This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json) Hash identifier: dV6CvTt0C94Bm55Y2n3dQnA1nHuR1JXj5lt60m4/boQ= Subject key identifier: 6F:FE:EF:53:85:19:61:31:C1:F8:0C:7D:54:45:45:42:9C:60:96:EC Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34 Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634 Certificate serial: 019B37C567FEFF3DEA7D143C54496B7B95AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft Manifest number: 1786 Signing time: Fri 19 Dec 2025 18:00:42 +0000 Manifest this update: Fri 19 Dec 2025 18:00:42 +0000 Manifest next update: Sat 20 Dec 2025 18:00:42 +0000 Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=) 2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: OV+7BGk2Y2skZlqpN7imCxyDv7dCY+VUmhmLhAGJafo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:c5:67:fe:ff:3d:ea:7d:14:3c:54:49:6b:7b:95:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634 Validity Not Before: Dec 19 18:00:42 2025 GMT Not After : Dec 20 18:00:42 2025 GMT Subject: CN=6ffeef5385196131c1f80c7d544545429c6096ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b2:ce:3a:03:cc:ba:ce:ed:10:3f:61:e4:86: 02:ce:2a:7a:d8:08:ad:db:0a:e1:ef:82:19:39:f3: 9f:43:ad:6f:3a:d2:b3:66:4e:e6:24:25:71:42:40: 69:6e:4a:cf:7b:4e:d3:ab:cf:ec:9e:ff:1f:68:b1: 20:96:e9:44:df:9c:43:31:29:72:d3:a9:be:a7:8f: 66:d6:a0:95:25:92:c2:05:7f:46:7c:f3:8b:aa:6b: b8:07:b7:0d:f4:bf:64:80:36:cd:3a:69:84:04:09: 18:34:d3:4f:a6:b4:7d:8d:d9:23:a0:7c:cd:2f:e4: 31:64:da:11:5f:66:bc:35:9e:44:b8:9d:5d:67:6a: bc:98:37:fb:96:cd:32:7f:22:6a:30:99:6c:d0:59: ee:34:0a:89:4c:e6:55:81:91:82:f3:6b:c7:67:ba: cd:66:0a:06:ac:0f:af:4f:57:a4:e8:89:43:aa:b3: ae:2c:5d:34:a5:92:1f:8c:c2:21:f6:17:b7:72:49: 48:4a:87:55:a2:cc:7f:0f:f1:bb:56:e1:6b:51:2f: 07:7e:8b:0c:f8:30:63:e3:15:d0:07:31:ff:c0:da: 83:43:ba:a8:da:46:bd:dc:12:de:99:8c:a0:56:c3: f8:88:65:ed:86:4d:9b:6c:02:e6:0f:47:af:2f:df: e2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:FE:EF:53:85:19:61:31:C1:F8:0C:7D:54:45:45:42:9C:60:96:EC X509v3 Authority Key Identifier: keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:be:f3:ae:33:f2:56:c8:cf:53:a8:bf:02:bd:e8:ac:60:11: c9:6b:16:76:bf:6c:7c:6c:a5:b1:49:61:8f:9d:ad:cb:ea:b7: 47:2a:ad:f9:0d:da:d9:28:d5:35:46:34:f6:27:e7:99:e5:29: ed:b4:6f:97:b0:95:2f:f6:17:23:16:4d:b0:5b:96:f4:5d:76: ec:98:15:b4:b3:03:91:9b:91:ac:6c:b4:e6:0d:50:74:79:ba: 82:99:8f:b5:d3:57:c7:31:c5:69:8b:d8:ad:0c:5a:06:f4:20: 5b:44:a4:f0:53:b8:42:9b:d3:43:94:8e:c7:fa:72:8d:84:f2: ab:19:e6:2f:d8:e3:00:9f:fb:1e:7f:70:74:e3:f3:a9:61:18: a0:9a:4f:eb:f9:89:9b:6e:d3:00:62:a1:0f:c4:1b:91:72:36: 27:01:5d:13:be:de:a9:29:18:ad:24:58:7f:b4:7b:b1:86:ae: aa:68:27:19:63:df:c1:46:68:9d:88:c2:d6:4c:34:c8:ec:51: d7:92:01:f0:4e:3d:91:16:73:5e:49:55:05:02:8b:03:85:c7: 23:1a:a2:f5:66:3a:34:13:c2:fd:6f:d4:75:dc:89:32:ca:72: 24:9a:40:2e:0f:92:00:68:ea:9c:90:52:05:bd:02:9b:03:cf: 16:3d:9a:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3xWf+/z3qfRQ8VElre5WuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyOWEwMzgxNzZjNzk2ZWE0ZjI3NjlmNmJlM2NhY2UxYTM1 OTc2MzQwHhcNMjUxMjE5MTgwMDQyWhcNMjUxMjIwMTgwMDQyWjAzMTEwLwYDVQQD Eyg2ZmZlZWY1Mzg1MTk2MTMxYzFmODBjN2Q1NDQ1NDU0MjljNjA5NmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7LOOgPMus7tED9h5IYCzip62Ait 2wrh74IZOfOfQ61vOtKzZk7mJCVxQkBpbkrPe07Tq8/snv8faLEglulE35xDMSly 06m+p49m1qCVJZLCBX9GfPOLqmu4B7cN9L9kgDbNOmmEBAkYNNNPprR9jdkjoHzN L+QxZNoRX2a8NZ5EuJ1dZ2q8mDf7ls0yfyJqMJls0FnuNAqJTOZVgZGC82vHZ7rN ZgoGrA+vT1ek6IlDqrOuLF00pZIfjMIh9he3cklISodVosx/D/G7VuFrUS8HfosM +DBj4xXQBzH/wNqDQ7qo2ka93BLemYygVsP4iGXthk2bbALmD0evL9/iJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG/+71OFGWExwfgMfVRFRUKcYJbsMB8GA1UdIwQY MBaAFCKaA4F2x5bqTydp9r48rOGjWXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQt ZGMyMzAxZmJiYjdjLzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQtZGMyMzAxZmJiYjdj LzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXr7zrjPy VsjPU6i/Ar3orGARyWsWdr9sfGylsUlhj52ty+q3Ryqt+Q3a2SjVNUY09ifnmeUp 7bRvl7CVL/YXIxZNsFuW9F127JgVtLMDkZuRrGy05g1QdHm6gpmPtdNXxzHFaYvY rQxaBvQgW0Sk8FO4QpvTQ5SOx/pyjYTyqxnmL9jjAJ/7Hn9wdOPzqWEYoJpP6/mJ m27TAGKhD8QbkXI2JwFdE77eqSkYrSRYf7R7sYauqmgnGWPfwUZonYjC1kw0yOxR 15IB8E49kRZzXklVBQKLA4XHIxqi9WY6NBPC/W/UddyJMspyJJpALg+SAGjqnJBS Bb0CmwPPFj2auQ== -----END CERTIFICATE-----Generated at Fri Dec 19 23:48:50 2025 by rpki-client