This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft File: 39D7xN6B7icnq6PpEK_NKlOmZAw.mft (raw, json) Hash identifier: 6mVS0aq1ps/bkMbiuupUwwoXdRn/bE5MUfzLR6uO/z4= Subject key identifier: 72:95:29:DA:1A:5B:06:F3:2B:04:F8:A2:A4:9C:F9:93:02:AE:68:B0 Authority key identifier: DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C Certificate issuer: /CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c Certificate serial: 019AF16416F2C7A4507C2C324BA6DA5AB5ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft Manifest number: 60 Signing time: Sat 06 Dec 2025 02:00:59 +0000 Manifest this update: Sat 06 Dec 2025 02:00:59 +0000 Manifest next update: Sun 07 Dec 2025 02:00:59 +0000 Files and hashes: 1: 39D7xN6B7icnq6PpEK_NKlOmZAw.crl (hash: 4fYNlu8+7KUi2drwVFWB/EMioaDeBEpHapyY7UFrnNs=) 2: 4FynWQReK8fRxN_uNnLkwTP2lYE.roa (hash: VEq12KahPtGBV1be7sGcqyI3vqUnKDMcKj34J54Xm3k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:16:f2:c7:a4:50:7c:2c:32:4b:a6:da:5a:b5:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c Validity Not Before: Dec 6 02:00:59 2025 GMT Not After : Dec 7 02:00:59 2025 GMT Subject: CN=729529da1a5b06f32b04f8a2a49cf99302ae68b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:33:a3:3c:5d:6f:9f:be:7f:ef:75:75:cd:c9: cf:4d:1f:10:1b:33:19:d3:cb:16:19:35:e0:06:f5: 2d:87:52:d8:b7:89:49:27:41:12:62:ee:21:a7:9a: e3:cc:1a:02:89:cd:7d:54:69:4b:6b:bd:ce:9b:92: a0:8c:86:07:08:35:bc:cf:98:11:33:f9:51:83:11: 12:10:f2:5a:9e:db:1f:3d:2e:5b:dc:7b:55:bf:7e: 86:1d:b4:39:0c:ce:f7:a7:9e:73:2a:76:62:56:9a: c7:22:d4:fd:b8:ea:46:61:df:c6:5f:a6:29:e4:e1: 7e:bd:29:cd:25:0d:eb:4f:54:08:ed:ae:9d:47:a9: d3:f1:de:0c:61:46:aa:a8:74:29:51:e3:b8:89:fa: ac:87:18:c1:e3:66:0a:0b:68:fb:86:24:00:c2:d6: fe:96:88:ed:f4:d2:dc:13:a7:66:17:0f:e6:70:ec: 11:fe:2a:ac:cd:d9:75:68:15:5f:38:ab:cb:7a:db: 9b:19:c6:93:97:b6:a2:48:53:e7:fd:c6:89:61:ea: 6c:6a:80:71:9f:f4:03:11:89:82:0d:32:50:95:c7: 2b:83:9c:b8:23:31:d3:23:56:03:b6:7c:24:86:58: 43:69:9f:48:97:f6:24:38:42:3f:9b:38:91:e9:e6: cb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:95:29:DA:1A:5B:06:F3:2B:04:F8:A2:A4:9C:F9:93:02:AE:68:B0 X509v3 Authority Key Identifier: keyid:DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cb:e2:a9:6e:cd:72:07:99:03:a3:51:3f:2e:0e:ec:fc:91:fa: 22:02:ad:67:50:69:b0:c5:ee:16:4b:89:6d:12:32:63:86:6d: ba:36:a9:f7:48:00:f2:b1:34:4a:16:5b:20:24:8a:eb:9b:94: be:0c:fe:ad:35:14:4d:34:8f:c1:3d:7e:bd:20:cf:90:e2:55: 42:ea:21:a1:2d:e4:c2:e6:6f:e6:95:a5:87:dc:34:9c:84:e0: 85:67:e1:cc:4f:c8:29:5c:24:e2:ac:c7:1b:88:17:83:92:7a: c0:f3:e8:78:11:3a:d6:16:79:e6:dd:05:df:da:e8:17:86:18: 5e:01:c8:f5:37:b5:84:df:59:6c:2c:63:d7:19:d8:2f:7c:46: 23:a6:3c:0c:db:fa:9b:d7:49:f3:69:46:8f:17:66:05:8e:db: 3f:93:12:97:d0:fe:a8:3a:50:0a:3b:8d:d8:f3:6b:70:55:31: d6:24:f2:c2:6d:d3:a0:9d:43:37:00:f7:6a:b5:3f:b5:4b:cf: dd:5a:cf:78:74:b7:bc:83:3e:03:41:8d:3c:25:b5:36:5b:cb: 03:80:6c:5c:ca:f0:f4:99:5e:a0:0d:12:d4:d8:18:ff:bb:d4: 1a:93:50:9f:5f:39:6f:6d:1d:b5:32:70:9a:2b:90:77:72:7c: 02:fe:82:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZBbyx6RQfCwyS6baWrXtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmZDBmYmM0ZGU4MWVlMjcyN2FiYTNlOTEwYWZjZDJhNTNh NjY0MGMwHhcNMjUxMjA2MDIwMDU5WhcNMjUxMjA3MDIwMDU5WjAzMTEwLwYDVQQD Eyg3Mjk1MjlkYTFhNWIwNmYzMmIwNGY4YTJhNDljZjk5MzAyYWU2OGIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDOjPF1vn75/73V1zcnPTR8QGzMZ 08sWGTXgBvUth1LYt4lJJ0ESYu4hp5rjzBoCic19VGlLa73Om5KgjIYHCDW8z5gR M/lRgxESEPJantsfPS5b3HtVv36GHbQ5DM73p55zKnZiVprHItT9uOpGYd/GX6Yp 5OF+vSnNJQ3rT1QI7a6dR6nT8d4MYUaqqHQpUeO4ifqshxjB42YKC2j7hiQAwtb+ lojt9NLcE6dmFw/mcOwR/iqszdl1aBVfOKvLetubGcaTl7aiSFPn/caJYepsaoBx n/QDEYmCDTJQlccrg5y4IzHTI1YDtnwkhlhDaZ9Il/YkOEI/mziR6ebLuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHKVKdoaWwbzKwT4oqSc+ZMCrmiwMB8GA1UdIwQY MBaAFN/Q+8Tege4nJ6uj6RCvzSpTpmQMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzlEN3hONkI3aWNucTZQcEVLX05LbE9tWkF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8yNDU4NzMtMWNhNy00YjcxLWIyMjAt ZWRiMDQxOGNhYzRkLzEvMzlEN3hONkI3aWNucTZQcEVLX05LbE9tWkF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8yNDU4NzMtMWNhNy00YjcxLWIyMjAtZWRiMDQxOGNhYzRk LzEvMzlEN3hONkI3aWNucTZQcEVLX05LbE9tWkF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAy+Kpbs1y B5kDo1E/Lg7s/JH6IgKtZ1BpsMXuFkuJbRIyY4Ztujap90gA8rE0ShZbICSK65uU vgz+rTUUTTSPwT1+vSDPkOJVQuohoS3kwuZv5pWlh9w0nITghWfhzE/IKVwk4qzH G4gXg5J6wPPoeBE61hZ55t0F39roF4YYXgHI9Te1hN9ZbCxj1xnYL3xGI6Y8DNv6 m9dJ82lGjxdmBY7bP5MSl9D+qDpQCjuN2PNrcFUx1iTywm3ToJ1DNwD3arU/tUvP 3VrPeHS3vIM+A0GNPCW1NlvLA4BsXMrw9JleoA0S1NgY/7vUGpNQn185b20dtTJw miuQd3J8Av6Cvw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:02:41 2025 by rpki-client