MjEwMDM3WjAzMTEwLwYDVQQD EyhjYTU2ZWM2ODM0YmZhOWFjMGQ5YzMxNzk1ZjY4YzQ5NDE5ZjllNjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEMV+ojVGJm84itOTupPFvUK1ByS YEcLGj59TwcFlV9nBzjg5iplpOONmu05t+RK5UgbifXc5Yw8w6h2XluGqAldzg15 SfM+DByV1Ftoh6VZPczBjYhSorMPaOp/g6e505toiSGa1xH9NAQLFmek+ySI3D4Y WnQsxTfWYU+PE40zvicTOxbdLa+48QVoLK6bJUwqeiiY7p5oMV5dUXeJ1euGW+w8 aqcx5WG7EHVOQK0A3uqARB+yvWbzPKX9gzWuE9IdmJqyMwaoy7UTPbxp66iGhesE 6pm0kTYPxASS0oHnM680A0K/G3jgCxEcXg6Tp7BhDBEIo1z8+u1osQAmXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMpW7Gg0v6msDZwxeV9oxJQZ+eYwMB8GA1UdIwQY MBaAFA905a8vpyFcpGmyfBB58f/V/K74MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDNUbHJ5LW5JVnlrYWJKOEVIbnhfOVg4cnZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC80OWFjZTgtMjkxZC00ZDRmLTkyMmUt ZWFiY2JjMDgzZjliLzEvRDNUbHJ5LW5JVnlrYWJKOEVIbnhfOVg4cnZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC80OWFjZTgtMjkxZC00ZDRmLTkyMmUtZWFiY2JjMDgzZjli LzEvRDNUbHJ5LW5JVnlrYWJKOEVIbnhfOVg4cnZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdD9QR1Tk JVTtXN56jhEzceCrDonwrOmQuKCm9/XFwtg261MUyL+xbSNGqMIlP/wF8z5BZdkY F5k+Ib71wClWqbs6itEtnYkrdk28Zl2BRjjYwwLL8DHJlb9c/Vzfcf/kAqBOXsFN xq7bu9+c1T9zjDOVolJA6s4dOfmXmFVikjV+xaEY6KxhtWkKAnNikyssv2LoQ1uz 6dAPz8jgv57vBnbdpmfmBGvKhXnVkR17CostqKoJtbbxuQxx4YdCX3QHjZn7tZaW ZV+diJGnpZjFF98OmObmUUxTNKjIFYYPyRe1EVsuY959LZm51oMGkBYet3Uw0QRV 6L9jck7YAboV0Q== -----END CERTIFICATE-----Generated at Tue Dec 16 04:45:17 2025 by rpki-client