This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft File: DyP3PWT22_gdUdNYBUgVaM3YGHU.mft (raw, json) Hash identifier: McQ10NUHO3Ope83dDItWEZZU1odFdZEG3koKRoBZ6Fk= Subject key identifier: 63:03:EA:D3:63:F8:83:48:4A:2E:B7:0C:7E:0B:10:54:FD:DB:45:74 Authority key identifier: 0F:23:F7:3D:64:F6:DB:F8:1D:51:D3:58:05:48:15:68:CD:D8:18:75 Certificate issuer: /CN=0f23f73d64f6dbf81d51d35805481568cdd81875 Certificate serial: 019B5907AA177F19431641215E03AE62A9E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft Manifest number: 0F60 Signing time: Fri 26 Dec 2025 05:00:32 +0000 Manifest this update: Fri 26 Dec 2025 05:00:32 +0000 Manifest next update: Sat 27 Dec 2025 05:00:32 +0000 Files and hashes: 1: DyP3PWT22_gdUdNYBUgVaM3YGHU.crl (hash: b8On/uJP8mjtgnSpTlKBsoH7KF93ivZDA6woh0S6M70=) 2: _mseEGqhmjk5DbDhY65kEG9l3Do.roa (hash: 4EKC+djlGJVTHQZoZJyp3llh1Qpa/Gw18st2TTUCkbA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 05:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:07:aa:17:7f:19:43:16:41:21:5e:03:ae:62:a9:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f23f73d64f6dbf81d51d35805481568cdd81875 Validity Not Before: Dec 26 05:00:32 2025 GMT Not After : Dec 27 05:00:32 2025 GMT Subject: CN=6303ead363f883484a2eb70c7e0b1054fddb4574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a3:80:a6:2d:ad:5d:ba:89:89:c4:c5:f8:85: a7:17:4d:07:1a:23:b0:6b:3f:8d:52:c9:83:7e:43: 4c:f4:6e:8c:95:b8:6d:8c:ea:1f:71:ae:ea:10:9b: 82:15:ed:af:a5:df:24:3d:73:5a:79:75:20:75:48: 12:f7:71:c9:0e:8f:c2:bc:3e:9a:86:e4:ff:ff:ac: 03:57:08:77:bc:c4:c4:53:b7:d2:9f:03:c7:b9:fe: a3:8b:8a:b0:b5:41:4f:50:65:18:fa:c6:a0:29:97: 9d:c5:f9:77:6d:78:52:da:48:71:9f:10:93:d6:d3: 64:d7:66:8f:31:fe:cd:d6:f5:af:e5:e5:2a:bd:1e: 1d:eb:d3:9d:dc:bd:b7:22:a3:2c:6d:58:f3:1f:62: 38:22:f2:a3:94:d0:5b:65:17:76:7c:fa:a6:86:1e: 7c:b9:a7:f1:6b:de:98:d4:99:9e:ce:2b:21:16:ec: c1:7f:a6:24:75:c1:87:07:c6:1d:ca:85:b4:a0:5e: a5:5d:08:a0:d3:9f:cb:ca:a0:55:9e:36:34:73:77: 7c:ab:1a:16:a5:31:4e:dc:ab:d2:8c:2b:9f:15:f9: 9f:73:8e:12:81:8c:69:dc:a3:e8:29:54:76:cd:db: 4b:50:d6:52:ac:a1:4b:44:79:ea:c6:cf:2a:33:ec: 51:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:03:EA:D3:63:F8:83:48:4A:2E:B7:0C:7E:0B:10:54:FD:DB:45:74 X509v3 Authority Key Identifier: keyid:0F:23:F7:3D:64:F6:DB:F8:1D:51:D3:58:05:48:15:68:CD:D8:18:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ab:64:35:7f:5c:84:85:1f:ce:75:ba:6c:bb:b1:e4:31:f5: e0:6c:5a:c4:1d:c6:bf:f2:26:a6:fc:01:39:23:46:5d:be:1e: 23:01:59:6e:aa:c7:d8:98:69:7a:07:72:80:73:0e:2f:08:67: 1c:48:46:70:d7:b1:c1:3a:ea:45:19:ef:87:37:42:9b:2b:70: e9:55:f1:a8:73:ff:07:dd:cd:36:42:30:8d:82:52:83:aa:fb: 1f:35:d2:29:40:cf:cf:e2:28:ab:b4:47:3d:6a:65:72:c8:81: aa:89:73:38:85:a4:90:3c:db:f9:d5:e6:cf:01:93:d6:c3:af: c1:7c:b4:2d:3e:c7:87:5e:c3:66:5a:13:ac:83:ae:d3:83:88: 9f:c7:83:7e:64:93:66:26:4b:2f:47:d7:ef:06:e4:a2:c2:2e: 7d:4c:b0:84:e1:ff:53:da:cd:d5:5b:59:94:82:27:5a:fa:60: 8a:a7:69:f3:a1:f0:60:59:d8:99:ab:4d:e2:67:a7:c0:65:63: fa:93:bc:a1:bf:a0:13:54:91:14:5f:a5:d5:3b:d7:73:b8:1c: 21:d0:f5:d5:12:80:0b:5b:6c:4b:f4:39:01:c3:b7:a8:16:fb: c2:a6:f2:65:90:67:86:15:08:04:94:03:f2:79:04:45:0f:37: 52:40:c0:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZB6oXfxlDFkEhXgOuYqnoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmMjNmNzNkNjRmNmRiZjgxZDUxZDM1ODA1NDgxNTY4Y2Rk ODE4NzUwHhcNMjUxMjI2MDUwMDMyWhcNMjUxMjI3MDUwMDMyWjAzMTEwLwYDVQQD Eyg2MzAzZWFkMzYzZjg4MzQ4NGEyZWI3MGM3ZTBiMTA1NGZkZGI0NTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKOApi2tXbqJicTF+IWnF00HGiOw az+NUsmDfkNM9G6MlbhtjOofca7qEJuCFe2vpd8kPXNaeXUgdUgS93HJDo/CvD6a huT//6wDVwh3vMTEU7fSnwPHuf6ji4qwtUFPUGUY+sagKZedxfl3bXhS2khxnxCT 1tNk12aPMf7N1vWv5eUqvR4d69Od3L23IqMsbVjzH2I4IvKjlNBbZRd2fPqmhh58 uafxa96Y1JmezishFuzBf6YkdcGHB8YdyoW0oF6lXQig05/LyqBVnjY0c3d8qxoW pTFO3KvSjCufFfmfc44SgYxp3KPoKVR2zdtLUNZSrKFLRHnqxs8qM+xR8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGMD6tNj+INISi63DH4LEFT920V0MB8GA1UdIwQY MBaAFA8j9z1k9tv4HVHTWAVIFWjN2Bh1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHlQM1BXVDIyX2dkVWROWUJVZ1ZhTTNZR0hVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8wMzQ3N2MtMTBhNC00NTViLWJlNmIt YjNhMDk0MzBjNjY1LzEvRHlQM1BXVDIyX2dkVWROWUJVZ1ZhTTNZR0hVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8wMzQ3N2MtMTBhNC00NTViLWJlNmItYjNhMDk0MzBjNjY1 LzEvRHlQM1BXVDIyX2dkVWROWUJVZ1ZhTTNZR0hVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfatkNX9c hIUfznW6bLux5DH14GxaxB3Gv/ImpvwBOSNGXb4eIwFZbqrH2JhpegdygHMOLwhn HEhGcNexwTrqRRnvhzdCmytw6VXxqHP/B93NNkIwjYJSg6r7HzXSKUDPz+Ioq7RH PWplcsiBqolzOIWkkDzb+dXmzwGT1sOvwXy0LT7Hh17DZloTrIOu04OIn8eDfmST ZiZLL0fX7wbkosIufUywhOH/U9rN1VtZlIInWvpgiqdp86HwYFnYmatN4menwGVj +pO8ob+gE1SRFF+l1TvXc7gcIdD11RKAC1tsS/Q5AcO3qBb7wqbyZZBnhhUIBJQD 8nkERQ83UkDA/g== -----END CERTIFICATE-----Generated at Fri Dec 26 14:15:52 2025 by rpki-client