This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft File: dxLiD1ELIrghfN8NIRSWsbnB7bg.mft (raw, json) Hash identifier: qK0ZWXXjUv+zu966lYCh9gp+7y+cuTTYcgkgGT68Aow= Subject key identifier: 62:01:E9:17:B6:C3:8D:0B:CA:D9:17:BF:EE:58:14:AB:12:12:2B:CE Authority key identifier: 77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8 Certificate issuer: /CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8 Certificate serial: 019AF35259773AB68A8ECF9EBDDE0BB15A97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 11:00:51 +0000 Manifest this update: Sat 06 Dec 2025 11:00:51 +0000 Manifest next update: Sun 07 Dec 2025 11:00:51 +0000 Files and hashes: 1: 0bjBu50yRFSQQCpaSDnz4Da59n0.roa (hash: EpIJkfUrUz0ncMqveTDKjCXPCU3oKNIvzwGQlVcXpbY=) 2: dxLiD1ELIrghfN8NIRSWsbnB7bg.crl (hash: rk0CkPlZ9CUP2wRMJxo1ct68z+leNZdVDUiXzK9WLTk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:59:77:3a:b6:8a:8e:cf:9e:bd:de:0b:b1:5a:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8 Validity Not Before: Dec 6 11:00:51 2025 GMT Not After : Dec 7 11:00:51 2025 GMT Subject: CN=6201e917b6c38d0bcad917bfee5814ab12122bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:78:29:e4:f7:a0:d1:93:81:45:14:62:f2:4f: c5:15:52:85:e6:ba:64:44:76:b7:9a:25:f5:17:55: 05:64:97:62:2f:eb:22:2d:2f:89:00:c1:41:58:1c: ac:da:0c:3f:52:20:f8:04:c2:2c:38:04:9b:22:4b: 21:fc:bb:eb:5a:04:b5:c4:e9:da:b4:e5:af:45:ea: e5:ae:51:ae:66:d5:0d:ab:37:cd:17:51:4f:2b:b8: de:42:59:c9:06:11:8d:fc:ba:ae:c5:46:e0:aa:3b: ad:f1:86:1f:87:f1:c2:0d:27:48:0d:2c:8e:4a:c9: 11:9e:ba:1d:51:2b:5d:44:35:b7:48:e7:a1:26:7f: 5a:1d:58:7d:20:ed:9a:f7:5b:4e:7c:fb:ea:b3:78: 30:5b:53:d9:fd:68:37:12:d2:db:94:33:3e:6f:1f: 76:ee:7b:ed:d6:2b:5a:05:e3:7d:e5:54:ad:b4:f5: 45:e5:09:18:bf:b0:ab:e0:dc:7e:b0:19:b0:a6:41: e9:ea:d7:b7:e8:d4:81:45:1e:8b:7b:84:6a:45:1e: b1:ed:e0:cb:dd:4a:ca:e5:d7:8e:b8:bf:25:62:9f: 3e:75:7a:9d:37:09:28:5d:f0:01:d8:33:53:6d:49: f0:ee:84:45:8e:a0:57:4a:3e:5b:43:bb:bb:29:bf: 61:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:01:E9:17:B6:C3:8D:0B:CA:D9:17:BF:EE:58:14:AB:12:12:2B:CE X509v3 Authority Key Identifier: keyid:77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:18:c1:2f:50:96:d2:1e:7f:92:f5:69:f0:bc:07:05:e5:d6: a1:0d:0c:2f:88:65:86:ec:ec:64:20:47:37:8a:49:a0:03:2b: 7d:83:52:b4:43:76:9c:ac:1a:c3:16:cb:a6:84:21:ba:6f:38: e8:72:4c:f5:75:ad:bf:02:12:f2:ab:7e:67:23:89:f9:c4:e4: 47:a9:d3:b5:2b:4c:18:4d:90:c5:dd:3a:e8:4a:8d:c2:99:e4: c2:b8:65:11:85:14:66:67:65:47:52:bb:bb:ec:a4:39:9a:1c: 9c:f7:05:52:cb:38:ac:5b:d0:56:86:69:53:03:ba:7c:26:f2: e1:1a:49:d1:8b:da:e4:b1:89:a5:58:20:bd:00:e9:7c:a6:84: 8c:37:bc:e4:64:89:2a:14:30:b7:2b:6a:91:43:3c:4d:d0:9c: 5a:07:b0:66:23:38:ef:0f:ec:1f:f2:b4:3c:e5:0a:84:e1:89: 79:92:61:81:a9:f7:bb:61:75:7f:60:da:d4:e0:d1:6c:ca:e8: cd:3c:92:61:9b:1a:98:bf:57:6a:b9:dd:a0:58:ad:d2:1c:ea: 51:30:f2:99:a4:64:19:41:88:a9:e0:37:69:a4:30:99:7a:d1: 72:3c:70:f8:a3:16:0c:aa:27:7d:65:4e:d3:aa:11:33:2d:1e: b0:0c:b3:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUll3OraKjs+evd4LsVqXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MTJlMjBmNTEwYjIyYjgyMTdjZGYwZDIxMTQ5NmIxYjlj MWVkYjgwHhcNMjUxMjA2MTEwMDUxWhcNMjUxMjA3MTEwMDUxWjAzMTEwLwYDVQQD Eyg2MjAxZTkxN2I2YzM4ZDBiY2FkOTE3YmZlZTU4MTRhYjEyMTIyYmNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3gp5Peg0ZOBRRRi8k/FFVKF5rpk RHa3miX1F1UFZJdiL+siLS+JAMFBWBys2gw/UiD4BMIsOASbIksh/LvrWgS1xOna tOWvRerlrlGuZtUNqzfNF1FPK7jeQlnJBhGN/LquxUbgqjut8YYfh/HCDSdIDSyO SskRnrodUStdRDW3SOehJn9aHVh9IO2a91tOfPvqs3gwW1PZ/Wg3EtLblDM+bx92 7nvt1itaBeN95VSttPVF5QkYv7Cr4Nx+sBmwpkHp6te36NSBRR6Le4RqRR6x7eDL 3UrK5deOuL8lYp8+dXqdNwkoXfAB2DNTbUnw7oRFjqBXSj5bQ7u7Kb9hcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGIB6Re2w40LytkXv+5YFKsSEivOMB8GA1UdIwQY MBaAFHcS4g9RCyK4IXzfDSEUlrG5we24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHhMaUQxRUxJcmdoZk44TklSU1dzYm5CN2JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS82Y2I3MTQtYzcxNC00MjgxLThhZGEt NDNjZTk0OTY2M2Q5LzEvZHhMaUQxRUxJcmdoZk44TklSU1dzYm5CN2JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS82Y2I3MTQtYzcxNC00MjgxLThhZGEtNDNjZTk0OTY2M2Q5 LzEvZHhMaUQxRUxJcmdoZk44TklSU1dzYm5CN2JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVxjBL1CW 0h5/kvVp8LwHBeXWoQ0ML4hlhuzsZCBHN4pJoAMrfYNStEN2nKwawxbLpoQhum84 6HJM9XWtvwIS8qt+ZyOJ+cTkR6nTtStMGE2Qxd066EqNwpnkwrhlEYUUZmdlR1K7 u+ykOZocnPcFUss4rFvQVoZpUwO6fCby4RpJ0Yva5LGJpVggvQDpfKaEjDe85GSJ KhQwtytqkUM8TdCcWgewZiM47w/sH/K0POUKhOGJeZJhgan3u2F1f2Da1ODRbMro zTySYZsamL9XarndoFit0hzqUTDymaRkGUGIqeA3aaQwmXrRcjxw+KMWDKonfWVO 06oRMy0esAyzog== -----END CERTIFICATE-----Generated at Sat Dec 6 19:11:59 2025 by rpki-client