This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft File: D3Tlry-nIVykabJ8EHnx_9X8rvg.mft (raw, json) Hash identifier: fWwdA2cENm9aJHSTWtBYkxXTHtB0pDD553sOrgL2hm0= Subject key identifier: 0B:8A:9B:E1:D2:6F:90:0C:9E:86:AF:35:FC:61:B8:C2:0E:42:E8:93 Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8 Certificate issuer: /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8 Certificate serial: 019B37208CFE189FBBFB1BD3075F41E8D0A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft Manifest number: 0614 Signing time: Fri 19 Dec 2025 15:00:38 +0000 Manifest this update: Fri 19 Dec 2025 15:00:38 +0000 Manifest next update: Sat 20 Dec 2025 15:00:38 +0000 Files and hashes: 1: D3Tlry-nIVykabJ8EHnx_9X8rvg.crl (hash: 6K8fgRwH19jqf3iGhOu6cvysq5wyNQesqzNCvREpPIs=) 2: VDPfxaZNYgN6f0mgtDD2wmc6NUg.roa (hash: 0dxJ0L7unUdYddqR9bLGYECF59D15vEhelIex1V/ecQ=) 3: sllzpkHFh9mOLjlCML4tbQK0pwU.roa (hash: E6feljoCdpMR0hz/J2bpGEFeQDlLz1z/a780M0tQTGM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 15:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:20:8c:fe:18:9f:bb:fb:1b:d3:07:5f:41:e8:d0:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8 Validity Not Before: Dec 19 15:00:38 2025 GMT Not After : Dec 20 15:00:38 2025 GMT Subject: CN=0b8a9be1d26f900c9e86af35fc61b8c20e42e893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4d:5a:9f:d0:e8:ce:87:c3:9b:62:d5:de:74: 32:f2:64:8a:94:5a:bc:85:a8:41:2b:eb:36:6c:ad: 7f:0d:41:76:a0:a4:23:3c:6d:17:35:9a:90:b1:35: 9b:ce:3d:8c:e0:ae:02:5d:02:73:e6:fd:bb:02:1c: ea:9c:68:8b:e6:ad:c7:87:2e:4d:1b:56:6d:14:14: 64:fd:f0:2f:06:a4:3d:ad:6d:cb:b2:f5:22:b6:7b: 9e:ef:4c:32:6c:1a:ed:1f:d5:b3:0a:7f:fb:73:20: 33:8e:7b:7e:d9:08:a0:ea:2c:9a:e0:69:0e:ca:5d: c5:05:2c:95:c4:1f:9b:2d:fa:22:83:dc:97:01:5d: 13:65:b8:7a:20:fd:06:01:1a:2c:79:7e:0c:01:32: b7:87:29:12:1e:78:e4:83:c3:93:d3:d3:7b:31:23: 40:61:e6:5a:0c:f9:a1:37:2f:8f:e1:42:0f:84:1a: 37:ee:49:c2:92:2f:0c:eb:d8:3f:63:4a:f9:e6:54: f6:69:3e:6b:cd:06:c6:9b:02:32:8d:1e:35:ba:f4: e5:94:40:fb:4c:08:c8:78:a2:57:bc:f2:f7:6b:77: 0f:cb:31:e2:b1:99:68:e9:8a:ab:86:3f:a7:14:a3: 19:1f:10:89:e8:9c:03:3a:7f:bf:3e:e6:7d:81:a6: a3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:8A:9B:E1:D2:6F:90:0C:9E:86:AF:35:FC:61:B8:C2:0E:42:E8:93 X509v3 Authority Key Identifier: keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:05:62:75:aa:72:5c:20:4b:ef:64:32:2c:90:e2:ac:9b:f1: 5c:e3:ce:ab:fd:b5:c4:77:77:05:90:00:b5:4e:45:be:fa:3c: 8b:06:1d:fa:15:54:ae:d7:77:3c:1d:48:c8:b0:ce:e6:ed:fb: 75:cc:f1:6d:bb:ac:7b:5c:66:63:e9:b4:7c:c2:48:4f:96:bd: c8:27:a8:df:d2:7d:02:a2:c8:46:ac:0d:d7:52:e2:5a:a7:be: f0:b5:37:86:86:7a:8f:14:e5:64:12:b4:d3:73:a7:6e:99:5e: 7d:3b:ee:b4:6f:45:d9:87:d9:ff:64:a3:ff:6b:09:ad:93:bf: 50:bc:b9:bf:bc:4e:42:0a:01:ba:ce:06:b4:9d:db:cc:db:f1: 9f:18:1d:41:b4:4d:c2:6d:46:de:0d:6d:f1:75:2f:92:a0:40: 81:cf:56:61:bc:5d:41:17:34:95:a4:7d:ef:25:9b:72:8b:ba: 59:60:9f:41:3c:2b:38:1f:d0:16:d5:42:ab:62:95:18:21:fe: 23:1e:2e:88:44:71:e2:bc:cb:80:36:50:68:f2:d8:51:cc:17: 0a:ab:56:c0:35:1d:f8:d4:04:c2:7f:18:99:e1:6c:cb:67:33: 99:3b:1a:7c:56:98:5d:7d:8e:3c:9a:f8:b3:ea:35:51:51:6b: 46:84:db:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3IIz+GJ+7+xvTB19B6NCjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNzRlNWFmMmZhNzIxNWNhNDY5YjI3YzEwNzlmMWZmZDVm Y2FlZjgwHhcNMjUxMjE5MTUwMDM4WhcNMjUxMjIwMTUwMDM4WjAzMTEwLwYDVQQD EygwYjhhOWJlMWQyNmY5MDBjOWU4NmFmMzVmYzYxYjhjMjBlNDJlODkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv01an9DozofDm2LV3nQy8mSKlFq8 hahBK+s2bK1/DUF2oKQjPG0XNZqQsTWbzj2M4K4CXQJz5v27AhzqnGiL5q3Hhy5N G1ZtFBRk/fAvBqQ9rW3LsvUitnue70wybBrtH9WzCn/7cyAzjnt+2Qig6iya4GkO yl3FBSyVxB+bLfoig9yXAV0TZbh6IP0GARoseX4MATK3hykSHnjkg8OT09N7MSNA YeZaDPmhNy+P4UIPhBo37knCki8M69g/Y0r55lT2aT5rzQbGmwIyjR41uvTllED7 TAjIeKJXvPL3a3cPyzHisZlo6Yqrhj+nFKMZHxCJ6JwDOn+/PuZ9gaajNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAuKm+HSb5AMnoavNfxhuMIOQuiTMB8GA1UdIwQY MBaAFA905a8vpyFcpGmyfBB58f/V/K74MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDNUbHJ5LW5JVnlrYWJKOEVIbnhfOVg4cnZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC80OWFjZTgtMjkxZC00ZDRmLTkyMmUt ZWFiY2JjMDgzZjliLzEvRDNUbHJ5LW5JVnlrYWJKOEVIbnhfOVg4cnZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC80OWFjZTgtMjkxZC00ZDRmLTkyMmUtZWFiY2JjMDgzZjli LzEvRDNUbHJ5LW5JVnlrYWJKOEVIbnhfOVg4cnZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdgVidapy XCBL72QyLJDirJvxXOPOq/21xHd3BZAAtU5Fvvo8iwYd+hVUrtd3PB1IyLDO5u37 dczxbbuse1xmY+m0fMJIT5a9yCeo39J9AqLIRqwN11LiWqe+8LU3hoZ6jxTlZBK0 03OnbplefTvutG9F2YfZ/2Sj/2sJrZO/ULy5v7xOQgoBus4GtJ3bzNvxnxgdQbRN wm1G3g1t8XUvkqBAgc9WYbxdQRc0laR97yWbcou6WWCfQTwrOB/QFtVCq2KVGCH+ Ix4uiERx4rzLgDZQaPLYUcwXCqtWwDUd+NQEwn8YmeFsy2czmTsafFaYXX2OPJr4 s+o1UVFrRoTbVA== -----END CERTIFICATE-----Generated at Fri Dec 19 22:10:08 2025 by rpki-client