This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json) Hash identifier: FLITD+K8z/g6lN82G8+yAYeF+Jib4gahgFHClmxZO7M= Subject key identifier: 69:16:A5:C8:C8:D9:42:A6:08:CB:FC:53:46:AC:1C:96:9A:0C:49:78 Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88 Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988 Certificate serial: 019AF1D1C9982831C3EE1E81DB130DFB76B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft Manifest number: 09D8 Signing time: Sat 06 Dec 2025 04:00:48 +0000 Manifest this update: Sat 06 Dec 2025 04:00:48 +0000 Manifest next update: Sun 07 Dec 2025 04:00:48 +0000 Files and hashes: 1: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: 3yCWpbjgcOZ96q9vJTki5g9nuCC0CQpHWeM1Dj/339s=) 2: IAritswAhqNQe77s1GDg_ezpHck.roa (hash: ILdWDEHhnQvuxpeMgx2XCbjW7CQm2ybVgtMQih2P4NU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:c9:98:28:31:c3:ee:1e:81:db:13:0d:fb:76:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988 Validity Not Before: Dec 6 04:00:48 2025 GMT Not After : Dec 7 04:00:48 2025 GMT Subject: CN=6916a5c8c8d942a608cbfc5346ac1c969a0c4978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8b:a6:c1:44:d3:18:2c:33:dd:92:1c:64:80: b3:a7:d0:93:92:56:ac:c5:c5:f8:9a:ed:66:a5:51: 1e:10:f9:2f:a6:c6:a3:b9:c2:36:e9:b6:e8:bf:3b: c1:2b:39:86:90:69:35:95:69:3e:f2:a9:a7:a4:b2: 68:3f:bd:cb:00:22:07:4f:aa:4f:cf:a6:59:f4:02: 32:bc:56:a7:2c:81:7b:81:4f:a0:b4:4a:58:0c:9e: 0a:18:c7:ef:f1:be:b5:57:f0:a8:8a:49:20:ed:fc: 6c:30:3b:e9:a6:24:c1:3f:b6:1e:07:00:60:81:da: d2:75:8a:d4:24:34:9e:78:82:a4:2e:bb:66:0e:fa: e1:8a:10:c0:04:92:e0:d1:ac:7a:16:c0:e3:1b:a8: ab:82:34:86:10:e5:28:47:5e:9f:e6:0b:18:8a:50: d0:33:32:11:0c:ee:28:00:98:57:4d:71:56:bb:25: fd:0a:8e:5a:7a:43:c4:bd:08:8e:53:33:63:32:e9: 37:c6:7a:40:0e:98:fd:dd:fc:f0:e3:a2:45:0a:d6: bf:06:bf:0c:1d:c9:6b:cc:00:37:4e:5b:f2:95:ed: 70:e4:4e:9e:f5:8b:9b:7f:5a:f6:2c:4d:24:55:51: ae:39:e8:4c:1b:70:26:bd:49:25:6b:42:d3:d6:53: ac:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:16:A5:C8:C8:D9:42:A6:08:CB:FC:53:46:AC:1C:96:9A:0C:49:78 X509v3 Authority Key Identifier: keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:2f:8f:3d:a4:29:1e:fb:80:eb:96:03:cf:db:7a:97:db:13: ed:ca:61:e2:88:66:0b:1b:93:03:c8:4a:87:55:5d:78:95:ad: 85:2b:c2:ae:11:dd:5b:77:c3:ea:e0:a4:14:89:bc:e2:80:47: db:92:32:ea:ad:30:c0:8d:ee:90:bc:d7:b8:89:bd:31:d7:74: 6e:ed:bb:f4:66:7d:85:2b:b7:18:f1:14:b1:d3:30:9e:eb:1f: f8:f4:9e:ee:15:b7:b3:af:1f:65:89:cf:aa:a7:47:28:37:62: 64:00:a2:57:db:4d:8f:ea:ac:1b:51:e1:1f:d8:a0:9c:84:e6: 0e:8a:ec:a6:dc:04:3d:35:28:6e:51:4f:e4:7e:cb:f1:79:5e: dc:23:17:c2:c5:e8:38:a1:03:81:75:5d:cb:18:63:22:e2:2e: a2:36:f5:1a:1b:37:cf:6f:86:7f:6a:cd:19:9b:3b:07:29:50: 15:03:fc:cf:af:75:9f:81:e3:78:50:ba:ae:f0:31:c6:01:59: 3e:e9:75:be:38:36:13:1e:9b:4a:88:61:e0:dd:d9:9c:b8:e5: 84:31:eb:2f:fd:35:e9:ee:3a:84:a8:0b:9b:2f:c4:8b:89:59: ee:ed:fd:66:a0:80:06:c2:d5:17:bb:03:cd:1f:93:97:22:f6: fa:bb:9b:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0cmYKDHD7h6B2xMN+3a5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmMTgzMjZlMDAxYWE3ZmM1NmY4MzUzMTMxNTM3NmY5ZWFh ZTA5ODgwHhcNMjUxMjA2MDQwMDQ4WhcNMjUxMjA3MDQwMDQ4WjAzMTEwLwYDVQQD Eyg2OTE2YTVjOGM4ZDk0MmE2MDhjYmZjNTM0NmFjMWM5NjlhMGM0OTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIumwUTTGCwz3ZIcZICzp9CTklas xcX4mu1mpVEeEPkvpsajucI26bbovzvBKzmGkGk1lWk+8qmnpLJoP73LACIHT6pP z6ZZ9AIyvFanLIF7gU+gtEpYDJ4KGMfv8b61V/Coikkg7fxsMDvppiTBP7YeBwBg gdrSdYrUJDSeeIKkLrtmDvrhihDABJLg0ax6FsDjG6irgjSGEOUoR16f5gsYilDQ MzIRDO4oAJhXTXFWuyX9Co5aekPEvQiOUzNjMuk3xnpADpj93fzw46JFCta/Br8M HclrzAA3Tlvyle1w5E6e9Yubf1r2LE0kVVGuOehMG3AmvUkla0LT1lOswwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGkWpcjI2UKmCMv8U0asHJaaDEl4MB8GA1UdIwQY MBaAFA8YMm4AGqf8Vvg1MTFTdvnqrgmIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYt NmI4MTM2OTNiYzhjLzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYtNmI4MTM2OTNiYzhj LzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiC+PPaQp HvuA65YDz9t6l9sT7cph4ohmCxuTA8hKh1VdeJWthSvCrhHdW3fD6uCkFIm84oBH 25Iy6q0wwI3ukLzXuIm9Mdd0bu279GZ9hSu3GPEUsdMwnusf+PSe7hW3s68fZYnP qqdHKDdiZACiV9tNj+qsG1HhH9ignITmDorsptwEPTUoblFP5H7L8Xle3CMXwsXo OKEDgXVdyxhjIuIuojb1Ghs3z2+Gf2rNGZs7BylQFQP8z691n4HjeFC6rvAxxgFZ Pul1vjg2Ex6bSohh4N3ZnLjlhDHrL/016e46hKgLmy/Ei4lZ7u39ZqCABsLVF7sD zR+TlyL2+rubbg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:03:10 2025 by rpki-client