This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft File: dBmPcCK5VgUB20SK9gMB-ihekjY.mft (raw, json) Hash identifier: 5KicbVBSTvSXKkHNOGStn6+V4omcXIf865DdnEafEgs= Subject key identifier: 68:45:98:AD:5F:0E:45:40:05:F9:53:75:5C:2F:DE:D3:3C:3E:A4:50 Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36 Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236 Certificate serial: 019B0E931B783D62325DAD79E1EC22DD0100 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft Manifest number: 1774 Signing time: Thu 11 Dec 2025 18:01:20 +0000 Manifest this update: Thu 11 Dec 2025 18:01:20 +0000 Manifest next update: Fri 12 Dec 2025 18:01:20 +0000 Files and hashes: 1: TdoQIASyikqUevYbZs5T-_NUhsA.roa (hash: GUpM54hhs9YZPF//jA+AK0p+Pcnyv2rBVFcTgqhcKTE=) 2: dBmPcCK5VgUB20SK9gMB-ihekjY.crl (hash: Hn4TJAmq9imLyzl0KZF/HWUmykR4GwcnlsqgDnfVnoE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:93:1b:78:3d:62:32:5d:ad:79:e1:ec:22:dd:01:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74198f7022b9560501db448af60301fa285e9236 Validity Not Before: Dec 11 18:01:20 2025 GMT Not After : Dec 12 18:01:20 2025 GMT Subject: CN=684598ad5f0e454005f953755c2fded33c3ea450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1a:7b:7a:75:58:fd:95:c1:ec:93:b4:47:ca: c3:e8:f6:4d:d4:3d:72:7a:8d:62:5f:52:49:d8:14: f9:b8:61:6a:05:b2:97:d4:1b:a2:da:52:bc:0c:1a: 5d:72:43:2d:9b:66:6e:49:c3:3a:58:e1:ee:fc:b1: d7:83:2f:ad:79:eb:20:02:d8:72:a4:72:f7:71:b1: 88:25:bd:00:25:6a:9f:04:eb:9b:30:85:58:bb:57: e1:70:04:2a:1a:d0:f0:b0:d1:af:6c:dc:5d:dd:67: 06:37:c9:b2:6c:b4:0e:64:c7:09:a1:05:17:0e:1d: 74:bf:f8:c3:80:60:5c:67:f4:3d:37:17:ec:5d:7b: 50:19:3e:e0:a3:e7:89:ce:c9:0a:75:fe:0e:82:cb: 39:35:02:54:fe:31:9a:6a:4b:18:d4:a7:38:3b:f4: 5a:77:e2:87:7d:9d:c2:e5:66:61:dd:2e:0f:46:b0: b4:f4:05:73:1c:dd:6e:9a:9a:f4:ea:eb:73:e3:bb: 4a:62:47:f1:dd:60:cd:7e:93:63:a2:d1:4d:ec:da: db:f6:46:e3:46:34:9a:17:f7:68:98:39:79:23:ee: fc:3f:f5:09:31:ec:59:b4:b3:e2:1e:5e:47:ff:bb: 64:cc:33:bd:28:37:7a:1f:fd:ee:5b:a6:1a:3f:8e: 68:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:45:98:AD:5F:0E:45:40:05:F9:53:75:5C:2F:DE:D3:3C:3E:A4:50 X509v3 Authority Key Identifier: keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:47:0a:d1:95:ee:6d:cd:34:72:bd:21:6e:4a:c0:72:2e:5b: 38:c8:69:ab:5c:49:e3:dc:6b:f3:40:db:76:86:d5:86:f8:76: 8d:11:19:eb:5a:d5:ae:28:3a:b6:fc:94:ed:29:e9:88:a8:c0: d8:9b:d5:01:ed:83:77:54:15:b7:51:6a:19:c1:d0:c6:cc:a6: 14:eb:85:45:04:27:43:24:e7:58:15:1a:d7:34:42:e2:e9:3e: 0b:00:0b:4b:1a:e8:ba:15:7d:bc:8b:40:ee:c1:c1:03:d4:3b: 23:aa:1b:1f:ac:7c:b0:d7:14:d8:47:97:bf:1b:1e:0c:ee:30: ca:f9:64:8d:1b:d7:80:b6:2a:5f:f7:89:08:63:79:99:cc:7c: fb:ca:7b:6d:dc:b2:46:07:27:f8:5e:37:75:e8:33:ab:0c:25: 71:ee:7b:46:f8:98:43:73:a5:d3:e2:3d:44:92:80:d7:2b:dd: a3:5b:21:b3:c6:f1:f6:19:96:91:61:61:fd:ab:f8:4b:0e:0a: 3b:3e:79:13:fe:15:9f:25:7e:9f:ed:f6:93:33:9e:38:81:f4: 77:13:36:52:d3:33:aa:96:70:fc:ff:42:b8:36:35:8f:0a:4d: 35:de:2a:8c:70:d9:fe:35:45:8a:a4:14:61:98:8d:d4:05:57: cd:e1:36:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOkxt4PWIyXa154ewi3QEAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0MTk4ZjcwMjJiOTU2MDUwMWRiNDQ4YWY2MDMwMWZhMjg1 ZTkyMzYwHhcNMjUxMjExMTgwMTIwWhcNMjUxMjEyMTgwMTIwWjAzMTEwLwYDVQQD Eyg2ODQ1OThhZDVmMGU0NTQwMDVmOTUzNzU1YzJmZGVkMzNjM2VhNDUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Bp7enVY/ZXB7JO0R8rD6PZN1D1y eo1iX1JJ2BT5uGFqBbKX1Bui2lK8DBpdckMtm2ZuScM6WOHu/LHXgy+teesgAthy pHL3cbGIJb0AJWqfBOubMIVYu1fhcAQqGtDwsNGvbNxd3WcGN8mybLQOZMcJoQUX Dh10v/jDgGBcZ/Q9NxfsXXtQGT7go+eJzskKdf4Ogss5NQJU/jGaaksY1Kc4O/Ra d+KHfZ3C5WZh3S4PRrC09AVzHN1umpr06utz47tKYkfx3WDNfpNjotFN7Nrb9kbj RjSaF/domDl5I+78P/UJMexZtLPiHl5H/7tkzDO9KDd6H/3uW6YaP45o9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGhFmK1fDkVABflTdVwv3tM8PqRQMB8GA1UdIwQY MBaAFHQZj3AiuVYFAdtEivYDAfooXpI2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEJtUGNDSzVWZ1VCMjBTSzlnTUItaWhla2pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8xYmU1ZTEtNTZiNC00YzY2LWJlYWIt NmYxNjM5NjZhZjhiLzEvZEJtUGNDSzVWZ1VCMjBTSzlnTUItaWhla2pZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My8xYmU1ZTEtNTZiNC00YzY2LWJlYWItNmYxNjM5NjZhZjhi LzEvZEJtUGNDSzVWZ1VCMjBTSzlnTUItaWhla2pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARkcK0ZXu bc00cr0hbkrAci5bOMhpq1xJ49xr80DbdobVhvh2jREZ61rVrig6tvyU7SnpiKjA 2JvVAe2Dd1QVt1FqGcHQxsymFOuFRQQnQyTnWBUa1zRC4uk+CwALSxrouhV9vItA 7sHBA9Q7I6obH6x8sNcU2EeXvxseDO4wyvlkjRvXgLYqX/eJCGN5mcx8+8p7bdyy Rgcn+F43degzqwwlce57RviYQ3Ol0+I9RJKA1yvdo1shs8bx9hmWkWFh/av4Sw4K Oz55E/4VnyV+n+32kzOeOIH0dxM2UtMzqpZw/P9CuDY1jwpNNd4qjHDZ/jVFiqQU YZiN1AVXzeE2vA== -----END CERTIFICATE-----Generated at Fri Dec 12 00:20:43 2025 by rpki-client