This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft File: dK6PGUm6f0vCM-bCF6hBjKThEys.mft (raw, json) Hash identifier: MrpY9EzpHmYFuOS63KuIPIhr68vtnuTo1xhwcP2fLu0= Subject key identifier: 2F:8D:B1:F6:C7:1B:F2:C0:34:8E:1E:D0:8C:F2:C1:84:FA:97:2A:45 Authority key identifier: 74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B Certificate issuer: /CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b Certificate serial: 019B59765A7C11D2A61D435DA739118902C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft Manifest number: C2 Signing time: Fri 26 Dec 2025 07:01:27 +0000 Manifest this update: Fri 26 Dec 2025 07:01:27 +0000 Manifest next update: Sat 27 Dec 2025 07:01:27 +0000 Files and hashes: 1: dK6PGUm6f0vCM-bCF6hBjKThEys.crl (hash: zgCdzIraMAgVr6HJeAtE9Epzd0Cecn9XNHMTflpurHw=) 2: s5e-ZlSvSg6pPTZMod93h6uXFpI.roa (hash: OsYWmyTzqnpOCUuLjSbv55rjF6rP9l3X0fvalm8CtqY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 07:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:5a:7c:11:d2:a6:1d:43:5d:a7:39:11:89:02:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b Validity Not Before: Dec 26 07:01:27 2025 GMT Not After : Dec 27 07:01:27 2025 GMT Subject: CN=2f8db1f6c71bf2c0348e1ed08cf2c184fa972a45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c5:34:b5:5e:a9:9e:d3:29:de:7f:b5:db:ae: 35:56:71:2b:c9:46:b1:c8:42:9b:51:f3:48:cf:61: 7d:15:84:57:65:43:06:cc:f3:d8:cd:7e:a4:23:9a: ef:63:5b:59:0d:8e:59:49:f9:45:db:72:33:ee:88: c1:bb:fa:1c:9c:1d:22:db:02:c3:65:95:8e:8d:0b: 82:e5:5f:25:cd:96:20:dd:f3:c0:ca:46:e0:57:84: e7:cb:6d:89:36:a7:72:82:8a:40:46:66:7b:23:9f: dc:77:4a:da:c2:5c:1a:51:d9:09:ab:e9:33:b6:90: 12:69:19:85:02:73:58:ee:e2:51:f4:03:3e:5c:4c: eb:d1:63:72:d5:ab:21:f6:80:cf:94:68:45:a9:e4: 0b:ef:20:a3:05:42:48:10:28:96:7b:98:f8:7a:0a: b0:30:43:f3:5a:f0:51:fc:c9:9c:10:1e:2f:c0:73: ae:2a:da:73:be:e5:e8:90:20:06:cf:85:c2:e5:28: 55:ba:b4:15:6a:b4:40:fb:0c:3b:41:f4:67:88:2a: 9c:42:f1:33:7a:00:28:f9:55:c9:09:d9:07:68:3f: 5e:79:eb:f8:54:4c:66:25:09:fa:fd:1c:f7:57:92: 66:dc:21:56:45:10:ec:fd:74:49:3b:4c:3d:f6:0e: 49:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:8D:B1:F6:C7:1B:F2:C0:34:8E:1E:D0:8C:F2:C1:84:FA:97:2A:45 X509v3 Authority Key Identifier: keyid:74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:dc:c8:f5:01:a1:26:d8:61:db:e5:a8:b3:62:71:b7:79:9d: 25:a7:e5:5e:da:cc:b9:c2:58:27:fe:6c:0c:b3:52:1b:bd:78: 30:c7:a9:15:6f:a4:eb:99:d2:ab:d1:9b:2b:78:c1:11:15:46: 91:79:d5:d5:3e:fd:36:83:44:47:39:f1:34:bf:1d:fe:a3:49: a8:16:a2:9b:a9:59:af:93:1a:bc:66:d1:9f:44:28:59:45:ea: e1:2b:14:a6:25:0a:27:3b:42:33:9b:14:b3:66:95:1e:d8:1d: 61:58:5e:32:fd:c3:51:09:2c:4e:49:fb:f7:53:b3:1d:5c:80: f8:06:5a:19:11:2f:6f:b2:4a:5e:0a:70:2c:00:38:37:e4:e1: 74:01:42:9f:30:b2:25:f6:58:d7:99:e2:d4:a9:d5:fc:b6:3a: 64:b4:f6:4a:ec:ab:2e:83:67:02:8d:c6:6f:5c:a9:7a:4e:f9: af:c6:4a:16:ad:f2:16:cc:fa:30:26:d8:a9:42:ae:f0:37:27: 5c:03:95:8a:d1:3f:20:fa:7c:e6:6f:ca:8a:e2:2f:16:9d:ce: 8d:b1:0a:5e:19:1d:0c:03:e8:3e:83:4a:3c:4e:1f:e6:ac:1b: f1:4c:c2:1e:92:f3:78:43:8a:79:2f:71:96:36:cd:9e:9b:7f: 63:ee:cc:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdlp8EdKmHUNdpzkRiQLJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0YWU4ZjE5NDliYTdmNGJjMjMzZTZjMjE3YTg0MThjYTRl MTEzMmIwHhcNMjUxMjI2MDcwMTI3WhcNMjUxMjI3MDcwMTI3WjAzMTEwLwYDVQQD EygyZjhkYjFmNmM3MWJmMmMwMzQ4ZTFlZDA4Y2YyYzE4NGZhOTcyYTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8U0tV6pntMp3n+12641VnEryUax yEKbUfNIz2F9FYRXZUMGzPPYzX6kI5rvY1tZDY5ZSflF23Iz7ojBu/ocnB0i2wLD ZZWOjQuC5V8lzZYg3fPAykbgV4Tny22JNqdygopARmZ7I5/cd0rawlwaUdkJq+kz tpASaRmFAnNY7uJR9AM+XEzr0WNy1ash9oDPlGhFqeQL7yCjBUJIECiWe5j4egqw MEPzWvBR/MmcEB4vwHOuKtpzvuXokCAGz4XC5ShVurQVarRA+ww7QfRniCqcQvEz egAo+VXJCdkHaD9eeev4VExmJQn6/Rz3V5Jm3CFWRRDs/XRJO0w99g5JQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC+NsfbHG/LANI4e0IzywYT6lypFMB8GA1UdIwQY MBaAFHSujxlJun9LwjPmwheoQYyk4RMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEs2UEdVbTZmMHZDTS1iQ0Y2aEJqS1RoRXlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy84NTA3YmUtZThkNC00NWUyLTllYTkt MTUxNGZhZTE1MTA3LzEvZEs2UEdVbTZmMHZDTS1iQ0Y2aEJqS1RoRXlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy84NTA3YmUtZThkNC00NWUyLTllYTktMTUxNGZhZTE1MTA3 LzEvZEs2UEdVbTZmMHZDTS1iQ0Y2aEJqS1RoRXlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAddzI9QGh Jthh2+Wos2Jxt3mdJaflXtrMucJYJ/5sDLNSG714MMepFW+k65nSq9GbK3jBERVG kXnV1T79NoNERznxNL8d/qNJqBaim6lZr5MavGbRn0QoWUXq4SsUpiUKJztCM5sU s2aVHtgdYVheMv3DUQksTkn791OzHVyA+AZaGREvb7JKXgpwLAA4N+ThdAFCnzCy JfZY15ni1KnV/LY6ZLT2SuyrLoNnAo3Gb1ypek75r8ZKFq3yFsz6MCbYqUKu8Dcn XAOVitE/IPp85m/KiuIvFp3OjbEKXhkdDAPoPoNKPE4f5qwb8UzCHpLzeEOKeS9x ljbNnpt/Y+7McA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:05:48 2025 by rpki-client