This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json) Hash identifier: Esz1CGZeua3kUMtk0G46XM/6BQ+SwmSKQSTeXZh52W4= Subject key identifier: 37:EA:9A:88:4F:CA:06:84:BF:A2:CD:1D:22:A6:9B:5A:BD:62:52:56 Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76 Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876 Certificate serial: 019AF50BA1D15CC3A6FFCE67FF09B1C4AEF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft Manifest number: 13FD Signing time: Sat 06 Dec 2025 19:02:51 +0000 Manifest this update: Sat 06 Dec 2025 19:02:51 +0000 Manifest next update: Sun 07 Dec 2025 19:02:51 +0000 Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: 8N6zRHstL82PKDyeC1lhkdxJ1M9+8Oi9vWleRbL6kgI=) 2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:a1:d1:5c:c3:a6:ff:ce:67:ff:09:b1:c4:ae:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876 Validity Not Before: Dec 6 19:02:51 2025 GMT Not After : Dec 7 19:02:51 2025 GMT Subject: CN=37ea9a884fca0684bfa2cd1d22a69b5abd625256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:76:86:9d:e5:16:58:b4:de:e7:0c:4f:79:33: f9:81:31:c8:60:2d:20:8a:b1:29:82:53:97:4a:a3: 2b:b8:d4:4f:ad:ec:65:71:25:2d:62:dd:cf:6b:03: 0f:76:0a:84:40:32:bd:38:ce:1f:23:23:69:f0:ed: a5:5b:17:ea:aa:67:c2:95:17:6b:7c:67:95:7c:06: 7c:fe:dc:eb:b7:6f:70:6f:d8:c3:e0:59:75:de:16: fd:68:28:81:6a:8f:1e:f7:87:71:57:11:bc:34:d7: a1:8c:86:2d:6a:e6:bf:2c:12:cc:2b:fe:06:8c:0f: 25:71:74:47:2d:cf:64:14:14:20:13:e3:b2:13:cd: 62:e0:22:c1:bd:39:40:7d:00:91:f6:94:45:2b:7e: fa:7b:6c:33:fe:8b:4a:f2:10:d0:18:0b:ec:45:c8: 71:c9:b9:02:21:ab:a4:7b:91:4d:28:48:4c:f0:35: f6:35:1b:dc:ac:08:10:07:d8:ad:8a:21:ff:cf:a5: 15:77:19:9b:f8:c7:42:7c:f5:7e:78:4b:5b:97:07: d8:19:ec:f0:3a:e3:35:02:89:4f:31:6d:cc:0d:12: 27:d8:4f:09:79:06:e4:c3:e0:20:06:27:ac:f4:f2: 69:c4:b8:91:d1:cb:43:5c:06:48:49:be:d0:35:7c: 66:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:EA:9A:88:4F:CA:06:84:BF:A2:CD:1D:22:A6:9B:5A:BD:62:52:56 X509v3 Authority Key Identifier: keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:6e:3c:c0:95:49:2f:bc:24:d9:e7:27:a8:f2:7a:22:5c:85: f9:3a:1e:7f:31:d6:68:90:a0:05:e3:7c:9d:d5:a9:6a:73:35: 9b:aa:e5:bf:86:f5:ad:f6:7d:37:2f:5f:11:71:09:ff:8c:32: e0:43:7b:05:60:af:58:92:21:d8:c0:6c:47:9e:3f:13:8a:f0: dc:cc:7b:4c:30:bd:dc:3b:2d:ac:8d:c6:50:2d:a8:69:0c:b2: 56:06:30:71:79:f5:5c:bc:f7:e8:9f:9f:23:b8:5c:42:1f:c6: ba:0a:fb:f0:fb:d6:ad:5c:b7:77:69:37:fe:3c:8e:0a:b1:09: 1b:09:3d:14:67:20:c9:96:ca:5c:be:ef:05:df:99:a6:7e:2f: ae:ec:f6:38:7d:3c:b0:73:4d:2d:b3:b9:7a:43:3d:cd:4e:43: 1c:a0:89:3c:19:cf:c2:5c:e6:02:66:28:0e:3f:09:2e:31:80: f2:b8:f9:52:37:fc:98:09:a1:4c:f0:31:32:68:9f:a4:af:39: be:19:47:5b:e5:81:dd:4b:54:92:d8:e1:63:d3:45:8a:ec:fa: dc:88:59:d8:92:23:e6:8c:93:c8:67:cf:ff:50:de:bf:96:e8: 06:f0:f4:90:4b:5f:92:d8:fa:52:b5:29:c9:26:ee:21:4a:ff: 96:79:76:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1C6HRXMOm/85n/wmxxK73MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0Yjk3NTg5OGQxMGYxYTUwNTIxMzNlMWUyNTAzNmM2MTE0 ZDg4NzYwHhcNMjUxMjA2MTkwMjUxWhcNMjUxMjA3MTkwMjUxWjAzMTEwLwYDVQQD EygzN2VhOWE4ODRmY2EwNjg0YmZhMmNkMWQyMmE2OWI1YWJkNjI1MjU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXaGneUWWLTe5wxPeTP5gTHIYC0g irEpglOXSqMruNRPrexlcSUtYt3PawMPdgqEQDK9OM4fIyNp8O2lWxfqqmfClRdr fGeVfAZ8/tzrt29wb9jD4Fl13hb9aCiBao8e94dxVxG8NNehjIYtaua/LBLMK/4G jA8lcXRHLc9kFBQgE+OyE81i4CLBvTlAfQCR9pRFK376e2wz/otK8hDQGAvsRchx ybkCIauke5FNKEhM8DX2NRvcrAgQB9itiiH/z6UVdxmb+MdCfPV+eEtblwfYGezw OuM1AolPMW3MDRIn2E8JeQbkw+AgBies9PJpxLiR0ctDXAZISb7QNXxmYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDfqmohPygaEv6LNHSKmm1q9YlJWMB8GA1UdIwQY MBaAFHS5dYmNEPGlBSEz4eJQNsYRTYh2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZExsMWlZMFE4YVVGSVRQaDRsQTJ4aEZOaUhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC85ZGNkMGUtZjMxOS00NDAzLWIxNjQt YjdjODcyZGQ5Njc1LzEvZExsMWlZMFE4YVVGSVRQaDRsQTJ4aEZOaUhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC85ZGNkMGUtZjMxOS00NDAzLWIxNjQtYjdjODcyZGQ5Njc1 LzEvZExsMWlZMFE4YVVGSVRQaDRsQTJ4aEZOaUhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM248wJVJ L7wk2ecnqPJ6IlyF+ToefzHWaJCgBeN8ndWpanM1m6rlv4b1rfZ9Ny9fEXEJ/4wy 4EN7BWCvWJIh2MBsR54/E4rw3Mx7TDC93DstrI3GUC2oaQyyVgYwcXn1XLz36J+f I7hcQh/Gugr78PvWrVy3d2k3/jyOCrEJGwk9FGcgyZbKXL7vBd+Zpn4vruz2OH08 sHNNLbO5ekM9zU5DHKCJPBnPwlzmAmYoDj8JLjGA8rj5Ujf8mAmhTPAxMmifpK85 vhlHW+WB3UtUktjhY9NFiuz63IhZ2JIj5oyTyGfP/1Dev5boBvD0kEtfktj6UrUp ySbuIUr/lnl2IA== -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:03 2025 by rpki-client