This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft File: 0dI-JBGcupM36DRmSFv7EGsuJLY.mft (raw, json) Hash identifier: gjQN1wTSA18QLKSPtSPXCJOYv/5yL0vY+hrB/4kTpVs= Subject key identifier: 2E:BC:68:53:1E:39:27:FD:EF:4A:D7:B5:70:FD:F3:5A:59:12:5F:3F Authority key identifier: D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6 Certificate issuer: /CN=d1d23e24119cba9337e83466485bfb106b2e24b6 Certificate serial: 019B5C09238A8BF0B3BCC732251AC4E24171 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft Manifest number: 01E0 Signing time: Fri 26 Dec 2025 19:01:01 +0000 Manifest this update: Fri 26 Dec 2025 19:01:01 +0000 Manifest next update: Sat 27 Dec 2025 19:01:01 +0000 Files and hashes: 1: 0dI-JBGcupM36DRmSFv7EGsuJLY.crl (hash: yrjOAurqiUkTxvkB9ZLV4wyQhh9tB7PUspSn+gHWqrs=) 2: M-IfQdJ5pbgcbSVbmMmO8aaPrAY.roa (hash: XwGRnAxf2Tdx5V01T06WDZvLLVmv2uRnErY5moi+5Gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:09:23:8a:8b:f0:b3:bc:c7:32:25:1a:c4:e2:41:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1d23e24119cba9337e83466485bfb106b2e24b6 Validity Not Before: Dec 26 19:01:01 2025 GMT Not After : Dec 27 19:01:01 2025 GMT Subject: CN=2ebc68531e3927fdef4ad7b570fdf35a59125f3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fd:3d:ed:02:23:59:a4:9d:1a:6b:fd:88:1f: 39:6c:20:9f:5f:dd:47:22:6d:25:77:7c:ce:f1:69: 3c:05:c3:0e:85:04:2b:2b:d0:6a:ce:88:4c:dd:f2: a6:07:79:a4:a0:29:0d:48:ab:7a:55:7f:e6:6d:a9: 81:83:14:4e:bf:23:5e:32:30:42:7c:a4:e2:74:9f: ac:f9:23:38:05:30:05:20:1c:4c:38:9d:e0:97:80: dd:89:77:fa:16:11:25:65:0f:92:01:2c:e4:cc:a1: 36:3b:1a:f3:1b:d3:2f:16:b0:53:dd:36:5c:53:fe: 5c:8e:1a:1d:f3:35:90:9c:ed:1b:ae:be:ed:05:b5: ee:30:6d:84:20:61:46:8d:a3:39:f7:bf:98:1a:a5: 57:83:69:50:93:55:ad:9f:ad:8c:9a:a8:63:85:54: 1f:93:ac:8f:98:f3:19:85:87:60:2a:41:cd:b7:6b: 03:a3:6b:85:20:1d:76:ba:fc:a6:15:17:9f:29:b2: a1:2f:08:b2:d1:5f:4f:ee:f4:a7:4d:c9:88:4e:24: 26:d1:62:8d:b7:c5:57:e0:4d:25:53:c4:89:00:98: 0a:d2:7f:0a:62:a4:6f:87:1a:68:b6:44:7d:7c:57: c2:2b:9c:59:80:9f:e3:af:a2:7e:f9:2d:a2:ed:87: 87:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:BC:68:53:1E:39:27:FD:EF:4A:D7:B5:70:FD:F3:5A:59:12:5F:3F X509v3 Authority Key Identifier: keyid:D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:59:cf:26:cc:87:11:ea:30:a6:3f:0d:96:a0:70:8b:20:12: 82:be:60:72:91:d5:29:37:e4:9d:b1:74:a5:70:00:59:80:d7: b3:47:5f:32:43:63:17:c5:02:26:7a:c8:b6:63:33:77:44:b4: b1:d7:5d:73:e4:86:a7:6d:34:0c:16:93:fb:df:b8:b0:d4:79: 69:36:cc:9b:2c:36:ae:d3:b8:84:f5:19:58:63:e8:f5:3c:ec: ff:6c:1e:81:76:12:79:43:01:da:ac:47:73:33:65:55:cc:fa: 23:b8:de:cb:7c:4f:62:f4:b9:36:db:fb:7d:49:74:b8:8c:f2: a9:2c:02:9b:0f:ec:1f:51:c9:5f:ba:b6:4e:4c:56:fb:9b:94: 73:d2:c1:f6:bf:1a:a9:38:eb:f5:27:07:be:f6:d7:a6:76:2a: b9:77:61:af:d4:96:ae:f8:b2:6d:49:9d:6e:0b:4d:ed:d0:9a: c5:09:c5:61:69:55:2f:97:d6:cd:0a:27:b8:2d:40:e8:23:c4: ea:bc:a9:b0:6e:9e:f0:35:e4:66:ff:ef:21:4a:19:0c:d3:2c: 86:b1:a6:37:d3:e6:16:b5:5f:8d:33:c8:f9:97:63:67:53:6c: bf:d3:77:22:2e:6c:80:97:3f:ef:02:8d:c6:eb:c6:cb:51:19: 15:c4:d8:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcCSOKi/CzvMcyJRrE4kFxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZDIzZTI0MTE5Y2JhOTMzN2U4MzQ2NjQ4NWJmYjEwNmIy ZTI0YjYwHhcNMjUxMjI2MTkwMTAxWhcNMjUxMjI3MTkwMTAxWjAzMTEwLwYDVQQD EygyZWJjNjg1MzFlMzkyN2ZkZWY0YWQ3YjU3MGZkZjM1YTU5MTI1ZjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1P097QIjWaSdGmv9iB85bCCfX91H Im0ld3zO8Wk8BcMOhQQrK9BqzohM3fKmB3mkoCkNSKt6VX/mbamBgxROvyNeMjBC fKTidJ+s+SM4BTAFIBxMOJ3gl4DdiXf6FhElZQ+SASzkzKE2OxrzG9MvFrBT3TZc U/5cjhod8zWQnO0brr7tBbXuMG2EIGFGjaM597+YGqVXg2lQk1Wtn62MmqhjhVQf k6yPmPMZhYdgKkHNt2sDo2uFIB12uvymFRefKbKhLwiy0V9P7vSnTcmITiQm0WKN t8VX4E0lU8SJAJgK0n8KYqRvhxpotkR9fFfCK5xZgJ/jr6J++S2i7YeHgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC68aFMeOSf970rXtXD981pZEl8/MB8GA1UdIwQY MBaAFNHSPiQRnLqTN+g0Zkhb+xBrLiS2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGRJLUpCR2N1cE0zNkRSbVNGdjdFR3N1SkxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy82YzQwNjQtODUwMy00ZDE2LTkzNTQt NzRkNGU1YjAxYzM1LzEvMGRJLUpCR2N1cE0zNkRSbVNGdjdFR3N1SkxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy82YzQwNjQtODUwMy00ZDE2LTkzNTQtNzRkNGU1YjAxYzM1 LzEvMGRJLUpCR2N1cE0zNkRSbVNGdjdFR3N1SkxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnVnPJsyH Eeowpj8NlqBwiyASgr5gcpHVKTfknbF0pXAAWYDXs0dfMkNjF8UCJnrItmMzd0S0 sdddc+SGp200DBaT+9+4sNR5aTbMmyw2rtO4hPUZWGPo9Tzs/2wegXYSeUMB2qxH czNlVcz6I7jey3xPYvS5Ntv7fUl0uIzyqSwCmw/sH1HJX7q2TkxW+5uUc9LB9r8a qTjr9ScHvvbXpnYquXdhr9SWrviybUmdbgtN7dCaxQnFYWlVL5fWzQonuC1A6CPE 6rypsG6e8DXkZv/vIUoZDNMshrGmN9PmFrVfjTPI+ZdjZ1Nsv9N3Ii5sgJc/7wKN xuvGy1EZFcTYIg== -----END CERTIFICATE-----Generated at Fri Dec 26 21:13:00 2025 by rpki-client