This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft File: dhrP1knI7q2FUZQngfoW9o29EPM.mft (raw, json) Hash identifier: rYQ/UZkwckPjtX3ZJtob2/AJ/dRQ+BPkBzGB3l1v0AA= Subject key identifier: 37:29:65:25:E0:C4:69:69:3D:A3:1D:8F:AC:0B:D0:C0:14:29:61:1E Authority key identifier: 76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3 Certificate issuer: /CN=761acfd649c8eead8551942781fa16f68dbd10f3 Certificate serial: 019B37FC42D36138FC5235288E7D66C21B30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft Manifest number: 1787 Signing time: Fri 19 Dec 2025 19:00:37 +0000 Manifest this update: Fri 19 Dec 2025 19:00:37 +0000 Manifest next update: Sat 20 Dec 2025 19:00:37 +0000 Files and hashes: 1: UdkvXpXGLdhITVh5jtCCMBnxb7M.roa (hash: HifSo99m/eGKn8WJh44GwrCR837RJMUrmbV81B/JjSg=) 2: dhrP1knI7q2FUZQngfoW9o29EPM.crl (hash: OJjUcTnvSQKs4P+sNFUkmOodOZYmGjZSRHbn2iq1iBc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:fc:42:d3:61:38:fc:52:35:28:8e:7d:66:c2:1b:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=761acfd649c8eead8551942781fa16f68dbd10f3 Validity Not Before: Dec 19 19:00:37 2025 GMT Not After : Dec 20 19:00:37 2025 GMT Subject: CN=37296525e0c469693da31d8fac0bd0c01429611e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c2:1c:2e:1c:4d:cf:4a:cd:52:73:66:c7:11: c4:95:c9:6b:fb:c6:ab:a1:00:00:e6:1a:7c:00:f1: 5e:fc:5a:00:7a:d4:3a:89:8c:8f:a9:9a:6c:11:e2: a5:07:8a:53:e1:c5:81:28:f8:c6:0f:30:8b:4a:e3: 47:c8:78:40:b3:55:1a:b0:f3:f3:02:2a:a5:e2:b0: 22:3e:f5:8d:1d:c4:73:ee:6f:98:b6:f6:e1:5a:f2: e9:b7:be:77:91:6c:e0:9c:14:24:f9:6d:55:da:3f: 4a:79:1f:f9:77:e5:03:14:6d:7d:67:58:80:93:29: 12:05:04:b5:bf:25:4a:01:74:af:4c:e6:49:9f:bd: b8:75:7c:8f:3f:6c:66:f4:03:03:0f:9e:e8:2b:1f: 95:a6:ef:e0:5a:09:ef:e8:0c:d8:36:6d:33:43:e3: 22:7d:fb:ee:1b:1d:24:0b:99:a7:3a:dc:c8:c4:de: fd:28:f4:a6:e8:ce:74:02:fc:ec:ff:f4:93:60:a7: ca:74:12:1f:ae:b7:01:02:38:a4:4e:37:c4:32:e1: b8:86:71:30:dd:ee:4f:af:d0:5b:88:f2:d0:0a:4b: 21:5c:95:7f:e7:3e:78:02:37:e7:93:80:96:92:80: 84:08:5b:40:a8:72:2f:62:75:10:f3:f1:3f:b1:e0: 3c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:29:65:25:E0:C4:69:69:3D:A3:1D:8F:AC:0B:D0:C0:14:29:61:1E X509v3 Authority Key Identifier: keyid:76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:42:0f:40:96:89:d6:22:88:20:16:ab:d3:5b:a5:2c:f6:8d: bc:0b:37:93:d1:d1:6b:7b:35:df:3c:7c:c5:e7:e2:45:da:8b: fb:e3:8a:2a:97:5d:b6:87:ef:46:07:d7:36:7d:8d:64:56:c3: f6:1d:80:b4:bc:88:06:38:32:b3:63:59:53:6e:5b:a2:68:6a: 1e:42:63:7d:44:ff:c6:df:91:34:c2:f1:c5:3b:61:73:60:09: b8:7e:b3:70:d8:10:88:6a:f9:c7:56:91:cb:6d:63:9f:9f:2a: e7:ae:d3:cb:83:69:ab:85:0f:b5:7d:1a:92:b7:6b:4c:40:fa: 83:32:e2:8b:13:b5:41:27:de:23:a2:59:b1:31:01:cc:50:04: 8e:e5:f5:5c:61:6c:20:30:0f:b8:bf:df:fb:ef:b5:a9:c6:14: 50:27:df:0c:66:30:b8:a8:35:b8:f6:16:9e:93:99:c1:5b:c4: b6:53:d1:0b:59:b0:ce:84:bd:89:ff:a6:e3:89:c6:84:7a:c3: c1:2d:1a:69:c3:c2:7b:49:ec:e1:cd:f9:6e:ce:b9:9a:a3:2a: 62:90:75:34:2b:f3:06:47:16:05:e7:c0:19:7f:a0:c5:02:32: f1:3d:d1:40:32:16:8b:c1:db:ca:04:23:f8:61:50:97:a8:d7: 19:b9:18:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3/ELTYTj8UjUojn1mwhswMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2MWFjZmQ2NDljOGVlYWQ4NTUxOTQyNzgxZmExNmY2OGRi ZDEwZjMwHhcNMjUxMjE5MTkwMDM3WhcNMjUxMjIwMTkwMDM3WjAzMTEwLwYDVQQD EygzNzI5NjUyNWUwYzQ2OTY5M2RhMzFkOGZhYzBiZDBjMDE0Mjk2MTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssIcLhxNz0rNUnNmxxHElclr+8ar oQAA5hp8APFe/FoAetQ6iYyPqZpsEeKlB4pT4cWBKPjGDzCLSuNHyHhAs1UasPPz Aiql4rAiPvWNHcRz7m+YtvbhWvLpt753kWzgnBQk+W1V2j9KeR/5d+UDFG19Z1iA kykSBQS1vyVKAXSvTOZJn724dXyPP2xm9AMDD57oKx+Vpu/gWgnv6AzYNm0zQ+Mi ffvuGx0kC5mnOtzIxN79KPSm6M50Avzs//STYKfKdBIfrrcBAjikTjfEMuG4hnEw 3e5Pr9BbiPLQCkshXJV/5z54Ajfnk4CWkoCECFtAqHIvYnUQ8/E/seA8IwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDcpZSXgxGlpPaMdj6wL0MAUKWEeMB8GA1UdIwQY MBaAFHYaz9ZJyO6thVGUJ4H6FvaNvRDzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGhyUDFrbkk3cTJGVVpRbmdmb1c5bzI5RVBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC82ZjkyODMtYjRkNC00NGNkLWE2OWIt YzczMjAxZGY5OTk1LzEvZGhyUDFrbkk3cTJGVVpRbmdmb1c5bzI5RVBNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC82ZjkyODMtYjRkNC00NGNkLWE2OWItYzczMjAxZGY5OTk1 LzEvZGhyUDFrbkk3cTJGVVpRbmdmb1c5bzI5RVBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW0IPQJaJ 1iKIIBar01ulLPaNvAs3k9HRa3s13zx8xefiRdqL++OKKpddtofvRgfXNn2NZFbD 9h2AtLyIBjgys2NZU25bomhqHkJjfUT/xt+RNMLxxTthc2AJuH6zcNgQiGr5x1aR y21jn58q567Ty4Npq4UPtX0akrdrTED6gzLiixO1QSfeI6JZsTEBzFAEjuX1XGFs IDAPuL/f+++1qcYUUCffDGYwuKg1uPYWnpOZwVvEtlPRC1mwzoS9if+m44nGhHrD wS0aacPCe0ns4c35bs65mqMqYpB1NCvzBkcWBefAGX+gxQIy8T3RQDIWi8HbygQj +GFQl6jXGbkYNw== -----END CERTIFICATE-----Generated at Sat Dec 20 03:29:54 2025 by rpki-client