This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft File: dHWiyViPxpXSdUKD3NPRI9H3eBE.mft (raw, json) Hash identifier: jZI222tG7XZSkWpSviQcmurLpZIFSnbPlUl8XKRSEZI= Subject key identifier: E7:FD:87:0E:FD:6C:34:7E:35:3C:A7:BB:18:04:41:BA:F1:0D:26:C0 Authority key identifier: 74:75:A2:C9:58:8F:C6:95:D2:75:42:83:DC:D3:D1:23:D1:F7:78:11 Certificate issuer: /CN=7475a2c9588fc695d2754283dcd3d123d1f77811 Certificate serial: 019B281BEBC8E5C9574FB92CDAFDB320A3B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft Manifest number: 177E Signing time: Tue 16 Dec 2025 17:01:17 +0000 Manifest this update: Tue 16 Dec 2025 17:01:17 +0000 Manifest next update: Wed 17 Dec 2025 17:01:17 +0000 Files and hashes: 1: byfAz36QPO1zWRGDAvBxGCJUgUc.roa (hash: cj5k9JTRqENUIcOxIhQN0l2jcQzpbWQBrAEBDWIt2vI=) 2: dHWiyViPxpXSdUKD3NPRI9H3eBE.crl (hash: EA01AgijiI0Qbbo5xbLsjERnFzDb01skeVUjUZkoVY8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:28:1b:eb:c8:e5:c9:57:4f:b9:2c:da:fd:b3:20:a3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7475a2c9588fc695d2754283dcd3d123d1f77811 Validity Not Before: Dec 16 17:01:17 2025 GMT Not After : Dec 17 17:01:17 2025 GMT Subject: CN=e7fd870efd6c347e353ca7bb180441baf10d26c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:91:bb:b0:74:1f:00:a0:55:5e:28:34:8e:ed: 2f:c5:18:f6:0c:cd:35:60:4a:9e:b3:e0:44:11:08: d6:94:0f:04:08:ff:59:e1:ef:df:3b:91:d9:28:08: e1:26:4e:75:58:58:a9:f5:e4:86:7e:a6:bd:36:89: d9:a5:46:f6:58:f5:30:d4:c9:c1:ed:82:98:dd:9d: 26:f6:ba:3b:aa:c6:27:0a:77:8c:8d:4f:d6:6b:a6: c8:09:6f:fd:af:03:4e:e9:40:fb:10:42:99:36:80: 47:f2:7c:ea:a8:88:a7:f3:73:e9:c9:64:b1:16:18: 55:af:2c:ec:d0:a6:7c:ec:84:d6:4a:2c:7b:7f:18: 4e:71:cf:7a:ef:8b:2a:01:17:85:e0:0d:59:2f:e9: 47:0c:b6:fd:c7:38:4d:e6:d2:36:09:19:3d:b1:5d: a6:f2:91:98:1b:3d:25:cd:59:5d:8d:79:6f:07:8c: b7:6a:59:a0:5a:38:93:5e:4f:c4:d1:80:28:f6:1a: 79:a2:af:33:ae:63:93:de:ee:af:94:f3:95:b4:7e: 51:ac:4f:4d:21:ff:39:10:dd:b7:7c:99:00:13:ca: d3:33:e7:66:da:53:5e:d9:b5:6e:bf:fd:f6:7e:af: 88:97:cf:79:b1:a1:1a:90:c7:3d:0f:39:d2:20:4b: 1e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FD:87:0E:FD:6C:34:7E:35:3C:A7:BB:18:04:41:BA:F1:0D:26:C0 X509v3 Authority Key Identifier: keyid:74:75:A2:C9:58:8F:C6:95:D2:75:42:83:DC:D3:D1:23:D1:F7:78:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:9b:c7:87:24:8c:0a:8d:74:58:4c:39:58:04:40:d3:83:58: 93:41:4d:3f:71:08:4b:86:a8:c3:44:34:e7:a0:47:53:3f:22: 54:fe:eb:99:e2:51:d5:62:79:82:2a:8b:88:a4:5e:3a:49:c2: fd:05:6a:bf:42:55:00:3c:39:ef:ab:cb:da:9f:64:73:f6:f9: 14:bf:82:13:2e:64:94:1f:8e:d7:65:ce:26:6d:f5:14:69:15: da:0e:72:ae:13:be:4d:1e:d2:5b:d8:af:06:ab:18:30:58:61: 2e:c6:ea:6d:9f:42:2e:22:43:4c:e2:64:51:84:57:67:29:a2: d4:e8:7d:aa:78:fd:1e:f8:79:94:94:c0:ac:b5:16:39:35:1f: 67:f8:79:ca:84:5b:ee:eb:4e:0c:08:b1:40:83:99:18:bd:e5: dc:12:8e:24:c5:9d:f4:3f:37:76:71:30:64:35:93:c9:7f:e1: fa:c9:46:3c:47:a8:b4:66:5d:c0:c0:f2:a6:00:54:01:04:f9: 4f:0b:b5:c8:29:e1:d2:73:9f:66:2b:be:43:ab:11:32:c9:2e: b4:bd:e1:e4:64:1d:1f:b4:f0:0f:a3:e5:87:d5:f2:dd:0f:b8: 74:57:e1:f0:20:67:69:d4:ee:e7:7b:fe:74:0f:35:66:0b:b7: 0d:2b:bc:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsoG+vI5clXT7ks2v2zIKOyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0NzVhMmM5NTg4ZmM2OTVkMjc1NDI4M2RjZDNkMTIzZDFm Nzc4MTEwHhcNMjUxMjE2MTcwMTE3WhcNMjUxMjE3MTcwMTE3WjAzMTEwLwYDVQQD EyhlN2ZkODcwZWZkNmMzNDdlMzUzY2E3YmIxODA0NDFiYWYxMGQyNmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZG7sHQfAKBVXig0ju0vxRj2DM01 YEqes+BEEQjWlA8ECP9Z4e/fO5HZKAjhJk51WFip9eSGfqa9NonZpUb2WPUw1MnB 7YKY3Z0m9ro7qsYnCneMjU/Wa6bICW/9rwNO6UD7EEKZNoBH8nzqqIin83PpyWSx FhhVryzs0KZ87ITWSix7fxhOcc9674sqAReF4A1ZL+lHDLb9xzhN5tI2CRk9sV2m 8pGYGz0lzVldjXlvB4y3almgWjiTXk/E0YAo9hp5oq8zrmOT3u6vlPOVtH5RrE9N If85EN23fJkAE8rTM+dm2lNe2bVuv/32fq+Il895saEakMc9DznSIEsewQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOf9hw79bDR+NTynuxgEQbrxDSbAMB8GA1UdIwQY MBaAFHR1oslYj8aV0nVCg9zT0SPR93gRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEhXaXlWaVB4cFhTZFVLRDNOUFJJOUgzZUJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8yODk4ZTYtMGQ3OS00NTRlLWFiNTQt NDBiZTBjNDYzYjkwLzEvZEhXaXlWaVB4cFhTZFVLRDNOUFJJOUgzZUJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8yODk4ZTYtMGQ3OS00NTRlLWFiNTQtNDBiZTBjNDYzYjkw LzEvZEhXaXlWaVB4cFhTZFVLRDNOUFJJOUgzZUJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQZvHhySM Co10WEw5WARA04NYk0FNP3EIS4aow0Q056BHUz8iVP7rmeJR1WJ5giqLiKReOknC /QVqv0JVADw576vL2p9kc/b5FL+CEy5klB+O12XOJm31FGkV2g5yrhO+TR7SW9iv BqsYMFhhLsbqbZ9CLiJDTOJkUYRXZymi1Oh9qnj9Hvh5lJTArLUWOTUfZ/h5yoRb 7utODAixQIOZGL3l3BKOJMWd9D83dnEwZDWTyX/h+slGPEeotGZdwMDypgBUAQT5 Twu1yCnh0nOfZiu+Q6sRMskutL3h5GQdH7TwD6Plh9Xy3Q+4dFfh8CBnadTu53v+ dA81Zgu3DSu8ow== -----END CERTIFICATE-----Generated at Tue Dec 16 20:01:43 2025 by rpki-client