This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft File: D0OG59TvxHLBH-nP7z0zCXSzP2E.mft (raw, json) Hash identifier: CcbD4rwIWWlgpD6NhIxHEv+rEYOFPwwyBFmbq+UBOSc= Subject key identifier: 8C:86:41:4A:6D:54:F9:80:A8:0A:EA:5C:2D:8A:EF:08:18:D1:E0:15 Authority key identifier: 0F:43:86:E7:D4:EF:C4:72:C1:1F:E9:CF:EF:3D:33:09:74:B3:3F:61 Certificate issuer: /CN=0f4386e7d4efc472c11fe9cfef3d330974b33f61 Certificate serial: 019B34C4E6A17158E2C5F00ECD68B54937BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft Manifest number: 0A25 Signing time: Fri 19 Dec 2025 04:01:17 +0000 Manifest this update: Fri 19 Dec 2025 04:01:17 +0000 Manifest next update: Sat 20 Dec 2025 04:01:17 +0000 Files and hashes: 1: D0OG59TvxHLBH-nP7z0zCXSzP2E.crl (hash: PG1h4CT7BtShqWJVy87B5Z2I4tpf6lrmxKVys+g9kVc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.crl rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c4:e6:a1:71:58:e2:c5:f0:0e:cd:68:b5:49:37:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f4386e7d4efc472c11fe9cfef3d330974b33f61 Validity Not Before: Dec 19 04:01:17 2025 GMT Not After : Dec 20 04:01:17 2025 GMT Subject: CN=8c86414a6d54f980a80aea5c2d8aef0818d1e015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2f:ed:e1:e5:93:3f:72:6b:59:9f:f2:55:a4: 5e:c2:cb:c1:f7:42:d4:93:07:51:bc:77:fc:ae:77: 3a:91:5f:73:e9:28:19:6b:e5:eb:d6:e7:84:3c:5e: 5d:93:14:71:1e:eb:6d:f1:33:30:3f:0b:d8:c1:d2: 40:c6:da:2f:89:66:7b:e2:97:86:ca:4a:87:b8:e5: c6:6b:fc:17:e2:cf:22:5b:c9:e3:c3:28:50:2c:fa: 59:98:f9:d6:c6:5b:8b:8f:3b:ee:04:23:37:fa:85: a6:2d:d9:97:7a:d7:c1:e5:5a:7c:d6:20:8c:6f:fb: b2:d9:4a:62:99:18:df:6e:f6:0a:03:0a:ed:42:b0: c6:08:4b:1d:fb:a9:d0:a9:3b:c1:13:1c:75:56:b7: 6b:7d:ec:2d:70:ce:0b:fa:21:c8:4c:ff:8d:5f:7f: 03:96:2a:c3:3d:6a:18:0b:7c:a9:67:88:5a:84:e3: d3:f1:12:6d:7c:77:ce:bb:93:86:f7:cf:33:54:24: 90:aa:96:57:97:10:4d:97:c4:16:c4:4b:5c:82:5b: c7:23:09:27:f3:c5:76:ac:0b:43:d0:d4:6f:2a:94: cc:0c:96:2b:9f:2e:e3:85:c8:f9:27:90:e7:82:e8: 1f:a4:8c:9b:fb:d1:70:19:5e:67:04:07:19:8a:08: 99:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:86:41:4A:6D:54:F9:80:A8:0A:EA:5C:2D:8A:EF:08:18:D1:E0:15 X509v3 Authority Key Identifier: keyid:0F:43:86:E7:D4:EF:C4:72:C1:1F:E9:CF:EF:3D:33:09:74:B3:3F:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:7b:62:ef:b5:f2:c3:81:37:59:32:7a:f3:bc:3f:1f:a7:25: 6c:a2:52:ad:05:28:d9:0c:88:29:18:05:df:fa:95:2f:df:92: 6e:6e:09:4e:0d:04:f3:55:ad:5c:89:54:6a:f0:67:86:19:8d: 09:e3:b6:0f:b5:08:f0:eb:82:e2:fd:fd:4b:7c:75:65:2a:93: 8e:77:56:64:44:52:99:f0:5e:78:c8:20:1b:5a:de:01:4f:21: 06:47:2d:e6:db:64:1b:b4:19:b5:3f:51:02:20:7f:11:7a:ba: 53:1d:c1:2b:a3:ff:5b:df:46:8d:0c:69:6b:5a:fd:b3:84:e5: cb:12:60:d1:43:bc:a9:dd:0e:07:0b:59:83:94:9d:ce:fc:17: bd:e8:64:e0:ed:37:db:c8:76:77:f3:c9:e0:01:a0:51:53:3a: ea:b6:6e:d1:44:ef:22:8d:cf:ae:1a:f0:00:6c:96:a2:36:fa: 76:f9:c3:9d:3c:f5:66:aa:cd:bf:3e:ec:69:82:6b:87:a8:d6: 27:33:cf:b0:92:ff:15:81:ac:35:31:52:36:fb:d4:37:10:1c: d4:76:15:6b:dd:20:9b:51:ea:0e:0c:30:f0:3c:2c:97:e3:66: 93:8f:11:e8:e9:c2:3d:eb:37:1c:46:67:0d:87:eb:cd:65:83: 91:08:70:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xOahcVjixfAOzWi1STe6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNDM4NmU3ZDRlZmM0NzJjMTFmZTljZmVmM2QzMzA5NzRi MzNmNjEwHhcNMjUxMjE5MDQwMTE3WhcNMjUxMjIwMDQwMTE3WjAzMTEwLwYDVQQD Eyg4Yzg2NDE0YTZkNTRmOTgwYTgwYWVhNWMyZDhhZWYwODE4ZDFlMDE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwi/t4eWTP3JrWZ/yVaRewsvB90LU kwdRvHf8rnc6kV9z6SgZa+Xr1ueEPF5dkxRxHutt8TMwPwvYwdJAxtoviWZ74peG ykqHuOXGa/wX4s8iW8njwyhQLPpZmPnWxluLjzvuBCM3+oWmLdmXetfB5Vp81iCM b/uy2UpimRjfbvYKAwrtQrDGCEsd+6nQqTvBExx1VrdrfewtcM4L+iHITP+NX38D lirDPWoYC3ypZ4hahOPT8RJtfHfOu5OG988zVCSQqpZXlxBNl8QWxEtcglvHIwkn 88V2rAtD0NRvKpTMDJYrny7jhcj5J5DngugfpIyb+9FwGV5nBAcZigiZ/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIyGQUptVPmAqArqXC2K7wgY0eAVMB8GA1UdIwQY MBaAFA9DhufU78RywR/pz+89Mwl0sz9hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDBPRzU5VHZ4SExCSC1uUDd6MHpDWFN6UDJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS81NmJmYjQtYjNmZS00NjVhLWIzNTct NTJhYmI1M2I3NTEzLzEvRDBPRzU5VHZ4SExCSC1uUDd6MHpDWFN6UDJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS81NmJmYjQtYjNmZS00NjVhLWIzNTctNTJhYmI1M2I3NTEz LzEvRDBPRzU5VHZ4SExCSC1uUDd6MHpDWFN6UDJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk3ti77Xy w4E3WTJ687w/H6clbKJSrQUo2QyIKRgF3/qVL9+Sbm4JTg0E81WtXIlUavBnhhmN CeO2D7UI8OuC4v39S3x1ZSqTjndWZERSmfBeeMggG1reAU8hBkct5ttkG7QZtT9R AiB/EXq6Ux3BK6P/W99GjQxpa1r9s4TlyxJg0UO8qd0OBwtZg5SdzvwXvehk4O03 28h2d/PJ4AGgUVM66rZu0UTvIo3PrhrwAGyWojb6dvnDnTz1ZqrNvz7saYJrh6jW JzPPsJL/FYGsNTFSNvvUNxAc1HYVa90gm1HqDgww8Dwsl+Nmk48R6OnCPes3HEZn DYfrzWWDkQhwgA== -----END CERTIFICATE-----Generated at Fri Dec 19 05:47:43 2025 by rpki-client