This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft File: drTT6JcTIsZNegRYurdFqJreTeU.mft (raw, json) Hash identifier: FFf40HFTxDWWUSJkHg0Gt3vwY9llB1BBUPkSGIbuUsc= Subject key identifier: 6E:91:79:57:4E:A2:E2:FC:4E:95:EB:CA:E0:26:D6:A2:01:E8:C4:FD Authority key identifier: 76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5 Certificate issuer: /CN=76b4d3e8971322c64d7a0458bab745a89ade4de5 Certificate serial: 019AF31C97EB82FEE0346A84F922DFF0EA9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft Manifest number: 03E5 Signing time: Sat 06 Dec 2025 10:02:08 +0000 Manifest this update: Sat 06 Dec 2025 10:02:08 +0000 Manifest next update: Sun 07 Dec 2025 10:02:08 +0000 Files and hashes: 1: ZYX1Qhws2vdCl-u2QXbSsdG6zUs.roa (hash: 1Yas72g5IvT1A6G5CoyKopOr6adZNC8arOgG6BPNF2I=) 2: drTT6JcTIsZNegRYurdFqJreTeU.crl (hash: V6js29OGNZYkzBzpFBBZxUOOJMfCzYNqybg1OSGLhKI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:97:eb:82:fe:e0:34:6a:84:f9:22:df:f0:ea:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76b4d3e8971322c64d7a0458bab745a89ade4de5 Validity Not Before: Dec 6 10:02:08 2025 GMT Not After : Dec 7 10:02:08 2025 GMT Subject: CN=6e9179574ea2e2fc4e95ebcae026d6a201e8c4fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:01:f6:3e:5e:38:4c:8b:88:e5:75:d6:9a:4e: 26:17:d0:ef:b9:97:6a:b2:16:30:8e:3e:e5:8a:cb: c9:16:de:11:2f:a3:bc:ca:02:77:ad:2d:bd:1b:fa: 29:8b:0e:b7:19:40:11:33:54:78:ff:52:d4:75:ed: b1:d3:f8:2f:53:8b:43:e8:4f:bf:17:a6:74:56:5b: 65:ae:c5:55:e3:04:fe:d4:0f:a1:0d:a1:28:81:f3: 8d:81:d0:55:22:43:2e:15:23:2c:9e:ef:f7:94:78: 14:b5:4d:c5:d8:ac:c2:f2:2c:7f:24:1f:f5:f6:7c: bd:19:63:3e:3f:a2:4a:c3:dd:56:8f:16:b3:5d:b5: bc:e1:17:b4:9e:aa:13:d8:1b:d9:fa:0e:35:9a:c0: 1a:a6:58:84:85:6f:dc:c4:06:3b:62:2a:0a:6c:2a: 95:44:a0:6f:88:a6:5d:71:6b:c3:ea:7f:da:40:7e: 12:c5:6b:19:c3:05:f7:a7:f1:ab:f0:99:5c:eb:72: 69:11:c8:e7:52:3b:19:d0:72:8a:2d:80:0a:8c:49: a9:3c:99:30:2e:c5:1c:2d:62:1e:b3:cd:a8:18:ab: 97:f9:81:42:a6:62:f2:74:7c:cd:99:f5:d6:81:d9: 6a:80:9a:f7:ff:51:e7:32:40:ce:29:a3:32:5a:25: 64:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:91:79:57:4E:A2:E2:FC:4E:95:EB:CA:E0:26:D6:A2:01:E8:C4:FD X509v3 Authority Key Identifier: keyid:76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:45:54:8d:e3:ae:7e:7f:d0:fa:85:2c:f3:8d:73:fe:cd:c1: 9e:de:37:ef:24:e6:5f:ea:0e:81:82:15:c9:7c:30:50:41:52: b9:a8:b4:a3:a9:1a:de:75:da:6b:d5:22:64:7a:32:26:6d:b1: 20:8d:6e:60:46:23:33:64:25:9d:20:d2:cd:fc:26:70:7c:f9: 6b:87:e7:a6:10:20:7b:a1:d9:dd:6c:b8:3a:8c:76:1e:04:d9: 63:98:01:75:18:48:ea:19:df:2c:74:80:bf:f7:2d:53:c3:9e: eb:9a:28:23:91:ff:83:0d:a9:34:04:4e:e9:e4:76:f4:dc:cf: 43:e1:6f:af:a5:c9:c2:06:43:33:48:7b:fe:a8:a1:9f:00:5b: 0d:41:ee:d4:4a:37:9a:16:7e:03:e7:40:07:c8:c4:24:44:33: 75:00:df:ef:2f:e1:35:bd:a6:b7:62:0c:77:17:d2:7b:94:4d: 7b:a5:db:60:2e:0b:d0:4b:e6:59:d9:e6:cd:27:52:d9:5b:78: 0f:98:37:c6:d0:c3:89:80:ff:c0:fd:ba:ec:93:8e:0f:dc:57: 06:78:87:06:4d:11:bc:e4:c0:fe:01:f2:40:f1:5b:a9:75:11: 1d:bd:51:b8:31:ed:cd:bb:f5:65:c1:bf:07:ff:0d:95:a1:8e: 29:00:c5:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHJfrgv7gNGqE+SLf8OqbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YjRkM2U4OTcxMzIyYzY0ZDdhMDQ1OGJhYjc0NWE4OWFk ZTRkZTUwHhcNMjUxMjA2MTAwMjA4WhcNMjUxMjA3MTAwMjA4WjAzMTEwLwYDVQQD Eyg2ZTkxNzk1NzRlYTJlMmZjNGU5NWViY2FlMDI2ZDZhMjAxZThjNGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAH2Pl44TIuI5XXWmk4mF9DvuZdq shYwjj7lisvJFt4RL6O8ygJ3rS29G/opiw63GUARM1R4/1LUde2x0/gvU4tD6E+/ F6Z0VltlrsVV4wT+1A+hDaEogfONgdBVIkMuFSMsnu/3lHgUtU3F2KzC8ix/JB/1 9ny9GWM+P6JKw91WjxazXbW84Re0nqoT2BvZ+g41msAapliEhW/cxAY7YioKbCqV RKBviKZdcWvD6n/aQH4SxWsZwwX3p/Gr8Jlc63JpEcjnUjsZ0HKKLYAKjEmpPJkw LsUcLWIes82oGKuX+YFCpmLydHzNmfXWgdlqgJr3/1HnMkDOKaMyWiVksQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG6ReVdOouL8TpXryuAm1qIB6MT9MB8GA1UdIwQY MBaAFHa00+iXEyLGTXoEWLq3Raia3k3lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHJUVDZKY1RJc1pOZWdSWXVyZEZxSnJlVGVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi84OTU3ZWItZjQ5Mi00M2NiLWE2MDMt YjYyNmYzMzE0OTJmLzEvZHJUVDZKY1RJc1pOZWdSWXVyZEZxSnJlVGVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi84OTU3ZWItZjQ5Mi00M2NiLWE2MDMtYjYyNmYzMzE0OTJm LzEvZHJUVDZKY1RJc1pOZWdSWXVyZEZxSnJlVGVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkkVUjeOu fn/Q+oUs841z/s3Bnt437yTmX+oOgYIVyXwwUEFSuai0o6ka3nXaa9UiZHoyJm2x II1uYEYjM2QlnSDSzfwmcHz5a4fnphAge6HZ3Wy4Oox2HgTZY5gBdRhI6hnfLHSA v/ctU8Oe65ooI5H/gw2pNARO6eR29NzPQ+Fvr6XJwgZDM0h7/qihnwBbDUHu1Eo3 mhZ+A+dAB8jEJEQzdQDf7y/hNb2mt2IMdxfSe5RNe6XbYC4L0EvmWdnmzSdS2Vt4 D5g3xtDDiYD/wP267JOOD9xXBniHBk0RvOTA/gHyQPFbqXURHb1RuDHtzbv1ZcG/ B/8NlaGOKQDF9g== -----END CERTIFICATE-----Generated at Sat Dec 6 14:56:46 2025 by rpki-client