This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json) Hash identifier: 9q7OKFbLNLoLNN+itJr+UGWyms9fVelChelMeoeBoo0= Subject key identifier: E7:50:CC:34:E7:75:EB:37:38:9F:3E:B3:91:A5:FF:77:06:34:C8:29 Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1 Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1 Certificate serial: 019AF2ADEE4138740DCD0027B5C0EAD876C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 08:01:16 +0000 Manifest this update: Sat 06 Dec 2025 08:01:16 +0000 Manifest next update: Sun 07 Dec 2025 08:01:16 +0000 Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=) 2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: 0xlIByAhuxWqQVxcNGpmIx1JxZ4bKfMyM1nIOpw8SJA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:ee:41:38:74:0d:cd:00:27:b5:c0:ea:d8:76:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1 Validity Not Before: Dec 6 08:01:16 2025 GMT Not After : Dec 7 08:01:16 2025 GMT Subject: CN=e750cc34e775eb37389f3eb391a5ff770634c829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fb:1c:19:01:ab:d6:2e:76:bf:51:8d:b1:a9: 43:91:95:e3:ed:09:dd:88:75:e7:4f:f0:0f:ad:89: 04:25:08:90:ea:ce:f8:8d:0d:c6:7a:12:e5:b7:31: cb:85:91:76:a2:64:b5:20:22:04:bf:7b:ea:58:f8: 59:90:16:be:13:a4:65:d1:8c:84:ff:87:32:d8:bd: 38:b2:31:cd:f6:4f:3f:ea:81:35:0e:8d:b4:c9:4e: cf:0c:8f:7d:8a:4f:78:be:9f:3a:e9:7a:e4:c8:c5: 16:aa:3f:e5:9b:9d:36:a8:fc:74:b6:84:a1:fa:31: 30:78:14:1c:e3:a5:12:b1:05:19:b3:87:9f:d3:ce: 59:85:2e:cc:bd:b8:9b:b4:68:5c:4e:e7:97:3b:9c: 89:22:e1:88:6c:d5:51:18:3e:51:59:3f:04:22:2d: c8:20:97:8a:c6:c8:66:bd:65:9b:7c:95:7b:79:7a: ac:ce:fc:eb:c6:96:d4:9c:8c:9b:40:d8:79:59:72: 44:e8:72:d8:bc:54:d4:af:e4:62:38:b8:2e:68:df: 33:c6:89:54:3b:21:e9:45:74:cc:c4:b4:a5:5b:3f: 6a:df:f7:95:18:69:9f:79:25:81:f2:d8:52:cb:15: e5:96:31:4e:61:1a:9d:ee:f0:68:44:e3:2e:5c:4b: 40:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:50:CC:34:E7:75:EB:37:38:9F:3E:B3:91:A5:FF:77:06:34:C8:29 X509v3 Authority Key Identifier: keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:32:9e:4e:a8:64:12:92:5b:90:89:72:21:d1:4f:e8:bf:75: 38:24:fd:6d:bb:9a:8e:ee:01:79:1a:a5:5e:81:96:48:38:fd: 9b:5e:c7:69:22:d7:bb:85:f4:d5:37:19:71:c7:fe:32:38:88: 05:31:a4:22:d4:72:c8:c8:e8:48:02:ee:de:5d:15:c0:ed:70: d2:a7:a1:09:7f:43:17:a8:0a:b3:77:47:97:68:78:ee:61:87: 91:18:b2:49:8f:07:40:f9:1e:91:3c:18:6d:d3:af:d6:ca:0f: cd:ee:96:f7:c3:db:c3:69:d1:c3:b6:dc:09:16:1a:1b:de:ab: fa:2c:c7:7a:b6:27:40:cd:0d:4a:d4:2d:98:35:64:08:ff:bc: 34:96:bd:a6:73:5b:55:d0:e7:74:2c:94:24:4e:ac:68:5c:cc: b6:ad:8d:29:60:4c:08:44:49:8d:89:e4:a6:e3:a4:12:0e:83: 5e:1e:71:ea:29:77:1a:d6:1b:71:60:12:d5:12:5a:8a:0d:42: 01:20:01:fe:a1:28:80:39:b7:39:50:17:65:d9:02:81:3c:bd: d9:a0:cb:a6:d3:4a:2e:bd:d6:ec:fc:3e:49:73:f5:0e:f7:f1: 3c:80:98:c7:bf:d1:f5:e7:d8:6b:47:01:19:98:1f:26:fe:1d: 3e:dc:a3:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryre5BOHQNzQAntcDq2HbJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ODY2YmU2OWYzNzcwNzIwYTZkY2M0NzkyZTY4MGZjN2Y3 MzIxYTEwHhcNMjUxMjA2MDgwMTE2WhcNMjUxMjA3MDgwMTE2WjAzMTEwLwYDVQQD EyhlNzUwY2MzNGU3NzVlYjM3Mzg5ZjNlYjM5MWE1ZmY3NzA2MzRjODI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvscGQGr1i52v1GNsalDkZXj7Qnd iHXnT/APrYkEJQiQ6s74jQ3GehLltzHLhZF2omS1ICIEv3vqWPhZkBa+E6Rl0YyE /4cy2L04sjHN9k8/6oE1Do20yU7PDI99ik94vp866XrkyMUWqj/lm502qPx0toSh +jEweBQc46USsQUZs4ef085ZhS7MvbibtGhcTueXO5yJIuGIbNVRGD5RWT8EIi3I IJeKxshmvWWbfJV7eXqszvzrxpbUnIybQNh5WXJE6HLYvFTUr+RiOLguaN8zxolU OyHpRXTMxLSlWz9q3/eVGGmfeSWB8thSyxXlljFOYRqd7vBoROMuXEtA1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOdQzDTndes3OJ8+s5Gl/3cGNMgpMB8GA1UdIwQY MBaAFHaGa+afN3ByCm3MR5LmgPx/cyGhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8yNTgxMmQtOGNkNy00NzA3LThiZGIt Y2ZhNTA0MmRjOTVjLzEvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi8yNTgxMmQtOGNkNy00NzA3LThiZGItY2ZhNTA0MmRjOTVj LzEvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUDKeTqhk EpJbkIlyIdFP6L91OCT9bbuaju4BeRqlXoGWSDj9m17HaSLXu4X01TcZccf+MjiI BTGkItRyyMjoSALu3l0VwO1w0qehCX9DF6gKs3dHl2h47mGHkRiySY8HQPkekTwY bdOv1soPze6W98Pbw2nRw7bcCRYaG96r+izHerYnQM0NStQtmDVkCP+8NJa9pnNb VdDndCyUJE6saFzMtq2NKWBMCERJjYnkpuOkEg6DXh5x6il3GtYbcWAS1RJaig1C ASAB/qEogDm3OVAXZdkCgTy92aDLptNKLr3W7Pw+SXP1DvfxPICYx7/R9efYa0cB GZgfJv4dPtyj9w== -----END CERTIFICATE-----Generated at Sat Dec 6 10:59:25 2025 by rpki-client