This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft File: ddl3qipMEMe0evKt2WgESH4idKk.mft (raw, json) Hash identifier: M2odeLuXccwvnUcG8go0YRrHMDzQnpOJm5/4n/PY3Ic= Subject key identifier: 25:9F:54:47:6C:2A:E8:67:D0:65:2B:FD:34:CE:65:86:5E:4C:1A:CE Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9 Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9 Certificate serial: 019B23D0BD89F9A23556AB67343ABCE21503 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft Manifest number: 177C Signing time: Mon 15 Dec 2025 21:00:40 +0000 Manifest this update: Mon 15 Dec 2025 21:00:40 +0000 Manifest next update: Tue 16 Dec 2025 21:00:40 +0000 Files and hashes: 1: d1djO8IkOk-DAQF-B5CVMX1fEOA.roa (hash: ObQ/agHgncZ7LWNprlr11FO8JEBhRFid61XXKnLc8Hc=) 2: ddl3qipMEMe0evKt2WgESH4idKk.crl (hash: sJRWDgA1VTzn6VPX2qYiEX6tgkyUwXZdyD0+xERqKZM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:d0:bd:89:f9:a2:35:56:ab:67:34:3a:bc:e2:15:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9 Validity Not Before: Dec 15 21:00:40 2025 GMT Not After : Dec 16 21:00:40 2025 GMT Subject: CN=259f54476c2ae867d0652bfd34ce65865e4c1ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3c:b8:01:94:d6:ce:0b:72:4d:ef:79:dc:3b: 8f:92:c5:f9:fc:3e:55:33:8d:25:35:31:71:5c:bd: cd:1a:45:bd:5b:b2:d4:85:3e:c7:7c:4c:09:be:49: 7a:29:ba:11:17:a8:ad:ef:06:66:ce:13:6d:0d:b5: 6c:ce:50:b0:d1:5c:88:00:5b:d0:51:ac:e0:16:d5: ae:38:3a:72:6e:95:68:6c:fb:a7:89:5c:f3:80:2b: cc:a3:c3:f8:b6:87:97:3a:1e:e3:0e:3f:93:21:27: 5d:39:23:9b:9b:a4:cd:02:1c:0b:99:1c:91:68:a0: fa:9c:0b:d8:e2:4b:53:5d:fe:23:77:0f:c8:3a:2e: c8:3b:26:c2:3b:d9:3c:d6:2c:ef:03:a3:61:80:5b: a3:cb:80:e1:80:54:00:6e:2d:7d:c0:5b:75:01:0d: ab:88:b9:1f:29:90:b5:76:00:91:c4:5d:d6:4b:2e: 49:ad:fa:d3:6d:ce:d1:c5:14:2a:81:60:9f:3b:37: b7:4a:e9:a2:7b:f3:b7:2d:08:0c:eb:94:9f:8c:0d: 16:0f:ec:4f:87:28:c3:6c:f3:39:63:11:b2:83:e6: 7a:22:30:40:a2:7a:58:23:76:55:88:12:b9:f7:b3: 5b:c8:dd:55:c6:0b:94:86:d9:1f:e9:9b:5a:71:2b: b8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:9F:54:47:6C:2A:E8:67:D0:65:2B:FD:34:CE:65:86:5E:4C:1A:CE X509v3 Authority Key Identifier: keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:71:88:30:74:18:59:df:24:08:a0:fe:0e:c6:d9:53:3d:03: 30:7b:79:16:3a:b0:c6:69:1a:d8:2c:f0:6a:8c:0e:fd:61:f4: ec:07:0b:fd:ad:6e:80:a6:00:fe:59:ba:16:f4:0d:18:81:1c: 1d:df:2f:ca:53:fa:c6:b5:9b:73:03:2d:96:19:ee:c3:2e:b9: 48:e9:43:2b:84:42:39:7f:fc:84:82:74:80:f0:04:74:73:c2: fd:f2:ea:ad:ea:de:79:b3:0c:63:3f:40:7d:8c:45:b4:cd:b3: ce:9e:17:b3:e3:3f:0a:d5:a6:96:3d:26:9a:59:ce:29:94:ed: d4:82:38:c8:1e:87:90:12:e2:2e:90:95:d5:a4:d1:58:b3:88: 9c:9a:cb:ff:31:5e:05:2d:f0:a5:a9:e6:b7:35:80:52:07:83: ec:1a:b2:53:d0:e4:4c:32:65:f0:7d:e3:83:41:95:34:11:8b: d2:7c:a3:ab:1e:bc:c5:98:38:ca:24:c8:bf:c0:e7:86:a6:45: 81:b1:35:77:a2:c6:eb:f4:4f:95:8f:af:09:66:04:75:89:b0: 87:0b:6f:a3:8b:6e:cb:4a:08:dd:3c:21:c2:7b:79:d4:2f:90: ab:b5:64:f4:bd:ed:9e:2d:fe:47:36:09:b2:7f:39:f2:17:1f: 86:b9:e4:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsj0L2J+aI1VqtnNDq84hUDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1ZDk3N2FhMmE0YzEwYzdiNDdhZjJhZGQ5NjgwNDQ4N2Uy Mjc0YTkwHhcNMjUxMjE1MjEwMDQwWhcNMjUxMjE2MjEwMDQwWjAzMTEwLwYDVQQD EygyNTlmNTQ0NzZjMmFlODY3ZDA2NTJiZmQzNGNlNjU4NjVlNGMxYWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDy4AZTWzgtyTe953DuPksX5/D5V M40lNTFxXL3NGkW9W7LUhT7HfEwJvkl6KboRF6it7wZmzhNtDbVszlCw0VyIAFvQ UazgFtWuODpybpVobPuniVzzgCvMo8P4toeXOh7jDj+TISddOSObm6TNAhwLmRyR aKD6nAvY4ktTXf4jdw/IOi7IOybCO9k81izvA6NhgFujy4DhgFQAbi19wFt1AQ2r iLkfKZC1dgCRxF3WSy5JrfrTbc7RxRQqgWCfOze3Sumie/O3LQgM65SfjA0WD+xP hyjDbPM5YxGyg+Z6IjBAonpYI3ZViBK597NbyN1VxguUhtkf6ZtacSu4+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCWfVEdsKuhn0GUr/TTOZYZeTBrOMB8GA1UdIwQY MBaAFHXZd6oqTBDHtHryrdloBEh+InSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzct MTI2ZGY1NDQ2ZGU5LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzctMTI2ZGY1NDQ2ZGU5 LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlHGIMHQY Wd8kCKD+DsbZUz0DMHt5Fjqwxmka2CzwaowO/WH07AcL/a1ugKYA/lm6FvQNGIEc Hd8vylP6xrWbcwMtlhnuwy65SOlDK4RCOX/8hIJ0gPAEdHPC/fLqrereebMMYz9A fYxFtM2zzp4Xs+M/CtWmlj0mmlnOKZTt1II4yB6HkBLiLpCV1aTRWLOInJrL/zFe BS3wpanmtzWAUgeD7BqyU9DkTDJl8H3jg0GVNBGL0nyjqx68xZg4yiTIv8DnhqZF gbE1d6LG6/RPlY+vCWYEdYmwhwtvo4tuy0oI3Twhwnt51C+Qq7Vk9L3tni3+RzYJ sn858hcfhrnkWw== -----END CERTIFICATE-----Generated at Tue Dec 16 00:33:16 2025 by rpki-client