This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft File: dahWeFOS2ifQC9snCRxZJsMVXYk.mft (raw, json) Hash identifier: mvhh00Q1VJOWffIW+6ayUxWj8TXyhjn62faVs9LWk8M= Subject key identifier: 49:3E:86:75:DA:EF:A7:8E:0C:B0:D0:8C:EE:E6:A9:20:3E:25:9F:B6 Authority key identifier: 75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89 Certificate issuer: /CN=75a856785392da27d00bdb27091c5926c3155d89 Certificate serial: 019B19BACB51B9601578622C4BA569D4E335 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft Manifest number: 0FA9 Signing time: Sat 13 Dec 2025 22:00:30 +0000 Manifest this update: Sat 13 Dec 2025 22:00:30 +0000 Manifest next update: Sun 14 Dec 2025 22:00:30 +0000 Files and hashes: 1: 4Ibv1mRm3BSugEZRLZ50GEzm6Bc.roa (hash: Ox7Eku50X67DCQ6L0nXfJGgK/iPhql76+0sQGSQq9Q4=) 2: dahWeFOS2ifQC9snCRxZJsMVXYk.crl (hash: XIYvGqViTRL/phz+3qPwh2pdDocz+fdXo1UsjR2nXmo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:ba:cb:51:b9:60:15:78:62:2c:4b:a5:69:d4:e3:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75a856785392da27d00bdb27091c5926c3155d89 Validity Not Before: Dec 13 22:00:30 2025 GMT Not After : Dec 14 22:00:30 2025 GMT Subject: CN=493e8675daefa78e0cb0d08ceee6a9203e259fb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:25:86:50:b8:6d:fc:aa:6d:ea:33:27:94:62: d0:98:bd:07:8c:bf:20:04:82:32:5b:b7:59:9b:8e: ac:bd:01:f0:a5:33:6c:a1:e5:b0:3e:55:f5:a0:81: 04:47:24:54:65:81:65:fc:fe:a0:45:8a:6d:0f:db: c1:ef:57:d9:6f:cc:38:59:68:82:6c:84:4f:44:01: 55:fb:f8:e1:02:ef:5b:9e:74:0e:d9:0e:9d:f8:8f: 31:96:9a:6f:7c:23:a1:12:98:7c:42:54:71:8e:74: 3e:66:1a:c5:35:56:31:8f:fa:4c:98:21:05:18:05: ea:c3:b9:f2:fa:69:27:95:0e:9c:69:31:9c:f4:39: 19:8c:1c:ce:bc:b2:66:81:88:01:48:81:e7:56:de: 50:66:6e:21:0d:03:01:e4:d6:21:3a:60:e3:34:c7: 01:78:66:a7:52:8c:26:d7:3d:17:88:1a:da:12:c2: d7:d3:d4:62:91:3b:b3:fe:8c:c0:49:19:24:17:75: cd:50:62:6b:bf:ad:e0:d7:f5:e2:1c:48:f5:e5:d0: 75:cc:74:d7:aa:f2:45:38:59:84:c7:4e:bd:0f:70: 84:d3:e7:e2:d4:e5:35:5b:44:9f:0b:bc:f8:1e:13: 28:c1:6d:81:b9:bb:f7:49:77:d5:d7:85:6d:d2:4b: 89:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:3E:86:75:DA:EF:A7:8E:0C:B0:D0:8C:EE:E6:A9:20:3E:25:9F:B6 X509v3 Authority Key Identifier: keyid:75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ff:ad:4e:87:09:cd:59:a3:8b:2c:3f:e5:4e:af:3c:6b:c6: 5d:f0:16:32:6a:b3:90:d1:09:f8:34:b8:71:5d:3c:97:4e:08: c6:82:f5:ea:8b:4e:db:e5:4e:3f:f5:4e:25:3e:6b:8c:df:4e: 35:76:af:79:8b:47:36:4d:03:f9:f9:63:ef:4c:61:3e:89:0e: 93:04:ec:93:a8:fd:3b:9e:a6:b9:e6:49:db:92:e3:e8:5f:3d: 16:71:57:30:f6:60:28:4d:19:3f:40:73:b7:07:61:07:28:07: 70:89:a9:02:0f:c7:6e:10:9c:18:75:70:87:2a:56:b5:c7:fd: 80:a0:76:d5:ad:ca:dd:51:80:49:d9:28:b8:70:62:ee:59:97: 8c:12:72:8d:f1:fa:8e:eb:3c:94:fe:b6:89:51:51:7b:f1:f7: b9:fc:e8:f8:12:c9:d6:d9:73:bb:a4:91:6f:c3:44:b7:82:76: 2e:e5:25:ed:3d:b1:ff:51:98:9c:93:80:5f:1c:93:07:19:ef: d5:a0:25:55:a0:41:be:32:03:9c:2e:00:66:7c:30:32:05:f4: f0:7b:d7:57:31:4a:5f:38:a1:84:7c:3f:0e:af:39:b8:51:de: 92:47:b5:71:d7:13:20:49:53:cc:fc:51:fd:33:c9:7c:ba:8c: d3:31:37:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZustRuWAVeGIsS6Vp1OM1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1YTg1Njc4NTM5MmRhMjdkMDBiZGIyNzA5MWM1OTI2YzMx NTVkODkwHhcNMjUxMjEzMjIwMDMwWhcNMjUxMjE0MjIwMDMwWjAzMTEwLwYDVQQD Eyg0OTNlODY3NWRhZWZhNzhlMGNiMGQwOGNlZWU2YTkyMDNlMjU5ZmI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgyWGULht/Kpt6jMnlGLQmL0HjL8g BIIyW7dZm46svQHwpTNsoeWwPlX1oIEERyRUZYFl/P6gRYptD9vB71fZb8w4WWiC bIRPRAFV+/jhAu9bnnQO2Q6d+I8xlppvfCOhEph8QlRxjnQ+ZhrFNVYxj/pMmCEF GAXqw7ny+mknlQ6caTGc9DkZjBzOvLJmgYgBSIHnVt5QZm4hDQMB5NYhOmDjNMcB eGanUowm1z0XiBraEsLX09RikTuz/ozASRkkF3XNUGJrv63g1/XiHEj15dB1zHTX qvJFOFmEx069D3CE0+fi1OU1W0SfC7z4HhMowW2Bubv3SXfV14Vt0kuJtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEk+hnXa76eODLDQjO7mqSA+JZ+2MB8GA1UdIwQY MBaAFHWoVnhTkton0AvbJwkcWSbDFV2JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGFoV2VGT1MyaWZRQzlzbkNSeFpKc01WWFlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lYzBkYTktZWE4Yy00YjhlLWEzMmEt YTViYzBjNzBjNTEzLzEvZGFoV2VGT1MyaWZRQzlzbkNSeFpKc01WWFlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9lYzBkYTktZWE4Yy00YjhlLWEzMmEtYTViYzBjNzBjNTEz LzEvZGFoV2VGT1MyaWZRQzlzbkNSeFpKc01WWFlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX/+tTocJ zVmjiyw/5U6vPGvGXfAWMmqzkNEJ+DS4cV08l04IxoL16otO2+VOP/VOJT5rjN9O NXaveYtHNk0D+flj70xhPokOkwTsk6j9O56mueZJ25Lj6F89FnFXMPZgKE0ZP0Bz twdhBygHcImpAg/HbhCcGHVwhypWtcf9gKB21a3K3VGASdkouHBi7lmXjBJyjfH6 jus8lP62iVFRe/H3ufzo+BLJ1tlzu6SRb8NEt4J2LuUl7T2x/1GYnJOAXxyTBxnv 1aAlVaBBvjIDnC4AZnwwMgX08HvXVzFKXzihhHw/Dq85uFHekke1cdcTIElTzPxR /TPJfLqM0zE3GQ== -----END CERTIFICATE-----Generated at Sun Dec 14 01:50:46 2025 by rpki-client