This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft File: tDpxymDXTkXSuXSKsQZlKf0BM34.mft (raw, json) Hash identifier: 1aMQXRfC43440/KhdT6YWfAUU+EPydvRxjl8/EYaMg0= Subject key identifier: 6C:DE:E1:7C:58:88:40:32:D6:30:AA:4D:DF:22:8C:24:72:FE:E4:6D Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e Certificate serial: 019B34C518DD1AB9C5BCE2C31ED34403E50F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft Manifest number: 1784 Signing time: Fri 19 Dec 2025 04:01:30 +0000 Manifest this update: Fri 19 Dec 2025 04:01:30 +0000 Manifest next update: Sat 20 Dec 2025 04:01:30 +0000 Files and hashes: 1: M5_-d1GdbRA2RUGO5npOtRSNEB8.roa (hash: DYZ2j8UdvivRy1b6Q4G0ZdvY6U48+tpNnHP/gql8rCo=) 2: tDpxymDXTkXSuXSKsQZlKf0BM34.crl (hash: GJySSxu2NOxZ3mYepiPBcyZvPPtmEspjX3lQ1dznsHI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 04:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c5:18:dd:1a:b9:c5:bc:e2:c3:1e:d3:44:03:e5:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e Validity Not Before: Dec 19 04:01:30 2025 GMT Not After : Dec 20 04:01:30 2025 GMT Subject: CN=6cdee17c58884032d630aa4ddf228c2472fee46d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:27:db:58:66:83:94:9b:da:db:1b:8a:0a:24: c8:9e:d0:80:f4:de:7b:8a:b1:f8:32:e3:8f:0b:02: 16:63:40:ce:23:41:8a:e3:58:f2:14:1a:69:91:2e: ac:25:e5:59:c6:59:70:c5:39:67:7b:97:e2:61:90: d0:8c:6f:c9:0b:4f:6a:2a:82:25:10:4f:37:8c:56: 31:14:f1:81:66:29:44:18:06:c7:1b:b5:cd:cf:e0: 69:6e:28:86:38:22:09:34:8c:9c:ec:e6:0b:07:10: b4:24:9f:ee:33:ef:5a:0c:6a:64:41:4a:06:d3:bb: 27:88:f6:8d:14:de:81:4c:69:75:39:f7:91:78:35: 54:87:a0:c4:a3:7f:96:8b:86:79:88:e9:8a:11:6e: fd:b9:87:ea:c6:a9:68:a6:2d:2b:e3:45:49:b3:d8: 15:bb:fd:aa:99:cf:5a:32:25:ff:41:84:b9:0e:6c: 4a:1c:47:ae:af:a7:67:ce:6f:01:02:5b:d1:5e:b0: 59:d2:d2:a5:09:a8:14:ea:e9:fd:bb:87:5c:ce:2e: a1:34:8c:90:d8:6b:bb:9a:f7:2d:45:af:cd:f8:6b: 07:28:0c:23:7e:b9:8b:9d:6f:eb:e8:47:d8:56:d9: 8d:06:fb:2a:76:d6:c8:78:f5:62:4f:24:02:a4:3e: 0c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:DE:E1:7C:58:88:40:32:D6:30:AA:4D:DF:22:8C:24:72:FE:E4:6D X509v3 Authority Key Identifier: keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:bd:e5:fa:05:73:dd:41:ca:5b:f1:d2:24:74:be:32:70:4a: 49:35:46:21:e8:a0:38:d6:7a:9a:7a:b5:97:42:01:dc:ff:7c: 86:0e:97:67:b5:46:f4:95:21:22:00:81:3c:e3:23:43:54:8b: c4:0a:ec:d9:1b:8c:98:ca:21:c2:8c:c0:aa:7a:4d:ba:16:44: 60:f0:7b:b7:b6:cf:ea:b1:84:87:24:1a:25:8c:9d:cc:0a:f4: 18:92:fc:32:d3:bb:d9:96:a3:00:83:3d:f8:7e:2e:2c:79:83: f6:8d:15:73:0d:f9:b0:b9:2d:87:dd:d2:7e:f2:60:34:5d:25: ce:d2:18:21:16:a9:00:63:b5:75:eb:12:45:61:62:b3:7d:c2: 55:76:28:5d:26:97:84:6d:98:b5:e4:1d:6a:7d:6e:06:1b:41: 32:d2:ef:c4:65:53:7e:53:dc:cb:e2:17:f5:93:c9:05:d9:5e: cd:75:c9:1e:22:8c:06:27:90:33:a9:4e:dc:0c:3f:e0:3a:6a: a9:63:1a:94:8e:4a:9b:c6:52:28:fe:89:84:88:11:46:71:8a: 65:66:48:6a:44:c6:37:10:68:28:73:44:ba:39:1a:35:1a:c2: 01:7e:dd:f1:d9:eb:da:cb:fb:9c:0d:52:72:a5:37:7e:9c:84: 1a:c7:27:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xRjdGrnFvOLDHtNEA+UPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0M2E3MWNhNjBkNzRlNDVkMmI5NzQ4YWIxMDY2NTI5ZmQw MTMzN2UwHhcNMjUxMjE5MDQwMTMwWhcNMjUxMjIwMDQwMTMwWjAzMTEwLwYDVQQD Eyg2Y2RlZTE3YzU4ODg0MDMyZDYzMGFhNGRkZjIyOGMyNDcyZmVlNDZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCfbWGaDlJva2xuKCiTIntCA9N57 irH4MuOPCwIWY0DOI0GK41jyFBppkS6sJeVZxllwxTlne5fiYZDQjG/JC09qKoIl EE83jFYxFPGBZilEGAbHG7XNz+BpbiiGOCIJNIyc7OYLBxC0JJ/uM+9aDGpkQUoG 07sniPaNFN6BTGl1OfeReDVUh6DEo3+Wi4Z5iOmKEW79uYfqxqlopi0r40VJs9gV u/2qmc9aMiX/QYS5DmxKHEeur6dnzm8BAlvRXrBZ0tKlCagU6un9u4dczi6hNIyQ 2Gu7mvctRa/N+GsHKAwjfrmLnW/r6EfYVtmNBvsqdtbIePViTyQCpD4MCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGze4XxYiEAy1jCqTd8ijCRy/uRtMB8GA1UdIwQY MBaAFLQ6ccpg105F0rl0irEGZSn9ATN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS84Y2VmNmYtZmUwOS00ZWY2LThiZjEt Nzk4YWM0OTI4ZWQ2LzEvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS84Y2VmNmYtZmUwOS00ZWY2LThiZjEtNzk4YWM0OTI4ZWQ2 LzEvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJb3l+gVz 3UHKW/HSJHS+MnBKSTVGIeigONZ6mnq1l0IB3P98hg6XZ7VG9JUhIgCBPOMjQ1SL xArs2RuMmMohwozAqnpNuhZEYPB7t7bP6rGEhyQaJYydzAr0GJL8MtO72ZajAIM9 +H4uLHmD9o0Vcw35sLkth93SfvJgNF0lztIYIRapAGO1desSRWFis33CVXYoXSaX hG2YteQdan1uBhtBMtLvxGVTflPcy+IX9ZPJBdlezXXJHiKMBieQM6lO3Aw/4Dpq qWMalI5Km8ZSKP6JhIgRRnGKZWZIakTGNxBoKHNEujkaNRrCAX7d8dnr2sv7nA1S cqU3fpyEGscn4w== -----END CERTIFICATE-----Generated at Fri Dec 19 13:12:13 2025 by rpki-client