This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.mft File: dtQhWmJUV7wFMhkciAP3xkt_kGU.mft (raw, json) Hash identifier: LxI9bl4I1MAqTfeg/2iU7GBb95ByCQrXnRvEpRvrSmk= Subject key identifier: AE:C6:99:16:2C:FD:C9:77:5B:DB:28:4E:03:3E:FA:8F:09:FC:E6:69 Authority key identifier: 76:D4:21:5A:62:54:57:BC:05:32:19:1C:88:03:F7:C6:4B:7F:90:65 Certificate issuer: /CN=76d4215a625457bc0532191c8803f7c64b7f9065 Certificate serial: 019AF61C625928C577C7BC563BEF4BB35C50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dtQhWmJUV7wFMhkciAP3xkt_kGU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.mft Manifest number: 053A Signing time: Sun 07 Dec 2025 00:00:46 +0000 Manifest this update: Sun 07 Dec 2025 00:00:46 +0000 Manifest next update: Mon 08 Dec 2025 00:00:46 +0000 Files and hashes: 1: dtQhWmJUV7wFMhkciAP3xkt_kGU.crl (hash: P7fPwgKZDHuAlbahWE1APoOsIdP+R/x3JIgPUJ1PSU0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.mft rsync://rpki.ripe.net/repository/DEFAULT/dtQhWmJUV7wFMhkciAP3xkt_kGU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:1c:62:59:28:c5:77:c7:bc:56:3b:ef:4b:b3:5c:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76d4215a625457bc0532191c8803f7c64b7f9065 Validity Not Before: Dec 7 00:00:46 2025 GMT Not After : Dec 8 00:00:46 2025 GMT Subject: CN=aec699162cfdc9775bdb284e033efa8f09fce669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d4:58:a8:a0:22:95:32:c2:0d:ff:d3:0f:0d: 72:fd:eb:9c:bd:cf:c0:d4:09:b3:ec:2e:71:0a:a0: 71:f6:30:20:81:e6:a1:ba:bc:ea:f7:24:22:d4:bc: 8a:65:76:d5:00:31:19:82:f2:e5:a6:36:31:cb:d7: 10:b0:50:4e:d7:23:67:19:77:f4:45:d6:b1:0c:5d: 4c:03:f7:7d:2a:b9:e6:e0:6e:a0:ed:3d:c9:3e:39: 5e:da:2f:ab:1c:aa:a4:f7:41:8f:0a:e1:4a:4d:6e: 1e:1d:60:0a:68:c7:ff:b0:6e:f7:6a:70:fe:10:b1: 5d:3e:47:35:34:1f:9d:2b:fa:d7:e6:38:b5:18:aa: 3b:42:22:2d:83:4e:da:fe:28:c8:f8:fd:d6:52:42: 86:ce:cc:68:c1:2b:13:4b:bb:07:c1:fc:f2:1a:c9: d2:77:f0:9c:2d:4b:56:aa:f8:96:46:b5:45:dd:e0: 75:31:b0:99:56:8e:dc:c7:32:0f:ba:ad:66:80:85: e2:13:13:1b:99:75:35:98:70:a6:36:d5:2b:be:c1: 76:d7:1b:cd:af:7b:9d:7d:98:ad:f9:b4:15:04:bd: 08:a1:11:7c:81:56:55:e0:e4:79:5b:4b:e7:bc:74: 96:c3:c7:e7:a0:39:18:a0:0d:5f:89:d3:20:98:8f: 87:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C6:99:16:2C:FD:C9:77:5B:DB:28:4E:03:3E:FA:8F:09:FC:E6:69 X509v3 Authority Key Identifier: keyid:76:D4:21:5A:62:54:57:BC:05:32:19:1C:88:03:F7:C6:4B:7F:90:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dtQhWmJUV7wFMhkciAP3xkt_kGU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b501de-3b1d-4d80-b6e9-f88d7ec3a526/1/dtQhWmJUV7wFMhkciAP3xkt_kGU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:44:fe:3e:1d:7d:ca:cc:e8:42:44:a4:1c:75:91:ac:28:65: 3a:50:6d:10:19:8b:36:72:7f:cb:00:4d:e9:c9:53:a4:76:0d: 81:61:55:c9:ad:0e:f0:9c:d9:b2:7c:0f:05:63:35:78:39:eb: 41:d3:1b:25:87:f7:df:f3:07:b9:b6:6d:64:f0:69:e5:d8:64: da:c7:ae:f6:90:1c:7c:e5:d4:07:7d:2e:dc:00:bb:08:52:25: 67:9a:20:06:f0:6a:d4:89:e9:da:7a:d1:81:83:d3:96:ea:17: f9:c1:df:c6:99:24:26:e6:53:c0:00:21:85:86:68:2e:a2:be: 00:67:14:84:51:ab:38:2c:cb:b6:ca:8e:0d:25:76:27:36:73: 42:5e:6b:d5:59:02:2d:9a:c9:43:b9:d2:84:a8:f1:27:3f:2f: 71:31:d5:6f:2c:2f:c9:dc:c6:b0:26:41:c9:6f:d1:6d:f2:99: be:a3:84:27:10:d6:7b:9f:5d:13:4e:34:9c:97:01:59:d3:ac: 1b:99:51:0c:ee:63:14:d2:cd:ee:24:2b:26:7a:79:0d:09:3f: 31:fa:f5:33:cb:70:d5:57:7a:aa:e1:2a:d7:0e:ac:50:ba:91: 30:8c:78:08:57:36:6d:78:3d:03:28:82:68:11:8c:42:23:9f: e4:57:6d:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2HGJZKMV3x7xWO+9Ls1xQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ZDQyMTVhNjI1NDU3YmMwNTMyMTkxYzg4MDNmN2M2NGI3 ZjkwNjUwHhcNMjUxMjA3MDAwMDQ2WhcNMjUxMjA4MDAwMDQ2WjAzMTEwLwYDVQQD EyhhZWM2OTkxNjJjZmRjOTc3NWJkYjI4NGUwMzNlZmE4ZjA5ZmNlNjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9RYqKAilTLCDf/TDw1y/eucvc/A 1Amz7C5xCqBx9jAggeahurzq9yQi1LyKZXbVADEZgvLlpjYxy9cQsFBO1yNnGXf0 RdaxDF1MA/d9Krnm4G6g7T3JPjle2i+rHKqk90GPCuFKTW4eHWAKaMf/sG73anD+ ELFdPkc1NB+dK/rX5ji1GKo7QiItg07a/ijI+P3WUkKGzsxowSsTS7sHwfzyGsnS d/CcLUtWqviWRrVF3eB1MbCZVo7cxzIPuq1mgIXiExMbmXU1mHCmNtUrvsF21xvN r3udfZit+bQVBL0IoRF8gVZV4OR5W0vnvHSWw8fnoDkYoA1fidMgmI+HRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK7GmRYs/cl3W9soTgM++o8J/OZpMB8GA1UdIwQY MBaAFHbUIVpiVFe8BTIZHIgD98ZLf5BlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHRRaFdtSlVWN3dGTWhrY2lBUDN4a3Rfa0dVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iNTAxZGUtM2IxZC00ZDgwLWI2ZTkt Zjg4ZDdlYzNhNTI2LzEvZHRRaFdtSlVWN3dGTWhrY2lBUDN4a3Rfa0dVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS9iNTAxZGUtM2IxZC00ZDgwLWI2ZTktZjg4ZDdlYzNhNTI2 LzEvZHRRaFdtSlVWN3dGTWhrY2lBUDN4a3Rfa0dVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARUT+Ph19 yszoQkSkHHWRrChlOlBtEBmLNnJ/ywBN6clTpHYNgWFVya0O8JzZsnwPBWM1eDnr QdMbJYf33/MHubZtZPBp5dhk2seu9pAcfOXUB30u3AC7CFIlZ5ogBvBq1Inp2nrR gYPTluoX+cHfxpkkJuZTwAAhhYZoLqK+AGcUhFGrOCzLtsqODSV2JzZzQl5r1VkC LZrJQ7nShKjxJz8vcTHVbywvydzGsCZByW/RbfKZvqOEJxDWe59dE040nJcBWdOs G5lRDO5jFNLN7iQrJnp5DQk/Mfr1M8tw1Vd6quEq1w6sULqRMIx4CFc2bXg9AyiC aBGMQiOf5Fdtqw== -----END CERTIFICATE-----Generated at Sun Dec 7 01:33:44 2025 by rpki-client