This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft File: dThqb64eVfV2pAW9dLfwjnpsRlM.mft (raw, json) Hash identifier: fV3314AKnCKuKG1Dhils/ZWe4ypAi7Nu+tXJyRoeS+I= Subject key identifier: BF:C6:B7:2E:2F:54:23:6A:F8:EC:EF:A0:B3:98:C9:E8:89:56:9C:39 Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53 Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653 Certificate serial: 019B12A665DD3353740867782BD5014614DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft Manifest number: 0A1F Signing time: Fri 12 Dec 2025 13:00:53 +0000 Manifest this update: Fri 12 Dec 2025 13:00:53 +0000 Manifest next update: Sat 13 Dec 2025 13:00:53 +0000 Files and hashes: 1: RbCZ4FuBiM5bQVW3sP5PrxSE_ic.roa (hash: heyjJE1M941WJSvHrhTQkBoLwbj5RIQs9kFiPjSVnUw=) 2: VgQVNXTLznzmHsP79v3Zsr2IWwU.roa (hash: V8Zv8ak7cEH62i1TGjfWmCMowy8kun9bTSlwi87+E9s=) 3: dThqb64eVfV2pAW9dLfwjnpsRlM.crl (hash: 0RTghA47KvwJY+f1UovbiuaDjKuP4qkI468kfewaSBU=) 4: rgad5_QrqjzIqPuzW_IRWvVFFb4.roa (hash: CW37KfuVvlCtejt5YGCTadY3jiqhfL5iQfoIqu008Bo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 13:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:a6:65:dd:33:53:74:08:67:78:2b:d5:01:46:14:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653 Validity Not Before: Dec 12 13:00:53 2025 GMT Not After : Dec 13 13:00:53 2025 GMT Subject: CN=bfc6b72e2f54236af8ecefa0b398c9e889569c39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:89:fe:59:d0:8a:91:7f:6a:21:43:5f:b4:81: 90:90:51:b9:74:7a:91:f3:7b:dd:c3:79:99:d6:08: 39:c6:ab:64:a0:5f:77:14:97:b7:78:2e:3c:13:48: 8b:78:67:9f:ae:85:23:51:fc:cd:42:93:d5:c7:5f: 54:4c:aa:14:0a:45:6f:f2:27:48:03:f3:e1:d1:80: 4b:ba:65:8f:63:57:c8:b4:31:95:ec:3f:dd:eb:9b: 05:fd:82:b5:8f:a0:39:28:80:e2:16:c0:31:43:16: 28:46:1d:fe:28:48:6e:5f:47:ea:2d:5f:23:51:36: 54:04:f0:fc:3c:1a:5f:f3:b2:be:a2:e3:b6:68:82: b6:ce:db:b2:83:f4:82:3d:09:56:d6:e8:e7:c4:1f: ce:e3:8a:0b:4f:94:8a:62:f9:2f:d8:61:d7:a7:9f: fb:22:41:77:6d:cb:c7:94:8b:54:be:82:bd:13:8c: 97:79:2f:47:87:02:48:f1:ef:bf:b2:e2:39:a4:95: 0f:3e:3f:8b:04:86:f6:fb:b9:61:ee:d7:24:d1:31: 00:f6:dc:e9:2a:8d:13:09:15:96:11:7b:c8:5a:bc: 95:0a:51:05:26:58:12:d2:97:4e:44:4f:4e:b2:de: db:5c:ee:e4:a6:bf:e8:7c:b8:63:f0:71:03:c5:df: ea:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C6:B7:2E:2F:54:23:6A:F8:EC:EF:A0:B3:98:C9:E8:89:56:9C:39 X509v3 Authority Key Identifier: keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:0e:1d:06:16:72:7e:24:3b:b9:bf:41:12:99:ab:a7:15:9b: fe:f6:2f:f8:63:d4:d4:80:c9:0b:58:e9:6a:b7:88:61:a6:a1: 1d:c3:38:29:5f:34:bb:e4:98:eb:50:aa:bf:1e:7a:2b:9d:73: 51:35:37:67:67:99:c7:6a:c6:1b:bf:39:e1:c6:2d:0d:62:49: 76:cf:38:6e:61:65:7d:af:d6:a0:37:f5:ca:75:7c:0b:c4:08: dc:df:56:34:15:fa:50:8c:31:ab:ee:a8:52:29:d6:bc:0c:ec: a3:cb:da:63:11:cd:f1:11:f2:56:ce:17:20:c5:e9:5a:41:a9: 4d:ee:ca:fa:53:02:ef:e9:d5:97:2d:67:c9:fc:e8:66:03:7a: 48:fd:7d:e1:67:20:36:4b:7d:8f:8e:a3:fc:49:cd:f0:4d:c2: 1d:9b:94:39:10:41:e2:6e:51:d6:9e:07:53:73:6f:5e:56:d9: 0d:b8:1d:3a:21:26:cc:82:02:9b:7b:a4:84:87:15:6e:4f:c3: b0:ae:45:93:b2:e5:21:60:64:2b:dc:67:66:e9:a6:e0:7f:b3: ea:cf:49:9f:ca:09:86:3b:cd:72:71:70:af:1e:86:65:e0:f0: b1:49:35:b9:88:a1:4b:94:5c:5c:bf:1d:de:b8:4d:43:68:e2: 11:84:5c:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSpmXdM1N0CGd4K9UBRhTeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1Mzg2YTZmYWUxZTU1ZjU3NmE0MDViZDc0YjdmMDhlN2E2 YzQ2NTMwHhcNMjUxMjEyMTMwMDUzWhcNMjUxMjEzMTMwMDUzWjAzMTEwLwYDVQQD EyhiZmM2YjcyZTJmNTQyMzZhZjhlY2VmYTBiMzk4YzllODg5NTY5YzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIn+WdCKkX9qIUNftIGQkFG5dHqR 83vdw3mZ1gg5xqtkoF93FJe3eC48E0iLeGefroUjUfzNQpPVx19UTKoUCkVv8idI A/Ph0YBLumWPY1fItDGV7D/d65sF/YK1j6A5KIDiFsAxQxYoRh3+KEhuX0fqLV8j UTZUBPD8PBpf87K+ouO2aIK2ztuyg/SCPQlW1ujnxB/O44oLT5SKYvkv2GHXp5/7 IkF3bcvHlItUvoK9E4yXeS9HhwJI8e+/suI5pJUPPj+LBIb2+7lh7tck0TEA9tzp Ko0TCRWWEXvIWryVClEFJlgS0pdORE9Ost7bXO7kpr/ofLhj8HEDxd/qeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/Gty4vVCNq+OzvoLOYyeiJVpw5MB8GA1UdIwQY MBaAFHU4am+uHlX1dqQFvXS38I56bEZTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEt Zjg3OTJmNTc3YjlhLzEvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEtZjg3OTJmNTc3Yjlh LzEvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIA4dBhZy fiQ7ub9BEpmrpxWb/vYv+GPU1IDJC1jpareIYaahHcM4KV80u+SY61Cqvx56K51z UTU3Z2eZx2rGG7854cYtDWJJds84bmFlfa/WoDf1ynV8C8QI3N9WNBX6UIwxq+6o UinWvAzso8vaYxHN8RHyVs4XIMXpWkGpTe7K+lMC7+nVly1nyfzoZgN6SP194Wcg Nkt9j46j/EnN8E3CHZuUORBB4m5R1p4HU3NvXlbZDbgdOiEmzIICm3ukhIcVbk/D sK5Fk7LlIWBkK9xnZumm4H+z6s9Jn8oJhjvNcnFwrx6GZeDwsUk1uYihS5RcXL8d 3rhNQ2jiEYRciQ== -----END CERTIFICATE-----Generated at Fri Dec 12 19:28:40 2025 by rpki-client