This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f922e7-d53e-4daf-8770-7ffdfee57f52/1/DwQeIIaCRVpnlCzipkhYygcEfos.mft File: DwQeIIaCRVpnlCzipkhYygcEfos.mft (raw, json) Hash identifier: 0fzujUrYvePVrm2hQN6d2aYGi1U3qCN1Z6rJk3PLJnM= Subject key identifier: 3F:5A:01:77:31:E3:15:13:B8:6A:F1:FF:C5:92:6F:9E:A2:00:DA:8E Authority key identifier: 0F:04:1E:20:86:82:45:5A:67:94:2C:E2:A6:48:58:CA:07:04:7E:8B Certificate issuer: /CN=0f041e208682455a67942ce2a64858ca07047e8b Certificate serial: 019B22BE8520034736C9D3ED33377812DDD7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DwQeIIaCRVpnlCzipkhYygcEfos.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f922e7-d53e-4daf-8770-7ffdfee57f52/1/DwQeIIaCRVpnlCzipkhYygcEfos.mft Manifest number: 1779 Signing time: Mon 15 Dec 2025 16:01:09 +0000 Manifest this update: Mon 15 Dec 2025 16:01:09 +0000 Manifest next update: Tue 16 Dec 2025 16:01:09 +0000 Files and hashes: 1: DwQeIIaCRVpnlCzipkhYygcEfos.crl (hash: ocWsw9z1JADCbFRlWq9QISdh1b/Kc9ghiTTt8kHbb0E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f922e7-d53e-4daf-8770-7ffdfee57f52/1/DwQeIIaCRVpnlCzipkhYygcEfos.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f922e7-d53e-4daf-8770-7ffdfee57f52/1/DwQeIIaCRVpnlCzipkhYygcEfos.mft rsync://rpki.ripe.net/repository/DEFAULT/DwQeIIaCRVpnlCzipkhYygcEfos.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:be:85:20:03:47:36:c9:d3:ed:33:37:78:12:dd:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f041e208682455a67942ce2a64858ca07047e8b Validity Not Before: Dec 15 16:01:09 2025 GMT Not After : Dec 16 16:01:09 2025 GMT Subject: CN=3f5a017731e31513b86af1ffc5926f9ea200da8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:20:ce:93:ae:a5:fa:0a:d5:65:18:9d:b5:1d: 47:4d:a5:7c:20:31:27:cb:ec:af:cd:d4:4f:85:f3: 15:20:de:0c:0d:25:01:7e:fa:7a:70:7a:b6:90:94: 2a:fa:00:0c:70:29:07:a7:2c:97:88:77:d7:65:12: 55:20:44:61:c2:1b:fb:51:5b:01:e3:18:8e:17:3b: 96:35:a8:19:37:8a:96:29:44:d0:18:a3:27:d9:07: b5:46:d9:5f:4a:f2:c5:02:99:38:91:5c:f1:86:2a: 02:6f:8d:d2:24:2b:42:4e:d7:b6:d5:a0:7c:a9:f8: 40:5e:ac:8d:ab:39:7c:83:d1:02:f3:ac:c9:02:ed: 97:e7:29:0b:06:c7:5d:42:89:4c:f7:3d:e8:6d:32: ab:0d:0e:29:50:53:db:f5:2a:af:9c:21:2c:0f:6b: 90:59:78:e4:5e:02:b3:61:9a:bc:e8:49:86:40:d4: d0:a4:0d:98:68:34:cd:80:ab:51:31:4b:de:b4:dc: fc:63:5e:4d:62:1a:0b:b7:80:ab:fb:c4:42:c2:d1: bc:0d:cc:ea:02:6e:0e:82:00:aa:2a:8a:99:4c:80: 23:b4:4c:c2:52:d8:b9:d4:77:60:68:dc:ff:90:1d: 18:9d:83:b2:e5:57:fc:66:71:3d:a4:27:cc:79:6c: 14:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:5A:01:77:31:E3:15:13:B8:6A:F1:FF:C5:92:6F:9E:A2:00:DA:8E X509v3 Authority Key Identifier: keyid:0F:04:1E:20:86:82:45:5A:67:94:2C:E2:A6:48:58:CA:07:04:7E:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DwQeIIaCRVpnlCzipkhYygcEfos.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f922e7-d53e-4daf-8770-7ffdfee57f52/1/DwQeIIaCRVpnlCzipkhYygcEfos.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f922e7-d53e-4daf-8770-7ffdfee57f52/1/DwQeIIaCRVpnlCzipkhYygcEfos.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:24:f9:86:c2:12:5b:e4:3f:03:19:e6:83:dc:9a:9f:86:9d: ba:b7:fe:a8:37:e0:65:4f:b9:2b:14:a3:54:30:64:a1:5d:cd: 20:d7:a1:d7:1e:28:a1:5d:a2:00:be:f2:8e:33:72:2c:4a:c4: 7b:32:2a:2a:3d:8c:36:1c:70:e8:51:91:11:13:0e:4b:2f:b8: ad:45:17:9f:ce:ec:36:a5:3a:e1:c8:4e:c0:8a:3b:12:cf:aa: a7:99:4e:a6:18:0d:94:1f:eb:d8:4f:85:d0:fd:76:37:f0:3e: 7b:cf:1e:96:d8:a6:56:e3:de:db:f1:00:a7:d0:29:a2:eb:53: 40:00:88:1c:23:b8:43:ef:87:7c:f9:09:4d:80:89:03:0e:cb: 22:d9:1f:01:dd:2d:a6:4e:0d:13:7c:54:a8:29:df:ed:13:1a: 28:dd:dc:93:9a:a8:e0:61:05:52:7d:96:a4:90:eb:ef:19:73: f3:7c:ba:76:19:78:84:2c:fa:53:31:bf:de:f2:10:35:10:96: e9:cd:73:bc:93:6f:f7:bc:d4:e0:48:47:39:3b:ad:99:00:ea: cc:ef:3b:7a:d8:69:53:8f:88:62:e1:d1:bf:74:35:d9:12:8a: c6:24:7e:41:26:e7:89:9a:9d:69:8b:48:09:e0:8d:6b:4c:c6: 04:2c:5c:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsivoUgA0c2ydPtMzd4Et3XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmMDQxZTIwODY4MjQ1NWE2Nzk0MmNlMmE2NDg1OGNhMDcw NDdlOGIwHhcNMjUxMjE1MTYwMTA5WhcNMjUxMjE2MTYwMTA5WjAzMTEwLwYDVQQD EygzZjVhMDE3NzMxZTMxNTEzYjg2YWYxZmZjNTkyNmY5ZWEyMDBkYThlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqiDOk66l+grVZRidtR1HTaV8IDEn y+yvzdRPhfMVIN4MDSUBfvp6cHq2kJQq+gAMcCkHpyyXiHfXZRJVIERhwhv7UVsB 4xiOFzuWNagZN4qWKUTQGKMn2Qe1RtlfSvLFApk4kVzxhioCb43SJCtCTte21aB8 qfhAXqyNqzl8g9EC86zJAu2X5ykLBsddQolM9z3obTKrDQ4pUFPb9SqvnCEsD2uQ WXjkXgKzYZq86EmGQNTQpA2YaDTNgKtRMUvetNz8Y15NYhoLt4Cr+8RCwtG8Dczq Am4OggCqKoqZTIAjtEzCUti51HdgaNz/kB0YnYOy5Vf8ZnE9pCfMeWwUwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD9aAXcx4xUTuGrx/8WSb56iANqOMB8GA1UdIwQY MBaAFA8EHiCGgkVaZ5Qs4qZIWMoHBH6LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHdRZUlJYUNSVnBubEN6aXBraFl5Z2NFZm9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mOTIyZTctZDUzZS00ZGFmLTg3NzAt N2ZmZGZlZTU3ZjUyLzEvRHdRZUlJYUNSVnBubEN6aXBraFl5Z2NFZm9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mOTIyZTctZDUzZS00ZGFmLTg3NzAtN2ZmZGZlZTU3ZjUy LzEvRHdRZUlJYUNSVnBubEN6aXBraFl5Z2NFZm9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXCT5hsIS W+Q/Axnmg9yan4adurf+qDfgZU+5KxSjVDBkoV3NINeh1x4ooV2iAL7yjjNyLErE ezIqKj2MNhxw6FGRERMOSy+4rUUXn87sNqU64chOwIo7Es+qp5lOphgNlB/r2E+F 0P12N/A+e88eltimVuPe2/EAp9ApoutTQACIHCO4Q++HfPkJTYCJAw7LItkfAd0t pk4NE3xUqCnf7RMaKN3ck5qo4GEFUn2WpJDr7xlz83y6dhl4hCz6UzG/3vIQNRCW 6c1zvJNv97zU4EhHOTutmQDqzO87ethpU4+IYuHRv3Q12RKKxiR+QSbniZqdaYtI CeCNa0zGBCxczA== -----END CERTIFICATE-----Generated at Mon Dec 15 19:54:58 2025 by rpki-client