This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft File: dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json) Hash identifier: 0MA32qp+5dWtVKmCYgLL/DitLR5qN9xFX4031jTPuZs= Subject key identifier: AE:23:70:0D:CB:03:5F:C9:6D:45:BD:2C:83:B6:59:26:C2:DD:6C:05 Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB Certificate issuer: /CN=75714b581ada196e3551c08ce76243be058b44eb Certificate serial: 019AF2402F8B330E65B0ED954D89C4351800 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 06:01:23 +0000 Manifest this update: Sat 06 Dec 2025 06:01:23 +0000 Manifest next update: Sun 07 Dec 2025 06:01:23 +0000 Files and hashes: 1: 0dwLJQRpdsuNfuiofPA4PjO0U8c.roa (hash: xvhwiBzc6sj9frR0O87jctOS5dj3sqKjh7OcpHO4MQo=) 2: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: FBZrgJfdAW3ZytsG2MrepB3+2APy+40hkGuUpdENCQs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:2f:8b:33:0e:65:b0:ed:95:4d:89:c4:35:18:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb Validity Not Before: Dec 6 06:01:23 2025 GMT Not After : Dec 7 06:01:23 2025 GMT Subject: CN=ae23700dcb035fc96d45bd2c83b65926c2dd6c05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6e:ee:1e:86:8c:56:70:ee:90:0b:21:bb:e1: b4:1d:f4:66:b1:e9:8d:29:7a:ad:28:de:07:18:8f: 2f:25:1b:38:40:e9:77:2a:33:ce:ed:de:a4:98:fc: e8:76:fc:81:6c:5f:7f:19:c6:f0:e1:b7:96:46:41: b1:7f:b4:8d:b8:a1:9d:f9:67:dd:18:c7:ba:71:81: cd:cb:f7:31:08:1f:88:c1:45:4c:d0:a8:2a:42:1f: 9f:5b:3d:f8:9f:7d:39:eb:39:ef:d6:d4:06:80:39: 3a:13:c8:23:49:20:93:c8:a0:f9:49:3b:1c:4d:02: 01:14:2e:bf:65:e1:28:d0:21:4c:61:89:58:46:79: 36:a4:76:0f:40:7e:c5:c7:95:af:08:4d:c5:77:ab: 8a:34:c9:ed:f3:da:cd:7a:84:de:f5:3e:ab:0e:cd: b1:e6:75:c1:9e:92:90:01:05:14:c3:55:ad:2c:1d: 26:d6:94:9f:9c:84:98:d1:cf:15:fa:35:32:f7:b3: 1e:75:7e:d6:84:ce:92:20:a3:a5:07:1e:a1:34:f8: 67:d6:e2:35:1c:a9:3a:82:28:e9:c2:ac:b9:c7:e4: 01:7f:f5:bb:f8:f2:69:1e:53:4f:27:5c:81:33:62: 77:f5:43:18:45:19:c8:e8:05:87:18:a8:3f:9e:73: b1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:23:70:0D:CB:03:5F:C9:6D:45:BD:2C:83:B6:59:26:C2:DD:6C:05 X509v3 Authority Key Identifier: keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:15:09:81:9e:51:e5:46:40:50:3b:be:d3:c2:4b:a7:1d:58: 0a:a9:16:5d:53:79:82:40:18:3c:c3:8a:68:9d:b2:2d:48:61: f5:a0:6c:e0:eb:49:8d:a3:ae:fb:93:64:7c:fb:33:30:e0:e4: e2:4c:35:d5:b7:45:f3:2b:6b:b2:29:93:76:e9:66:8e:81:b8: 04:ab:c8:d4:a3:0d:89:8e:37:b7:41:63:24:8d:ed:ce:04:d2: 58:4c:bb:1d:2e:e9:9c:f6:7e:f4:e7:8d:c5:77:2f:98:d3:d1: 04:38:b6:ec:49:77:02:6e:6e:5c:a6:53:63:c7:eb:63:9c:25: a1:8b:59:6d:20:69:7c:17:3e:01:f0:df:d0:cb:ad:f3:23:f0: 53:9a:d2:a8:82:fc:f2:2c:9a:77:c0:c8:bb:02:22:2c:d2:b2: ef:19:de:69:d8:bd:fc:22:03:1d:b0:38:3f:64:e2:65:10:44: 3c:9d:15:84:97:cb:0b:9d:3f:82:bd:31:3e:80:56:73:40:ac: 5a:99:0a:ea:51:1a:e4:5c:4c:d3:0a:d1:73:87:5b:d7:55:f1: 09:0b:fd:e5:ba:44:af:ab:f1:f5:fa:ca:36:71:d2:29:d0:98: 87:85:4f:5d:25:af:26:bc:68:20:6f:fb:08:92:de:23:33:84: dc:63:e2:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQC+LMw5lsO2VTYnENRgAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1NzE0YjU4MWFkYTE5NmUzNTUxYzA4Y2U3NjI0M2JlMDU4 YjQ0ZWIwHhcNMjUxMjA2MDYwMTIzWhcNMjUxMjA3MDYwMTIzWjAzMTEwLwYDVQQD EyhhZTIzNzAwZGNiMDM1ZmM5NmQ0NWJkMmM4M2I2NTkyNmMyZGQ2YzA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApm7uHoaMVnDukAshu+G0HfRmsemN KXqtKN4HGI8vJRs4QOl3KjPO7d6kmPzodvyBbF9/Gcbw4beWRkGxf7SNuKGd+Wfd GMe6cYHNy/cxCB+IwUVM0KgqQh+fWz34n3056znv1tQGgDk6E8gjSSCTyKD5STsc TQIBFC6/ZeEo0CFMYYlYRnk2pHYPQH7Fx5WvCE3Fd6uKNMnt89rNeoTe9T6rDs2x 5nXBnpKQAQUUw1WtLB0m1pSfnISY0c8V+jUy97MedX7WhM6SIKOlBx6hNPhn1uI1 HKk6gijpwqy5x+QBf/W7+PJpHlNPJ1yBM2J39UMYRRnI6AWHGKg/nnOxRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK4jcA3LA1/JbUW9LIO2WSbC3WwFMB8GA1UdIwQY MBaAFHVxS1ga2hluNVHAjOdiQ74Fi0TrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFhGTFdCcmFHVzQxVWNDTTUySkR2Z1dMUk9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8zOWQyMjYtNzJiZi00OTBlLTlmMTYt MDczZmJiZTExMWU1LzEvZFhGTFdCcmFHVzQxVWNDTTUySkR2Z1dMUk9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC8zOWQyMjYtNzJiZi00OTBlLTlmMTYtMDczZmJiZTExMWU1 LzEvZFhGTFdCcmFHVzQxVWNDTTUySkR2Z1dMUk9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuhUJgZ5R 5UZAUDu+08JLpx1YCqkWXVN5gkAYPMOKaJ2yLUhh9aBs4OtJjaOu+5NkfPszMODk 4kw11bdF8ytrsimTdulmjoG4BKvI1KMNiY43t0FjJI3tzgTSWEy7HS7pnPZ+9OeN xXcvmNPRBDi27El3Am5uXKZTY8frY5wloYtZbSBpfBc+AfDf0Mut8yPwU5rSqIL8 8iyad8DIuwIiLNKy7xneadi9/CIDHbA4P2TiZRBEPJ0VhJfLC50/gr0xPoBWc0Cs WpkK6lEa5FxM0wrRc4db11XxCQv95bpEr6vx9frKNnHSKdCYh4VPXSWvJrxoIG/7 CJLeIzOE3GPilw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:24:26 2025 by rpki-client