This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft File: DTr3NGYY2GMOAUanZREkQ-DCyP8.mft (raw, json) Hash identifier: xE3llWFtfhAohUfdNW/RUVl0sd8zwZzyiGJzKtgWiWY= Subject key identifier: EF:47:CB:DD:90:04:2A:07:6D:74:7C:3D:2D:A6:6F:49:DD:A2:72:74 Authority key identifier: 0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF Certificate issuer: /CN=0d3af7346618d8630e0146a765112443e0c2c8ff Certificate serial: 019AF12DE651F703342E6B5C0EF56059AF25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft Manifest number: 07F4 Signing time: Sat 06 Dec 2025 01:01:48 +0000 Manifest this update: Sat 06 Dec 2025 01:01:48 +0000 Manifest next update: Sun 07 Dec 2025 01:01:48 +0000 Files and hashes: 1: DTr3NGYY2GMOAUanZREkQ-DCyP8.crl (hash: KG9SMugXMCcmE+HFhEQv2Jyb6+hSoXVOpgeO3TgTMM0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:e6:51:f7:03:34:2e:6b:5c:0e:f5:60:59:af:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d3af7346618d8630e0146a765112443e0c2c8ff Validity Not Before: Dec 6 01:01:48 2025 GMT Not After : Dec 7 01:01:48 2025 GMT Subject: CN=ef47cbdd90042a076d747c3d2da66f49dda27274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ff:17:e7:7f:5a:6c:5d:32:13:25:4e:2a:6a: 52:fe:e5:25:59:2d:13:27:83:e8:d8:9a:9b:c5:e0: f0:74:a3:d0:e9:b6:68:c8:da:03:2e:4f:4b:94:f6: 91:8e:f6:4b:05:84:dd:71:1d:04:79:cd:83:f2:1b: a4:53:b5:fa:30:8a:1c:4d:e5:0d:d5:80:73:c1:e6: 50:d6:1b:cb:2a:b8:0f:fd:59:5c:8d:76:97:62:bd: 79:5c:b6:dc:cf:10:95:36:b3:38:34:20:e3:61:52: 44:a1:58:55:cc:7a:df:5d:3e:1c:20:d2:20:72:ee: de:61:e7:90:5c:2b:b5:2d:8f:62:f2:dd:a7:71:92: 96:69:a7:50:91:25:68:f2:de:04:a4:ef:e4:39:eb: 82:99:65:b3:8b:09:64:91:d5:cd:b0:25:71:ac:72: 5f:a3:c0:46:1d:40:67:df:04:9e:fe:1d:ae:23:2d: e7:9b:08:05:ba:cd:ab:49:2d:ef:a7:2a:4f:03:37: 7c:91:ac:33:1c:70:35:34:2a:e8:d1:39:8e:9c:7f: 73:5e:e9:e9:1a:1c:8a:bd:c0:55:1c:12:b6:b4:f0: ba:d6:68:f5:76:d6:dd:ca:65:ac:ac:09:0e:2c:ec: bf:28:e7:13:ff:f2:95:30:19:8b:66:12:ab:8c:e1: 43:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:47:CB:DD:90:04:2A:07:6D:74:7C:3D:2D:A6:6F:49:DD:A2:72:74 X509v3 Authority Key Identifier: keyid:0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:35:95:8e:b2:6e:a3:53:17:51:a7:2d:07:94:72:28:37:44: da:02:f5:c2:41:81:fb:34:cb:85:1e:79:9e:91:8a:67:79:fb: 32:6d:fd:91:48:fe:36:e2:ab:0d:40:1d:e3:01:44:46:fb:64: f4:90:b9:53:95:8c:86:08:c7:c3:d7:2c:41:0a:2f:7a:e8:a9: e4:ee:73:ea:a7:72:75:53:2f:4b:02:6a:6e:2f:24:b5:eb:79: 4d:95:b5:61:47:d9:64:50:2f:b1:3e:00:a2:80:55:0e:36:89: 80:3a:15:f4:ea:50:cd:7c:42:25:36:47:2e:b8:42:9c:76:b2: c7:4d:ea:4c:b2:fe:93:af:97:b8:44:d1:36:d7:02:fc:05:1b: 34:3a:a9:11:59:45:22:9c:21:0c:2f:0d:d4:11:46:be:14:45: e3:7b:1f:51:53:3a:f9:c1:f2:c3:a8:0d:2a:62:b7:2f:3b:26: 69:6a:fb:de:2b:57:c1:24:89:1e:6c:af:d1:67:d4:ea:9a:ab: c0:df:3f:cc:94:a2:69:68:85:2c:59:7e:0c:95:01:7d:62:43: 31:59:5c:80:10:fd:a0:a5:8b:3e:65:04:97:56:1b:38:92:84: e5:16:c1:a0:69:15:ff:8e:e2:8e:d4:1e:32:97:5e:b5:6c:24: 62:41:a5:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLeZR9wM0LmtcDvVgWa8lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkM2FmNzM0NjYxOGQ4NjMwZTAxNDZhNzY1MTEyNDQzZTBj MmM4ZmYwHhcNMjUxMjA2MDEwMTQ4WhcNMjUxMjA3MDEwMTQ4WjAzMTEwLwYDVQQD EyhlZjQ3Y2JkZDkwMDQyYTA3NmQ3NDdjM2QyZGE2NmY0OWRkYTI3Mjc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxP8X539abF0yEyVOKmpS/uUlWS0T J4Po2JqbxeDwdKPQ6bZoyNoDLk9LlPaRjvZLBYTdcR0Eec2D8hukU7X6MIocTeUN 1YBzweZQ1hvLKrgP/VlcjXaXYr15XLbczxCVNrM4NCDjYVJEoVhVzHrfXT4cINIg cu7eYeeQXCu1LY9i8t2ncZKWaadQkSVo8t4EpO/kOeuCmWWziwlkkdXNsCVxrHJf o8BGHUBn3wSe/h2uIy3nmwgFus2rSS3vpypPAzd8kawzHHA1NCro0TmOnH9zXunp GhyKvcBVHBK2tPC61mj1dtbdymWsrAkOLOy/KOcT//KVMBmLZhKrjOFDbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO9Hy92QBCoHbXR8PS2mb0ndonJ0MB8GA1UdIwQY MBaAFA069zRmGNhjDgFGp2URJEPgwsj/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFRyM05HWVkyR01PQVVhblpSRWtRLURDeVA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi80NTU3MDItNWQ1ZC00NjZiLWIxM2Et ZjNiOWIwYjhkZDcwLzEvRFRyM05HWVkyR01PQVVhblpSRWtRLURDeVA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi80NTU3MDItNWQ1ZC00NjZiLWIxM2EtZjNiOWIwYjhkZDcw LzEvRFRyM05HWVkyR01PQVVhblpSRWtRLURDeVA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdjWVjrJu o1MXUactB5RyKDdE2gL1wkGB+zTLhR55npGKZ3n7Mm39kUj+NuKrDUAd4wFERvtk 9JC5U5WMhgjHw9csQQoveuip5O5z6qdydVMvSwJqbi8ktet5TZW1YUfZZFAvsT4A ooBVDjaJgDoV9OpQzXxCJTZHLrhCnHayx03qTLL+k6+XuETRNtcC/AUbNDqpEVlF IpwhDC8N1BFGvhRF43sfUVM6+cHyw6gNKmK3LzsmaWr73itXwSSJHmyv0WfU6pqr wN8/zJSiaWiFLFl+DJUBfWJDMVlcgBD9oKWLPmUEl1YbOJKE5RbBoGkV/47ijtQe MpdetWwkYkGlaQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:14:04 2025 by rpki-client