This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft File: dyDGcENNpRAiYQmdoQHyXdP3qto.mft (raw, json) Hash identifier: l6gPkZmlu9zFwj6R+Cb1UJ5ZgXpLzWbWwQDfYij46G4= Subject key identifier: 1C:05:39:4A:5D:D7:1D:FC:3C:04:B1:43:69:1F:61:67:4A:80:1C:87 Authority key identifier: 77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA Certificate issuer: /CN=7720c670434da5102261099da101f25dd3f7aada Certificate serial: 019B10EF933006E87534A25AD11B039CA3E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft Manifest number: 0FB4 Signing time: Fri 12 Dec 2025 05:01:34 +0000 Manifest this update: Fri 12 Dec 2025 05:01:34 +0000 Manifest next update: Sat 13 Dec 2025 05:01:34 +0000 Files and hashes: 1: dyDGcENNpRAiYQmdoQHyXdP3qto.crl (hash: uEVWuStODJoVXHh/W8BwzXA1dglMgJ4ImfJiCPxxj88=) 2: s7pdPnsOB8imHTQwb8o3CB7JIMI.roa (hash: lFvR0bEMv7k9KIxJ6Wc08171+rqM84YXRxLTrqtVpQk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:ef:93:30:06:e8:75:34:a2:5a:d1:1b:03:9c:a3:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7720c670434da5102261099da101f25dd3f7aada Validity Not Before: Dec 12 05:01:34 2025 GMT Not After : Dec 13 05:01:34 2025 GMT Subject: CN=1c05394a5dd71dfc3c04b143691f61674a801c87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b1:0d:b3:a4:e8:64:53:78:a4:d5:e6:44:37: 8f:bb:52:cb:1f:2a:14:d1:0e:0f:bc:1c:62:cb:37: f4:df:b6:db:b3:ba:b5:9c:ce:76:63:84:52:32:7b: 85:1e:ee:15:ad:a9:8c:5f:89:37:e8:dc:23:67:5b: bb:21:bf:99:99:1b:fd:3e:cd:93:9c:59:04:ca:fb: 1f:d8:c3:f0:5a:ba:2a:4f:54:93:8e:3d:40:aa:87: 5a:b7:f5:95:ae:51:8f:f0:5e:01:5b:16:39:43:fb: df:4f:f2:4d:59:65:bf:f1:4e:cb:2d:da:fa:71:65: e6:22:29:fc:d5:6e:22:c3:5f:0e:bb:0e:bb:91:ca: e3:e0:14:61:cb:7f:f7:25:d3:fe:90:1c:9a:29:bb: c4:7b:c6:f4:e8:4b:d9:5a:c8:b7:50:a8:a0:02:f4: 9a:dc:bc:73:d9:9a:f0:12:51:0f:6e:7d:99:7e:d3: 31:6b:d0:44:fd:e7:5a:3b:18:13:90:aa:91:b5:9f: 16:e1:8d:89:9a:81:48:5e:b8:a6:a1:d3:5e:ea:d5: 9d:e5:8a:52:75:b8:49:d0:4d:eb:c2:0b:66:c9:bd: 10:4f:4b:60:db:29:1d:51:ca:e3:74:da:d8:77:a0: b8:73:b5:38:31:fc:fb:e8:83:ea:da:92:4d:f7:c2: 38:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:05:39:4A:5D:D7:1D:FC:3C:04:B1:43:69:1F:61:67:4A:80:1C:87 X509v3 Authority Key Identifier: keyid:77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:85:cd:88:bd:62:f9:b3:3e:a6:0e:cf:7b:6e:78:a1:ea:76: 1b:50:75:06:d3:aa:02:c2:e5:80:5f:dd:d6:ec:73:5d:e3:8e: 0c:12:7f:f9:87:7e:d0:0a:15:6b:78:6c:9c:33:f2:bd:b2:1c: ae:ba:e7:2a:e3:3f:6a:ec:e4:31:1d:a2:9c:71:18:54:c2:f0: 94:c9:72:e6:7f:f5:a8:2c:9a:dc:17:f1:86:e4:af:65:34:37: 3e:ce:f2:43:ab:1a:cb:32:14:d3:28:58:b9:43:db:41:7a:09: ab:08:25:8d:a5:14:9d:7c:6d:fd:16:25:25:b1:11:75:0f:c5: 38:ac:92:cb:15:e8:00:e5:fa:af:80:88:32:c1:2e:d4:a1:d3: 13:38:74:2b:f0:e4:5c:bf:f0:ef:3e:9b:62:03:f9:e9:5e:53: 17:18:c6:f7:09:f7:32:c8:7f:e2:70:ec:44:61:9d:4b:7d:d4: c2:11:94:21:24:95:a5:b3:6f:0f:7a:eb:5d:32:0a:f1:52:0f: 14:e7:8c:db:e4:b1:32:09:6d:8a:1c:f8:3e:c5:39:47:f3:db: b1:90:0d:f2:fd:c8:dc:0b:1e:55:22:c1:88:b0:81:39:c2:1a: 38:87:eb:42:52:4c:bd:b1:3c:e9:16:93:12:be:06:a5:23:28: 3c:8b:45:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQ75MwBuh1NKJa0RsDnKPlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MjBjNjcwNDM0ZGE1MTAyMjYxMDk5ZGExMDFmMjVkZDNm N2FhZGEwHhcNMjUxMjEyMDUwMTM0WhcNMjUxMjEzMDUwMTM0WjAzMTEwLwYDVQQD EygxYzA1Mzk0YTVkZDcxZGZjM2MwNGIxNDM2OTFmNjE2NzRhODAxYzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLENs6ToZFN4pNXmRDePu1LLHyoU 0Q4PvBxiyzf037bbs7q1nM52Y4RSMnuFHu4VramMX4k36NwjZ1u7Ib+ZmRv9Ps2T nFkEyvsf2MPwWroqT1STjj1Aqodat/WVrlGP8F4BWxY5Q/vfT/JNWWW/8U7LLdr6 cWXmIin81W4iw18Ouw67kcrj4BRhy3/3JdP+kByaKbvEe8b06EvZWsi3UKigAvSa 3Lxz2ZrwElEPbn2ZftMxa9BE/edaOxgTkKqRtZ8W4Y2JmoFIXrimodNe6tWd5YpS dbhJ0E3rwgtmyb0QT0tg2ykdUcrjdNrYd6C4c7U4Mfz76IPq2pJN98I4xQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBwFOUpd1x38PASxQ2kfYWdKgByHMB8GA1UdIwQY MBaAFHcgxnBDTaUQImEJnaEB8l3T96raMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUt ZDg0NTk5NTk5MWFjLzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUtZDg0NTk5NTk5MWFj LzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI4XNiL1i +bM+pg7Pe254oep2G1B1BtOqAsLlgF/d1uxzXeOODBJ/+Yd+0AoVa3hsnDPyvbIc rrrnKuM/auzkMR2inHEYVMLwlMly5n/1qCya3BfxhuSvZTQ3Ps7yQ6sayzIU0yhY uUPbQXoJqwgljaUUnXxt/RYlJbERdQ/FOKySyxXoAOX6r4CIMsEu1KHTEzh0K/Dk XL/w7z6bYgP56V5TFxjG9wn3Msh/4nDsRGGdS33UwhGUISSVpbNvD3rrXTIK8VIP FOeM2+SxMgltihz4PsU5R/PbsZAN8v3I3AseVSLBiLCBOcIaOIfrQlJMvbE86RaT Er4GpSMoPItFHw== -----END CERTIFICATE-----Generated at Fri Dec 12 07:42:36 2025 by rpki-client