This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft File: DpgibNz3QdzIpCplmos94hmBiPk.mft (raw, json) Hash identifier: 3cOPQaS808XAo5PGT8t7j5AslQ+lTVmZKzcaywE1PLs= Subject key identifier: AD:64:C5:D8:4D:C1:F4:24:0A:CE:7F:21:68:ED:99:03:9D:B4:37:15 Authority key identifier: 0E:98:22:6C:DC:F7:41:DC:C8:A4:2A:65:9A:8B:3D:E2:19:81:88:F9 Certificate issuer: /CN=0e98226cdcf741dcc8a42a659a8b3de2198188f9 Certificate serial: 019AF208B159FCFAE8C7535EC791CA6CFC90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft Manifest number: 1465 Signing time: Sat 06 Dec 2025 05:00:47 +0000 Manifest this update: Sat 06 Dec 2025 05:00:47 +0000 Manifest next update: Sun 07 Dec 2025 05:00:47 +0000 Files and hashes: 1: C9YabYyYTwF76KS0OdJKS7svqe8.roa (hash: OaSH1c1TCgLCLOEvTQ5fN3rE7i93/Zx2eO7IyYukR98=) 2: DpgibNz3QdzIpCplmos94hmBiPk.crl (hash: GGQExTFAU7yLoluD2bn+TiHSdrMb0ZZlZJTBLj+Cvwo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.crl rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:b1:59:fc:fa:e8:c7:53:5e:c7:91:ca:6c:fc:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e98226cdcf741dcc8a42a659a8b3de2198188f9 Validity Not Before: Dec 6 05:00:47 2025 GMT Not After : Dec 7 05:00:47 2025 GMT Subject: CN=ad64c5d84dc1f4240ace7f2168ed99039db43715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:88:ef:dc:d1:a6:2b:7f:b2:d6:28:d1:aa:ee: 50:a8:aa:55:3e:1d:49:1b:04:6c:f0:c2:ff:7f:8f: e0:d6:64:0e:9f:0e:24:7a:78:05:b0:fa:ac:a6:91: 41:75:4a:f7:86:6a:16:35:83:c4:36:b9:fe:08:d7: e3:bf:19:d6:e8:e8:7f:a7:c5:49:d0:22:1f:28:f2: db:8e:2a:11:a7:69:53:13:49:50:95:f3:4a:8c:c0: b7:ab:0f:90:10:9c:40:e6:ad:bd:22:43:ff:53:47: 53:7d:07:4b:ca:38:bf:b4:37:e1:87:18:64:a8:6f: 49:7e:80:e4:df:e7:68:73:df:95:9e:91:e6:de:ef: 5c:25:ad:16:1a:f5:07:07:30:58:d1:9b:39:39:92: ba:ea:12:9a:60:76:9e:5e:a3:99:ff:40:21:50:89: 53:3f:0e:aa:57:24:9c:3b:96:e3:2e:7d:e4:83:69: 29:0e:a7:e8:2d:7d:c1:0d:af:f2:a4:20:c8:c5:19: 4a:80:d2:34:ce:79:8c:4d:f3:c7:09:14:9c:25:63: 11:74:16:e5:32:c7:22:3d:90:77:94:d7:1a:85:6f: 58:c2:66:68:78:3e:44:be:b3:6c:e4:11:69:49:52: 19:db:a8:c5:54:f3:c4:53:aa:a5:72:d0:06:a8:2c: ed:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:64:C5:D8:4D:C1:F4:24:0A:CE:7F:21:68:ED:99:03:9D:B4:37:15 X509v3 Authority Key Identifier: keyid:0E:98:22:6C:DC:F7:41:DC:C8:A4:2A:65:9A:8B:3D:E2:19:81:88:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:e2:f9:6d:09:05:bf:f3:c3:26:8a:02:96:b7:88:59:8b:25: d0:e6:6c:4f:fb:e1:bf:02:29:dd:27:c9:fa:bb:82:0a:c6:81: 8d:bb:95:46:67:83:88:e3:64:b8:c7:6f:da:39:6d:d3:06:48: ce:27:b6:89:0d:1e:1c:6f:0c:f1:84:65:d6:1e:01:a5:0e:e3: 3e:7b:c4:8e:a8:81:5d:4e:16:f9:2a:cf:69:c5:36:14:5a:c4: e9:bb:58:ec:5b:91:73:79:26:2f:5a:45:ba:65:39:96:e3:a8: 50:5e:f0:fb:a4:b7:31:63:54:70:ef:66:c5:ff:d4:bd:c9:b5: 5b:47:32:9c:1b:11:eb:a7:14:3e:8f:93:06:2a:21:cd:20:ae: 73:c3:82:cd:e2:6b:9a:8b:5a:6b:c2:74:90:10:d8:9e:b0:2d: 26:ef:8b:bf:7f:68:f8:bc:dc:f4:85:41:ef:2f:2c:ad:7f:c3: 92:69:dd:0d:fe:0e:5c:5e:4c:d3:ee:5a:9c:79:a3:2c:92:58: 4f:43:4c:6b:45:ba:0a:9d:49:a6:2c:94:9a:2d:67:82:a4:22: be:6a:bc:6c:ec:c6:89:2f:f0:91:ff:55:c9:b3:92:e1:82:9a: f4:e7:8b:27:94:b6:a6:aa:1d:eb:d9:2d:60:90:86:15:61:b0: 44:11:5a:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCLFZ/Prox1Nex5HKbPyQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlOTgyMjZjZGNmNzQxZGNjOGE0MmE2NTlhOGIzZGUyMTk4 MTg4ZjkwHhcNMjUxMjA2MDUwMDQ3WhcNMjUxMjA3MDUwMDQ3WjAzMTEwLwYDVQQD EyhhZDY0YzVkODRkYzFmNDI0MGFjZTdmMjE2OGVkOTkwMzlkYjQzNzE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsIjv3NGmK3+y1ijRqu5QqKpVPh1J GwRs8ML/f4/g1mQOnw4kengFsPqsppFBdUr3hmoWNYPENrn+CNfjvxnW6Oh/p8VJ 0CIfKPLbjioRp2lTE0lQlfNKjMC3qw+QEJxA5q29IkP/U0dTfQdLyji/tDfhhxhk qG9JfoDk3+doc9+VnpHm3u9cJa0WGvUHBzBY0Zs5OZK66hKaYHaeXqOZ/0AhUIlT Pw6qVyScO5bjLn3kg2kpDqfoLX3BDa/ypCDIxRlKgNI0znmMTfPHCRScJWMRdBbl MsciPZB3lNcahW9YwmZoeD5EvrNs5BFpSVIZ26jFVPPEU6qlctAGqCztPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK1kxdhNwfQkCs5/IWjtmQOdtDcVMB8GA1UdIwQY MBaAFA6YImzc90HcyKQqZZqLPeIZgYj5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHBnaWJOejNRZHpJcENwbG1vczk0aG1CaVBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS83OTAyNGQtNWI0NS00ZWY0LWI1Mjgt ZTljN2I1NTA2ZTU1LzEvRHBnaWJOejNRZHpJcENwbG1vczk0aG1CaVBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS83OTAyNGQtNWI0NS00ZWY0LWI1MjgtZTljN2I1NTA2ZTU1 LzEvRHBnaWJOejNRZHpJcENwbG1vczk0aG1CaVBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPeL5bQkF v/PDJooClreIWYsl0OZsT/vhvwIp3SfJ+ruCCsaBjbuVRmeDiONkuMdv2jlt0wZI zie2iQ0eHG8M8YRl1h4BpQ7jPnvEjqiBXU4W+SrPacU2FFrE6btY7FuRc3kmL1pF umU5luOoUF7w+6S3MWNUcO9mxf/Uvcm1W0cynBsR66cUPo+TBiohzSCuc8OCzeJr motaa8J0kBDYnrAtJu+Lv39o+Lzc9IVB7y8srX/DkmndDf4OXF5M0+5anHmjLJJY T0NMa0W6Cp1JpiyUmi1ngqQivmq8bOzGiS/wkf9VybOS4YKa9OeLJ5S2pqod69kt YJCGFWGwRBFalQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:14:22 2025 by rpki-client