This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft File: DAHrsNsEzE1pGCs47A30sIkiJ40.mft (raw, json) Hash identifier: ygtPFnYG9AFDx+Ghznlv+qWgeDgvE7IHaZz078Tu/EY= Subject key identifier: A6:11:7B:D0:41:8E:32:AF:A2:FE:68:B6:E7:F4:CD:F5:72:00:DB:CE Authority key identifier: 0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D Certificate issuer: /CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d Certificate serial: 019AF12E9AE57743924DD755A55F1D561343 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft Manifest number: 175C Signing time: Sat 06 Dec 2025 01:02:34 +0000 Manifest this update: Sat 06 Dec 2025 01:02:34 +0000 Manifest next update: Sun 07 Dec 2025 01:02:34 +0000 Files and hashes: 1: DAHrsNsEzE1pGCs47A30sIkiJ40.crl (hash: 9tp0CSMhC4Zpiq9G5Nj1hpMGP3XqQSE+GidVVXIVafE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:9a:e5:77:43:92:4d:d7:55:a5:5f:1d:56:13:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d Validity Not Before: Dec 6 01:02:34 2025 GMT Not After : Dec 7 01:02:34 2025 GMT Subject: CN=a6117bd0418e32afa2fe68b6e7f4cdf57200dbce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:17:0f:da:b8:8b:4d:0c:32:7b:ea:1a:0b:42: 1b:37:91:11:0c:2f:26:7d:9f:aa:3e:6c:a8:d8:a3: 10:c6:b5:5b:2d:18:b5:4b:32:7d:56:e1:87:35:bf: 72:97:90:5a:4d:8a:68:3e:37:a6:a1:c3:db:1e:6f: bf:f8:26:2c:94:f5:c1:8e:78:dd:a4:ba:70:3b:e5: 7a:48:1c:99:28:22:c8:5f:29:b8:5a:16:51:ab:73: d6:a8:d2:f9:dc:9c:94:d7:78:22:43:cc:10:7e:b7: b2:f3:7b:9b:2c:6d:be:52:05:6e:1b:fb:9a:64:a9: 89:37:54:5b:b5:b1:36:f1:0b:15:77:2f:f3:85:f0: a4:ae:3c:23:fb:a2:79:b8:6f:75:a3:ab:d6:fc:5c: 6b:64:52:f1:db:5e:87:19:6f:2d:50:f1:bd:54:4f: 00:01:80:39:b4:fd:c7:1f:c7:dc:b4:0c:9b:bc:49: a6:56:ba:3e:3d:ae:c2:84:fc:d6:7b:f9:2b:3a:58: a4:28:81:b2:63:2e:37:ce:22:f3:40:ca:dc:36:a8: 6b:35:a7:4d:14:9e:2f:60:1f:94:c8:9f:aa:4f:10: eb:8f:e3:a6:80:cf:89:8c:e5:8e:54:d0:12:2a:8a: e9:b8:2d:8a:53:2d:77:dc:ff:0a:85:57:07:5c:dc: be:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:11:7B:D0:41:8E:32:AF:A2:FE:68:B6:E7:F4:CD:F5:72:00:DB:CE X509v3 Authority Key Identifier: keyid:0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:af:0a:ae:a8:93:55:f7:0d:7f:b0:80:22:f0:88:7e:3f:f8: d7:89:b6:8d:26:41:8b:e4:7d:80:47:99:bf:e5:54:e8:37:8d: e8:2e:42:6f:1b:29:e7:97:78:04:8c:81:ba:93:84:1e:95:5e: 82:b1:b9:64:1b:3c:1b:9f:67:85:c0:e2:08:47:4e:c7:c9:ef: d8:75:fa:1b:86:8b:ed:30:fd:fb:44:20:96:f0:40:2a:2e:59: 54:a8:20:ed:3c:0c:4c:aa:06:02:cf:e7:09:ed:14:99:4f:a9: 5b:b9:a8:6f:1f:fe:a0:75:da:dc:41:64:b9:1e:95:da:b8:33: 6d:62:42:e3:53:1d:21:4c:16:34:c9:3a:b3:9a:f4:f9:46:d3: 9f:63:3d:82:be:3e:6a:18:ed:2c:2c:38:e7:6b:c3:73:37:f4: cb:80:1c:31:9e:32:cb:11:c7:2e:d6:db:d1:40:3a:43:52:5e: e3:27:e2:87:4c:c4:1c:86:73:da:3d:de:6d:5c:4a:0f:fa:e2: 4d:1c:ac:cf:f1:04:61:f2:8d:7c:3c:dc:c7:6a:4a:9a:42:d7: 2e:ef:47:36:de:26:25:4a:94:6c:ec:ba:77:53:bc:a2:03:5b: 2b:81:16:77:de:ba:07:05:c2:d3:15:b1:68:f4:fa:e3:48:da: 43:47:92:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLprld0OSTddVpV8dVhNDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMDFlYmIwZGIwNGNjNGQ2OTE4MmIzOGVjMGRmNGIwODky MjI3OGQwHhcNMjUxMjA2MDEwMjM0WhcNMjUxMjA3MDEwMjM0WjAzMTEwLwYDVQQD EyhhNjExN2JkMDQxOGUzMmFmYTJmZTY4YjZlN2Y0Y2RmNTcyMDBkYmNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xcP2riLTQwye+oaC0IbN5ERDC8m fZ+qPmyo2KMQxrVbLRi1SzJ9VuGHNb9yl5BaTYpoPjemocPbHm+/+CYslPXBjnjd pLpwO+V6SByZKCLIXym4WhZRq3PWqNL53JyU13giQ8wQfrey83ubLG2+UgVuG/ua ZKmJN1RbtbE28QsVdy/zhfCkrjwj+6J5uG91o6vW/FxrZFLx216HGW8tUPG9VE8A AYA5tP3HH8fctAybvEmmVro+Pa7ChPzWe/krOlikKIGyYy43ziLzQMrcNqhrNadN FJ4vYB+UyJ+qTxDrj+OmgM+JjOWOVNASKorpuC2KUy133P8KhVcHXNy+SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKYRe9BBjjKvov5otuf0zfVyANvOMB8GA1UdIwQY MBaAFAwB67DbBMxNaRgrOOwN9LCJIieNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREFIcnNOc0V6RTFwR0NzNDdBMzBzSWtpSjQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9lOTg2ODQtMzAyYy00YmE4LWFiN2Yt YTEwMzg3NGU3YzRmLzEvREFIcnNOc0V6RTFwR0NzNDdBMzBzSWtpSjQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9lOTg2ODQtMzAyYy00YmE4LWFiN2YtYTEwMzg3NGU3YzRm LzEvREFIcnNOc0V6RTFwR0NzNDdBMzBzSWtpSjQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN68KrqiT VfcNf7CAIvCIfj/414m2jSZBi+R9gEeZv+VU6DeN6C5Cbxsp55d4BIyBupOEHpVe grG5ZBs8G59nhcDiCEdOx8nv2HX6G4aL7TD9+0QglvBAKi5ZVKgg7TwMTKoGAs/n Ce0UmU+pW7mobx/+oHXa3EFkuR6V2rgzbWJC41MdIUwWNMk6s5r0+UbTn2M9gr4+ ahjtLCw452vDczf0y4AcMZ4yyxHHLtbb0UA6Q1Je4yfih0zEHIZz2j3ebVxKD/ri TRysz/EEYfKNfDzcx2pKmkLXLu9HNt4mJUqUbOy6d1O8ogNbK4EWd966BwXC0xWx aPT640jaQ0eSlA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:01:08 2025 by rpki-client