This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft File: 9dmpKCydJUfFZmNPO6zMvPJYiCc.mft (raw, json) Hash identifier: AJyyWCRhcCjVqur/gGkbqJwvA85SEjAN17EbN69d1gc= Subject key identifier: DD:4A:A7:AB:8B:D3:74:30:EE:40:36:39:2C:0E:E6:E5:13:2B:AD:1F Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Certificate serial: 019B360E4A115A29BE4CA06C11F1ADCDB928 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft Manifest number: 0DA5 Signing time: Fri 19 Dec 2025 10:01:04 +0000 Manifest this update: Fri 19 Dec 2025 10:01:04 +0000 Manifest next update: Sat 20 Dec 2025 10:01:04 +0000 Files and hashes: 1: 2fQddCIl-7Oq1WuhVFDb_ItwFWs.roa (hash: G5bUTFThyurFxXPOBBEBFBWKjBkZ0p5sb4xbB9qr44M=) 2: 37QCkG1k9gzLrRMVOTELOapS-4Y.roa (hash: fObIS1yLlqyANULO1cGplwcB5m0pXnjdZmigUly+6NA=) 3: 9dmpKCydJUfFZmNPO6zMvPJYiCc.crl (hash: w+/s+ydQyXoA5xJzNbHWe8ZPS6j3qZ2a8ihilIgjENY=) 4: C8rZpiwRRKp7HiBYnxrXRCtzNP4.roa (hash: /a2qXNrKqG5G3jKSkvjhWWJd/4eBrgaawytg7M/VZPQ=) 5: LSwSqqfM6NE3bwsbhZVRM0BePVo.roa (hash: QYxJg9ZEhl4RnY/Twn9fuIOL/2nBIyTko4sjPdP5IhA=) 6: SyqNMF-ydxJR2kxngWZW5-SrEy0.roa (hash: KeocIUb7cPGt5yIgR1YWAUH1gGZjpJ9norLt8H3zU6Q=) 7: gAIi2RzKXjXCtYGsVRw03pRZYeU.roa (hash: PvQsJF0P/z+mLUrW2+GtvSyLdhymARBFgfCdxNsU3JE=) 8: hkqOX4mECokeZ3ChLO-NkzoKVG0.roa (hash: jDSI0Vi3uJHnivxkTcLJyUGbXo6jl9OF+5YD1t9wHog=) 9: xEaq7kolhQn1OmIod6QQM1Gthtk.roa (hash: IC+2lUW0/0ySDq3Q6puBeGjrJpCDJAXfXz5IauHoRHE=) 10: yZE684PU1B3lT-aKA30arKwyTEI.roa (hash: isFNdgWP0HVp5O76X23OI/gh9YCy0xYVcwqK0QPMZ60=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:0e:4a:11:5a:29:be:4c:a0:6c:11:f1:ad:cd:b9:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Validity Not Before: Dec 19 10:01:04 2025 GMT Not After : Dec 20 10:01:04 2025 GMT Subject: CN=dd4aa7ab8bd37430ee4036392c0ee6e5132bad1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:53:2a:a6:b6:23:c6:c0:25:fb:c5:12:da:1b: bf:07:0d:3d:05:00:f0:5a:ba:d3:a6:71:6a:56:f0: c5:d0:d0:df:50:61:11:4d:f5:22:e9:a1:99:9d:36: 27:b4:dd:07:45:f9:46:fe:8b:89:db:50:27:59:c4: d8:6b:7b:66:e5:43:9f:a5:90:fe:4f:ef:13:10:34: 9d:24:45:84:15:76:8f:6d:11:aa:c1:ef:22:62:4a: cc:2a:aa:ad:e6:c4:8d:1f:ee:26:af:f9:63:09:9b: 86:6f:03:18:a1:31:98:79:73:81:c3:0c:64:01:57: 70:2b:d8:4c:de:ee:13:d3:e8:ff:32:8c:8c:c0:e2: fe:4d:d3:83:3c:63:22:35:b7:b2:6c:12:ea:d0:4f: 9e:21:61:3d:e0:04:c8:e8:30:04:6f:26:4b:d3:41: 6d:8e:4a:1e:09:16:59:c1:0a:a6:a7:df:c8:94:1c: 32:ca:ff:82:9e:ed:1a:75:f0:8e:ce:b4:f4:39:bc: e0:f2:5b:3e:d7:b9:99:2a:3a:55:e6:da:83:c6:8f: 68:70:40:14:1c:aa:2f:d2:74:24:cd:28:2f:67:33: f6:27:56:19:eb:a9:18:4d:53:c6:8e:f6:f3:fe:48: d1:21:6f:61:0e:74:34:06:41:91:42:d8:f6:2d:26: a6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:4A:A7:AB:8B:D3:74:30:EE:40:36:39:2C:0E:E6:E5:13:2B:AD:1F X509v3 Authority Key Identifier: keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:48:a7:e8:44:8d:c0:28:1a:e9:11:30:b8:62:2e:b3:21:99: 89:43:bf:02:c4:05:5f:f6:bd:05:d3:58:ba:0b:81:16:50:a1: 0c:86:8b:17:c2:6a:6c:00:68:b2:6c:1e:49:d7:a3:db:e9:b1: 80:07:2d:55:25:3f:61:2a:d9:26:6b:e0:18:6d:35:52:9e:54: 95:28:ee:3e:e1:70:2d:87:13:ba:95:37:0c:51:f8:54:a1:cc: fc:2e:a4:6f:f3:b6:10:8c:d3:2c:22:2e:42:ac:39:2b:bd:29: 04:e0:53:c0:3d:ee:44:04:7d:16:e8:c6:ad:c5:e1:36:94:de: 00:e9:27:cd:a7:03:26:41:32:8c:1c:c1:61:da:5d:52:70:2d: c9:26:22:2d:44:ae:ce:5e:1e:5c:18:d2:73:cf:90:84:a4:9c: 5b:e0:b2:3a:7e:f4:fe:88:08:e9:3b:5e:52:32:c3:b9:0b:a1: f1:86:2f:10:4e:7f:4e:b2:d8:00:64:9b:e4:2f:f0:28:8a:90: 63:86:ed:39:da:06:1c:8c:29:21:ed:5a:61:39:de:30:b0:d0: 30:9d:c8:db:c7:48:28:3e:59:46:8d:2e:10:33:1f:94:9e:9f: 28:ab:f2:da:86:de:17:5e:a4:73:21:8e:d6:0a:44:7b:cc:56: 49:76:7a:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2DkoRWim+TKBsEfGtzbkoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1ZDlhOTI4MmM5ZDI1NDdjNTY2NjM0ZjNiYWNjY2JjZjI1 ODg4MjcwHhcNMjUxMjE5MTAwMTA0WhcNMjUxMjIwMTAwMTA0WjAzMTEwLwYDVQQD EyhkZDRhYTdhYjhiZDM3NDMwZWU0MDM2MzkyYzBlZTZlNTEzMmJhZDFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolMqprYjxsAl+8US2hu/Bw09BQDw WrrTpnFqVvDF0NDfUGERTfUi6aGZnTYntN0HRflG/ouJ21AnWcTYa3tm5UOfpZD+ T+8TEDSdJEWEFXaPbRGqwe8iYkrMKqqt5sSNH+4mr/ljCZuGbwMYoTGYeXOBwwxk AVdwK9hM3u4T0+j/MoyMwOL+TdODPGMiNbeybBLq0E+eIWE94ATI6DAEbyZL00Ft jkoeCRZZwQqmp9/IlBwyyv+Cnu0adfCOzrT0Obzg8ls+17mZKjpV5tqDxo9ocEAU HKov0nQkzSgvZzP2J1YZ66kYTVPGjvbz/kjRIW9hDnQ0BkGRQtj2LSamVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN1Kp6uL03Qw7kA2OSwO5uUTK60fMB8GA1UdIwQY MBaAFPXZqSgsnSVHxWZjTzuszLzyWIgnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjct OGNmNDFjYWZkY2UyLzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjctOGNmNDFjYWZkY2Uy LzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfkin6ESN wCga6REwuGIusyGZiUO/AsQFX/a9BdNYuguBFlChDIaLF8JqbABosmweSdej2+mx gActVSU/YSrZJmvgGG01Up5UlSjuPuFwLYcTupU3DFH4VKHM/C6kb/O2EIzTLCIu Qqw5K70pBOBTwD3uRAR9FujGrcXhNpTeAOknzacDJkEyjBzBYdpdUnAtySYiLUSu zl4eXBjSc8+QhKScW+CyOn70/ogI6TteUjLDuQuh8YYvEE5/TrLYAGSb5C/wKIqQ Y4btOdoGHIwpIe1aYTneMLDQMJ3I28dIKD5ZRo0uEDMflJ6fKKvy2obeF16kcyGO 1gpEe8xWSXZ6Ew== -----END CERTIFICATE-----Generated at Fri Dec 19 12:23:10 2025 by rpki-client