This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft File: PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json) Hash identifier: hYke1XiqjDVxJ/nqhGeRw18jdA3Q/vLIs2jtwdYGxmQ= Subject key identifier: 4A:41:2F:1D:0C:38:9F:51:DD:BA:22:79:14:16:3B:56:7F:CB:85:A0 Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24 Certificate issuer: /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224 Certificate serial: 019AF19BAD58F48BC7974B8D99B5D5EA1095 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft Manifest number: 1582 Signing time: Sat 06 Dec 2025 03:01:42 +0000 Manifest this update: Sat 06 Dec 2025 03:01:42 +0000 Manifest next update: Sun 07 Dec 2025 03:01:42 +0000 Files and hashes: 1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: YpZYFn9/Ya26tVKpOUkjjG6vukv+VtmLIzFSe8TMy0k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:ad:58:f4:8b:c7:97:4b:8d:99:b5:d5:ea:10:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224 Validity Not Before: Dec 6 03:01:42 2025 GMT Not After : Dec 7 03:01:42 2025 GMT Subject: CN=4a412f1d0c389f51ddba227914163b567fcb85a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:18:8d:79:60:d8:e1:6b:67:56:ff:72:27:bf: 98:86:a0:a0:33:b1:76:f4:3f:5d:f9:9d:8b:c1:d0: 76:c3:86:d0:39:62:c1:f1:b2:83:dd:ec:00:24:f2: 05:19:cd:99:05:38:08:e0:c5:f4:36:1e:48:f1:97: 07:69:b6:c4:10:f0:9e:07:7c:11:d2:51:4e:6b:4f: bd:b3:91:69:9a:bc:25:41:f3:27:d9:f0:8d:57:ef: 7a:e3:32:54:ac:43:26:7b:72:bf:88:ec:4f:e7:2a: dc:0c:ff:e5:1e:bc:3f:21:c6:4e:7d:9b:cb:10:a1: de:5c:0c:b9:a0:ff:02:e1:2b:1f:a3:6b:fd:40:6f: 0b:69:61:e1:6c:2e:a3:c6:90:ab:9f:8e:60:0a:80: e6:8e:bf:4e:4e:1e:69:cc:35:0a:0d:c7:fe:ac:3e: e1:e8:7d:cb:ac:ef:f8:3e:0f:9b:84:65:15:8d:89: 98:bf:58:a9:54:fb:e8:52:24:ef:ec:59:2b:ff:f5: b8:a9:f5:86:a9:cb:c7:d4:4c:f9:84:b7:cb:a1:a4: 36:2a:09:9f:04:80:5b:f5:fb:e4:95:9b:2f:19:9c: dd:19:eb:91:13:cf:70:39:4d:75:cf:9c:38:ad:71: a4:19:06:6b:fa:b6:a7:eb:e4:6c:3b:9c:7b:6e:b3: 8c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:41:2F:1D:0C:38:9F:51:DD:BA:22:79:14:16:3B:56:7F:CB:85:A0 X509v3 Authority Key Identifier: keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:a7:34:ff:f8:49:23:5f:ab:13:a6:60:10:9f:f9:d9:a1:01: 5e:a8:49:18:0d:4f:33:ed:16:f3:df:60:dd:e3:41:85:34:2e: a8:8f:ee:93:8c:04:07:94:5b:6c:57:0c:92:e2:2f:16:54:1a: cc:6b:b2:1c:01:48:7d:61:92:b4:0e:f3:92:a8:09:ce:85:6d: e6:cb:73:46:bd:50:2c:92:4b:ce:00:e1:31:a4:27:b9:dd:d6: 23:ab:1f:de:e3:d3:01:4d:f6:6d:8c:fb:c4:08:36:92:a5:77: 08:63:8f:6f:b2:9b:c0:bf:d0:9d:e5:bc:b6:84:55:bd:85:c4: 82:f2:2c:1a:98:d1:01:fd:60:b2:55:75:43:6f:91:f1:b7:e0: 73:de:57:e3:ea:06:dc:98:49:96:fe:2f:28:9c:48:be:a7:8b: 84:33:ac:c6:63:d0:29:37:2e:ec:d7:f7:70:d5:8b:84:c7:2f: 73:eb:06:6f:cd:2f:b6:48:c2:60:7a:09:e4:ea:ea:17:82:f3: 1a:d3:12:a0:c3:ad:4c:98:bf:3f:0e:b5:8e:87:6b:e7:f8:51: 52:9b:39:8e:26:65:e1:90:13:ce:a9:5a:22:e8:1c:56:db:ae: ab:29:6e:8b:f2:c7:dd:06:3d:b9:70:74:cc:47:6f:f3:42:b1: 8b:1f:80:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm61Y9IvHl0uNmbXV6hCVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjMzdhZDhiM2EyNjkwZTBjZjQ3MmRiMjZlOGZlMmIxNjgw MTkyMjQwHhcNMjUxMjA2MDMwMTQyWhcNMjUxMjA3MDMwMTQyWjAzMTEwLwYDVQQD Eyg0YTQxMmYxZDBjMzg5ZjUxZGRiYTIyNzkxNDE2M2I1NjdmY2I4NWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjxiNeWDY4WtnVv9yJ7+YhqCgM7F2 9D9d+Z2LwdB2w4bQOWLB8bKD3ewAJPIFGc2ZBTgI4MX0Nh5I8ZcHabbEEPCeB3wR 0lFOa0+9s5FpmrwlQfMn2fCNV+964zJUrEMme3K/iOxP5yrcDP/lHrw/IcZOfZvL EKHeXAy5oP8C4Ssfo2v9QG8LaWHhbC6jxpCrn45gCoDmjr9OTh5pzDUKDcf+rD7h 6H3LrO/4Pg+bhGUVjYmYv1ipVPvoUiTv7Fkr//W4qfWGqcvH1Ez5hLfLoaQ2Kgmf BIBb9fvklZsvGZzdGeuRE89wOU11z5w4rXGkGQZr+ran6+RsO5x7brOMcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEpBLx0MOJ9R3boieRQWO1Z/y4WgMB8GA1UdIwQY MBaAFDw3rYs6JpDgz0ctsm6P4rFoAZIkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2Njct MmUyYjU2YjQxNWMxLzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2NjctMmUyYjU2YjQxNWMx LzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZac0//hJ I1+rE6ZgEJ/52aEBXqhJGA1PM+0W899g3eNBhTQuqI/uk4wEB5RbbFcMkuIvFlQa zGuyHAFIfWGStA7zkqgJzoVt5stzRr1QLJJLzgDhMaQnud3WI6sf3uPTAU32bYz7 xAg2kqV3CGOPb7KbwL/QneW8toRVvYXEgvIsGpjRAf1gslV1Q2+R8bfgc95X4+oG 3JhJlv4vKJxIvqeLhDOsxmPQKTcu7Nf3cNWLhMcvc+sGb80vtkjCYHoJ5OrqF4Lz GtMSoMOtTJi/Pw61jodr5/hRUps5jiZl4ZATzqlaIugcVtuuqylui/LH3QY9uXB0 zEdv80Kxix+ADQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:32:35 2025 by rpki-client