This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft File: DNpch0NU2Dgm5DwlNbduINW2GwU.mft (raw, json) Hash identifier: yKdhUiPXnlXdZ//f5pYBu0aUpawgmWKRREbaj3KJAFE= Subject key identifier: 21:A6:63:FF:DD:ED:6E:F4:50:AD:BE:80:CE:DD:00:78:05:BA:13:89 Authority key identifier: 0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05 Certificate issuer: /CN=0cda5c874354d83826e43c2535b76e20d5b61b05 Certificate serial: 019AF12CC57580CB1497CBA9714668E7BC09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft Manifest number: 176C Signing time: Sat 06 Dec 2025 01:00:34 +0000 Manifest this update: Sat 06 Dec 2025 01:00:34 +0000 Manifest next update: Sun 07 Dec 2025 01:00:34 +0000 Files and hashes: 1: 32CQUiCUfdquX7Jbo_dmPVa4RAU.roa (hash: FAfiLPwl0dHpiVR3Uys5QcBsWLGjmkF+BWAYhU6veIk=) 2: DNpch0NU2Dgm5DwlNbduINW2GwU.crl (hash: rpImnoDoAzBrKlcwqAOgavT8GFdvT7jaSiohBGOlUUM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:c5:75:80:cb:14:97:cb:a9:71:46:68:e7:bc:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0cda5c874354d83826e43c2535b76e20d5b61b05 Validity Not Before: Dec 6 01:00:34 2025 GMT Not After : Dec 7 01:00:34 2025 GMT Subject: CN=21a663ffdded6ef450adbe80cedd007805ba1389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ab:4c:e0:49:b8:3d:65:b7:05:c9:52:60:8f: cd:32:a0:9d:72:6a:00:52:78:2e:10:bd:44:b8:4d: c9:59:f9:7d:a8:0a:9d:f6:c8:e2:bc:2b:82:fc:c6: 20:45:4d:95:b1:b6:36:d7:15:88:e5:27:2c:5d:06: 80:1b:d5:e1:de:71:af:16:ff:81:8f:64:38:b4:36: a3:b6:5e:44:6b:82:51:64:1b:28:ec:a1:ad:ed:6d: e0:de:97:e3:09:9c:c3:b4:ed:d9:58:eb:8e:8e:cf: d9:f8:e4:0a:c1:fc:65:e1:47:6c:14:a1:59:fd:0f: ae:cb:ef:52:d8:92:e0:52:ea:a0:22:74:0b:76:7b: 16:a4:7d:59:b8:97:92:47:ff:f1:00:1a:da:2d:ce: 10:07:d1:47:e8:b6:53:bb:cb:cd:91:35:7a:c2:10: 6e:25:d4:60:da:87:9f:47:cb:30:8d:6c:b7:89:1c: a8:56:b8:e3:e2:7f:fb:1f:52:82:e7:be:c5:e0:30: 09:9e:7a:01:ce:19:83:df:cd:9c:e4:ef:12:ba:c0: 58:9b:11:46:0c:40:7c:57:15:e8:6d:db:95:ec:bd: 0b:68:7a:e3:a4:46:3f:3a:a1:07:3c:ef:c5:cd:39: 38:a6:95:52:86:b3:f5:a9:3e:86:f7:19:45:ba:04: b0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A6:63:FF:DD:ED:6E:F4:50:AD:BE:80:CE:DD:00:78:05:BA:13:89 X509v3 Authority Key Identifier: keyid:0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:3b:00:1b:0e:6b:4f:eb:94:70:40:4c:bb:c0:da:53:b1:35: 16:1e:ea:90:ad:9b:5e:d8:c2:ae:bf:40:d7:d7:21:ba:2b:e1: 56:86:93:58:f6:55:a8:3f:ed:d1:a7:e5:79:13:7f:ca:56:46: 12:2b:c4:69:0e:7f:0c:1e:6b:f5:ea:4d:8d:29:28:34:8e:fc: e4:2d:25:22:02:6e:57:e0:7c:81:89:07:52:b6:52:cf:7a:02: 3a:18:50:da:db:d4:4e:15:f4:52:52:57:e9:69:be:38:bb:96: b4:6e:a9:1d:1a:bc:2c:09:c1:a0:30:21:2a:11:d6:0e:09:1d: 82:88:25:36:ce:18:9b:5d:a1:ed:5d:4d:ba:2e:0b:54:c9:dc: 8a:40:7d:1b:c9:1e:86:32:c1:ff:d8:c2:91:1b:9f:99:85:9f: 45:b5:b2:48:91:f7:81:b3:e7:8c:cd:76:00:b5:67:92:9a:42: 34:21:b5:3e:18:bd:8a:49:ca:21:8f:90:8c:c9:23:80:32:61: c5:6e:ba:bf:fc:4f:d2:fa:82:3a:03:ea:85:3d:c5:e2:00:12: c9:31:cf:60:c8:a5:f2:46:22:45:03:7a:40:3e:a3:af:d6:0c: d1:cd:b5:46:24:65:ef:ca:5a:2c:ed:7c:84:64:a6:c3:86:5c: c0:52:ec:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLMV1gMsUl8upcUZo57wJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZGE1Yzg3NDM1NGQ4MzgyNmU0M2MyNTM1Yjc2ZTIwZDVi NjFiMDUwHhcNMjUxMjA2MDEwMDM0WhcNMjUxMjA3MDEwMDM0WjAzMTEwLwYDVQQD EygyMWE2NjNmZmRkZWQ2ZWY0NTBhZGJlODBjZWRkMDA3ODA1YmExMzg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuatM4Em4PWW3BclSYI/NMqCdcmoA UnguEL1EuE3JWfl9qAqd9sjivCuC/MYgRU2VsbY21xWI5ScsXQaAG9Xh3nGvFv+B j2Q4tDajtl5Ea4JRZBso7KGt7W3g3pfjCZzDtO3ZWOuOjs/Z+OQKwfxl4UdsFKFZ /Q+uy+9S2JLgUuqgInQLdnsWpH1ZuJeSR//xABraLc4QB9FH6LZTu8vNkTV6whBu JdRg2oefR8swjWy3iRyoVrjj4n/7H1KC577F4DAJnnoBzhmD382c5O8SusBYmxFG DEB8VxXobduV7L0LaHrjpEY/OqEHPO/FzTk4ppVShrP1qT6G9xlFugSw6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCGmY//d7W70UK2+gM7dAHgFuhOJMB8GA1UdIwQY MBaAFAzaXIdDVNg4JuQ8JTW3biDVthsFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE5wY2gwTlUyRGdtNUR3bE5iZHVJTlcyR3dVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi85MjMzMmYtMDNlMC00MTE2LWI2ZjMt YzgyZjQyNGI2ZDBkLzEvRE5wY2gwTlUyRGdtNUR3bE5iZHVJTlcyR3dVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi85MjMzMmYtMDNlMC00MTE2LWI2ZjMtYzgyZjQyNGI2ZDBk LzEvRE5wY2gwTlUyRGdtNUR3bE5iZHVJTlcyR3dVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJjsAGw5r T+uUcEBMu8DaU7E1Fh7qkK2bXtjCrr9A19chuivhVoaTWPZVqD/t0afleRN/ylZG EivEaQ5/DB5r9epNjSkoNI785C0lIgJuV+B8gYkHUrZSz3oCOhhQ2tvUThX0UlJX 6Wm+OLuWtG6pHRq8LAnBoDAhKhHWDgkdgoglNs4Ym12h7V1Nui4LVMncikB9G8ke hjLB/9jCkRufmYWfRbWySJH3gbPnjM12ALVnkppCNCG1Phi9iknKIY+QjMkjgDJh xW66v/xP0vqCOgPqhT3F4gASyTHPYMil8kYiRQN6QD6jr9YM0c21RiRl78paLO18 hGSmw4ZcwFLsFA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:31:02 2025 by rpki-client