This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json) Hash identifier: NPsrIqTVl4MURe7cpweZ+4XBiWBACKTAB7CcygWgH3s= Subject key identifier: B6:1B:C8:33:2C:38:02:15:B9:46:D9:44:34:B7:35:57:10:FE:A3:23 Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a Certificate serial: 019AF1D25B547438A44FC84126DED8EA85DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft Manifest number: 0874 Signing time: Sat 06 Dec 2025 04:01:26 +0000 Manifest this update: Sat 06 Dec 2025 04:01:26 +0000 Manifest next update: Sun 07 Dec 2025 04:01:26 +0000 Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=) 2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=) 3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: D3koeLONwmLG36HXCCjQ75T96JbF4rx/CJeeYkSxS0s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:5b:54:74:38:a4:4f:c8:41:26:de:d8:ea:85:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a Validity Not Before: Dec 6 04:01:26 2025 GMT Not After : Dec 7 04:01:26 2025 GMT Subject: CN=b61bc8332c380215b946d94434b7355710fea323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:84:df:60:ad:ca:90:12:8a:fe:6f:5a:4a:82: 0d:74:83:39:09:88:9e:c6:51:78:c1:42:ec:fd:74: e0:97:8b:bc:18:0e:58:e8:36:e3:34:9a:f4:89:c3: 87:41:33:c9:b2:da:71:5a:41:d1:ea:82:83:42:69: 09:18:3c:36:d8:85:f8:5b:4f:dc:88:93:fb:b2:23: c8:bc:37:de:db:d8:fb:db:97:19:32:be:2c:00:75: b2:c4:df:fb:98:e2:f8:37:ad:73:5e:55:49:13:e6: cb:30:4f:9e:83:98:bb:a9:b3:e1:34:9e:1c:48:94: e1:1d:4e:f4:d5:a7:15:60:11:36:af:37:06:c5:25: 8c:c8:8e:93:9b:3e:af:0e:28:83:b6:bc:18:cf:3f: 7a:35:94:d3:25:f8:3c:92:01:6b:c1:28:df:5f:44: 3f:5d:94:aa:5f:71:75:10:88:f6:51:c2:27:da:b6: 63:f9:e7:5b:c9:3f:40:77:a3:44:15:52:51:22:4d: 57:e4:54:d0:c6:7f:79:9c:a3:68:35:fe:37:6d:6b: a9:08:7a:36:2e:20:da:fd:74:81:dc:8c:45:5f:2f: 2a:81:42:0a:21:44:a1:1d:62:0b:c9:05:2d:cc:f2: 26:e0:6c:98:33:21:92:73:8b:15:38:85:53:71:a8: a1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:1B:C8:33:2C:38:02:15:B9:46:D9:44:34:B7:35:57:10:FE:A3:23 X509v3 Authority Key Identifier: keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:e4:14:2f:41:9a:d3:c4:72:d5:b2:31:7b:51:76:aa:8f:9e: ab:e9:99:a2:9e:74:4e:25:08:60:d6:fc:65:68:54:df:c0:db: ad:96:40:cc:33:02:da:1e:f4:0f:70:9f:33:da:a6:36:8d:f7: a0:08:77:91:1c:71:4c:08:10:d3:cb:c5:be:03:54:83:98:33: 76:a0:4d:0f:36:e5:8c:c8:00:a5:94:47:f8:5b:a1:c5:07:9a: b7:f5:11:52:1a:35:c7:a8:0b:4d:ba:49:fd:48:15:e8:e0:dc: a1:16:de:d3:4c:6e:1b:26:7f:bd:cb:19:e0:aa:4f:92:83:5a: c5:81:ce:82:96:49:83:3a:49:13:df:db:15:d7:2f:32:df:d1: a1:92:34:06:a0:31:79:fe:14:1f:8e:80:17:04:b9:d0:19:3e: 2e:f0:f6:04:96:d4:e5:66:34:ed:43:e0:c2:c4:d7:15:af:34: be:6a:09:90:69:52:cd:e2:ad:d1:b1:4f:08:ff:e1:3b:15:4e: 22:4d:1a:d2:19:ee:83:ba:11:37:9e:e3:15:36:d6:ea:89:44: 14:84:c2:e9:f3:ae:fa:9d:26:9f:b0:e2:eb:3c:d9:3a:d7:20: 0a:2a:24:bb:d9:b8:3d:d0:bc:2c:5e:92:e6:de:4f:dc:21:20: b5:ce:b8:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0ltUdDikT8hBJt7Y6oXaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3NDFkMTNhMTVhOTg3ZGQ2MDAxOWMwMjY1ZDJlY2VjNDg0 MDk0NGEwHhcNMjUxMjA2MDQwMTI2WhcNMjUxMjA3MDQwMTI2WjAzMTEwLwYDVQQD EyhiNjFiYzgzMzJjMzgwMjE1Yjk0NmQ5NDQzNGI3MzU1NzEwZmVhMzIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0oTfYK3KkBKK/m9aSoINdIM5CYie xlF4wULs/XTgl4u8GA5Y6DbjNJr0icOHQTPJstpxWkHR6oKDQmkJGDw22IX4W0/c iJP7siPIvDfe29j725cZMr4sAHWyxN/7mOL4N61zXlVJE+bLME+eg5i7qbPhNJ4c SJThHU701acVYBE2rzcGxSWMyI6Tmz6vDiiDtrwYzz96NZTTJfg8kgFrwSjfX0Q/ XZSqX3F1EIj2UcIn2rZj+edbyT9Ad6NEFVJRIk1X5FTQxn95nKNoNf43bWupCHo2 LiDa/XSB3IxFXy8qgUIKIUShHWILyQUtzPIm4GyYMyGSc4sVOIVTcaihjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLYbyDMsOAIVuUbZRDS3NVcQ/qMjMB8GA1UdIwQY MBaAFHdB0ToVqYfdYAGcAmXS7OxIQJRKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8wYmU5ZDAtOTk5YS00NDlhLTg1MTkt MzUyM2UzMDMwYmU0LzEvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My8wYmU5ZDAtOTk5YS00NDlhLTg1MTktMzUyM2UzMDMwYmU0 LzEvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnuQUL0Ga 08Ry1bIxe1F2qo+eq+mZop50TiUIYNb8ZWhU38DbrZZAzDMC2h70D3CfM9qmNo33 oAh3kRxxTAgQ08vFvgNUg5gzdqBNDzbljMgApZRH+FuhxQeat/URUho1x6gLTbpJ /UgV6ODcoRbe00xuGyZ/vcsZ4KpPkoNaxYHOgpZJgzpJE9/bFdcvMt/RoZI0BqAx ef4UH46AFwS50Bk+LvD2BJbU5WY07UPgwsTXFa80vmoJkGlSzeKt0bFPCP/hOxVO Ik0a0hnug7oRN57jFTbW6olEFITC6fOu+p0mn7Di6zzZOtcgCioku9m4PdC8LF6S 5t5P3CEgtc64CQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:15:13 2025 by rpki-client