This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft File: dK6PGUm6f0vCM-bCF6hBjKThEys.mft (raw, json) Hash identifier: VqTzCs7ArK6iHz73zSueYjuPaSQ9uu8adFQA0dpB4cQ= Subject key identifier: 34:64:67:E3:21:C9:BB:59:65:AC:69:8A:5D:FD:05:34:19:5A:CC:5C Authority key identifier: 74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B Certificate issuer: /CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b Certificate serial: 019AF12D57DB7D8DF6863F872CBD625C94CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft Manifest number: 8C Signing time: Sat 06 Dec 2025 01:01:11 +0000 Manifest this update: Sat 06 Dec 2025 01:01:11 +0000 Manifest next update: Sun 07 Dec 2025 01:01:11 +0000 Files and hashes: 1: dK6PGUm6f0vCM-bCF6hBjKThEys.crl (hash: FbFkWCuer6Mve3/mBzgEsMPJ4NhqDh/l+vfqrtmGqqM=) 2: s5e-ZlSvSg6pPTZMod93h6uXFpI.roa (hash: OsYWmyTzqnpOCUuLjSbv55rjF6rP9l3X0fvalm8CtqY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:57:db:7d:8d:f6:86:3f:87:2c:bd:62:5c:94:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b Validity Not Before: Dec 6 01:01:11 2025 GMT Not After : Dec 7 01:01:11 2025 GMT Subject: CN=346467e321c9bb5965ac698a5dfd0534195acc5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a0:50:fd:b0:93:10:6a:9f:8b:80:dc:b4:60: 52:e8:5e:d2:23:11:2a:c4:38:e2:95:36:bf:f4:1e: fd:85:06:02:6d:21:0e:87:b9:23:28:6b:29:c5:5c: 5a:fa:5a:8a:cc:27:8f:1c:75:8c:b8:c8:0d:64:0f: 38:1c:7a:39:03:4d:88:e1:84:0a:37:17:86:9f:6a: 42:c3:50:3b:81:73:40:13:53:31:b0:8f:28:21:f3: 57:7c:fa:5d:8f:73:20:fa:4d:ce:6c:06:d2:3a:5f: 01:3e:ad:91:9f:24:85:98:1b:6a:f8:69:d4:f9:e5: 18:ff:e2:4b:bc:39:57:b3:20:73:84:95:da:01:76: cb:f3:ed:b9:9b:e0:08:10:f5:40:d0:ee:79:d6:3a: 71:8d:07:74:7a:7c:e3:4a:56:2f:12:f3:f8:b9:73: 9d:5f:57:ee:76:bb:83:ef:ae:df:3a:e7:b6:be:34: 74:fe:27:92:25:9c:20:0d:2b:d0:cd:47:86:92:40: ce:b9:35:aa:33:b5:52:79:34:2e:0f:79:7f:83:ac: 16:37:a4:b2:26:62:30:25:b7:f5:6c:6f:24:31:32: 27:90:46:75:74:b2:29:b9:9c:ce:5d:96:df:29:6f: 29:de:a1:38:d0:b5:2d:94:0d:ff:81:0c:1d:04:bd: f3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:64:67:E3:21:C9:BB:59:65:AC:69:8A:5D:FD:05:34:19:5A:CC:5C X509v3 Authority Key Identifier: keyid:74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:28:bf:98:89:74:ff:aa:4b:0c:4c:a9:f1:b8:d8:b5:c9:52: 98:9c:64:a9:68:6d:82:d3:7a:3d:3d:a3:cd:6b:1d:89:9a:0d: f4:53:06:db:31:bc:75:62:0a:8d:be:c1:d5:12:ff:12:b7:05: ef:2a:61:ff:b4:4a:76:db:77:2e:de:64:ef:81:a0:ca:23:4f: 2f:bb:f3:79:dd:01:76:b1:25:cd:5e:a1:12:01:ec:27:f0:e1: 99:a5:dc:e1:60:fe:cd:49:2b:55:fa:70:e0:7a:a8:09:34:d4: 4e:3d:1f:61:b2:f2:e8:0e:67:51:d5:47:ca:a4:b5:9a:36:8f: 23:94:97:03:40:e7:65:1b:98:48:a8:55:26:78:f0:28:2c:3f: 21:ed:9f:06:94:21:e1:ba:31:5c:ab:1e:44:46:61:0d:0d:48: fa:94:73:59:84:22:46:f2:47:58:4f:bd:63:46:a6:7b:ea:63: 1b:79:d3:3b:1e:bd:04:a0:75:8e:7f:18:fa:bb:0b:38:dd:20: 35:ad:a1:20:66:16:ad:f7:a4:77:99:b9:00:13:19:13:27:8a: a4:16:cf:1a:1f:69:af:31:28:a6:5e:48:24:16:91:75:d7:23: c6:dc:9e:d0:e3:ac:c2:37:a1:3d:f3:de:d8:68:b1:68:5f:62: ef:ec:34:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLVfbfY32hj+HLL1iXJTKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0YWU4ZjE5NDliYTdmNGJjMjMzZTZjMjE3YTg0MThjYTRl MTEzMmIwHhcNMjUxMjA2MDEwMTExWhcNMjUxMjA3MDEwMTExWjAzMTEwLwYDVQQD EygzNDY0NjdlMzIxYzliYjU5NjVhYzY5OGE1ZGZkMDUzNDE5NWFjYzVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaBQ/bCTEGqfi4DctGBS6F7SIxEq xDjilTa/9B79hQYCbSEOh7kjKGspxVxa+lqKzCePHHWMuMgNZA84HHo5A02I4YQK NxeGn2pCw1A7gXNAE1MxsI8oIfNXfPpdj3Mg+k3ObAbSOl8BPq2RnySFmBtq+GnU +eUY/+JLvDlXsyBzhJXaAXbL8+25m+AIEPVA0O551jpxjQd0enzjSlYvEvP4uXOd X1fudruD767fOue2vjR0/ieSJZwgDSvQzUeGkkDOuTWqM7VSeTQuD3l/g6wWN6Sy JmIwJbf1bG8kMTInkEZ1dLIpuZzOXZbfKW8p3qE40LUtlA3/gQwdBL3zfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDRkZ+MhybtZZaxpil39BTQZWsxcMB8GA1UdIwQY MBaAFHSujxlJun9LwjPmwheoQYyk4RMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEs2UEdVbTZmMHZDTS1iQ0Y2aEJqS1RoRXlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy84NTA3YmUtZThkNC00NWUyLTllYTkt MTUxNGZhZTE1MTA3LzEvZEs2UEdVbTZmMHZDTS1iQ0Y2aEJqS1RoRXlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy84NTA3YmUtZThkNC00NWUyLTllYTktMTUxNGZhZTE1MTA3 LzEvZEs2UEdVbTZmMHZDTS1iQ0Y2aEJqS1RoRXlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALSi/mIl0 /6pLDEyp8bjYtclSmJxkqWhtgtN6PT2jzWsdiZoN9FMG2zG8dWIKjb7B1RL/ErcF 7yph/7RKdtt3Lt5k74GgyiNPL7vzed0BdrElzV6hEgHsJ/DhmaXc4WD+zUkrVfpw 4HqoCTTUTj0fYbLy6A5nUdVHyqS1mjaPI5SXA0DnZRuYSKhVJnjwKCw/Ie2fBpQh 4boxXKseREZhDQ1I+pRzWYQiRvJHWE+9Y0ame+pjG3nTOx69BKB1jn8Y+rsLON0g Na2hIGYWrfekd5m5ABMZEyeKpBbPGh9przEopl5IJBaRddcjxtye0OOswjehPfPe 2GixaF9i7+w0NA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:08:41 2025 by rpki-client