This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft File: oTRxtQAqTrZJYSXPWHN_Deutrns.mft (raw, json) Hash identifier: AGdW65jIP9auST5qmnXP3lmj4dNz9Y4Gh3JpR0xLHWo= Subject key identifier: D7:EF:B9:46:CD:E0:1F:CB:F1:5D:32:E2:01:0C:F7:BE:88:F7:59:E4 Authority key identifier: A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B Certificate issuer: /CN=a13471b5002a4eb6496125cf58737f0debadae7b Certificate serial: 019B25513D156E58741D4A1E2B25C6E9D5E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft Manifest number: 0701 Signing time: Tue 16 Dec 2025 04:00:39 +0000 Manifest this update: Tue 16 Dec 2025 04:00:39 +0000 Manifest next update: Wed 17 Dec 2025 04:00:39 +0000 Files and hashes: 1: oFklvX9KlU1NM_bVTSTtZ1s8fa8.roa (hash: 4FiRkOjDg+qr7WljZjcDh3AhahDm0psFF2Z877w08JM=) 2: oTRxtQAqTrZJYSXPWHN_Deutrns.crl (hash: UlUqFgScMe1mVuNhrB/DGnMd3mxfuncRgRnlAYA77L4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:51:3d:15:6e:58:74:1d:4a:1e:2b:25:c6:e9:d5:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a13471b5002a4eb6496125cf58737f0debadae7b Validity Not Before: Dec 16 04:00:39 2025 GMT Not After : Dec 17 04:00:39 2025 GMT Subject: CN=d7efb946cde01fcbf15d32e2010cf7be88f759e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2b:79:7b:07:69:55:6d:9b:cd:0c:5a:5a:62: 1a:4a:d7:16:46:3a:7f:a1:2e:27:08:be:b0:00:45: 8d:69:d8:bd:2a:15:a9:bb:af:a4:6d:ee:1b:ce:83: 02:98:5c:69:b0:39:41:aa:7e:00:6f:88:ac:f2:23: 22:da:4e:cd:d3:92:37:58:d2:0c:23:f4:c0:7b:5f: 5e:f9:b3:12:19:13:78:fd:4d:1c:dd:f3:b7:61:f9: 71:6d:52:7d:47:67:0b:da:02:27:83:e7:1e:31:30: bb:14:95:eb:07:e3:43:3c:20:01:da:fa:bd:6f:0c: 11:94:34:1a:74:04:0c:c5:38:af:fc:bf:b6:6d:40: ba:ad:fd:33:e3:be:80:3e:ce:22:12:4c:df:6d:8e: 9c:c6:c3:98:b8:2c:36:6a:b7:42:87:f1:5f:13:aa: 55:a8:4c:6f:29:15:1b:07:c2:e0:67:cf:1a:4b:46: f9:91:51:24:57:54:f6:68:ff:3a:57:9b:c6:83:72: cb:8b:7d:66:78:73:e5:92:59:80:ce:e3:3b:d5:30: bc:08:5f:a6:03:dc:0a:e6:97:21:eb:c9:d6:41:19: d9:3d:fd:68:35:6e:0e:0e:78:49:05:17:f1:05:db: 4c:95:34:48:33:d8:7d:73:5c:b5:e9:0c:7c:d1:e3: 20:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:EF:B9:46:CD:E0:1F:CB:F1:5D:32:E2:01:0C:F7:BE:88:F7:59:E4 X509v3 Authority Key Identifier: keyid:A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:30:19:3f:62:4e:19:a1:77:11:59:f7:ac:e4:83:a9:0d:f0: c0:0c:02:72:49:f0:09:b9:78:d1:57:bc:a6:41:7e:d4:0e:0c: 00:1b:46:4c:fb:12:8d:0b:83:60:ce:ed:50:8b:41:61:d8:81: c1:1e:20:63:68:43:45:9d:38:6c:bf:db:4b:bc:2c:22:07:d0: 9d:3a:a4:2a:d0:70:f7:43:67:04:ba:f5:66:b3:e3:11:53:92: c7:6f:f2:e7:ae:c7:b9:ee:7c:a6:5b:11:0b:79:4a:00:ea:a0: de:f0:8b:06:8a:ef:4f:77:47:35:d9:41:79:ae:db:21:1b:11: c2:56:78:61:0c:0f:a5:36:d2:85:79:a8:99:f1:d9:af:cc:ff: 58:b3:ad:5c:08:22:2d:c4:10:d7:52:d3:94:de:f6:83:32:3c: f5:87:c7:3f:a9:fd:3d:31:4f:24:56:2e:8e:b7:38:64:3d:04: 83:c0:2f:d2:f5:47:6a:78:e7:1f:78:60:13:47:bb:17:ca:bb: 14:ec:8f:40:68:25:16:5a:fb:2c:ff:13:62:cf:7f:0d:55:ce: ca:4b:ec:13:b3:c8:9e:2c:c0:bd:da:ea:2b:08:8a:66:d3:ec: 5f:49:34:fa:a1:1c:86:a8:d4:0a:78:2f:f9:fa:0c:32:fd:ce: 66:10:b9:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslUT0Vblh0HUoeKyXG6dXoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMzQ3MWI1MDAyYTRlYjY0OTYxMjVjZjU4NzM3ZjBkZWJh ZGFlN2IwHhcNMjUxMjE2MDQwMDM5WhcNMjUxMjE3MDQwMDM5WjAzMTEwLwYDVQQD EyhkN2VmYjk0NmNkZTAxZmNiZjE1ZDMyZTIwMTBjZjdiZTg4Zjc1OWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySt5ewdpVW2bzQxaWmIaStcWRjp/ oS4nCL6wAEWNadi9KhWpu6+kbe4bzoMCmFxpsDlBqn4Ab4is8iMi2k7N05I3WNIM I/TAe19e+bMSGRN4/U0c3fO3YflxbVJ9R2cL2gIng+ceMTC7FJXrB+NDPCAB2vq9 bwwRlDQadAQMxTiv/L+2bUC6rf0z476APs4iEkzfbY6cxsOYuCw2ardCh/FfE6pV qExvKRUbB8LgZ88aS0b5kVEkV1T2aP86V5vGg3LLi31meHPlklmAzuM71TC8CF+m A9wK5pch68nWQRnZPf1oNW4ODnhJBRfxBdtMlTRIM9h9c1y16Qx80eMgOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNfvuUbN4B/L8V0y4gEM976I91nkMB8GA1UdIwQY MBaAFKE0cbUAKk62SWElz1hzfw3rra57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1RSeHRRQXFUclpKWVNYUFdITl9EZXV0cm5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9kOWU4N2ItNDUwYS00MTUyLWEyNDIt ZDY5MTBiMjFhYjQyLzEvb1RSeHRRQXFUclpKWVNYUFdITl9EZXV0cm5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC9kOWU4N2ItNDUwYS00MTUyLWEyNDItZDY5MTBiMjFhYjQy LzEvb1RSeHRRQXFUclpKWVNYUFdITl9EZXV0cm5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPzAZP2JO GaF3EVn3rOSDqQ3wwAwCcknwCbl40Ve8pkF+1A4MABtGTPsSjQuDYM7tUItBYdiB wR4gY2hDRZ04bL/bS7wsIgfQnTqkKtBw90NnBLr1ZrPjEVOSx2/y567Hue58plsR C3lKAOqg3vCLBorvT3dHNdlBea7bIRsRwlZ4YQwPpTbShXmomfHZr8z/WLOtXAgi LcQQ11LTlN72gzI89YfHP6n9PTFPJFYujrc4ZD0Eg8Av0vVHanjnH3hgE0e7F8q7 FOyPQGglFlr7LP8TYs9/DVXOykvsE7PInizAvdrqKwiKZtPsX0k0+qEchqjUCngv +foMMv3OZhC5+Q== -----END CERTIFICATE-----Generated at Tue Dec 16 06:25:05 2025 by rpki-client