This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json) Hash identifier: lNa/i4Umhu+pGvenHdRTJdKSHfM7BnZ3Qgsuo99QFGA= Subject key identifier: 24:B0:D2:63:03:43:4B:95:91:04:94:98:62:4F:12:8F:49:55:63:CB Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9 Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9 Certificate serial: 019AF2773011A05B71FC122810F08A87823D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft Manifest number: 026D Signing time: Sat 06 Dec 2025 07:01:28 +0000 Manifest this update: Sat 06 Dec 2025 07:01:28 +0000 Manifest next update: Sun 07 Dec 2025 07:01:28 +0000 Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=) 2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: ZTxQG/SBY84Wlrt25d9NP9B5EoTdh0qwUBTmoFALkgU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:30:11:a0:5b:71:fc:12:28:10:f0:8a:87:82:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9 Validity Not Before: Dec 6 07:01:28 2025 GMT Not After : Dec 7 07:01:28 2025 GMT Subject: CN=24b0d26303434b9591049498624f128f495563cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:34:f6:52:3d:9b:1e:bc:a7:d1:e4:9d:35:08: cf:b0:53:8d:f4:b6:ae:11:06:56:e6:5f:82:44:24: 0d:e0:bf:07:38:b8:74:3f:d6:5f:7f:d2:46:7b:96: 08:45:18:a5:22:5b:bc:2b:b8:0d:e9:7d:b8:f4:22: 8e:d7:0e:02:0c:b8:2b:87:50:47:2d:37:98:46:22: 3b:31:15:c4:5f:67:a1:12:a2:cb:87:e7:57:0a:ca: 83:b2:59:2c:6d:b3:52:ca:a0:01:59:93:ae:ce:28: d2:bd:21:37:cc:c5:a8:d5:f2:34:d9:47:63:04:2a: c6:29:30:08:dd:2b:55:63:68:be:9e:02:78:f6:89: 2b:81:7e:d1:4c:b1:b6:49:fb:09:0b:0d:e0:e2:e3: bb:f3:5c:0d:c3:68:e7:ea:f3:da:19:b2:58:a4:a6: 58:6c:73:48:20:c8:f0:10:d4:79:95:66:c9:74:7c: 6e:fd:14:59:cb:5e:f5:56:79:0e:9f:a3:0b:70:7f: 5f:c0:64:ab:cd:e3:0c:4f:f6:ca:85:ac:46:bf:86: 5b:1f:28:cc:3e:f9:d5:68:02:54:a4:13:c7:e6:4f: 9b:cd:f3:65:e6:e7:ca:70:2f:cd:f6:99:42:18:65: e3:95:ab:39:06:ae:14:3c:96:b4:99:b5:04:4f:61: 66:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B0:D2:63:03:43:4B:95:91:04:94:98:62:4F:12:8F:49:55:63:CB X509v3 Authority Key Identifier: keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:06:17:3e:ae:71:64:5f:80:e7:c4:50:72:86:6c:a5:18:c6: de:57:5c:6a:02:bd:cc:b9:eb:1f:71:1e:cd:07:d8:ed:40:d6: 0f:7e:37:2e:b9:69:b7:05:11:d5:64:8d:17:6a:8d:61:9a:9e: 7c:f0:9e:e8:12:ce:b2:4e:e0:a0:91:43:c2:58:50:d4:b7:ce: 51:f7:98:c4:23:eb:78:ed:08:88:da:9e:48:3d:b2:1c:f7:ed: a5:ef:29:26:3f:8f:15:0c:0c:29:9d:bc:73:46:5e:74:3f:36: 82:02:6a:f7:92:6b:50:2c:19:df:36:ca:89:a1:5a:5b:9d:95: 88:48:24:8f:9e:38:7a:2a:6b:58:9f:32:a3:0a:f9:71:98:12: f5:4a:57:9b:6a:30:40:4e:9c:93:3b:d0:83:58:19:41:93:d6: 28:45:ae:ed:9a:35:ce:41:a6:a6:ef:ce:e1:c9:81:70:37:19: f0:f7:ec:f6:9f:a2:c5:64:f7:5b:fa:68:87:82:94:b0:71:e8: f1:fa:8b:d6:72:a9:ed:3d:53:89:c2:4b:93:38:25:54:95:e2: 2d:a0:37:e9:77:b7:35:97:c3:9a:63:4a:eb:d8:dc:f6:a3:38: f8:5a:af:4e:0f:82:c4:d0:6c:29:fa:52:59:7c:ed:1d:1e:ea: 3d:40:60:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydzARoFtx/BIoEPCKh4I9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OGZlZWI2YTkwYTg2YWNmMTE4NzFlNGU1NzhhMmVhN2Vj MjgxZDkwHhcNMjUxMjA2MDcwMTI4WhcNMjUxMjA3MDcwMTI4WjAzMTEwLwYDVQQD EygyNGIwZDI2MzAzNDM0Yjk1OTEwNDk0OTg2MjRmMTI4ZjQ5NTU2M2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTT2Uj2bHryn0eSdNQjPsFON9Lau EQZW5l+CRCQN4L8HOLh0P9Zff9JGe5YIRRilIlu8K7gN6X249CKO1w4CDLgrh1BH LTeYRiI7MRXEX2ehEqLLh+dXCsqDslksbbNSyqABWZOuzijSvSE3zMWo1fI02Udj BCrGKTAI3StVY2i+ngJ49okrgX7RTLG2SfsJCw3g4uO781wNw2jn6vPaGbJYpKZY bHNIIMjwENR5lWbJdHxu/RRZy171VnkOn6MLcH9fwGSrzeMMT/bKhaxGv4ZbHyjM PvnVaAJUpBPH5k+bzfNl5ufKcC/N9plCGGXjlas5Bq4UPJa0mbUET2FmCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCSw0mMDQ0uVkQSUmGJPEo9JVWPLMB8GA1UdIwQY MBaAFHaP7rapCoas8Rhx5OV4oup+woHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG9fdXRxa0tocXp4R0hIazVYaWk2bjdDZ2RrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82NjY2M2EtZWFmMS00YTg5LTgwNGMt MGMxZjRkMzM3ODNlLzEvZG9fdXRxa0tocXp4R0hIazVYaWk2bjdDZ2RrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi82NjY2M2EtZWFmMS00YTg5LTgwNGMtMGMxZjRkMzM3ODNl LzEvZG9fdXRxa0tocXp4R0hIazVYaWk2bjdDZ2RrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeAYXPq5x ZF+A58RQcoZspRjG3ldcagK9zLnrH3EezQfY7UDWD343LrlptwUR1WSNF2qNYZqe fPCe6BLOsk7goJFDwlhQ1LfOUfeYxCPreO0IiNqeSD2yHPftpe8pJj+PFQwMKZ28 c0ZedD82ggJq95JrUCwZ3zbKiaFaW52ViEgkj544eiprWJ8yowr5cZgS9UpXm2ow QE6ckzvQg1gZQZPWKEWu7Zo1zkGmpu/O4cmBcDcZ8Pfs9p+ixWT3W/poh4KUsHHo 8fqL1nKp7T1TicJLkzglVJXiLaA36Xe3NZfDmmNK69jc9qM4+FqvTg+CxNBsKfpS WXztHR7qPUBgQQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:21:48 2025 by rpki-client