This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft File: dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft (raw, json) Hash identifier: nPErM8YTVoKidmTIC5/3TbUwsAOAHE6hSxjfGCLqL7U= Subject key identifier: C7:C6:23:96:8E:45:BB:26:4E:B0:0A:A7:2A:0C:CC:CA:B3:ED:D1:31 Authority key identifier: 74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8 Certificate issuer: /CN=74ae941a681c1586379e07247dcc19f3f41035d8 Certificate serial: 019AF0889F27FEE6EA3C2D08AF3B040EBBBA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft Manifest number: 0EFE Signing time: Fri 05 Dec 2025 22:01:16 +0000 Manifest this update: Fri 05 Dec 2025 22:01:16 +0000 Manifest next update: Sat 06 Dec 2025 22:01:16 +0000 Files and hashes: 1: aRphps94ueev9_cb0Fbr1t6EWos.roa (hash: qY/6yr4D72wfd0je0UgbA5pXBnLSwy4IbEDXkYKHi6c=) 2: dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl (hash: 6vKn+3RX3GVhOUsmQjvi0RnA60dBJMVCLhZG5QXtnGg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:9f:27:fe:e6:ea:3c:2d:08:af:3b:04:0e:bb:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74ae941a681c1586379e07247dcc19f3f41035d8 Validity Not Before: Dec 5 22:01:16 2025 GMT Not After : Dec 6 22:01:16 2025 GMT Subject: CN=c7c623968e45bb264eb00aa72a0ccccab3edd131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:86:15:5d:a0:95:50:63:04:40:cd:8f:18:fe: 9d:16:a2:55:1e:fa:52:a1:2b:c3:eb:9f:aa:da:17: 68:2b:d1:31:8e:0e:3d:d5:58:85:a3:80:6e:b1:ba: c4:46:ca:e4:46:2f:43:f6:1b:02:a5:17:2a:3f:15: e6:a6:6a:6e:81:50:fe:91:95:1d:ac:a6:bc:dc:50: 80:e7:f7:06:71:5b:29:51:38:70:18:0b:43:03:8f: 8f:33:2a:fa:fd:e3:41:d4:0e:b6:23:10:fc:77:79: 48:c7:66:4f:ba:6c:6d:8d:35:9b:6a:01:6b:58:c9: b5:5f:a8:50:96:6b:17:24:a9:01:08:4e:c5:7d:e8: 66:56:71:9b:92:52:47:9c:e0:19:5a:bc:80:90:5a: ef:94:37:ea:82:3e:53:c5:24:43:bf:c9:c8:45:65: 38:17:00:31:e0:8a:ee:f0:79:e2:ce:03:97:1e:85: a7:1b:2b:b2:d0:42:5a:12:fc:71:e0:64:7d:30:8a: ad:d9:e3:04:1a:67:7c:9b:ec:75:4b:ed:1e:52:c0: ad:72:29:6e:86:d4:26:68:05:8d:2d:c5:48:a3:5b: 90:bd:0f:f6:8d:42:88:f8:c0:53:3a:5e:c8:4d:f4: ab:8e:3a:b9:1d:3a:30:57:0b:99:f0:09:8d:bc:10: ee:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C6:23:96:8E:45:BB:26:4E:B0:0A:A7:2A:0C:CC:CA:B3:ED:D1:31 X509v3 Authority Key Identifier: keyid:74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:d7:94:b5:2e:5c:4a:75:8c:1a:51:b2:04:67:f7:53:6c:b4: 50:3d:7b:14:3f:51:f7:b0:77:4d:d8:b5:07:ae:42:2c:48:d6: 48:6d:98:d4:de:ca:73:2d:28:cd:3d:af:20:cb:c8:43:9b:82: 37:05:4d:21:9f:21:d3:66:2a:82:a4:f5:aa:9a:76:86:5d:05: 8c:90:14:77:16:04:66:ae:6b:c9:0f:46:78:82:91:5e:3e:3d: 77:90:93:b0:73:5e:fc:4e:66:b9:2d:30:e5:60:dc:c5:06:3c: 50:58:e7:9a:e1:88:fa:b1:2c:e3:fc:36:8d:d3:d1:b6:07:f2: b6:3d:c4:3e:15:71:4f:1b:5d:65:5f:a3:4d:2e:f7:d6:92:5e: 49:8b:20:6c:5b:f7:54:83:c3:f9:de:bb:e8:a5:5a:83:f3:7c: 81:25:f0:74:6f:6e:29:1f:4d:13:1f:34:3b:c4:95:bd:42:ee: 77:ff:5f:d3:0c:13:9a:8c:19:50:f0:a9:5a:18:e1:eb:5e:22: f3:8f:13:a8:ef:c8:d1:f0:ad:e9:cd:ca:4f:52:66:89:64:d8: b4:8c:d2:05:bc:16:bf:32:3d:db:97:2f:15:c0:20:6f:4d:61: 5b:51:63:4d:0c:31:c7:a3:02:6d:45:3e:a7:3b:63:1b:f5:ab: 7f:7f:f0:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiJ8n/ubqPC0IrzsEDru6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0YWU5NDFhNjgxYzE1ODYzNzllMDcyNDdkY2MxOWYzZjQx MDM1ZDgwHhcNMjUxMjA1MjIwMTE2WhcNMjUxMjA2MjIwMTE2WjAzMTEwLwYDVQQD EyhjN2M2MjM5NjhlNDViYjI2NGViMDBhYTcyYTBjY2NjYWIzZWRkMTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIYVXaCVUGMEQM2PGP6dFqJVHvpS oSvD65+q2hdoK9Exjg491ViFo4BusbrERsrkRi9D9hsCpRcqPxXmpmpugVD+kZUd rKa83FCA5/cGcVspUThwGAtDA4+PMyr6/eNB1A62IxD8d3lIx2ZPumxtjTWbagFr WMm1X6hQlmsXJKkBCE7FfehmVnGbklJHnOAZWryAkFrvlDfqgj5TxSRDv8nIRWU4 FwAx4Iru8HnizgOXHoWnGyuy0EJaEvxx4GR9MIqt2eMEGmd8m+x1S+0eUsCtcilu htQmaAWNLcVIo1uQvQ/2jUKI+MBTOl7ITfSrjjq5HTowVwuZ8AmNvBDuFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMfGI5aORbsmTrAKpyoMzMqz7dExMB8GA1UdIwQY MBaAFHSulBpoHBWGN54HJH3MGfP0EDXYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEs2VUdtZ2NGWVkzbmdja2Zjd1o4X1FRTmRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8xNGU0YzItOGE5OC00NTZlLTk2MTIt OTQyOWRhODdiZDUwLzEvZEs2VUdtZ2NGWVkzbmdja2Zjd1o4X1FRTmRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8xNGU0YzItOGE5OC00NTZlLTk2MTItOTQyOWRhODdiZDUw LzEvZEs2VUdtZ2NGWVkzbmdja2Zjd1o4X1FRTmRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb9eUtS5c SnWMGlGyBGf3U2y0UD17FD9R97B3Tdi1B65CLEjWSG2Y1N7Kcy0ozT2vIMvIQ5uC NwVNIZ8h02YqgqT1qpp2hl0FjJAUdxYEZq5ryQ9GeIKRXj49d5CTsHNe/E5muS0w 5WDcxQY8UFjnmuGI+rEs4/w2jdPRtgfytj3EPhVxTxtdZV+jTS731pJeSYsgbFv3 VIPD+d676KVag/N8gSXwdG9uKR9NEx80O8SVvULud/9f0wwTmowZUPCpWhjh614i 848TqO/I0fCt6c3KT1JmiWTYtIzSBbwWvzI925cvFcAgb01hW1FjTQwxx6MCbUU+ pztjG/Wrf3/whw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:19 2025 by rpki-client