This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft File: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft (raw, json) Hash identifier: 8iq1ZRzg1SS2y+tYifltEPI03Li3iBxMpQftJVFNDrg= Subject key identifier: 5B:51:F7:A2:FA:34:94:7D:72:DC:12:AF:5C:A1:4F:CC:78:3B:92:57 Authority key identifier: 0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4 Certificate issuer: /CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4 Certificate serial: 019AF12ED5A02368D27BB77EEA1567DCDA2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft Manifest number: 0B4E Signing time: Sat 06 Dec 2025 01:02:49 +0000 Manifest this update: Sat 06 Dec 2025 01:02:49 +0000 Manifest next update: Sun 07 Dec 2025 01:02:49 +0000 Files and hashes: 1: 7XdSGfevcJJsevy7fOceWvja7nc.roa (hash: 738FMMf7Atyvq/JMYg2GIhaCbgWHQKUbxrDxkyANCA8=) 2: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl (hash: Idrkj3oZmqim3g4Wi20zlg/Ur51XQnxMs3vMUVzO0i4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:d5:a0:23:68:d2:7b:b7:7e:ea:15:67:dc:da:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4 Validity Not Before: Dec 6 01:02:49 2025 GMT Not After : Dec 7 01:02:49 2025 GMT Subject: CN=5b51f7a2fa34947d72dc12af5ca14fcc783b9257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:31:f5:11:a4:63:d1:07:92:b4:f8:68:6e:b8: 80:73:4f:d2:2c:bb:b2:01:67:1f:b3:7e:db:aa:4f: 89:33:c0:eb:54:fd:35:f2:dd:0c:88:5e:a0:30:a5: 97:06:19:b3:c0:b8:68:40:89:ec:0f:d7:a7:30:88: e5:98:c1:24:46:c8:91:aa:6e:b7:e9:27:a1:5d:44: e6:07:10:e0:3d:61:1d:47:be:78:7a:07:74:49:f7: bf:90:1c:aa:9c:ff:d6:6c:62:f5:5f:83:e7:d6:dd: 17:09:6c:fe:12:b9:20:b2:64:d6:b1:5c:b0:6f:b2: 5c:c2:56:de:aa:5b:7f:1f:83:14:52:4e:69:e5:d0: cc:99:a7:ec:40:b6:da:db:84:66:ba:29:dc:b9:92: 35:01:40:76:25:94:7a:8b:09:9b:65:09:48:26:81: 36:9f:52:d7:8e:71:a3:dc:95:c1:f6:df:e4:74:6d: 55:bb:24:e5:49:cc:bf:d0:04:65:5b:1e:7b:eb:8e: fe:67:ac:35:ac:ec:be:37:37:12:a7:9d:90:97:c8: 82:84:d7:60:76:43:90:07:6d:70:f3:5a:af:b8:1a: 37:06:c6:8c:7b:4c:b4:98:3d:96:b1:10:18:0d:82: b1:70:7b:08:ae:37:6a:4f:12:c0:53:40:18:5f:e3: 08:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:51:F7:A2:FA:34:94:7D:72:DC:12:AF:5C:A1:4F:CC:78:3B:92:57 X509v3 Authority Key Identifier: keyid:0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:aa:d7:b7:59:73:21:71:81:8b:b9:d2:a4:3b:19:48:9d:57: 0f:5e:f4:71:c7:56:62:f2:92:15:28:a5:4c:44:40:c2:42:5a: 44:5f:e5:ef:81:30:d1:d2:86:7e:23:15:82:2f:c3:46:7f:e4: 9c:86:ca:8c:91:d8:fb:6d:be:e1:04:e4:50:a3:07:da:c9:73: 61:ca:e3:4a:f4:bd:2c:6f:3f:6d:97:76:dc:c0:fc:d2:cc:00: a6:93:d2:d4:2c:f5:c0:ad:68:71:96:0f:00:43:d8:a8:b6:e9: c2:54:f2:7b:fe:e3:f0:72:d0:e5:7f:91:de:a6:74:71:94:93: 4e:61:2f:b5:fb:4f:6e:d5:40:58:52:8b:d4:fb:b6:7c:1c:e9: ca:6e:7c:4f:79:54:c7:2f:aa:86:7b:06:db:85:4d:87:58:c9: 2e:ec:d5:dd:5f:c3:bd:69:70:82:ae:be:f6:bd:e5:e9:39:b1: 69:9c:06:6c:db:18:93:bc:3c:87:d3:31:d8:3e:20:bc:09:b8: f2:42:45:6d:bf:88:98:29:ab:5e:d0:5a:68:3f:8b:56:d2:bf: 7f:89:46:1f:39:44:20:07:c9:f9:42:88:df:96:5e:f5:f3:ce: be:a3:b5:01:08:44:a9:5d:9a:99:a7:3b:53:84:86:f8:e2:4b: 28:d6:4c:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLtWgI2jSe7d+6hVn3NoqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkZWQ2NmQyYzVhNDkzYTA5NTM0MzU3ZTVjYTI2ZjAzZDFh NGRkZDQwHhcNMjUxMjA2MDEwMjQ5WhcNMjUxMjA3MDEwMjQ5WjAzMTEwLwYDVQQD Eyg1YjUxZjdhMmZhMzQ5NDdkNzJkYzEyYWY1Y2ExNGZjYzc4M2I5MjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjH1EaRj0QeStPhobriAc0/SLLuy AWcfs37bqk+JM8DrVP018t0MiF6gMKWXBhmzwLhoQInsD9enMIjlmMEkRsiRqm63 6SehXUTmBxDgPWEdR754egd0Sfe/kByqnP/WbGL1X4Pn1t0XCWz+ErkgsmTWsVyw b7Jcwlbeqlt/H4MUUk5p5dDMmafsQLba24RmuincuZI1AUB2JZR6iwmbZQlIJoE2 n1LXjnGj3JXB9t/kdG1VuyTlScy/0ARlWx57647+Z6w1rOy+NzcSp52Ql8iChNdg dkOQB21w81qvuBo3BsaMe0y0mD2WsRAYDYKxcHsIrjdqTxLAU0AYX+MIvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFtR96L6NJR9ctwSr1yhT8x4O5JXMB8GA1UdIwQY MBaAFA3tZtLFpJOglTQ1flyibwPRpN3UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGUxbTBzV2trNkNWTkRWLVhLSnZBOUdrM2RRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9kOWNjNWItZjg2OC00M2ZlLTljNWMt MzdiOTZmZmJhNzZhLzEvRGUxbTBzV2trNkNWTkRWLVhLSnZBOUdrM2RRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9kOWNjNWItZjg2OC00M2ZlLTljNWMtMzdiOTZmZmJhNzZh LzEvRGUxbTBzV2trNkNWTkRWLVhLSnZBOUdrM2RRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf6rXt1lz IXGBi7nSpDsZSJ1XD170ccdWYvKSFSilTERAwkJaRF/l74Ew0dKGfiMVgi/DRn/k nIbKjJHY+22+4QTkUKMH2slzYcrjSvS9LG8/bZd23MD80swAppPS1Cz1wK1ocZYP AEPYqLbpwlTye/7j8HLQ5X+R3qZ0cZSTTmEvtftPbtVAWFKL1Pu2fBzpym58T3lU xy+qhnsG24VNh1jJLuzV3V/DvWlwgq6+9r3l6TmxaZwGbNsYk7w8h9Mx2D4gvAm4 8kJFbb+ImCmrXtBaaD+LVtK/f4lGHzlEIAfJ+UKI35Ze9fPOvqO1AQhEqV2amac7 U4SG+OJLKNZMeA== -----END CERTIFICATE-----Generated at Sat Dec 6 06:56:56 2025 by rpki-client