This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft File: PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json) Hash identifier: qbAjbyiitdd4Bsdg/fOU7g0t14UzF+2vmBMz3IPcvfA= Subject key identifier: 41:30:BB:A8:14:5F:5C:11:04:C4:E2:E0:CA:9F:9D:20:D5:6E:28:1B Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24 Certificate issuer: /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224 Certificate serial: 019B35326587F684DA8D09D77C8EF8A898A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft Manifest number: 15A5 Signing time: Fri 19 Dec 2025 06:00:53 +0000 Manifest this update: Fri 19 Dec 2025 06:00:53 +0000 Manifest next update: Sat 20 Dec 2025 06:00:53 +0000 Files and hashes: 1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: DKQBnZPZoZLJ6pKLBpF3P5kRmYnJ/OLJPD58ArH9sU0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:65:87:f6:84:da:8d:09:d7:7c:8e:f8:a8:98:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224 Validity Not Before: Dec 19 06:00:53 2025 GMT Not After : Dec 20 06:00:53 2025 GMT Subject: CN=4130bba8145f5c1104c4e2e0ca9f9d20d56e281b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4f:f5:3b:30:d7:fa:51:07:64:74:dc:ca:bb: f7:a1:6a:85:89:8a:a4:26:46:b7:99:bb:30:d2:70: c7:17:db:cd:64:34:44:19:29:70:56:2e:61:e0:30: a8:14:6d:05:c9:f7:a7:5c:b6:ba:1a:a1:70:ea:70: a3:d9:9b:6f:8a:20:0d:3f:91:fa:dd:8a:8e:30:4c: 73:6f:93:1e:f3:5b:3f:ec:e9:73:79:8b:38:8e:d8: 65:ee:f1:5c:eb:01:51:ac:71:4b:44:a6:80:30:cc: 12:7c:c7:01:8a:b3:be:b9:ff:89:16:3e:e5:c3:d9: fb:94:2b:de:59:7b:c6:66:ed:3b:af:fc:37:e3:e0: e0:f2:77:9b:06:70:db:e2:58:36:bb:2e:97:4a:b8: f0:d6:5a:c5:1f:3e:b5:26:f4:9f:8e:41:5e:b1:8a: 92:93:12:8e:9a:df:1f:03:4e:e3:2b:c5:72:6a:05: 00:eb:50:0f:7f:77:e9:7e:e4:ae:9b:c1:0e:4e:92: 24:9d:63:55:6f:d8:c4:fc:a2:1d:9a:4e:c4:63:b0: 7d:00:4b:bf:f1:8b:5a:56:33:05:32:e0:63:31:54: a3:19:28:0f:da:cb:9b:02:82:b4:af:62:32:09:d7: a2:dc:ca:86:6d:20:3e:0b:7c:30:8a:a9:da:b2:a7: 1b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:30:BB:A8:14:5F:5C:11:04:C4:E2:E0:CA:9F:9D:20:D5:6E:28:1B X509v3 Authority Key Identifier: keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:87:e4:a1:59:ad:6d:a6:42:8d:a9:05:54:ba:74:10:53:54: 2b:c7:e3:a1:86:09:f5:1a:af:f8:99:70:6a:b4:58:73:45:8f: 0d:0c:d3:1a:c4:57:f6:3d:91:c2:03:26:ad:7e:c1:27:ca:fd: 34:a1:c9:8b:c5:62:8c:30:97:04:34:b3:c2:c9:30:78:ac:fa: 27:ca:cf:49:a8:34:14:fe:5a:fa:fd:49:7d:8d:c7:4a:69:9d: 20:36:4f:e4:1e:3d:10:51:83:ca:45:42:b6:8b:f2:c2:df:b2: 0c:a3:f5:1e:a3:9d:7a:58:8f:38:04:a3:bd:e8:a2:06:bc:37: 9d:01:8a:09:76:e0:4f:07:a3:68:de:b5:94:7b:e6:09:fb:23: 3b:f4:a5:87:5e:50:e0:4a:e3:b1:3c:e5:80:25:e5:a7:a4:cd: fe:b5:5e:db:8d:cb:b6:77:34:b6:1d:25:6c:32:24:69:e7:95: c1:0f:a9:fc:8d:8e:6c:70:bc:37:0d:c4:a7:7f:f4:01:47:8e: 1b:33:75:71:41:23:a6:97:5d:e2:9f:2f:f7:6c:2e:6e:f8:38: 44:84:6c:bf:77:57:ec:c0:dd:ca:ce:4b:a0:42:91:d0:69:c2: 50:2b:13:02:69:fb:99:ae:34:5c:fe:91:5f:cd:61:98:da:8f: 83:4e:94:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MmWH9oTajQnXfI74qJipMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjMzdhZDhiM2EyNjkwZTBjZjQ3MmRiMjZlOGZlMmIxNjgw MTkyMjQwHhcNMjUxMjE5MDYwMDUzWhcNMjUxMjIwMDYwMDUzWjAzMTEwLwYDVQQD Eyg0MTMwYmJhODE0NWY1YzExMDRjNGUyZTBjYTlmOWQyMGQ1NmUyODFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnE/1OzDX+lEHZHTcyrv3oWqFiYqk Jka3mbsw0nDHF9vNZDREGSlwVi5h4DCoFG0FyfenXLa6GqFw6nCj2ZtviiANP5H6 3YqOMExzb5Me81s/7OlzeYs4jthl7vFc6wFRrHFLRKaAMMwSfMcBirO+uf+JFj7l w9n7lCveWXvGZu07r/w34+Dg8nebBnDb4lg2uy6XSrjw1lrFHz61JvSfjkFesYqS kxKOmt8fA07jK8VyagUA61APf3fpfuSum8EOTpIknWNVb9jE/KIdmk7EY7B9AEu/ 8YtaVjMFMuBjMVSjGSgP2subAoK0r2IyCdei3MqGbSA+C3wwiqnasqcbowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEEwu6gUX1wRBMTi4MqfnSDVbigbMB8GA1UdIwQY MBaAFDw3rYs6JpDgz0ctsm6P4rFoAZIkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2Njct MmUyYjU2YjQxNWMxLzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2NjctMmUyYjU2YjQxNWMx LzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJofkoVmt baZCjakFVLp0EFNUK8fjoYYJ9Rqv+JlwarRYc0WPDQzTGsRX9j2RwgMmrX7BJ8r9 NKHJi8VijDCXBDSzwskweKz6J8rPSag0FP5a+v1JfY3HSmmdIDZP5B49EFGDykVC tovywt+yDKP1HqOdeliPOASjveiiBrw3nQGKCXbgTwejaN61lHvmCfsjO/Slh15Q 4ErjsTzlgCXlp6TN/rVe243Ltnc0th0lbDIkaeeVwQ+p/I2ObHC8Nw3Ep3/0AUeO GzN1cUEjppdd4p8v92wubvg4RIRsv3dX7MDdys5LoEKR0GnCUCsTAmn7ma40XP6R X81hmNqPg06UbQ== -----END CERTIFICATE-----Generated at Fri Dec 19 10:36:49 2025 by rpki-client