This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft File: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft (raw, json) Hash identifier: BBumHG7Ecwq45VIRDCtVjgis7JGseIifDyHhIOpMCx4= Subject key identifier: 17:7E:A5:F2:71:A7:9F:61:A3:80:0A:46:55:B6:37:CD:4E:E6:65:7E Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7 Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7 Certificate serial: 019B330D0D3258ECA6109AAC9F45811A94A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft Manifest number: 13CE Signing time: Thu 18 Dec 2025 20:00:51 +0000 Manifest this update: Thu 18 Dec 2025 20:00:51 +0000 Manifest next update: Fri 19 Dec 2025 20:00:51 +0000 Files and hashes: 1: KhThgn0FLgtxgLmV5WuQd88UjJs.roa (hash: UVyvP36EKpZylxYZtY94LC7cB1Xoy48Pim7visCwDUs=) 2: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl (hash: exS7I8BaWm9gNu/cAN21RqrcSoQ0JU4Hx867HDUEIZY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:0d:32:58:ec:a6:10:9a:ac:9f:45:81:1a:94:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7 Validity Not Before: Dec 18 20:00:51 2025 GMT Not After : Dec 19 20:00:51 2025 GMT Subject: CN=177ea5f271a79f61a3800a4655b637cd4ee6657e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:95:7d:37:4b:48:87:d0:33:b2:71:5b:5a:8b: ef:fa:3e:6b:01:be:87:c1:75:a3:6e:46:15:aa:57: 97:dd:e1:d0:b1:4b:1e:26:05:9d:22:a8:04:5b:d1: 94:ca:d1:53:ec:b8:14:46:0f:c4:30:9f:cc:8c:db: 0e:dc:83:f8:b3:ad:d2:bf:f4:01:f7:96:02:07:f5: 5b:b2:58:a1:48:db:e4:7c:59:86:82:c4:4c:e7:87: c6:2a:64:cd:e0:ed:4e:56:17:0a:12:88:43:15:fb: a6:d2:13:cf:f7:5d:1d:3f:f7:a8:53:a7:8a:4c:2c: 0b:b5:84:39:42:2c:c6:34:a5:f3:96:89:85:f4:e9: 9b:5c:22:8c:e8:8c:f4:d2:2a:28:1c:93:5d:d7:34: ba:11:c1:36:b9:90:60:f1:11:a6:32:f7:3e:29:27: 49:f4:09:06:7a:bb:18:1d:97:09:e4:99:e0:b1:9f: 5f:ec:78:ae:9f:90:d2:48:d3:69:f4:60:83:e3:02: 4e:b0:47:e9:38:da:51:00:9a:31:8a:fe:b3:95:51: 9f:b1:9c:3d:69:23:36:e8:cd:98:47:bd:f0:83:e2: 0e:6a:36:3a:43:69:1b:bd:7a:2e:ec:87:eb:82:e2: a3:47:d4:e8:10:0c:ad:a4:30:75:1b:89:81:27:0b: b7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:7E:A5:F2:71:A7:9F:61:A3:80:0A:46:55:B6:37:CD:4E:E6:65:7E X509v3 Authority Key Identifier: keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:a3:7e:ac:68:2d:3f:f1:3e:22:e8:ac:df:52:28:b5:e8:1e: 87:1a:58:b4:60:b2:92:1d:0a:fa:77:31:2b:87:b8:85:8c:21: 90:71:a3:58:63:7a:63:49:0a:8c:ba:da:16:c7:e9:7b:3e:7d: 79:84:a4:cd:21:ee:66:44:75:fa:7a:00:4a:61:6b:66:0b:d6: 94:6e:3a:aa:7f:0e:49:92:53:e9:e4:b5:31:b9:ee:11:d7:8e: 20:2d:ca:58:00:c5:4b:97:bf:63:32:e7:8b:14:d6:5d:64:27: 2a:a7:2d:6f:ec:91:ef:ce:15:99:f8:1f:a3:a6:1a:0d:f5:e0: a5:a8:63:23:75:1a:bc:19:63:e7:38:11:74:16:63:d0:8f:bf: 68:4c:7a:bb:10:a9:b4:6d:c0:ff:44:2e:f1:2c:b9:04:1e:df: 03:f2:8a:9e:ff:47:8a:37:2c:c9:ac:dc:dd:44:1d:3f:d2:64: 46:1b:b7:04:6b:84:0d:64:69:f8:14:13:84:c3:6a:a8:00:11: 3a:42:66:83:e3:58:b4:8e:88:5b:61:d9:54:fd:64:e5:1e:bd: af:87:6f:ac:53:b4:26:87:a2:18:8d:41:92:d9:31:c1:57:8a: c3:0c:a7:cb:86:94:03:cb:45:96:d9:7d:70:56:ba:5c:86:28: f4:08:25:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDQ0yWOymEJqsn0WBGpSjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjMzI4NzU2ZGVjZThmMjlmOTdmNDFiODFhMDg3ZGI1MjRl MTU5YjcwHhcNMjUxMjE4MjAwMDUxWhcNMjUxMjE5MjAwMDUxWjAzMTEwLwYDVQQD EygxNzdlYTVmMjcxYTc5ZjYxYTM4MDBhNDY1NWI2MzdjZDRlZTY2NTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5V9N0tIh9AzsnFbWovv+j5rAb6H wXWjbkYVqleX3eHQsUseJgWdIqgEW9GUytFT7LgURg/EMJ/MjNsO3IP4s63Sv/QB 95YCB/VbslihSNvkfFmGgsRM54fGKmTN4O1OVhcKEohDFfum0hPP910dP/eoU6eK TCwLtYQ5QizGNKXzlomF9OmbXCKM6Iz00iooHJNd1zS6EcE2uZBg8RGmMvc+KSdJ 9AkGersYHZcJ5JngsZ9f7Hiun5DSSNNp9GCD4wJOsEfpONpRAJoxiv6zlVGfsZw9 aSM26M2YR73wg+IOajY6Q2kbvXou7IfrguKjR9ToEAytpDB1G4mBJwu3RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBd+pfJxp59ho4AKRlW2N81O5mV+MB8GA1UdIwQY MBaAFKwyh1bezo8p+X9BuBoIfbUk4Vm3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckRLSFZ0N09qeW41ZjBHNEdnaDl0U1RoV2JjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9mYjc4YWQtOTE4ZS00NGMyLTk1MDEt MDI0YWQ0ZmIzNzA4LzEvckRLSFZ0N09qeW41ZjBHNEdnaDl0U1RoV2JjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9mYjc4YWQtOTE4ZS00NGMyLTk1MDEtMDI0YWQ0ZmIzNzA4 LzEvckRLSFZ0N09qeW41ZjBHNEdnaDl0U1RoV2JjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA6N+rGgt P/E+Iuis31IotegehxpYtGCykh0K+ncxK4e4hYwhkHGjWGN6Y0kKjLraFsfpez59 eYSkzSHuZkR1+noASmFrZgvWlG46qn8OSZJT6eS1MbnuEdeOIC3KWADFS5e/YzLn ixTWXWQnKqctb+yR784Vmfgfo6YaDfXgpahjI3UavBlj5zgRdBZj0I+/aEx6uxCp tG3A/0Qu8Sy5BB7fA/KKnv9Hijcsyazc3UQdP9JkRhu3BGuEDWRp+BQThMNqqAAR OkJmg+NYtI6IW2HZVP1k5R69r4dvrFO0JoeiGI1BktkxwVeKwwyny4aUA8tFltl9 cFa6XIYo9AglKQ== -----END CERTIFICATE-----Generated at Thu Dec 18 23:44:57 2025 by rpki-client