This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft File: DdL44N6hOH2vkDXSzfTrjJOticw.mft (raw, json) Hash identifier: ZLEI8ym+R3qX+OXkKVigO/ImCe3FBn70BfBs8PkgkdA= Subject key identifier: 00:6C:BF:0F:73:C4:B7:9B:81:EA:C6:C2:EE:E9:54:46:69:32:13:F1 Authority key identifier: 0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC Certificate issuer: /CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc Certificate serial: 019B1E73CB0548B9EE593452D12C73D004BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft Manifest number: 1230 Signing time: Sun 14 Dec 2025 20:01:03 +0000 Manifest this update: Sun 14 Dec 2025 20:01:03 +0000 Manifest next update: Mon 15 Dec 2025 20:01:03 +0000 Files and hashes: 1: 5C3OBNWJVX0XYEPy1WMxBH9P3fA.roa (hash: paK6hyOcqXDBN745vkYjBiywiYBVzqMBn2uUtBINBBA=) 2: DdL44N6hOH2vkDXSzfTrjJOticw.crl (hash: evDFaRO7HeY+ZyDlL1ob2VcHcZvX7mxeNx+X+M98Sy0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:73:cb:05:48:b9:ee:59:34:52:d1:2c:73:d0:04:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc Validity Not Before: Dec 14 20:01:03 2025 GMT Not After : Dec 15 20:01:03 2025 GMT Subject: CN=006cbf0f73c4b79b81eac6c2eee95446693213f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:75:c7:c6:e8:25:1d:0d:67:1f:9a:c5:bd:8f: c1:ea:1a:5f:48:36:4b:bd:e6:1c:b2:e7:b7:d8:fe: 34:94:c4:f8:18:e3:c1:ca:85:79:fc:58:27:79:fe: 88:bd:9b:08:ca:bd:28:5b:b3:6b:6c:6d:0c:36:52: ac:81:1a:64:51:34:c0:51:1d:f9:06:5d:0e:42:93: e0:95:2b:79:1d:3f:de:c6:d1:11:4b:e4:6a:26:04: 7b:bf:76:b5:01:04:d5:59:aa:f8:84:b8:aa:74:30: 73:19:c5:9c:58:7a:20:78:9a:82:ab:d0:df:25:c2: 65:ca:6c:fa:e1:83:8d:ee:3e:f2:a4:27:ab:d0:fd: f4:8d:75:0d:55:b3:91:e0:fe:40:52:02:bd:2d:e2: 68:0a:5c:a8:9d:d7:8b:42:81:69:71:0e:7c:84:f9: cd:4f:89:b3:27:2e:b6:97:fe:70:89:96:0d:11:bd: be:be:e3:8d:5e:92:11:ba:03:92:e7:10:3e:1f:24: 65:37:9d:36:1a:3d:fc:13:7e:4e:0f:e0:48:37:eb: df:ee:01:14:3f:17:fe:68:10:15:bd:eb:74:4a:a4: 7e:2b:e9:d8:66:70:ce:cc:4b:23:f2:6d:db:ce:d9: 76:27:5b:9c:2c:f5:f0:99:04:85:c2:43:03:ff:23: 9b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6C:BF:0F:73:C4:B7:9B:81:EA:C6:C2:EE:E9:54:46:69:32:13:F1 X509v3 Authority Key Identifier: keyid:0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:38:bc:54:80:8f:67:7c:8b:52:e8:c5:c7:1b:68:b4:6b:02: 6a:85:88:f3:29:e2:77:eb:0f:9c:68:03:fc:84:bb:24:da:42: 50:96:5d:be:cf:c8:83:0a:a9:f0:20:cc:69:3c:9f:86:0e:1a: 1f:a5:9e:7a:36:fc:3a:8e:f6:7a:b7:e2:18:5e:e7:f6:6f:aa: 3d:e0:b4:5a:dc:7a:f0:93:f6:8b:48:41:86:b6:95:e3:69:36: f5:b2:b0:af:ec:a5:b8:73:a5:69:73:b9:7d:ac:c1:d7:73:16: 12:e6:3e:8a:a4:47:3c:06:cd:28:75:3a:32:e3:36:36:e0:22: 23:c3:a9:72:45:00:56:e4:c2:2e:e6:40:cd:e7:4d:25:6f:40: fc:13:76:2c:b8:6b:11:44:67:a9:0b:1b:54:4c:b7:04:8a:ee: ce:20:63:7b:e6:fe:42:bc:95:30:7d:99:e7:54:ce:aa:0e:44: 4d:36:4d:1b:06:29:96:57:84:bd:3d:9c:6d:e2:1f:be:69:41: c0:ee:82:51:7b:92:df:e5:63:e2:65:f4:f9:f8:c3:f2:da:5d: c5:18:69:b1:fa:74:d7:71:cb:c0:7c:0c:4a:79:05:e8:e1:31: 11:f9:8c:73:0e:57:2c:b8:92:86:72:80:90:dc:dc:3c:75:a5: ae:72:a1:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsec8sFSLnuWTRS0Sxz0AS+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkZDJmOGUwZGVhMTM4N2RhZjkwMzVkMmNkZjRlYjhjOTNh ZDg5Y2MwHhcNMjUxMjE0MjAwMTAzWhcNMjUxMjE1MjAwMTAzWjAzMTEwLwYDVQQD EygwMDZjYmYwZjczYzRiNzliODFlYWM2YzJlZWU5NTQ0NjY5MzIxM2YxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznXHxuglHQ1nH5rFvY/B6hpfSDZL veYcsue32P40lMT4GOPByoV5/Fgnef6IvZsIyr0oW7NrbG0MNlKsgRpkUTTAUR35 Bl0OQpPglSt5HT/extERS+RqJgR7v3a1AQTVWar4hLiqdDBzGcWcWHogeJqCq9Df JcJlymz64YON7j7ypCer0P30jXUNVbOR4P5AUgK9LeJoClyondeLQoFpcQ58hPnN T4mzJy62l/5wiZYNEb2+vuONXpIRugOS5xA+HyRlN502Gj38E35OD+BIN+vf7gEU Pxf+aBAVvet0SqR+K+nYZnDOzEsj8m3bztl2J1ucLPXwmQSFwkMD/yOb9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFABsvw9zxLebgerGwu7pVEZpMhPxMB8GA1UdIwQY MBaAFA3S+ODeoTh9r5A10s3064yTrYnMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9kM2Q0NjYtZDk1MS00YzUyLWIzMzAt YWE4NDg1Y2YzMDY4LzEvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9kM2Q0NjYtZDk1MS00YzUyLWIzMzAtYWE4NDg1Y2YzMDY4 LzEvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJTi8VICP Z3yLUujFxxtotGsCaoWI8ynid+sPnGgD/IS7JNpCUJZdvs/Igwqp8CDMaTyfhg4a H6Weejb8Oo72erfiGF7n9m+qPeC0Wtx68JP2i0hBhraV42k29bKwr+yluHOlaXO5 fazB13MWEuY+iqRHPAbNKHU6MuM2NuAiI8OpckUAVuTCLuZAzedNJW9A/BN2LLhr EURnqQsbVEy3BIruziBje+b+QryVMH2Z51TOqg5ETTZNGwYplleEvT2cbeIfvmlB wO6CUXuS3+Vj4mX0+fjD8tpdxRhpsfp013HLwHwMSnkF6OExEfmMcw5XLLiShnKA kNzcPHWlrnKhQA== -----END CERTIFICATE-----Generated at Sun Dec 14 21:40:26 2025 by rpki-client