This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json) Hash identifier: P43OUU2LCDLcN2Yb89z47r3hlTuBv/r/iSaEEBhlb+Q= Subject key identifier: 2A:D6:AC:6A:C1:88:41:6A:B5:E8:94:10:7C:B9:09:83:7C:F1:16:22 Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10 Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310 Certificate serial: 019B593EC92A10CB8604DD022ECC6865C35D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft Manifest number: 10DE Signing time: Fri 26 Dec 2025 06:00:45 +0000 Manifest this update: Fri 26 Dec 2025 06:00:45 +0000 Manifest next update: Sat 27 Dec 2025 06:00:45 +0000 Files and hashes: 1: 5yn4zHauZM75VAijpeMoQrgxCO4.roa (hash: XNQWDr0wgLOmyX40wHgFFl4XUTUYTIzKWa/lVOSFR8o=) 2: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: YbAzinrmWsU7VLotd1moEgtR8QaWhBUPfawMY7IwK1Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:3e:c9:2a:10:cb:86:04:dd:02:2e:cc:68:65:c3:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310 Validity Not Before: Dec 26 06:00:45 2025 GMT Not After : Dec 27 06:00:45 2025 GMT Subject: CN=2ad6ac6ac188416ab5e894107cb909837cf11622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:cd:ea:f4:79:94:ec:e4:b1:9f:b7:e8:8d:af: fd:fa:ac:6c:d9:c3:a0:e2:1d:38:ca:ce:f6:58:07: 2a:b3:cb:4c:ce:77:e5:94:8f:f4:35:bc:9f:98:84: d1:d3:a5:01:5c:ed:3b:cb:f9:04:a7:cd:92:ba:c4: 3f:bf:e5:b1:12:43:06:e1:ad:91:35:b1:1c:2f:73: d9:b8:3f:8d:98:8d:c5:ef:80:14:b6:20:ab:25:f4: 30:19:f7:99:77:b2:ad:46:ba:46:c3:c5:f2:8e:ab: 9b:7b:55:35:ff:ad:55:5e:6f:a3:8f:d3:a3:6e:23: 7d:7b:3f:42:cd:0c:d4:a6:57:11:dc:33:8d:8e:27: b3:06:69:a9:58:1b:68:e0:df:89:09:fa:0a:65:1d: 45:fe:b9:e0:1e:bb:1b:01:d5:57:d3:39:0a:44:0d: 10:ba:a3:26:1a:79:9f:ba:50:f7:fa:61:0b:98:c3: 9a:76:f2:d7:d0:c6:33:ec:33:59:d0:50:4a:54:f9: f9:33:a6:62:df:3e:31:76:69:9a:86:1b:c7:47:72: be:5e:f5:65:41:70:c6:ad:fd:6d:49:3f:8b:eb:a4: 9e:b9:01:cd:11:5f:e2:d7:44:88:17:c2:62:36:e4: c8:8b:d3:40:e0:36:aa:10:19:29:a2:d2:55:9a:cc: 9c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D6:AC:6A:C1:88:41:6A:B5:E8:94:10:7C:B9:09:83:7C:F1:16:22 X509v3 Authority Key Identifier: keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f8:4b:f4:65:73:6e:0e:63:b0:4c:05:37:b1:3c:56:20:23: fd:31:0a:46:33:42:7b:a9:fb:e3:a5:59:c9:02:08:fc:5e:fa: 24:53:61:63:d9:e3:17:54:5d:bc:65:84:01:12:de:23:53:7b: 7f:ca:f3:79:78:5b:44:5c:1d:37:a6:24:44:87:3f:ab:52:1a: e9:45:98:2c:f4:72:c9:fc:56:1a:e0:e5:38:ee:3d:62:22:50: 78:a8:32:b0:8b:c4:4d:fa:ef:2c:cf:69:7e:6d:95:7d:f5:9d: 8c:23:cf:c2:04:17:31:12:e9:7e:bc:d4:ac:c3:0a:da:f0:3d: 69:0e:6b:79:75:14:ff:60:ef:9b:1e:14:74:60:9e:fd:11:7d: f3:d5:a0:ed:16:44:5c:7f:70:1a:92:dc:0d:c4:84:e7:26:58: df:38:8b:97:5a:c8:d4:69:1f:43:42:2a:74:e8:51:4f:d1:25: df:da:1a:5f:23:80:31:9c:8d:42:a3:84:fe:c3:34:f8:f7:f4: 3b:4a:25:13:20:96:97:64:f7:6a:63:36:e1:01:81:23:44:ee: 85:88:21:e9:b3:2c:56:80:88:af:f9:01:5c:1a:cf:d5:e2:20: 19:65:5f:38:bf:b2:2a:18:35:ae:93:bc:a6:9b:b5:2c:97:53: 25:0c:67:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZPskqEMuGBN0CLsxoZcNdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkNDFkMGE2ZTZkZjJlMThjMjU2NzMyMzY4ZDZlNzY4Mjg5 MzEzMTAwHhcNMjUxMjI2MDYwMDQ1WhcNMjUxMjI3MDYwMDQ1WjAzMTEwLwYDVQQD EygyYWQ2YWM2YWMxODg0MTZhYjVlODk0MTA3Y2I5MDk4MzdjZjExNjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6M3q9HmU7OSxn7foja/9+qxs2cOg 4h04ys72WAcqs8tMznfllI/0NbyfmITR06UBXO07y/kEp82SusQ/v+WxEkMG4a2R NbEcL3PZuD+NmI3F74AUtiCrJfQwGfeZd7KtRrpGw8Xyjqube1U1/61VXm+jj9Oj biN9ez9CzQzUplcR3DONjiezBmmpWBto4N+JCfoKZR1F/rngHrsbAdVX0zkKRA0Q uqMmGnmfulD3+mELmMOadvLX0MYz7DNZ0FBKVPn5M6Zi3z4xdmmahhvHR3K+XvVl QXDGrf1tST+L66SeuQHNEV/i10SIF8JiNuTIi9NA4DaqEBkpotJVmsycMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCrWrGrBiEFqteiUEHy5CYN88RYiMB8GA1UdIwQY MBaAFA1B0Kbm3y4YwlZzI2jW52gokxMQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ODM3YjItMGRmMC00ZjVhLTgwZGIt NjJiNjQwYjAyZTJiLzEvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC85ODM3YjItMGRmMC00ZjVhLTgwZGItNjJiNjQwYjAyZTJi LzEvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjfhL9GVz bg5jsEwFN7E8ViAj/TEKRjNCe6n746VZyQII/F76JFNhY9njF1RdvGWEARLeI1N7 f8rzeXhbRFwdN6YkRIc/q1Ia6UWYLPRyyfxWGuDlOO49YiJQeKgysIvETfrvLM9p fm2VffWdjCPPwgQXMRLpfrzUrMMK2vA9aQ5reXUU/2Dvmx4UdGCe/RF989Wg7RZE XH9wGpLcDcSE5yZY3ziLl1rI1GkfQ0IqdOhRT9El39oaXyOAMZyNQqOE/sM0+Pf0 O0olEyCWl2T3amM24QGBI0TuhYgh6bMsVoCIr/kBXBrP1eIgGWVfOL+yKhg1rpO8 ppu1LJdTJQxn/w== -----END CERTIFICATE-----Generated at Fri Dec 26 14:09:08 2025 by rpki-client