This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft File: d9LZKEIxBOXDSA4htKPtFJiyon4.mft (raw, json) Hash identifier: Xp/uOew5zgAhL8j6ktvZFWrfgVmn7VNEoVrqvu+6N5A= Subject key identifier: 61:CB:06:B4:F5:8C:5A:3A:E2:74:DF:D8:B3:B8:A6:34:38:D8:71:3C Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e Certificate serial: 019AF50ABD294C014DD48E314DCCE89CC14F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft Manifest number: 0CDB Signing time: Sat 06 Dec 2025 19:01:52 +0000 Manifest this update: Sat 06 Dec 2025 19:01:52 +0000 Manifest next update: Sun 07 Dec 2025 19:01:52 +0000 Files and hashes: 1: HX3f5FZnDXBVPEnE5bxp-46XcDI.roa (hash: Cn4L/fOgVlSahDb0v8tdmodjivbISS4FJEJArlg0b+Y=) 2: d9LZKEIxBOXDSA4htKPtFJiyon4.crl (hash: d1Tv96eyzj+UarqwAvL2tPNHBrwhsGlqKe6gklyxzj8=) 3: jKFJgU1IkNXTMlJ4fb3SLPhpIEs.roa (hash: gVNSWZlrE4CqYnhrjWkiPYyY6GBkTGDHd/hL4ezDiUs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:bd:29:4c:01:4d:d4:8e:31:4d:cc:e8:9c:c1:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e Validity Not Before: Dec 6 19:01:52 2025 GMT Not After : Dec 7 19:01:52 2025 GMT Subject: CN=61cb06b4f58c5a3ae274dfd8b3b8a63438d8713c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:26:05:d7:56:db:7e:b5:b9:c8:f0:46:a9:af: c9:11:9e:20:df:5e:43:97:56:fa:08:e2:d1:5d:3f: 8a:3a:83:4e:93:59:34:ec:9f:b7:85:12:2a:1c:ed: 8f:fa:78:2d:e7:9a:02:33:dc:6c:d3:25:d4:15:ff: b2:e7:58:78:30:8d:80:63:c4:7a:f8:fe:05:14:0e: ad:83:14:dc:84:78:4e:31:81:eb:30:d3:c2:22:80: 50:17:80:e9:4c:d7:4b:a8:60:23:d4:36:fb:3d:68: c4:dd:92:e5:d8:cf:80:ab:e9:0f:f4:ac:86:0f:a9: 2a:cc:0b:64:53:e9:6a:74:8e:e3:16:f2:23:37:d7: 1d:ef:87:01:96:14:d5:f9:bf:8c:bf:2a:0c:96:b0: 79:33:e9:08:39:6f:88:b4:04:4c:6b:78:36:bb:6a: ec:46:19:1e:39:e4:5b:99:8a:88:06:85:5c:ba:b0: 3e:c5:3a:1b:74:2c:ac:ab:c2:02:d2:55:cc:c9:00: e7:61:9d:6c:8b:74:26:bb:0d:88:11:55:30:8a:bd: da:cf:88:07:5e:89:2e:4a:b0:a6:06:57:2a:5a:04: 00:1d:e4:a0:fd:e7:f8:78:ed:e6:f0:f4:5e:da:d7: 03:5f:f5:b9:34:96:cc:ec:b4:f6:d2:a4:4c:ad:c5: 9c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:CB:06:B4:F5:8C:5A:3A:E2:74:DF:D8:B3:B8:A6:34:38:D8:71:3C X509v3 Authority Key Identifier: keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:ae:8e:6b:56:46:3a:5a:d6:00:f9:d1:1f:69:37:c8:da:a1: dd:05:24:5e:3a:24:ca:3e:57:e6:a0:dc:49:03:d2:fe:e8:47: fe:52:c4:20:b0:fa:ea:d5:8f:7b:d6:cf:cd:30:19:ce:90:e1: 26:07:76:b2:01:ae:fe:c9:72:07:7f:28:22:59:98:95:97:d6: 39:01:89:ab:3a:58:36:d8:03:7c:41:e2:c5:04:35:44:b1:63: ee:3c:bb:47:f6:b0:a6:98:a5:f9:4c:d1:26:43:d2:99:e7:47: ee:9d:f5:25:c0:d0:c5:61:13:24:75:3a:f7:1f:61:a2:40:74: 08:4a:40:cd:bd:7b:1c:8c:6d:41:1d:d3:d2:1d:48:c7:2e:9c: a9:11:35:37:f7:cc:4e:40:3b:e3:a2:50:ab:f4:20:d9:de:ce: de:a5:d1:7c:7d:17:0a:99:34:67:28:5b:bd:77:ed:15:17:83: cf:65:c5:b5:23:d1:df:cf:01:97:05:64:d4:e2:ac:06:69:a0: ad:7a:8a:0a:10:d7:7e:f0:be:27:1f:db:ac:82:bf:92:65:3e: a3:f4:ef:73:5f:64:6c:f3:ee:23:fd:93:9c:d7:06:b7:16:2c: bc:fd:9f:27:a4:be:ed:dd:35:82:89:90:47:18:9f:83:e7:2a: 61:f7:7c:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Cr0pTAFN1I4xTczonMFPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3ZDJkOTI4NDIzMTA0ZTVjMzQ4MGUyMWI0YTNlZDE0OThi MmEyN2UwHhcNMjUxMjA2MTkwMTUyWhcNMjUxMjA3MTkwMTUyWjAzMTEwLwYDVQQD Eyg2MWNiMDZiNGY1OGM1YTNhZTI3NGRmZDhiM2I4YTYzNDM4ZDg3MTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqiYF11bbfrW5yPBGqa/JEZ4g315D l1b6COLRXT+KOoNOk1k07J+3hRIqHO2P+ngt55oCM9xs0yXUFf+y51h4MI2AY8R6 +P4FFA6tgxTchHhOMYHrMNPCIoBQF4DpTNdLqGAj1Db7PWjE3ZLl2M+Aq+kP9KyG D6kqzAtkU+lqdI7jFvIjN9cd74cBlhTV+b+MvyoMlrB5M+kIOW+ItARMa3g2u2rs RhkeOeRbmYqIBoVcurA+xTobdCysq8IC0lXMyQDnYZ1si3Qmuw2IEVUwir3az4gH XokuSrCmBlcqWgQAHeSg/ef4eO3m8PRe2tcDX/W5NJbM7LT20qRMrcWcZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHLBrT1jFo64nTf2LO4pjQ42HE8MB8GA1UdIwQY MBaAFHfS2ShCMQTlw0gOIbSj7RSYsqJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgt NDg4NzkyMzg4ZTViLzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgtNDg4NzkyMzg4ZTVi LzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM66Oa1ZG OlrWAPnRH2k3yNqh3QUkXjokyj5X5qDcSQPS/uhH/lLEILD66tWPe9bPzTAZzpDh Jgd2sgGu/slyB38oIlmYlZfWOQGJqzpYNtgDfEHixQQ1RLFj7jy7R/awppil+UzR JkPSmedH7p31JcDQxWETJHU69x9hokB0CEpAzb17HIxtQR3T0h1Ixy6cqRE1N/fM TkA746JQq/Qg2d7O3qXRfH0XCpk0ZyhbvXftFReDz2XFtSPR388BlwVk1OKsBmmg rXqKChDXfvC+Jx/brIK/kmU+o/Tvc19kbPPuI/2TnNcGtxYsvP2fJ6S+7d01gomQ Rxifg+cqYfd8zQ== -----END CERTIFICATE-----Generated at Sat Dec 6 23:43:15 2025 by rpki-client