This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft File: dfGnY3RcJdrSj0qBFmiOgs4SAos.mft (raw, json) Hash identifier: +I40akAM4LeO3l8q8qKGIZMTDF1DdJdcWuInlXr8SAs= Subject key identifier: FE:6E:4F:5A:BF:F0:5B:F4:D6:2E:15:72:15:83:A7:86:BD:AE:B2:45 Authority key identifier: 75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B Certificate issuer: /CN=75f1a763745c25dad28f4a8116688e82ce12028b Certificate serial: 019B0E25BEAD5F5BB64789C6060F727FDDC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft Manifest number: 1595 Signing time: Thu 11 Dec 2025 16:01:53 +0000 Manifest this update: Thu 11 Dec 2025 16:01:53 +0000 Manifest next update: Fri 12 Dec 2025 16:01:53 +0000 Files and hashes: 1: dfGnY3RcJdrSj0qBFmiOgs4SAos.crl (hash: TmvsuEBHCSkEIP4EifqzhOyw7sICBiMPV8JXZK/R8W0=) 2: ecFLrFSYazGNpMwtdUC2GTyB7Ls.roa (hash: 9V1D5AZ/eHVRt4YDKcmTOE8v9iNuXaOV/i0Ye/mdU9E=) 3: zeZfDF6FQVXfyXUfk9yRfeoJZIA.roa (hash: DtxqGawsrFVZx4HNzS+S5CsdD6flwYPGqAxKv36rkJ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 16:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:25:be:ad:5f:5b:b6:47:89:c6:06:0f:72:7f:dd:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75f1a763745c25dad28f4a8116688e82ce12028b Validity Not Before: Dec 11 16:01:53 2025 GMT Not After : Dec 12 16:01:53 2025 GMT Subject: CN=fe6e4f5abff05bf4d62e15721583a786bdaeb245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ec:5c:69:1a:5b:69:d7:cb:da:d0:da:9b:38: f9:29:4a:6e:78:03:06:b5:83:c8:c0:21:b1:df:5b: d8:5a:57:8e:49:27:70:3b:8d:27:97:4a:42:6a:9f: 1c:49:26:ac:e6:0f:4b:00:08:b0:bf:c9:ad:e3:bb: 4e:45:34:44:10:ef:08:e0:42:f0:3b:0f:38:aa:c2: 9c:e9:a1:8a:11:d9:d9:4b:90:09:19:4c:02:d5:af: 80:0a:f7:c3:89:22:3b:b5:f8:27:d8:8b:f9:46:f4: e0:3a:d4:ca:ec:35:ed:75:2e:0a:dd:bb:3a:0a:4e: 40:b0:27:4b:0a:be:37:27:86:88:5e:ff:4e:77:cc: 9e:15:39:4d:1e:12:02:1e:af:1e:ba:c1:56:17:c8: 59:eb:0b:09:76:a5:21:44:7a:df:1d:2e:fb:7b:cf: 46:2b:44:dd:b2:60:a5:a1:45:ba:e2:62:45:b1:bc: 8f:ea:2d:02:cd:84:c6:9c:5c:b1:b3:bb:41:5a:47: 4b:6e:d2:aa:78:af:b0:c2:f0:e9:a1:d3:90:5d:a9: f0:50:d6:0b:f1:7e:2c:39:a0:43:0c:a6:8a:72:22: 17:c1:12:da:a0:e9:a4:b1:c7:74:66:75:b4:a4:23: e5:dc:38:e0:cd:97:b7:6f:15:10:5d:a5:ba:2e:fd: b9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6E:4F:5A:BF:F0:5B:F4:D6:2E:15:72:15:83:A7:86:BD:AE:B2:45 X509v3 Authority Key Identifier: keyid:75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:79:0e:ca:45:1f:67:7a:42:83:08:d6:31:24:6f:d8:52:60: a3:a3:6a:8f:e3:05:48:ee:2e:5a:47:2b:47:71:b5:d7:2b:d0: 77:af:a2:f9:4a:7e:67:1d:10:38:57:e0:1d:52:70:77:98:66: 45:ba:58:5b:41:61:0b:29:78:2e:6c:1b:b9:47:97:ec:8d:5a: 16:5e:b2:94:a0:99:1d:2d:dd:22:51:b3:b2:78:0d:6a:d6:35: a7:9a:be:e8:63:88:ec:eb:fd:9a:ca:4c:47:07:2e:3e:34:30: 9e:d7:99:00:b1:3a:21:2d:1a:a0:47:bc:6d:6a:b2:2e:34:b0: 9a:68:f4:0f:03:4d:f8:c6:88:3b:b2:11:44:34:0f:45:13:48: cd:06:90:69:65:d7:ac:e2:98:3a:ae:23:22:79:e9:5c:4a:36: bc:2d:8c:2e:7a:1b:35:79:dc:f5:e7:b3:d4:f7:71:c6:70:a8: cd:04:25:69:07:d8:d4:5d:ff:7b:0c:e0:d2:f5:8e:30:55:69: 73:67:ed:6a:c0:9c:e1:6a:56:75:17:8f:51:a8:24:55:9a:c1: 71:43:2e:3b:9a:6c:07:23:e1:87:1d:c5:93:9d:80:30:b1:7e: 73:9c:d4:6c:dc:f4:4a:86:ab:49:7b:d2:4e:6b:90:92:b2:44: ef:fa:1d:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJb6tX1u2R4nGBg9yf93GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1ZjFhNzYzNzQ1YzI1ZGFkMjhmNGE4MTE2Njg4ZTgyY2Ux MjAyOGIwHhcNMjUxMjExMTYwMTUzWhcNMjUxMjEyMTYwMTUzWjAzMTEwLwYDVQQD EyhmZTZlNGY1YWJmZjA1YmY0ZDYyZTE1NzIxNTgzYTc4NmJkYWViMjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OxcaRpbadfL2tDamzj5KUpueAMG tYPIwCGx31vYWleOSSdwO40nl0pCap8cSSas5g9LAAiwv8mt47tORTREEO8I4ELw Ow84qsKc6aGKEdnZS5AJGUwC1a+ACvfDiSI7tfgn2Iv5RvTgOtTK7DXtdS4K3bs6 Ck5AsCdLCr43J4aIXv9Od8yeFTlNHhICHq8eusFWF8hZ6wsJdqUhRHrfHS77e89G K0TdsmCloUW64mJFsbyP6i0CzYTGnFyxs7tBWkdLbtKqeK+wwvDpodOQXanwUNYL 8X4sOaBDDKaKciIXwRLaoOmkscd0ZnW0pCPl3DjgzZe3bxUQXaW6Lv252QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP5uT1q/8Fv01i4VchWDp4a9rrJFMB8GA1UdIwQY MBaAFHXxp2N0XCXa0o9KgRZojoLOEgKLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGZHblkzUmNKZHJTajBxQkZtaU9nczRTQW9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi85ODBlNjYtMzYzMS00ZmRlLThlMmQt Yzg0OWJjMGYzNTliLzEvZGZHblkzUmNKZHJTajBxQkZtaU9nczRTQW9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi85ODBlNjYtMzYzMS00ZmRlLThlMmQtYzg0OWJjMGYzNTli LzEvZGZHblkzUmNKZHJTajBxQkZtaU9nczRTQW9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJnkOykUf Z3pCgwjWMSRv2FJgo6Nqj+MFSO4uWkcrR3G11yvQd6+i+Up+Zx0QOFfgHVJwd5hm RbpYW0FhCyl4LmwbuUeX7I1aFl6ylKCZHS3dIlGzsngNatY1p5q+6GOI7Ov9mspM RwcuPjQwnteZALE6IS0aoEe8bWqyLjSwmmj0DwNN+MaIO7IRRDQPRRNIzQaQaWXX rOKYOq4jInnpXEo2vC2MLnobNXnc9eez1PdxxnCozQQlaQfY1F3/ewzg0vWOMFVp c2ftasCc4WpWdRePUagkVZrBcUMuO5psByPhhx3Fk52AMLF+c5zUbNz0SoarSXvS TmuQkrJE7/odyA== -----END CERTIFICATE-----Generated at Fri Dec 12 01:23:48 2025 by rpki-client