This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft File: DdL44N6hOH2vkDXSzfTrjJOticw.mft (raw, json) Hash identifier: K0iIhFz+ua857c97gcA5WUP6q0egUBQ75OvabN5LtwU= Subject key identifier: BC:F5:C1:15:2B:F9:21:7A:E0:19:53:1B:24:B9:80:49:A0:E3:4E:D0 Authority key identifier: 0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC Certificate issuer: /CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc Certificate serial: 019B33B19D0E4E4B6A7D38A4E10CEFFE1ED9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft Manifest number: 123B Signing time: Thu 18 Dec 2025 23:00:36 +0000 Manifest this update: Thu 18 Dec 2025 23:00:36 +0000 Manifest next update: Fri 19 Dec 2025 23:00:36 +0000 Files and hashes: 1: 5C3OBNWJVX0XYEPy1WMxBH9P3fA.roa (hash: paK6hyOcqXDBN745vkYjBiywiYBVzqMBn2uUtBINBBA=) 2: DdL44N6hOH2vkDXSzfTrjJOticw.crl (hash: 0IgbG7HBYegFKgTM9hoppTvlpTqXitqbbqXNrqwUDGk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 23:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:b1:9d:0e:4e:4b:6a:7d:38:a4:e1:0c:ef:fe:1e:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc Validity Not Before: Dec 18 23:00:36 2025 GMT Not After : Dec 19 23:00:36 2025 GMT Subject: CN=bcf5c1152bf9217ae019531b24b98049a0e34ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ed:42:8b:d2:88:1d:26:99:04:76:48:67:4d: 9a:59:2a:f1:84:0f:5e:9a:0f:97:0e:30:37:44:b1: 5e:55:ac:38:1e:03:48:18:dd:c1:41:4f:48:91:2b: 29:e8:45:90:f0:b4:9f:c9:6e:d6:25:d5:20:43:8e: a0:63:47:4d:05:6c:10:65:29:6a:70:14:44:01:9d: 6a:62:47:c5:a3:85:53:8a:ae:84:be:9e:41:5e:91: 8f:68:a2:9b:78:e8:55:41:c0:6a:50:13:62:41:3c: 72:f3:19:40:76:bb:98:3a:15:0b:0a:4c:74:0a:7b: b0:17:28:1c:e4:3a:ea:c3:f7:db:73:3d:aa:86:75: 66:49:c8:9a:d5:e4:cb:d8:38:a4:e8:12:40:c8:b5: 1f:ad:50:1d:9a:ad:ce:c2:fd:11:ba:ea:e6:f8:05: 6b:75:73:fb:da:a0:af:09:ce:03:81:1a:82:80:34: 45:c0:e7:20:5a:5e:89:41:13:9e:d7:e3:c0:d6:fd: ec:9b:c8:a4:71:fe:05:20:5a:da:75:06:3b:bc:9a: 54:df:0d:96:36:2e:06:1b:31:3c:8a:23:66:1e:90: c7:71:a4:fe:fa:14:bc:9e:d4:4f:5d:aa:cb:8e:d8: a6:55:ba:15:79:f2:70:28:97:d1:53:cc:6c:92:d1: 38:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F5:C1:15:2B:F9:21:7A:E0:19:53:1B:24:B9:80:49:A0:E3:4E:D0 X509v3 Authority Key Identifier: keyid:0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:16:97:1b:3c:0d:88:3b:6b:2b:3b:36:90:13:96:87:a7:7c: 8e:73:3c:c9:b9:2d:b5:ff:c5:c0:a3:a5:ff:7f:ac:60:ed:92: c8:f2:35:ed:e1:52:c1:b2:37:68:3c:c6:1b:a7:17:4a:03:24: b7:9f:4e:ce:80:ec:47:24:55:06:09:ef:83:ac:ef:5d:c6:e2: 08:3d:2e:2d:20:67:3e:1b:d2:20:89:0c:5a:7a:61:dc:c1:35: fc:8e:b4:d1:32:17:a3:d6:9c:a5:cc:18:05:e6:11:57:5d:b3: 5f:d1:0f:18:81:42:3e:d3:f1:7d:30:91:ff:72:e0:23:27:b3: 30:ec:49:bf:40:4d:ad:0c:01:9c:e6:df:9a:ec:6e:2b:27:da: e3:22:ab:8c:b1:70:56:a4:53:fe:19:25:77:37:d7:86:4f:06: 41:9a:c2:56:4e:a5:7d:c2:d8:9c:6f:aa:30:7b:09:af:77:fa: b0:51:73:01:ce:85:e2:05:25:e2:a4:11:47:3c:48:ad:73:97: 1f:ed:d9:e5:e7:d1:1c:35:de:8b:8c:fe:f0:d1:31:91:72:e2: 1d:9e:9c:0c:4a:16:85:96:e0:d4:54:3c:80:56:6c:29:65:b4: 03:f9:e0:04:04:79:d8:3f:b5:8d:56:ad:7b:a1:2f:f4:75:fb: cf:f7:a3:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszsZ0OTktqfTik4Qzv/h7ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkZDJmOGUwZGVhMTM4N2RhZjkwMzVkMmNkZjRlYjhjOTNh ZDg5Y2MwHhcNMjUxMjE4MjMwMDM2WhcNMjUxMjE5MjMwMDM2WjAzMTEwLwYDVQQD EyhiY2Y1YzExNTJiZjkyMTdhZTAxOTUzMWIyNGI5ODA0OWEwZTM0ZWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7e1Ci9KIHSaZBHZIZ02aWSrxhA9e mg+XDjA3RLFeVaw4HgNIGN3BQU9IkSsp6EWQ8LSfyW7WJdUgQ46gY0dNBWwQZSlq cBREAZ1qYkfFo4VTiq6Evp5BXpGPaKKbeOhVQcBqUBNiQTxy8xlAdruYOhULCkx0 CnuwFygc5Drqw/fbcz2qhnVmScia1eTL2Dik6BJAyLUfrVAdmq3Owv0Ruurm+AVr dXP72qCvCc4DgRqCgDRFwOcgWl6JQROe1+PA1v3sm8ikcf4FIFradQY7vJpU3w2W Ni4GGzE8iiNmHpDHcaT++hS8ntRPXarLjtimVboVefJwKJfRU8xsktE4GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLz1wRUr+SF64BlTGyS5gEmg407QMB8GA1UdIwQY MBaAFA3S+ODeoTh9r5A10s3064yTrYnMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9kM2Q0NjYtZDk1MS00YzUyLWIzMzAt YWE4NDg1Y2YzMDY4LzEvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9kM2Q0NjYtZDk1MS00YzUyLWIzMzAtYWE4NDg1Y2YzMDY4 LzEvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARhaXGzwN iDtrKzs2kBOWh6d8jnM8ybkttf/FwKOl/3+sYO2SyPI17eFSwbI3aDzGG6cXSgMk t59OzoDsRyRVBgnvg6zvXcbiCD0uLSBnPhvSIIkMWnph3ME1/I600TIXo9acpcwY BeYRV12zX9EPGIFCPtPxfTCR/3LgIyezMOxJv0BNrQwBnObfmuxuKyfa4yKrjLFw VqRT/hkldzfXhk8GQZrCVk6lfcLYnG+qMHsJr3f6sFFzAc6F4gUl4qQRRzxIrXOX H+3Z5efRHDXei4z+8NExkXLiHZ6cDEoWhZbg1FQ8gFZsKWW0A/ngBAR52D+1jVat e6Ev9HX7z/ejmw== -----END CERTIFICATE-----Generated at Fri Dec 19 09:14:11 2025 by rpki-client