This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft File: dyDGcENNpRAiYQmdoQHyXdP3qto.mft (raw, json) Hash identifier: 46DoHl136PvgZ/Yv0CWW2pJVWeeuqEJK1HykTmh/IQs= Subject key identifier: 8C:45:32:C0:EE:91:CE:77:5A:8E:F5:CE:83:FB:70:8C:D0:22:C5:9F Authority key identifier: 77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA Certificate issuer: /CN=7720c670434da5102261099da101f25dd3f7aada Certificate serial: 019B470225D6FC07598A096544DAD9970C07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft Manifest number: 0FD0 Signing time: Mon 22 Dec 2025 17:01:21 +0000 Manifest this update: Mon 22 Dec 2025 17:01:21 +0000 Manifest next update: Tue 23 Dec 2025 17:01:21 +0000 Files and hashes: 1: dyDGcENNpRAiYQmdoQHyXdP3qto.crl (hash: CY5HDVGdIv+qEsj8T7f2f289D4vMTGDSN2JNNJkN4ho=) 2: s7pdPnsOB8imHTQwb8o3CB7JIMI.roa (hash: lFvR0bEMv7k9KIxJ6Wc08171+rqM84YXRxLTrqtVpQk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 17:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:02:25:d6:fc:07:59:8a:09:65:44:da:d9:97:0c:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7720c670434da5102261099da101f25dd3f7aada Validity Not Before: Dec 22 17:01:21 2025 GMT Not After : Dec 23 17:01:21 2025 GMT Subject: CN=8c4532c0ee91ce775a8ef5ce83fb708cd022c59f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:46:4f:37:55:f7:15:1d:98:53:8c:06:b2:65: af:90:99:b2:85:af:3e:78:1e:dc:f6:ac:bd:b7:12: 67:8a:c0:d4:1b:fb:0e:77:2b:7f:2f:7e:49:af:1f: 9b:25:6d:eb:0b:4c:ca:8a:ac:45:38:ba:ac:00:21: 06:c9:d7:f9:f5:42:47:a1:70:43:8c:c9:0b:a4:f1: 6a:8b:11:99:56:b4:86:75:5f:da:13:e4:23:14:8c: 3c:26:01:2f:cd:35:02:b1:05:cb:da:0a:b5:ab:9f: 24:ea:a3:55:12:84:f6:65:78:7c:6c:1d:ff:c5:69: 6a:47:8d:ba:75:85:63:13:81:8b:a0:2c:08:5b:e0: 5d:dc:87:86:da:f0:97:96:9e:05:1d:fa:99:1b:02: 41:b6:40:da:fd:9f:e1:c9:ed:c5:45:65:9f:27:66: 29:91:f8:0f:d6:60:48:e1:0a:17:b3:7e:c0:07:d2: 44:74:3a:9d:7f:77:f7:fa:bf:dc:2e:94:6d:da:f4: 57:f2:69:08:1d:dd:6e:97:3a:68:89:2b:3f:c9:11: f9:e9:e4:8c:55:d0:c3:bc:cb:51:f8:2f:8f:26:32: 22:11:7d:ec:b2:0f:c8:f3:23:f9:b6:96:63:97:ba: 95:0d:ce:3d:b0:3b:54:cc:02:e8:a3:80:89:a9:23: 8d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:45:32:C0:EE:91:CE:77:5A:8E:F5:CE:83:FB:70:8C:D0:22:C5:9F X509v3 Authority Key Identifier: keyid:77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:cb:ac:0d:ba:99:24:e9:96:6a:3a:14:55:62:d2:1d:8b:5a: a6:39:9c:48:b3:ab:69:01:20:c0:8d:96:2c:89:ea:fc:d4:e3: 38:ae:dc:28:35:12:c8:5a:d5:82:de:c9:0e:f5:af:b1:77:91: f4:e0:11:2e:0c:87:43:a5:79:3f:39:0b:2b:2f:14:9a:52:10: ee:8b:a3:a7:38:1d:99:41:3a:52:f8:d6:72:b6:20:61:de:d3: 03:f6:c6:44:19:c4:1c:d0:e1:16:0f:9e:fc:e2:d4:f6:3f:93: c2:c9:37:b2:f7:d0:86:6a:b7:32:26:3b:47:70:f2:b5:77:02: 90:28:f1:09:ad:0d:ea:46:ee:f7:d8:a6:08:37:47:6c:98:dc: 14:46:13:e8:63:fd:65:f3:de:a6:3a:24:5d:0e:22:83:7d:8b: 0b:d1:20:c1:74:f2:da:0b:f2:b7:5d:c4:91:cc:d3:e7:ea:73: da:93:9f:ae:be:0b:6a:09:c2:96:9f:ba:40:64:6c:2c:bb:ee: da:57:fd:eb:8f:64:6b:a3:83:1f:9e:86:16:0e:ea:63:f1:31: d7:0f:06:9b:4f:e3:de:aa:ea:1d:60:e2:72:54:61:04:70:47: 30:5a:9b:9a:e2:be:fa:39:58:94:39:4e:69:d8:b5:38:c4:9e: 2b:30:4d:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHAiXW/AdZigllRNrZlwwHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MjBjNjcwNDM0ZGE1MTAyMjYxMDk5ZGExMDFmMjVkZDNm N2FhZGEwHhcNMjUxMjIyMTcwMTIxWhcNMjUxMjIzMTcwMTIxWjAzMTEwLwYDVQQD Eyg4YzQ1MzJjMGVlOTFjZTc3NWE4ZWY1Y2U4M2ZiNzA4Y2QwMjJjNTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0kZPN1X3FR2YU4wGsmWvkJmyha8+ eB7c9qy9txJnisDUG/sOdyt/L35Jrx+bJW3rC0zKiqxFOLqsACEGydf59UJHoXBD jMkLpPFqixGZVrSGdV/aE+QjFIw8JgEvzTUCsQXL2gq1q58k6qNVEoT2ZXh8bB3/ xWlqR426dYVjE4GLoCwIW+Bd3IeG2vCXlp4FHfqZGwJBtkDa/Z/hye3FRWWfJ2Yp kfgP1mBI4QoXs37AB9JEdDqdf3f3+r/cLpRt2vRX8mkIHd1ulzpoiSs/yRH56eSM VdDDvMtR+C+PJjIiEX3ssg/I8yP5tpZjl7qVDc49sDtUzALoo4CJqSONowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIxFMsDukc53Wo71zoP7cIzQIsWfMB8GA1UdIwQY MBaAFHcgxnBDTaUQImEJnaEB8l3T96raMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUt ZDg0NTk5NTk5MWFjLzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUtZDg0NTk5NTk5MWFj LzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf8usDbqZ JOmWajoUVWLSHYtapjmcSLOraQEgwI2WLInq/NTjOK7cKDUSyFrVgt7JDvWvsXeR 9OARLgyHQ6V5PzkLKy8UmlIQ7oujpzgdmUE6UvjWcrYgYd7TA/bGRBnEHNDhFg+e /OLU9j+Twsk3svfQhmq3MiY7R3DytXcCkCjxCa0N6kbu99imCDdHbJjcFEYT6GP9 ZfPepjokXQ4ig32LC9EgwXTy2gvyt13EkczT5+pz2pOfrr4LagnClp+6QGRsLLvu 2lf9649ka6ODH56GFg7qY/Ex1w8Gm0/j3qrqHWDiclRhBHBHMFqbmuK++jlYlDlO adi1OMSeKzBNZw== -----END CERTIFICATE-----Generated at Tue Dec 23 03:14:45 2025 by rpki-client