This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json) Hash identifier: 9bh/6viG/9up8ErOYO5m+D6VOTVrFkLYukJW9BmluU0= Subject key identifier: 2E:04:2D:BD:6C:AB:9F:C7:0F:15:7C:6D:9C:4B:F2:2F:E5:03:F3:C2 Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2 Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2 Certificate serial: 019B5A51E2C5A3070BD69FC4C3472F7C62CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft Manifest number: 1799 Signing time: Fri 26 Dec 2025 11:01:14 +0000 Manifest this update: Fri 26 Dec 2025 11:01:14 +0000 Manifest next update: Sat 27 Dec 2025 11:01:14 +0000 Files and hashes: 1: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: vG3/IU8s1XUfhSukhP71JoeI5n9yn5vaIVqYLAg6+6g=) 2: meyQlZ2V2fFm7jP19tS1SnwZU8o.roa (hash: Rjzn7WIqlB0uqbC7++KFiY3Pm+Td1rmouk6fxkElj30=) 3: u8p2k1kowabt5V010HcHbUdny4A.roa (hash: +zIIZMzEVP0HgE88S7aeA3JokmowyYpTKNzs1+R3c2M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:e2:c5:a3:07:0b:d6:9f:c4:c3:47:2f:7c:62:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2 Validity Not Before: Dec 26 11:01:14 2025 GMT Not After : Dec 27 11:01:14 2025 GMT Subject: CN=2e042dbd6cab9fc70f157c6d9c4bf22fe503f3c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fa:b5:2a:65:b0:29:b5:19:76:ed:67:03:51: df:95:e5:d1:90:f3:cb:5a:1c:4c:0a:29:25:7b:b3: 0d:a7:ed:61:0b:52:3f:18:c1:3f:19:1f:0c:a3:bf: 95:22:19:ca:54:6a:8b:de:41:40:89:2d:49:4b:41: 4e:34:b9:d4:00:40:3b:2f:dc:58:49:28:92:fe:27: 68:d3:fd:b0:85:ea:7e:c2:12:38:84:84:50:59:41: 29:f7:08:12:e7:3f:4d:88:2d:d5:e9:0c:ab:88:df: fd:ac:1b:ed:8b:ab:8a:d6:3a:27:91:58:1b:77:d5: 9a:0f:c2:92:77:6b:ac:47:90:68:4e:45:08:3f:72: 2b:06:b6:c3:5b:6a:e8:d5:8a:7a:5e:52:81:5d:54: 6e:db:b1:d8:c0:1f:39:46:8d:c9:ce:cb:d3:63:d3: 23:18:79:64:22:79:3c:be:70:49:63:94:c1:5e:55: 5e:5e:ac:36:5b:74:fd:b5:66:73:8d:17:04:29:04: fb:15:7e:da:fc:fe:91:73:2e:20:1c:a5:d3:3d:23: 81:44:32:ed:4f:2e:7f:49:8f:12:5f:22:22:b4:70: e1:82:22:3b:07:b3:b7:5e:57:b9:59:cd:d9:34:5d: bf:97:e7:f6:2f:90:b3:36:80:f5:f4:5d:7f:7c:73: 17:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:04:2D:BD:6C:AB:9F:C7:0F:15:7C:6D:9C:4B:F2:2F:E5:03:F3:C2 X509v3 Authority Key Identifier: keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d1:89:7e:b9:4a:60:16:34:d2:f0:fe:2a:6e:0c:c0:23:71:58: eb:de:95:4e:29:08:2b:e8:6c:78:ea:4e:1a:7c:75:a4:82:25: cb:f0:da:33:a3:a8:a1:22:d7:c4:bd:c2:16:ff:ed:29:cd:50: 25:01:21:15:8a:01:97:50:1f:4e:9c:d1:26:78:3b:cf:f3:e5: 0a:d4:f7:82:53:fe:e1:46:4a:16:52:33:ca:54:99:fe:96:4c: 9a:b3:12:4f:8e:05:c0:37:00:f5:a5:0b:a9:ee:ec:8e:b7:24: 52:f1:fe:ac:37:ff:8a:1c:58:e0:49:14:f0:cd:1b:47:73:48: da:dd:1a:c2:1c:92:ac:3e:ef:3a:69:bf:ab:77:f8:55:be:ee: 6b:e0:54:89:18:29:48:17:3c:58:fe:ab:20:77:9f:77:97:37: a5:ce:5b:ae:18:b2:bf:24:df:0c:44:8d:f5:97:3a:53:77:60: 0c:fb:8f:83:a5:00:bc:ed:37:5a:60:26:f7:6d:6c:77:1a:00: 32:4a:fa:1c:38:39:af:95:b9:67:df:45:09:a8:fe:4b:7f:58: 48:e4:0b:03:2d:87:1d:05:31:6d:72:10:b9:c9:7b:bb:e5:cb: f2:b4:41:ef:df:a7:8d:49:0e:aa:a5:b0:a2:c2:82:72:9e:0d: 68:5c:3c:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUeLFowcL1p/Ew0cvfGLNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlNDNhMGRmMDU5YTUyNTFhNDAwYjVhMWYxMzIxYmEwMGQz MTIwZDIwHhcNMjUxMjI2MTEwMTE0WhcNMjUxMjI3MTEwMTE0WjAzMTEwLwYDVQQD EygyZTA0MmRiZDZjYWI5ZmM3MGYxNTdjNmQ5YzRiZjIyZmU1MDNmM2MyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/q1KmWwKbUZdu1nA1HfleXRkPPL WhxMCikle7MNp+1hC1I/GME/GR8Mo7+VIhnKVGqL3kFAiS1JS0FONLnUAEA7L9xY SSiS/ido0/2whep+whI4hIRQWUEp9wgS5z9NiC3V6QyriN/9rBvti6uK1jonkVgb d9WaD8KSd2usR5BoTkUIP3IrBrbDW2ro1Yp6XlKBXVRu27HYwB85Ro3JzsvTY9Mj GHlkInk8vnBJY5TBXlVeXqw2W3T9tWZzjRcEKQT7FX7a/P6Rcy4gHKXTPSOBRDLt Ty5/SY8SXyIitHDhgiI7B7O3Xle5Wc3ZNF2/l+f2L5CzNoD19F1/fHMXSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC4ELb1sq5/HDxV8bZxL8i/lA/PCMB8GA1UdIwQY MBaAFA5DoN8FmlJRpAC1ofEyG6ANMSDSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGtPZzN3V2FVbEdrQUxXaDhUSWJvQTB4SU5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wYmIzM2ItNjhmNy00NzQ4LTg0YWMt MDA0ZmU0MzNjN2M4LzEvRGtPZzN3V2FVbEdrQUxXaDhUSWJvQTB4SU5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8wYmIzM2ItNjhmNy00NzQ4LTg0YWMtMDA0ZmU0MzNjN2M4 LzEvRGtPZzN3V2FVbEdrQUxXaDhUSWJvQTB4SU5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0Yl+uUpg FjTS8P4qbgzAI3FY696VTikIK+hseOpOGnx1pIIly/DaM6OooSLXxL3CFv/tKc1Q JQEhFYoBl1AfTpzRJng7z/PlCtT3glP+4UZKFlIzylSZ/pZMmrMST44FwDcA9aUL qe7sjrckUvH+rDf/ihxY4EkU8M0bR3NI2t0awhySrD7vOmm/q3f4Vb7ua+BUiRgp SBc8WP6rIHefd5c3pc5brhiyvyTfDESN9Zc6U3dgDPuPg6UAvO03WmAm921sdxoA Mkr6HDg5r5W5Z99FCaj+S39YSOQLAy2HHQUxbXIQucl7u+XL8rRB79+njUkOqqWw osKCcp4NaFw8eA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:25 2025 by rpki-client