This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft File: D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft (raw, json) Hash identifier: SFqXdhGnEDt/SO/tpbvlkrtwashA3kZNgWh3XqzY3RA= Subject key identifier: 80:09:66:7E:A6:EC:6B:DD:07:14:B9:05:4B:76:6D:96:43:28:CC:9D Authority key identifier: 0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3 Certificate issuer: /CN=0f671fec38f00c402f3066f13c792e1a0ed16db3 Certificate serial: 019B2D0B3B217FE11F0C7C2EDD26728CF64C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft Manifest number: 0FE6 Signing time: Wed 17 Dec 2025 16:01:09 +0000 Manifest this update: Wed 17 Dec 2025 16:01:09 +0000 Manifest next update: Thu 18 Dec 2025 16:01:09 +0000 Files and hashes: 1: D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl (hash: g/mF2Im84teH2W5VchB1LlG/dAyumqIX7uf2S6T7uBc=) 2: FIHDrOZdPItJ1g7-VrAk_uoQnSo.roa (hash: 1BVoM3pIwN+Dth/AavDroFy4/aBiv0LMqKNh/mLZqqI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:0b:3b:21:7f:e1:1f:0c:7c:2e:dd:26:72:8c:f6:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f671fec38f00c402f3066f13c792e1a0ed16db3 Validity Not Before: Dec 17 16:01:09 2025 GMT Not After : Dec 18 16:01:09 2025 GMT Subject: CN=8009667ea6ec6bdd0714b9054b766d964328cc9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:75:a0:72:6c:a3:68:1f:57:69:e1:e2:ef:49: 10:82:9c:08:5a:5b:bc:f7:18:ca:2e:c8:65:6a:a6: 68:3b:f9:b3:3f:99:d7:14:19:79:20:85:ac:42:6d: b2:51:e0:a4:b4:ef:a5:6b:62:e0:98:fa:a5:0b:67: 0a:c5:34:e3:9f:24:20:08:7f:28:2f:ad:5f:17:06: 4b:c5:4e:6c:c4:48:e9:59:69:e1:f0:32:1f:63:c7: bb:46:f9:ce:a4:b6:27:e4:52:e2:c0:9e:1a:5c:92: 37:be:ac:f8:6e:50:a1:65:92:75:55:e8:8d:f9:89: 42:1f:43:b9:5b:df:8f:97:30:f5:1d:bc:1a:d3:d9: cd:63:bc:65:99:74:75:8e:d2:2e:cb:2a:4f:2d:9c: 44:7d:b7:1b:15:5b:03:85:21:06:f9:0b:ae:6b:8b: 16:2c:98:81:91:6a:b2:20:17:63:99:9a:bd:a0:33: f4:e0:4f:33:7d:a5:5a:43:78:33:e1:c4:31:f1:a9: f7:af:f3:0b:07:c3:52:64:29:07:c1:c4:3f:bf:56: c0:88:21:ac:45:7e:74:80:47:3f:fa:2b:c3:37:77: bb:67:ca:5c:c0:37:61:4f:61:14:22:6a:87:1a:1a: 4b:65:38:df:53:bb:cb:13:fb:b7:79:d7:2b:4b:e0: 1d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:09:66:7E:A6:EC:6B:DD:07:14:B9:05:4B:76:6D:96:43:28:CC:9D X509v3 Authority Key Identifier: keyid:0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:6c:c5:04:8b:bc:76:f3:4a:7d:54:87:f8:c7:fc:f5:10:28: f1:6d:b6:53:11:0d:1e:94:c2:3b:b8:99:df:20:31:1d:16:b0: 3f:1b:af:26:2e:80:8f:82:13:00:ef:a4:6d:df:cb:e6:e9:0e: a6:55:42:56:27:6c:f6:0e:af:90:16:82:fd:89:fd:a6:48:9a: f3:39:d3:c5:85:1d:9e:a9:de:f2:44:ad:72:95:95:c1:14:8d: 98:fa:a4:62:dc:0c:ea:f6:8d:4b:e9:0d:0c:a1:0d:27:c4:f0: 29:d3:2e:f2:3c:5a:c2:62:1e:a8:78:ed:f6:d5:3a:e1:be:38: ce:ec:a2:40:0b:41:0a:9a:0a:1b:f2:54:2e:13:e0:f2:32:6e: 65:11:32:d7:4a:77:f6:f0:55:d8:b5:73:61:bb:ba:0a:87:b5: a9:e0:94:45:7c:5f:4c:d9:34:fd:36:e2:cd:a5:75:db:40:f0: a1:47:61:70:f5:4b:a4:cf:ba:a8:04:32:4c:28:38:6c:1d:98: 04:f0:42:93:6c:36:09:db:e1:a3:a9:cd:a6:b1:8f:3e:26:c6: 46:7d:37:71:76:51:05:63:4e:5d:bf:4e:d1:e1:7d:63:80:b6: b1:12:94:f1:38:98:2e:48:b6:39:d1:a2:1e:9b:26:0e:8b:90: d6:da:70:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZstCzshf+EfDHwu3SZyjPZMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNjcxZmVjMzhmMDBjNDAyZjMwNjZmMTNjNzkyZTFhMGVk MTZkYjMwHhcNMjUxMjE3MTYwMTA5WhcNMjUxMjE4MTYwMTA5WjAzMTEwLwYDVQQD Eyg4MDA5NjY3ZWE2ZWM2YmRkMDcxNGI5MDU0Yjc2NmQ5NjQzMjhjYzlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3WgcmyjaB9XaeHi70kQgpwIWlu8 9xjKLshlaqZoO/mzP5nXFBl5IIWsQm2yUeCktO+la2LgmPqlC2cKxTTjnyQgCH8o L61fFwZLxU5sxEjpWWnh8DIfY8e7RvnOpLYn5FLiwJ4aXJI3vqz4blChZZJ1VeiN +YlCH0O5W9+PlzD1Hbwa09nNY7xlmXR1jtIuyypPLZxEfbcbFVsDhSEG+Quua4sW LJiBkWqyIBdjmZq9oDP04E8zfaVaQ3gz4cQx8an3r/MLB8NSZCkHwcQ/v1bAiCGs RX50gEc/+ivDN3e7Z8pcwDdhT2EUImqHGhpLZTjfU7vLE/u3edcrS+AdgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIAJZn6m7GvdBxS5BUt2bZZDKMydMB8GA1UdIwQY MBaAFA9nH+w48AxALzBm8Tx5LhoO0W2zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDJjZjdEandERUF2TUdieFBIa3VHZzdSYmJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS80OWJiNjktZGZmOS00NDhlLWE4YTIt OTc3MzA1YzcwMDUxLzEvRDJjZjdEandERUF2TUdieFBIa3VHZzdSYmJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS80OWJiNjktZGZmOS00NDhlLWE4YTItOTc3MzA1YzcwMDUx LzEvRDJjZjdEandERUF2TUdieFBIa3VHZzdSYmJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO2zFBIu8 dvNKfVSH+Mf89RAo8W22UxENHpTCO7iZ3yAxHRawPxuvJi6Aj4ITAO+kbd/L5ukO plVCVids9g6vkBaC/Yn9pkia8znTxYUdnqne8kStcpWVwRSNmPqkYtwM6vaNS+kN DKENJ8TwKdMu8jxawmIeqHjt9tU64b44zuyiQAtBCpoKG/JULhPg8jJuZREy10p3 9vBV2LVzYbu6Coe1qeCURXxfTNk0/TbizaV120DwoUdhcPVLpM+6qAQyTCg4bB2Y BPBCk2w2Cdvho6nNprGPPibGRn03cXZRBWNOXb9O0eF9Y4C2sRKU8TiYLki2OdGi HpsmDouQ1tpwkg== -----END CERTIFICATE-----Generated at Wed Dec 17 17:44:46 2025 by rpki-client