This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft File: rDWoN7KvW2-xjKNdFguamhgiBO8.mft (raw, json) Hash identifier: xZ0C176oPnH1gvzMYnX8HLUPWAVF7MUe1DJfJjkk8Nw= Subject key identifier: E7:92:A9:85:C2:5A:4A:6C:70:7C:B3:EE:6D:A0:53:8F:83:92:37:37 Authority key identifier: AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF Certificate issuer: /CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef Certificate serial: 019B59764AD35DA1A65409D94629061D1B60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft Manifest number: 1280 Signing time: Fri 26 Dec 2025 07:01:23 +0000 Manifest this update: Fri 26 Dec 2025 07:01:23 +0000 Manifest next update: Sat 27 Dec 2025 07:01:23 +0000 Files and hashes: 1: rDWoN7KvW2-xjKNdFguamhgiBO8.crl (hash: nMHxuaPeTWLwDGx2mfr2JqHqoQmLfV/sLiPN8KCqcEA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:4a:d3:5d:a1:a6:54:09:d9:46:29:06:1d:1b:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef Validity Not Before: Dec 26 07:01:23 2025 GMT Not After : Dec 27 07:01:23 2025 GMT Subject: CN=e792a985c25a4a6c707cb3ee6da0538f83923737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:80:b6:7e:b7:f7:d4:9d:f8:40:5b:3f:80:0a: 65:14:64:f6:8a:d5:93:e4:a1:b1:3b:42:a1:04:e9: 09:3e:28:1f:1d:2e:12:16:0b:63:08:2a:40:5e:c4: b7:0c:e7:aa:ce:cc:fe:0f:96:c2:39:fe:14:c6:c1: aa:b5:a7:b2:48:6e:b5:5f:91:9f:55:84:b7:b9:10: cc:fc:36:07:da:dc:e3:df:90:36:50:f9:9c:62:02: b8:71:f9:d5:97:2e:a0:94:93:f7:43:a4:a6:e7:79: 2c:87:84:70:b3:57:4d:ba:df:15:98:0b:cf:03:85: 0a:92:54:1a:c3:ec:a0:f8:d7:26:71:fc:ad:b4:35: cc:93:95:a6:9f:13:6e:d3:03:b9:7c:2a:f7:db:db: 4a:71:99:da:64:6d:bf:dd:8b:8d:98:20:c8:8f:70: ed:9d:30:19:b9:3f:e5:e9:06:30:9a:f3:6e:01:03: cb:18:19:d5:aa:64:60:21:b3:85:bf:34:65:8b:2d: fe:6e:1e:40:8e:f1:a2:92:3d:c2:9c:a8:66:8c:ab: 36:b6:76:95:e0:7c:0d:5c:b0:ab:ca:99:36:34:df: 88:09:f0:d1:6c:80:e5:24:56:34:22:cb:95:78:cd: 64:25:9f:a2:b4:1f:61:16:1c:5d:95:23:36:a1:1b: f2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:92:A9:85:C2:5A:4A:6C:70:7C:B3:EE:6D:A0:53:8F:83:92:37:37 X509v3 Authority Key Identifier: keyid:AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:9d:39:36:0d:17:36:93:af:ab:c3:bf:67:24:89:7c:b8:d5: ca:41:ce:2b:ef:09:c9:da:ac:05:2c:7e:5b:52:f9:15:82:c7: 90:9d:80:bd:b2:83:39:19:43:15:70:9f:4d:51:b8:40:4b:04: 77:56:a8:46:ef:5d:89:4d:ff:9c:11:4e:17:d4:c3:4b:2e:c6: dd:53:04:f7:c8:a1:2e:ad:18:10:fe:fd:6f:7a:31:4f:6a:90: a8:77:8b:3e:06:db:27:6b:cf:c0:64:05:e5:82:ec:11:2a:5b: 8a:71:99:77:46:f0:dd:d6:27:f0:0a:dc:ef:5e:04:97:8c:15: 0b:a0:81:d5:8c:03:13:e2:c8:16:12:6d:15:62:07:ea:9e:13: d1:d9:c5:96:b1:0b:d8:d8:7c:19:b7:78:1b:6c:9a:9d:da:53: b4:fd:0a:f7:62:b4:f4:0b:10:6f:5f:bc:69:e6:a1:fb:4f:20: 87:56:5c:d7:91:e6:8d:3f:ae:4c:8e:44:d7:4a:b5:23:6a:7d: 11:00:b3:e5:49:42:90:90:5c:6a:97:fb:29:63:ad:de:b8:a4: 65:d2:62:eb:93:15:a0:31:14:8d:93:0e:93:0b:f7:50:5f:b1: b6:70:a9:ae:0a:bd:1f:e5:e9:e0:4a:f4:5a:c8:a9:7a:1c:b5: 74:15:87:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdkrTXaGmVAnZRikGHRtgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjMzVhODM3YjJhZjViNmZiMThjYTM1ZDE2MGI5YTlhMTgy MjA0ZWYwHhcNMjUxMjI2MDcwMTIzWhcNMjUxMjI3MDcwMTIzWjAzMTEwLwYDVQQD EyhlNzkyYTk4NWMyNWE0YTZjNzA3Y2IzZWU2ZGEwNTM4ZjgzOTIzNzM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4C2frf31J34QFs/gAplFGT2itWT 5KGxO0KhBOkJPigfHS4SFgtjCCpAXsS3DOeqzsz+D5bCOf4UxsGqtaeySG61X5Gf VYS3uRDM/DYH2tzj35A2UPmcYgK4cfnVly6glJP3Q6Sm53ksh4Rws1dNut8VmAvP A4UKklQaw+yg+NcmcfyttDXMk5WmnxNu0wO5fCr329tKcZnaZG2/3YuNmCDIj3Dt nTAZuT/l6QYwmvNuAQPLGBnVqmRgIbOFvzRliy3+bh5AjvGikj3CnKhmjKs2tnaV 4HwNXLCrypk2NN+ICfDRbIDlJFY0IsuVeM1kJZ+itB9hFhxdlSM2oRvyTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOeSqYXCWkpscHyz7m2gU4+Dkjc3MB8GA1UdIwQY MBaAFKw1qDeyr1tvsYyjXRYLmpoYIgTvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckRXb043S3ZXMi14aktOZEZndWFtaGdpQk84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC82ZTc4MWEtYmNmYi00YTJiLWI2MTct YjUxMWZiYTEzMjlhLzEvckRXb043S3ZXMi14aktOZEZndWFtaGdpQk84Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC82ZTc4MWEtYmNmYi00YTJiLWI2MTctYjUxMWZiYTEzMjlh LzEvckRXb043S3ZXMi14aktOZEZndWFtaGdpQk84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE505Ng0X NpOvq8O/ZySJfLjVykHOK+8JydqsBSx+W1L5FYLHkJ2AvbKDORlDFXCfTVG4QEsE d1aoRu9diU3/nBFOF9TDSy7G3VME98ihLq0YEP79b3oxT2qQqHeLPgbbJ2vPwGQF 5YLsESpbinGZd0bw3dYn8Arc714El4wVC6CB1YwDE+LIFhJtFWIH6p4T0dnFlrEL 2Nh8Gbd4G2yandpTtP0K92K09AsQb1+8aeah+08gh1Zc15HmjT+uTI5E10q1I2p9 EQCz5UlCkJBcapf7KWOt3rikZdJi65MVoDEUjZMOkwv3UF+xtnCprgq9H+Xp4Er0 Wsipehy1dBWHIQ== -----END CERTIFICATE-----Generated at Fri Dec 26 16:05:44 2025 by rpki-client