This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft File: dpduc3A5pphnL-lSSt0zfR_1LP0.mft (raw, json) Hash identifier: mOkj3e7UcOGDae6VkBv0dUw5NajT6lwg6MQ0Hi66zA8= Subject key identifier: 85:62:47:79:25:D9:FD:E1:F2:C8:5C:DB:2D:48:E7:FF:B3:F2:03:90 Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd Certificate serial: 019AF352CECE3530CBDB9AC0A0C33A77EE17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 11:01:21 +0000 Manifest this update: Sat 06 Dec 2025 11:01:21 +0000 Manifest next update: Sun 07 Dec 2025 11:01:21 +0000 Files and hashes: 1: Rw3BYoyXYSEo6V5vN0qo3508qkM.roa (hash: sKlzeUwowKBMHyUl3VaDBvqX0srdSepcxCjN2qsXkZI=) 2: dpduc3A5pphnL-lSSt0zfR_1LP0.crl (hash: GPNn8RA/vRexuFPCEz+XbyGEB3s9VM1zVcofbkeDkDQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:ce:ce:35:30:cb:db:9a:c0:a0:c3:3a:77:ee:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd Validity Not Before: Dec 6 11:01:21 2025 GMT Not After : Dec 7 11:01:21 2025 GMT Subject: CN=8562477925d9fde1f2c85cdb2d48e7ffb3f20390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:12:6c:02:08:53:50:39:2b:1d:f5:5d:91:4c: 7f:55:77:a1:7f:7f:7c:d6:37:b4:e7:13:65:a1:0f: b6:f7:60:b1:0f:e2:16:05:96:0b:14:1f:e3:dc:d6: 2f:13:61:38:df:b0:f8:ae:87:fd:41:0a:9d:6d:0a: f6:3d:ce:a1:27:0f:b7:1f:83:53:4a:95:ad:b7:38: f4:a6:46:7a:70:8a:37:91:bc:33:51:f4:b7:ca:8c: 77:ef:f6:94:3f:2c:7a:01:91:a4:bc:77:7a:e4:3a: d3:f6:de:84:1b:88:d6:23:d9:90:79:6e:eb:3a:ef: 26:3f:39:e6:4c:25:49:d1:e8:a0:3c:46:71:49:7d: b1:6b:8c:9d:19:39:28:0a:09:67:9e:0f:d2:83:07: 7b:9a:88:e3:b4:01:df:ee:83:04:e3:ae:92:a3:0b: 80:23:68:2d:66:3e:58:f9:5c:b0:d9:4d:12:99:a5: 0d:a8:6d:67:41:1f:91:bd:77:d0:5b:02:c8:4f:83: 17:7f:0e:62:0d:02:fb:27:d2:98:6c:fe:50:54:e8: 0f:cf:9a:d3:bf:1b:4d:29:62:0d:dc:f9:48:84:ad: e0:7a:74:e6:7b:28:90:e7:1f:ff:c2:90:18:eb:54: 51:73:95:90:ab:bc:f8:56:93:65:4d:9a:f3:9c:dc: 6c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:62:47:79:25:D9:FD:E1:F2:C8:5C:DB:2D:48:E7:FF:B3:F2:03:90 X509v3 Authority Key Identifier: keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:cd:89:22:8f:f2:2f:76:22:e4:6f:41:d4:4f:df:b6:a7:50: 8a:60:1f:80:84:5d:56:05:6b:ff:be:ff:b0:90:ab:e5:79:1d: 19:fe:8b:2b:fd:49:76:fd:cc:89:08:29:ef:5d:7a:02:44:05: 7b:55:48:11:92:1c:f3:4a:43:cd:da:68:28:a8:82:d5:84:6a: 3c:0c:b8:d3:df:14:ef:9e:aa:fd:2a:5a:04:d4:83:0b:d4:96: a7:09:f2:bb:36:6c:e9:7d:c9:34:2f:79:76:14:59:84:6d:0f: f6:06:e1:48:d9:54:70:9b:25:9c:16:9a:95:87:a2:e7:1a:8b: 55:e5:4c:4f:22:c3:e7:9d:dc:6b:d9:b9:7c:40:e4:6c:70:b3: 09:06:9b:15:86:6d:36:d2:f8:92:72:4b:7d:da:a7:d9:8f:e9: 3d:ba:74:f0:da:87:4b:6f:ba:0a:88:c7:1e:fd:c1:0b:d2:98: bf:36:4b:db:ed:31:1b:29:66:2b:d3:08:ab:1b:07:01:d4:07: c8:71:38:a9:4a:fb:86:a6:df:60:71:18:fb:63:72:3b:7c:33: fc:03:c6:7e:53:05:a7:51:d3:b2:08:18:fa:15:d0:1e:77:df: 9c:8b:61:4c:cf:61:0b:84:95:e7:7e:2a:7d:e3:09:6e:94:bd: 87:83:a7:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUs7ONTDL25rAoMM6d+4XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OTc2ZTczNzAzOWE2OTg2NzJmZTk1MjRhZGQzMzdkMWZm NTJjZmQwHhcNMjUxMjA2MTEwMTIxWhcNMjUxMjA3MTEwMTIxWjAzMTEwLwYDVQQD Eyg4NTYyNDc3OTI1ZDlmZGUxZjJjODVjZGIyZDQ4ZTdmZmIzZjIwMzkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihJsAghTUDkrHfVdkUx/VXehf398 1je05xNloQ+292CxD+IWBZYLFB/j3NYvE2E437D4rof9QQqdbQr2Pc6hJw+3H4NT SpWttzj0pkZ6cIo3kbwzUfS3yox37/aUPyx6AZGkvHd65DrT9t6EG4jWI9mQeW7r Ou8mPznmTCVJ0eigPEZxSX2xa4ydGTkoCglnng/Sgwd7mojjtAHf7oME466SowuA I2gtZj5Y+Vyw2U0SmaUNqG1nQR+RvXfQWwLIT4MXfw5iDQL7J9KYbP5QVOgPz5rT vxtNKWIN3PlIhK3genTmeyiQ5x//wpAY61RRc5WQq7z4VpNlTZrznNxsuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIViR3kl2f3h8shc2y1I5/+z8gOQMB8GA1UdIwQY MBaAFHaXbnNwOaaYZy/pUkrdM30f9Sz9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHBkdWMzQTVwcGhuTC1sU1N0MHpmUl8xTFAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC80NzcxYzUtMjZmNi00YzdkLTk4NTEt ZjUxODllYjEzYTE3LzEvZHBkdWMzQTVwcGhuTC1sU1N0MHpmUl8xTFAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC80NzcxYzUtMjZmNi00YzdkLTk4NTEtZjUxODllYjEzYTE3 LzEvZHBkdWMzQTVwcGhuTC1sU1N0MHpmUl8xTFAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW82JIo/y L3Yi5G9B1E/ftqdQimAfgIRdVgVr/77/sJCr5XkdGf6LK/1Jdv3MiQgp7116AkQF e1VIEZIc80pDzdpoKKiC1YRqPAy4098U756q/SpaBNSDC9SWpwnyuzZs6X3JNC95 dhRZhG0P9gbhSNlUcJslnBaalYei5xqLVeVMTyLD553ca9m5fEDkbHCzCQabFYZt NtL4knJLfdqn2Y/pPbp08NqHS2+6CojHHv3BC9KYvzZL2+0xGylmK9MIqxsHAdQH yHE4qUr7hqbfYHEY+2NyO3wz/APGflMFp1HTsggY+hXQHnffnIthTM9hC4SV534q feMJbpS9h4OnjA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:45:44 2025 by rpki-client