This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft File: dzW3DconD8uOS5CStyADZBOPXfE.mft (raw, json) Hash identifier: fKR121tsCHKc/swaGmvR3ePFPyuEhEWbP66swUmbVvU= Subject key identifier: C8:08:B1:1F:40:60:FA:22:0E:CC:59:1C:1D:D5:45:38:73:4F:E0:95 Authority key identifier: 77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1 Certificate issuer: /CN=7735b70dca270fcb8e4b9092b7200364138f5df1 Certificate serial: 019B59ACCAC4D411C9893D9F18D66ABC5E74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft Manifest number: 1795 Signing time: Fri 26 Dec 2025 08:00:54 +0000 Manifest this update: Fri 26 Dec 2025 08:00:54 +0000 Manifest next update: Sat 27 Dec 2025 08:00:54 +0000 Files and hashes: 1: cpO-3YGSbutgQmx_vuZqosXyZC0.roa (hash: oUU6w2RYiSZAkqy6t99fzpKQ3+UD5p93LlQ8mpQ7YRk=) 2: dzW3DconD8uOS5CStyADZBOPXfE.crl (hash: esxazW6hxKUMcMurrXf1T9KyAxhyScjNCcaQgitqMk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:ca:c4:d4:11:c9:89:3d:9f:18:d6:6a:bc:5e:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7735b70dca270fcb8e4b9092b7200364138f5df1 Validity Not Before: Dec 26 08:00:54 2025 GMT Not After : Dec 27 08:00:54 2025 GMT Subject: CN=c808b11f4060fa220ecc591c1dd54538734fe095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:e4:e0:20:b3:ac:8e:dc:b4:f1:d8:bc:5a:d6: e8:3a:21:9c:be:aa:94:27:36:39:cc:37:c4:45:8e: 16:30:c9:73:ae:3c:b1:04:5e:dc:4e:d3:09:cf:4f: 3b:77:1d:4f:d1:67:5c:17:08:83:44:db:17:44:49: 6e:61:35:aa:a5:c3:1c:31:44:ae:75:58:9a:c8:d6: 62:57:d1:9d:21:6c:b8:bc:26:2b:1b:90:0f:e4:33: 3f:26:73:5c:8d:1e:28:7f:40:a7:f5:31:19:4c:0f: cd:c7:ed:cc:73:3e:6f:f5:74:44:4e:09:99:57:fc: 0e:aa:4e:29:4c:be:b5:6a:c2:bf:c0:60:af:88:c5: 4d:d9:55:92:22:6f:58:84:00:d9:0a:50:71:60:f1: 68:15:40:85:0e:2f:b6:0e:81:d0:8a:37:f4:80:2b: fd:47:ae:49:bf:24:62:79:25:31:e5:63:55:09:df: 66:7d:68:c2:84:5a:e5:e2:46:be:49:f3:1b:7d:c6: db:b9:28:29:8a:7f:56:fb:52:ea:c0:e7:e2:38:6a: 87:02:a9:8a:3f:a3:3f:ff:5c:9c:51:54:50:fb:10: e7:32:5e:de:85:27:02:66:86:41:56:de:52:b5:39: 11:ab:62:4e:df:07:d5:06:7f:86:5a:e4:72:4a:47: 7d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:08:B1:1F:40:60:FA:22:0E:CC:59:1C:1D:D5:45:38:73:4F:E0:95 X509v3 Authority Key Identifier: keyid:77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:c1:3f:e0:f0:79:84:60:0d:90:11:d5:8f:c3:a0:02:01:9c: 64:38:eb:8f:c1:75:d6:df:e2:d3:ed:9f:c0:62:9a:83:57:04: 0e:dd:62:93:9b:81:65:77:01:9c:3a:95:16:d1:75:b3:24:4f: 83:36:57:c3:e5:40:2b:fb:bb:1b:bd:35:d3:52:b4:b6:e2:a5: 8f:ec:22:30:8f:81:eb:3a:30:09:f4:a6:57:92:32:49:66:f2: 83:29:52:1f:15:bb:5b:87:c0:a9:2c:f2:2e:d2:ec:32:d2:cd: 75:37:74:cc:57:1c:4a:7e:e0:8d:27:d4:7b:cc:f4:be:68:af: 81:62:5d:87:24:ff:88:cf:ac:f5:5a:3d:24:90:71:bb:5a:54: 0a:41:aa:06:b6:88:54:a5:16:6d:7b:cf:ec:1c:85:9b:c5:2c: 88:f7:e0:cc:0e:cb:bd:24:65:c6:55:4c:65:b9:65:88:96:da: 75:2b:e2:2d:24:5e:24:cf:3d:16:d4:ed:00:3b:f6:65:01:ce: 71:3c:47:d0:74:da:bd:d0:b1:fe:17:dd:21:d3:c9:85:44:38: cd:b1:fd:42:50:ec:94:ee:36:93:37:f4:22:d6:7d:b3:bd:6f: 9b:7d:35:43:9a:e3:a3:b7:58:ea:4b:f3:41:d3:4f:b5:d8:8f: e3:37:f3:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrMrE1BHJiT2fGNZqvF50MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MzViNzBkY2EyNzBmY2I4ZTRiOTA5MmI3MjAwMzY0MTM4 ZjVkZjEwHhcNMjUxMjI2MDgwMDU0WhcNMjUxMjI3MDgwMDU0WjAzMTEwLwYDVQQD EyhjODA4YjExZjQwNjBmYTIyMGVjYzU5MWMxZGQ1NDUzODczNGZlMDk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOTgILOsjty08di8WtboOiGcvqqU JzY5zDfERY4WMMlzrjyxBF7cTtMJz087dx1P0WdcFwiDRNsXREluYTWqpcMcMUSu dViayNZiV9GdIWy4vCYrG5AP5DM/JnNcjR4of0Cn9TEZTA/Nx+3Mcz5v9XRETgmZ V/wOqk4pTL61asK/wGCviMVN2VWSIm9YhADZClBxYPFoFUCFDi+2DoHQijf0gCv9 R65JvyRieSUx5WNVCd9mfWjChFrl4ka+SfMbfcbbuSgpin9W+1LqwOfiOGqHAqmK P6M//1ycUVRQ+xDnMl7ehScCZoZBVt5StTkRq2JO3wfVBn+GWuRySkd98wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMgIsR9AYPoiDsxZHB3VRThzT+CVMB8GA1UdIwQY MBaAFHc1tw3KJw/LjkuQkrcgA2QTj13xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9kZmJjZTgtNTQzNy00OWQ3LWE3Zjkt YzZkZGViNDk0NzM1LzEvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS9kZmJjZTgtNTQzNy00OWQ3LWE3ZjktYzZkZGViNDk0NzM1 LzEvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfcE/4PB5 hGANkBHVj8OgAgGcZDjrj8F11t/i0+2fwGKag1cEDt1ik5uBZXcBnDqVFtF1syRP gzZXw+VAK/u7G70101K0tuKlj+wiMI+B6zowCfSmV5IySWbygylSHxW7W4fAqSzy LtLsMtLNdTd0zFccSn7gjSfUe8z0vmivgWJdhyT/iM+s9Vo9JJBxu1pUCkGqBraI VKUWbXvP7ByFm8UsiPfgzA7LvSRlxlVMZblliJbadSviLSReJM89FtTtADv2ZQHO cTxH0HTavdCx/hfdIdPJhUQ4zbH9QlDslO42kzf0ItZ9s71vm301Q5rjo7dY6kvz QdNPtdiP4zfzqw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:44:09 2025 by rpki-client