This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft File: dyDGcENNpRAiYQmdoQHyXdP3qto.mft (raw, json) Hash identifier: Fv8r1Jh44MrJ3bYM99Bhwici1hJrssHdyaewWuX/4bU= Subject key identifier: A1:12:D7:49:F5:58:4C:E6:AF:0B:61:35:E7:D4:EB:6A:49:E6:81:0C Authority key identifier: 77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA Certificate issuer: /CN=7720c670434da5102261099da101f25dd3f7aada Certificate serial: 019B397D5FCEA382BC91251363E0A4794453 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft Manifest number: 0FC9 Signing time: Sat 20 Dec 2025 02:01:16 +0000 Manifest this update: Sat 20 Dec 2025 02:01:16 +0000 Manifest next update: Sun 21 Dec 2025 02:01:16 +0000 Files and hashes: 1: dyDGcENNpRAiYQmdoQHyXdP3qto.crl (hash: Q36ZYTdOqncJp4p1ugoGozzFUut7AZ7aZGEmnAwszn4=) 2: s7pdPnsOB8imHTQwb8o3CB7JIMI.roa (hash: lFvR0bEMv7k9KIxJ6Wc08171+rqM84YXRxLTrqtVpQk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:7d:5f:ce:a3:82:bc:91:25:13:63:e0:a4:79:44:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7720c670434da5102261099da101f25dd3f7aada Validity Not Before: Dec 20 02:01:16 2025 GMT Not After : Dec 21 02:01:16 2025 GMT Subject: CN=a112d749f5584ce6af0b6135e7d4eb6a49e6810c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1f:f5:b4:a1:b9:25:1f:90:65:53:5e:98:8d: 24:8b:79:71:a2:e8:9e:1a:7a:4f:fe:8f:8c:69:4c: 83:75:07:74:ff:5b:35:c5:08:70:c2:1e:f6:69:c9: a1:a3:94:e7:af:60:42:df:c4:40:20:77:bb:ee:88: 19:49:9c:58:de:cf:6c:fd:84:04:1e:0a:0c:76:5b: 13:73:79:21:1a:ce:3f:e6:4e:fe:be:0c:5c:a8:07: 57:27:85:45:34:d4:75:da:47:2a:7c:10:11:ea:fc: 7f:71:cf:bb:50:a9:e0:dc:de:09:9a:da:9b:7c:79: d5:4f:96:7d:0c:64:76:91:e0:11:71:bf:64:c5:bf: 42:55:5a:97:b4:c2:0c:40:32:ea:2b:58:f1:e8:e9: 73:07:6c:ad:e3:fd:c5:63:8c:b4:49:c5:9d:96:cb: fd:dd:03:a9:f0:f8:7e:85:e5:fd:e3:1f:f6:ac:22: 7f:64:56:ba:7b:3d:34:14:df:1c:ed:e5:f4:ee:15: f6:03:1e:ca:cf:ab:41:10:da:79:85:12:10:5c:72: 6e:be:5b:fe:e3:dc:8a:a4:15:5e:9f:1a:cb:d2:6e: d1:bd:8c:4f:8d:76:69:e9:19:55:98:cb:40:ba:f9: e0:8d:6a:59:83:2d:7f:03:75:21:fc:8a:2d:37:a8: 53:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:12:D7:49:F5:58:4C:E6:AF:0B:61:35:E7:D4:EB:6A:49:E6:81:0C X509v3 Authority Key Identifier: keyid:77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:e8:d0:63:56:63:e0:f6:94:0a:a8:90:9d:b5:82:2f:31:de: 19:ee:4c:03:47:8a:7c:4b:db:ab:1d:a2:76:f2:51:7b:b8:fd: 67:e7:05:2a:c6:1d:df:ff:ad:53:14:b6:0e:67:16:9f:1e:51: c4:23:c7:df:a0:23:0d:e1:97:8f:9f:84:a0:41:6b:3f:44:44: 53:03:7f:25:4c:af:5a:6d:71:16:0e:05:19:00:48:25:fc:5f: 8f:62:d5:ba:52:c9:ba:ce:2b:42:a8:a0:71:ea:67:c3:a7:0e: c4:9e:d5:65:89:db:4f:02:88:1a:65:74:3f:70:a2:7d:65:75: 95:cf:09:40:72:f8:b3:73:af:fb:3e:ec:f4:43:a9:a0:22:61: a1:43:58:71:38:9c:43:01:a0:18:db:43:30:33:67:89:2e:36: 2f:57:53:b8:6e:97:1e:ca:49:78:70:93:d6:5f:56:c7:49:ac: fd:c2:8d:a8:66:4f:fb:99:be:a2:ff:c1:f1:ef:ca:b1:0d:82: 54:b2:3c:9d:75:33:57:62:46:35:64:46:b0:60:42:a1:91:04: 93:66:36:19:de:b7:80:28:0c:9a:c5:b7:33:88:c9:88:43:6b: 20:f8:01:8c:42:4d:d9:5d:d3:5b:2d:b2:c7:1f:a9:d9:11:53: 11:df:d4:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5fV/Oo4K8kSUTY+CkeURTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MjBjNjcwNDM0ZGE1MTAyMjYxMDk5ZGExMDFmMjVkZDNm N2FhZGEwHhcNMjUxMjIwMDIwMTE2WhcNMjUxMjIxMDIwMTE2WjAzMTEwLwYDVQQD EyhhMTEyZDc0OWY1NTg0Y2U2YWYwYjYxMzVlN2Q0ZWI2YTQ5ZTY4MTBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzx/1tKG5JR+QZVNemI0ki3lxouie GnpP/o+MaUyDdQd0/1s1xQhwwh72acmho5Tnr2BC38RAIHe77ogZSZxY3s9s/YQE HgoMdlsTc3khGs4/5k7+vgxcqAdXJ4VFNNR12kcqfBAR6vx/cc+7UKng3N4Jmtqb fHnVT5Z9DGR2keARcb9kxb9CVVqXtMIMQDLqK1jx6OlzB2yt4/3FY4y0ScWdlsv9 3QOp8Ph+heX94x/2rCJ/ZFa6ez00FN8c7eX07hX2Ax7Kz6tBENp5hRIQXHJuvlv+ 49yKpBVenxrL0m7RvYxPjXZp6RlVmMtAuvngjWpZgy1/A3Uh/IotN6hTIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKES10n1WEzmrwthNefU62pJ5oEMMB8GA1UdIwQY MBaAFHcgxnBDTaUQImEJnaEB8l3T96raMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUt ZDg0NTk5NTk5MWFjLzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUtZDg0NTk5NTk5MWFj LzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPOjQY1Zj 4PaUCqiQnbWCLzHeGe5MA0eKfEvbqx2idvJRe7j9Z+cFKsYd3/+tUxS2DmcWnx5R xCPH36AjDeGXj5+EoEFrP0REUwN/JUyvWm1xFg4FGQBIJfxfj2LVulLJus4rQqig cepnw6cOxJ7VZYnbTwKIGmV0P3CifWV1lc8JQHL4s3Ov+z7s9EOpoCJhoUNYcTic QwGgGNtDMDNniS42L1dTuG6XHspJeHCT1l9Wx0ms/cKNqGZP+5m+ov/B8e/KsQ2C VLI8nXUzV2JGNWRGsGBCoZEEk2Y2Gd63gCgMmsW3M4jJiENrIPgBjEJN2V3TWy2y xx+p2RFTEd/UkA== -----END CERTIFICATE-----Generated at Sat Dec 20 10:48:17 2025 by rpki-client