This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft File: drtZ2KtKtSd87uX_CYIIQzBiex8.mft (raw, json) Hash identifier: 9WmY5n6Ebpztt0krX09xlM9MpIEy+aXz4naIEkt06SU= Subject key identifier: 36:66:7B:FA:97:DF:D8:61:B9:15:39:A9:6C:8B:A8:FA:8A:04:08:1B Authority key identifier: 76:BB:59:D8:AB:4A:B5:27:7C:EE:E5:FF:09:82:08:43:30:62:7B:1F Certificate issuer: /CN=76bb59d8ab4ab5277ceee5ff0982084330627b1f Certificate serial: 019B0DB6FDD5D9681E1F989DB3A015C983C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/drtZ2KtKtSd87uX_CYIIQzBiex8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft Manifest number: 0224 Signing time: Thu 11 Dec 2025 14:00:54 +0000 Manifest this update: Thu 11 Dec 2025 14:00:54 +0000 Manifest next update: Fri 12 Dec 2025 14:00:54 +0000 Files and hashes: 1: AMeFJYEOsq8eDF0JklVrrKO_x-w.roa (hash: BUSoz6NuItfjL6psERkejscD0G0Lwnx4YN1Y5CF1al8=) 2: drtZ2KtKtSd87uX_CYIIQzBiex8.crl (hash: JXPTD/3+tSTeZEaepZotnjBYa2fEls5qMrsOG50MtZw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.crl rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft rsync://rpki.ripe.net/repository/DEFAULT/drtZ2KtKtSd87uX_CYIIQzBiex8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:b6:fd:d5:d9:68:1e:1f:98:9d:b3:a0:15:c9:83:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76bb59d8ab4ab5277ceee5ff0982084330627b1f Validity Not Before: Dec 11 14:00:54 2025 GMT Not After : Dec 12 14:00:54 2025 GMT Subject: CN=36667bfa97dfd861b91539a96c8ba8fa8a04081b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cb:5b:4d:bb:75:2a:af:ba:a5:e1:8f:bd:44: 41:bc:79:01:51:9d:08:5a:76:74:85:9e:67:6e:1f: 7c:66:5d:a5:4a:9d:19:52:8e:f6:92:2b:b9:d7:ca: 5f:32:a2:32:9e:cf:6a:eb:5e:74:96:7a:a8:19:57: ac:25:a5:11:5e:41:da:db:63:35:c8:7a:47:f8:be: 02:f7:3d:8c:3e:86:52:e2:44:0c:44:6f:3a:24:5e: 50:de:87:2c:85:d4:e1:ef:98:3a:18:6f:a0:f3:5f: f4:97:92:0d:42:1e:36:f9:9a:da:41:f8:00:8d:73: 69:60:25:f8:2c:e5:22:eb:79:d7:b5:c8:50:84:4f: 5b:9f:ac:44:3f:a7:be:0e:96:f4:0a:20:12:8e:1b: be:ce:a0:6b:be:94:25:c8:59:e3:33:6d:b2:a1:24: 7b:71:17:a4:8d:7a:ec:44:1d:fb:a0:3d:59:77:81: fb:94:15:d0:41:93:b2:02:23:bb:13:91:75:7a:ba: 5a:3b:4f:6a:db:29:f7:c9:5a:75:84:0b:9c:69:77: fa:c0:78:bc:76:96:48:f8:cd:c6:a1:da:00:23:4f: 63:9b:2b:06:10:42:4d:b1:5a:ba:ef:1f:a0:0f:1a: e7:a2:f4:32:cf:91:23:6d:57:b7:85:c9:e6:60:3e: d1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:66:7B:FA:97:DF:D8:61:B9:15:39:A9:6C:8B:A8:FA:8A:04:08:1B X509v3 Authority Key Identifier: keyid:76:BB:59:D8:AB:4A:B5:27:7C:EE:E5:FF:09:82:08:43:30:62:7B:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drtZ2KtKtSd87uX_CYIIQzBiex8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:4e:70:dd:e2:d2:a2:a2:76:0e:73:6f:17:e8:67:a8:af:e5: 17:96:41:a9:33:5b:1e:37:13:80:46:5a:d7:68:fd:5d:98:ef: 07:0d:52:ec:e7:ca:08:05:df:fa:d7:3a:a7:41:d7:89:07:ef: a8:a4:f5:fa:6d:fb:b2:68:8d:f6:df:0f:35:64:c9:fb:05:7b: ff:85:8f:24:0e:a7:77:3d:bb:8d:a2:b9:8d:56:4d:eb:39:31: c5:d6:8f:ca:e5:db:cc:44:8c:31:5d:38:01:8e:76:e1:ea:d1: 14:f9:dc:2e:e2:ef:0a:53:ce:21:ea:bc:e1:ba:8d:77:fc:4e: 22:7d:a8:78:b4:2b:f9:47:98:69:5b:d3:09:a7:4a:69:35:8f: 94:36:41:86:d1:7e:08:5d:ae:38:2c:f9:81:79:f4:89:bf:fc: 28:c9:c9:88:81:76:78:07:74:0b:63:e8:e5:62:52:c1:70:d2: 80:94:47:47:4d:7f:77:0b:d8:a0:f8:24:fb:9a:09:c2:16:76: c1:0b:32:66:57:79:bd:e9:76:a5:f4:da:fe:07:cf:58:85:9b: 6c:e0:19:c3:0f:d0:55:bc:77:37:81:e1:4e:f6:f8:3f:ad:7f: 12:68:b9:15:14:fd:47:e2:7b:9f:1c:5a:5e:95:a3:49:2a:81: 32:6d:5c:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsNtv3V2WgeH5ids6AVyYPCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YmI1OWQ4YWI0YWI1Mjc3Y2VlZTVmZjA5ODIwODQzMzA2 MjdiMWYwHhcNMjUxMjExMTQwMDU0WhcNMjUxMjEyMTQwMDU0WjAzMTEwLwYDVQQD EygzNjY2N2JmYTk3ZGZkODYxYjkxNTM5YTk2YzhiYThmYThhMDQwODFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtctbTbt1Kq+6peGPvURBvHkBUZ0I WnZ0hZ5nbh98Zl2lSp0ZUo72kiu518pfMqIyns9q6150lnqoGVesJaURXkHa22M1 yHpH+L4C9z2MPoZS4kQMRG86JF5Q3ocshdTh75g6GG+g81/0l5INQh42+ZraQfgA jXNpYCX4LOUi63nXtchQhE9bn6xEP6e+Dpb0CiASjhu+zqBrvpQlyFnjM22yoSR7 cRekjXrsRB37oD1Zd4H7lBXQQZOyAiO7E5F1erpaO09q2yn3yVp1hAucaXf6wHi8 dpZI+M3GodoAI09jmysGEEJNsVq67x+gDxrnovQyz5EjbVe3hcnmYD7RPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDZme/qX39hhuRU5qWyLqPqKBAgbMB8GA1UdIwQY MBaAFHa7WdirSrUnfO7l/wmCCEMwYnsfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHJ0WjJLdEt0U2Q4N3VYX0NZSUlRekJpZXg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS84MmQ2NWUtZTBkOS00ZmNkLWIzYWUt NGQzYTVjMDQyZTYxLzEvZHJ0WjJLdEt0U2Q4N3VYX0NZSUlRekJpZXg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS84MmQ2NWUtZTBkOS00ZmNkLWIzYWUtNGQzYTVjMDQyZTYx LzEvZHJ0WjJLdEt0U2Q4N3VYX0NZSUlRekJpZXg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATU5w3eLS oqJ2DnNvF+hnqK/lF5ZBqTNbHjcTgEZa12j9XZjvBw1S7OfKCAXf+tc6p0HXiQfv qKT1+m37smiN9t8PNWTJ+wV7/4WPJA6ndz27jaK5jVZN6zkxxdaPyuXbzESMMV04 AY524erRFPncLuLvClPOIeq84bqNd/xOIn2oeLQr+UeYaVvTCadKaTWPlDZBhtF+ CF2uOCz5gXn0ib/8KMnJiIF2eAd0C2Po5WJSwXDSgJRHR01/dwvYoPgk+5oJwhZ2 wQsyZld5vel2pfTa/gfPWIWbbOAZww/QVbx3N4HhTvb4P61/Emi5FRT9R+J7nxxa XpWjSSqBMm1cfA== -----END CERTIFICATE-----Generated at Thu Dec 11 23:57:42 2025 by rpki-client