This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft File: dWXhJLHEG5OxTX7eBda4B3eYmv0.mft (raw, json) Hash identifier: Dblu8t3Clm1LHCJ7H1PTmq0C+6N07q6GafUv9hc8d2I= Subject key identifier: C7:58:F9:5A:78:47:B8:E3:EE:53:44:5D:9F:7A:6B:C3:57:5B:F1:42 Authority key identifier: 75:65:E1:24:B1:C4:1B:93:B1:4D:7E:DE:05:D6:B8:07:77:98:9A:FD Certificate issuer: /CN=7565e124b1c41b93b14d7ede05d6b80777989afd Certificate serial: 019B5A8862FF7FB55683AE4EBE29D026E1C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dWXhJLHEG5OxTX7eBda4B3eYmv0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft Manifest number: 153C Signing time: Fri 26 Dec 2025 12:00:46 +0000 Manifest this update: Fri 26 Dec 2025 12:00:46 +0000 Manifest next update: Sat 27 Dec 2025 12:00:46 +0000 Files and hashes: 1: dWXhJLHEG5OxTX7eBda4B3eYmv0.crl (hash: 49E/ryxGY51ODlfrfRbYwuuG/wJhsvfgUxJfjY+B8wc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft rsync://rpki.ripe.net/repository/DEFAULT/dWXhJLHEG5OxTX7eBda4B3eYmv0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:62:ff:7f:b5:56:83:ae:4e:be:29:d0:26:e1:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7565e124b1c41b93b14d7ede05d6b80777989afd Validity Not Before: Dec 26 12:00:46 2025 GMT Not After : Dec 27 12:00:46 2025 GMT Subject: CN=c758f95a7847b8e3ee53445d9f7a6bc3575bf142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e7:24:8c:a8:21:ea:6c:2a:52:8a:3e:c0:3a: 51:7d:c6:37:26:10:c5:0c:bf:59:0e:e2:1d:e4:7e: 0c:68:97:33:62:03:15:24:53:cf:19:e1:03:a9:89: 76:29:d0:33:a9:1c:dd:bc:2c:3d:c3:d7:36:fb:41: f7:1c:5d:9f:83:7a:7f:f6:ba:6a:03:4b:e6:48:91: 7d:f1:63:dc:62:f2:1c:91:8e:52:0d:be:3b:e3:83: a4:c5:fa:1c:1a:bf:40:c4:51:af:35:b5:8d:44:31: f2:53:f7:f6:ee:7c:d8:bb:58:6e:a4:86:fa:af:ef: 0d:e1:30:91:fc:83:ea:80:20:22:2a:2e:f4:7c:15: a4:50:95:80:46:be:3d:7a:e2:4d:56:ed:25:6a:21: 22:4b:36:fd:4b:79:50:96:11:8c:04:f0:c6:88:c9: d0:88:61:fc:12:9d:ec:19:02:c8:63:ed:1d:93:33: 0c:89:ad:45:91:f2:d0:43:ba:f5:e7:26:49:c2:93: 79:65:38:60:7f:e6:4e:a9:f4:82:24:c8:f7:05:e9: ab:be:4b:65:c8:fc:e0:c6:b3:c6:10:5b:a0:2c:85: da:97:bd:e8:d4:4a:2a:8f:01:57:35:7d:21:47:99: 2e:50:24:7f:94:9d:ca:9d:54:3b:92:0d:7c:50:88: cd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:58:F9:5A:78:47:B8:E3:EE:53:44:5D:9F:7A:6B:C3:57:5B:F1:42 X509v3 Authority Key Identifier: keyid:75:65:E1:24:B1:C4:1B:93:B1:4D:7E:DE:05:D6:B8:07:77:98:9A:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dWXhJLHEG5OxTX7eBda4B3eYmv0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:cb:be:d5:8c:21:e8:f3:b8:e1:5b:ea:2d:cc:2f:93:28:02: 0f:b0:f4:1b:d4:e6:78:1d:c5:45:c4:76:74:dd:0c:ab:74:b7: f7:d8:d8:50:ee:5d:f4:67:41:40:09:d6:ed:31:45:1d:7f:4a: 2d:51:4c:c3:57:d0:cf:2c:e2:02:ff:79:ca:d3:fd:3e:87:4a: a6:93:3b:9e:db:b4:af:a3:7f:83:7c:19:0e:9f:fb:f8:49:f3: ca:0f:52:f2:16:4d:a8:9c:cb:a0:75:5d:ce:0e:2d:87:ec:6b: ec:6e:72:98:be:52:9f:35:bd:a9:42:f3:48:cf:de:8f:9a:cb: 47:05:7a:51:a1:72:bc:c0:c9:c6:c0:71:81:18:52:56:dd:24: 8b:e7:bd:a8:c6:e1:13:c5:f4:65:34:15:1f:bd:d4:07:e9:00: b0:d9:81:c5:f4:c9:20:ff:28:b0:51:98:58:e9:66:91:1d:59: 8d:88:f3:d4:ac:2b:9c:52:59:4f:42:79:cf:d9:02:b8:8c:dd: f1:f0:06:46:eb:7f:1b:11:e9:3b:be:86:f1:63:0e:2c:e1:eb: b2:6d:c4:32:61:78:6c:9a:69:39:05:a6:18:55:16:20:30:67: de:12:d1:49:51:79:f8:f2:89:4a:d9:e4:03:e8:52:d4:58:c1: 1b:e0:1b:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiGL/f7VWg65OvinQJuHAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1NjVlMTI0YjFjNDFiOTNiMTRkN2VkZTA1ZDZiODA3Nzc5 ODlhZmQwHhcNMjUxMjI2MTIwMDQ2WhcNMjUxMjI3MTIwMDQ2WjAzMTEwLwYDVQQD EyhjNzU4Zjk1YTc4NDdiOGUzZWU1MzQ0NWQ5ZjdhNmJjMzU3NWJmMTQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+ckjKgh6mwqUoo+wDpRfcY3JhDF DL9ZDuId5H4MaJczYgMVJFPPGeEDqYl2KdAzqRzdvCw9w9c2+0H3HF2fg3p/9rpq A0vmSJF98WPcYvIckY5SDb4744OkxfocGr9AxFGvNbWNRDHyU/f27nzYu1hupIb6 r+8N4TCR/IPqgCAiKi70fBWkUJWARr49euJNVu0laiEiSzb9S3lQlhGMBPDGiMnQ iGH8Ep3sGQLIY+0dkzMMia1FkfLQQ7r15yZJwpN5ZThgf+ZOqfSCJMj3Bemrvktl yPzgxrPGEFugLIXal73o1EoqjwFXNX0hR5kuUCR/lJ3KnVQ7kg18UIjNnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMdY+Vp4R7jj7lNEXZ96a8NXW/FCMB8GA1UdIwQY MBaAFHVl4SSxxBuTsU1+3gXWuAd3mJr9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFdYaEpMSEVHNU94VFg3ZUJkYTRCM2VZbXYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi85Njk1MmItNzliOC00ZTA0LWJjNGEt MjllNDQ1ZGUyNDU5LzEvZFdYaEpMSEVHNU94VFg3ZUJkYTRCM2VZbXYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi85Njk1MmItNzliOC00ZTA0LWJjNGEtMjllNDQ1ZGUyNDU5 LzEvZFdYaEpMSEVHNU94VFg3ZUJkYTRCM2VZbXYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkcu+1Ywh 6PO44VvqLcwvkygCD7D0G9TmeB3FRcR2dN0Mq3S399jYUO5d9GdBQAnW7TFFHX9K LVFMw1fQzyziAv95ytP9PodKppM7ntu0r6N/g3wZDp/7+Enzyg9S8hZNqJzLoHVd zg4th+xr7G5ymL5SnzW9qULzSM/ej5rLRwV6UaFyvMDJxsBxgRhSVt0ki+e9qMbh E8X0ZTQVH73UB+kAsNmBxfTJIP8osFGYWOlmkR1ZjYjz1KwrnFJZT0J5z9kCuIzd 8fAGRut/GxHpO76G8WMOLOHrsm3EMmF4bJppOQWmGFUWIDBn3hLRSVF5+PKJStnk A+hS1FjBG+AbOA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:07:12 2025 by rpki-client