This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/9a6bc2-8e5f-4a6d-b206-27cb9dcd60fc/1/Dh-3D5C6LPBYwSBt6w73lzcCbpA.mft File: Dh-3D5C6LPBYwSBt6w73lzcCbpA.mft (raw, json) Hash identifier: kdl+Sn2G2AkaLAwdpMKRVC3vllmTdIdCmna/bRkWpv4= Subject key identifier: F4:A3:A4:5E:75:9D:A5:D4:CD:D5:3F:7F:7E:AA:55:9F:ED:FE:B2:0A Authority key identifier: 0E:1F:B7:0F:90:BA:2C:F0:58:C1:20:6D:EB:0E:F7:97:37:02:6E:90 Certificate issuer: /CN=0e1fb70f90ba2cf058c1206deb0ef79737026e90 Certificate serial: 019AF20964F7153F7D3319194A1C1439A61F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh-3D5C6LPBYwSBt6w73lzcCbpA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/9a6bc2-8e5f-4a6d-b206-27cb9dcd60fc/1/Dh-3D5C6LPBYwSBt6w73lzcCbpA.mft Manifest number: 0846 Signing time: Sat 06 Dec 2025 05:01:33 +0000 Manifest this update: Sat 06 Dec 2025 05:01:33 +0000 Manifest next update: Sun 07 Dec 2025 05:01:33 +0000 Files and hashes: 1: Dh-3D5C6LPBYwSBt6w73lzcCbpA.crl (hash: +w18yMcTpMTPDwBm9Kv/xucwG5Cv2XZ94ErTyvQ91b0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/9a6bc2-8e5f-4a6d-b206-27cb9dcd60fc/1/Dh-3D5C6LPBYwSBt6w73lzcCbpA.crl rsync://rpki.ripe.net/repository/DEFAULT/97/9a6bc2-8e5f-4a6d-b206-27cb9dcd60fc/1/Dh-3D5C6LPBYwSBt6w73lzcCbpA.mft rsync://rpki.ripe.net/repository/DEFAULT/Dh-3D5C6LPBYwSBt6w73lzcCbpA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:64:f7:15:3f:7d:33:19:19:4a:1c:14:39:a6:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e1fb70f90ba2cf058c1206deb0ef79737026e90 Validity Not Before: Dec 6 05:01:33 2025 GMT Not After : Dec 7 05:01:33 2025 GMT Subject: CN=f4a3a45e759da5d4cdd53f7f7eaa559fedfeb20a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:90:97:95:82:d3:86:a7:5c:f5:0d:56:7f:4e: 3c:bf:a5:38:3b:b5:60:ef:63:5e:da:57:b3:16:0b: a2:31:fe:15:22:5f:ee:d5:15:cb:5a:13:00:1d:aa: 80:31:b3:1a:e8:03:a7:e7:69:5a:d3:5c:ec:13:50: ed:c1:9f:b1:1c:13:27:89:8d:5c:d8:9a:2f:f0:57: 9e:26:f3:18:df:90:72:3e:ea:fe:75:ee:f7:0c:4e: 27:f3:eb:f2:e0:7a:8e:ad:c6:07:dc:8d:59:bc:1c: d1:fa:57:f1:5e:44:97:37:5c:a9:37:1b:1d:d1:ce: 34:80:1d:f8:3c:b6:ba:ca:6d:59:0d:c7:ff:59:56: c9:c0:ab:2a:3c:66:af:58:20:7d:06:49:95:0a:79: 50:38:3d:1e:92:44:f0:88:bc:89:ae:92:b5:c3:f8: 1a:fa:af:64:44:d8:38:2e:40:d3:fd:a9:a7:80:c7: 07:0b:44:96:b5:12:39:99:b3:28:7b:3e:0d:76:7f: ef:d1:e9:68:f1:39:d0:c3:d6:7a:4f:a0:f3:bc:3f: 77:d1:66:79:e0:04:5f:f0:bc:73:4a:c4:82:ac:1f: 89:39:48:87:4c:c4:72:0f:14:8c:86:f6:82:21:31: 83:6a:a5:c9:35:9f:f9:b3:ae:69:36:d6:8e:f6:35: 61:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A3:A4:5E:75:9D:A5:D4:CD:D5:3F:7F:7E:AA:55:9F:ED:FE:B2:0A X509v3 Authority Key Identifier: keyid:0E:1F:B7:0F:90:BA:2C:F0:58:C1:20:6D:EB:0E:F7:97:37:02:6E:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh-3D5C6LPBYwSBt6w73lzcCbpA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/9a6bc2-8e5f-4a6d-b206-27cb9dcd60fc/1/Dh-3D5C6LPBYwSBt6w73lzcCbpA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/9a6bc2-8e5f-4a6d-b206-27cb9dcd60fc/1/Dh-3D5C6LPBYwSBt6w73lzcCbpA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:a7:08:13:70:89:37:de:36:46:d2:31:1b:10:7a:51:e9:8a: 61:fb:91:32:be:87:1e:69:64:c3:12:4e:a3:d4:2c:8d:f3:96: 72:70:79:d8:58:f8:61:a6:01:dd:fe:e8:a1:b8:4b:e8:8d:ff: 63:54:42:8b:2e:84:91:b9:9d:66:c8:28:1f:42:72:c6:17:6f: ef:6d:5e:ac:79:6c:6d:2e:fe:aa:3c:6a:f5:8c:30:97:5c:56: b7:ac:e9:f4:6a:b2:bd:7d:22:2b:de:91:32:00:d6:95:b8:23: 15:93:26:4e:39:65:5f:11:6c:d2:e5:ef:5e:2c:c5:ca:ef:b8: de:08:16:59:43:ad:9d:80:7f:ea:a8:67:6e:bc:75:6b:9b:0e: 4b:2e:90:b3:47:a4:0d:00:27:7e:cc:6b:19:9c:e4:e1:b3:f4: f7:7a:4b:ef:8f:1a:1c:f2:df:2c:37:15:ed:b0:0d:a2:26:58: 7a:6f:69:ca:bb:cd:be:5e:19:ef:e9:b4:3e:c9:d7:fc:65:c1: 62:4f:36:31:08:48:15:19:8b:f7:97:28:74:a5:f6:71:2f:56: 92:30:e3:58:62:ea:06:89:9d:3f:be:f9:08:c2:9e:32:3b:2d: 86:52:31:68:d5:58:a8:ea:a9:31:34:c7:f8:5c:1a:15:71:88: 29:70:1e:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCWT3FT99MxkZShwUOaYfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMWZiNzBmOTBiYTJjZjA1OGMxMjA2ZGViMGVmNzk3Mzcw MjZlOTAwHhcNMjUxMjA2MDUwMTMzWhcNMjUxMjA3MDUwMTMzWjAzMTEwLwYDVQQD EyhmNGEzYTQ1ZTc1OWRhNWQ0Y2RkNTNmN2Y3ZWFhNTU5ZmVkZmViMjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpCXlYLThqdc9Q1Wf048v6U4O7Vg 72Ne2lezFguiMf4VIl/u1RXLWhMAHaqAMbMa6AOn52la01zsE1DtwZ+xHBMniY1c 2Jov8FeeJvMY35ByPur+de73DE4n8+vy4HqOrcYH3I1ZvBzR+lfxXkSXN1ypNxsd 0c40gB34PLa6ym1ZDcf/WVbJwKsqPGavWCB9BkmVCnlQOD0ekkTwiLyJrpK1w/ga +q9kRNg4LkDT/amngMcHC0SWtRI5mbMoez4Ndn/v0elo8TnQw9Z6T6DzvD930WZ5 4ARf8LxzSsSCrB+JOUiHTMRyDxSMhvaCITGDaqXJNZ/5s65pNtaO9jVhswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPSjpF51naXUzdU/f36qVZ/t/rIKMB8GA1UdIwQY MBaAFA4ftw+QuizwWMEgbesO95c3Am6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGgtM0Q1QzZMUEJZd1NCdDZ3NzNsemNDYnBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny85YTZiYzItOGU1Zi00YTZkLWIyMDYt MjdjYjlkY2Q2MGZjLzEvRGgtM0Q1QzZMUEJZd1NCdDZ3NzNsemNDYnBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny85YTZiYzItOGU1Zi00YTZkLWIyMDYtMjdjYjlkY2Q2MGZj LzEvRGgtM0Q1QzZMUEJZd1NCdDZ3NzNsemNDYnBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiacIE3CJ N942RtIxGxB6UemKYfuRMr6HHmlkwxJOo9QsjfOWcnB52Fj4YaYB3f7oobhL6I3/ Y1RCiy6EkbmdZsgoH0Jyxhdv721erHlsbS7+qjxq9Ywwl1xWt6zp9GqyvX0iK96R MgDWlbgjFZMmTjllXxFs0uXvXizFyu+43ggWWUOtnYB/6qhnbrx1a5sOSy6Qs0ek DQAnfsxrGZzk4bP093pL748aHPLfLDcV7bANoiZYem9pyrvNvl4Z7+m0PsnX/GXB Yk82MQhIFRmL95codKX2cS9WkjDjWGLqBomdP775CMKeMjsthlIxaNVYqOqpMTTH +FwaFXGIKXAeGw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:30:33 2025 by rpki-client